fix(core): Force-upgrade decode-uri-component to address CVE-2022-38900 (#5734)

[GitHub Advisory](https://github.com/advisories/GHSA-w573-4hg7-7wgq)
This commit is contained in:
कारतोफ्फेलस्क्रिप्ट™ 2023-03-21 14:49:27 +01:00 committed by GitHub
parent 34d7fcc27e
commit 8dd7f6e1d4
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
2 changed files with 3 additions and 7 deletions

View file

@ -69,6 +69,7 @@
"@types/node": "^16.18.12",
"browserslist": "^4.21.4",
"chokidar": "3.5.2",
"decode-uri-component": "0.2.2",
"ejs": "^3.1.8",
"fork-ts-checker-webpack-plugin": "^6.0.4",
"jsonwebtoken": "9.0.0",

View file

@ -8,6 +8,7 @@ overrides:
'@types/node': ^16.18.12
browserslist: ^4.21.4
chokidar: 3.5.2
decode-uri-component: 0.2.2
ejs: ^3.1.8
fork-ts-checker-webpack-plugin: ^6.0.4
jsonwebtoken: 9.0.0
@ -9746,15 +9747,9 @@ packages:
resolution: {integrity: sha512-VBBaLc1MgL5XpzgIP7ny5Z6Nx3UrRkIViUkPUdtl9aya5amy3De1gsUUSB1g3+3sExYNjCAsAznmukyxCb1GRA==}
dev: true
/decode-uri-component/0.2.0:
resolution: {integrity: sha512-hjf+xovcEn31w/EUYdTXQh/8smFL/dzYjohQGEIgjyNavaJfBY2p5F527Bo1VPATxv0VYTUC2bOcXvqFwk78Og==}
engines: {node: '>=0.10'}
dev: false
/decode-uri-component/0.2.2:
resolution: {integrity: sha512-FqUYQ+8o158GyGTrMFJms9qh3CqTKvAqgqsTnkLI8sKu0028orqBhxNMFkFen0zGyg6epACD32pjVk58ngIErQ==}
engines: {node: '>=0.10'}
dev: true
/dedent/0.7.0:
resolution: {integrity: sha512-Q6fKUPqnAHAyhiUgFU7BUzLiv0kd8saH9al7tnu5Q/okj6dnupxyTgFIBjVzJATdfIAm9NAsvXNzjaKa+bxVyA==}
@ -17491,7 +17486,7 @@ packages:
resolution: {integrity: sha512-MplouLRDHBZSG9z7fpuAAcI7aAYjDLhtsiVZsevsfaHWDS2IDdORKbSd1kWUA+V4zyva/HZoSfpwnYMMQDhb0w==}
engines: {node: '>=6'}
dependencies:
decode-uri-component: 0.2.0
decode-uri-component: 0.2.2
filter-obj: 1.1.0
split-on-first: 1.1.0
strict-uri-encode: 2.0.0