mudhorn/n8n
1
0
Fork 0
mirror of https://github.com/n8n-io/n8n.git synced 2024-09-19 22:37:31 -07:00
Code Issues Actions 2 Packages Projects Releases Wiki Activity

fix(Code Node): Update vm2 to address CVE-2023-29017 (#5947)

Browse source 
Update vm2 to fix CVE-2023-29017

GH advisory: https://github.com/advisories/GHSA-7jxr-cg7f-gpgv

Co-authored-by: Loganaden Velvindron <logan@cyberstorm.mu>
This commit is contained in:
कारतोफ्फेलस्क्रिप्ट™ 2023-04-11 15:05:38 +02:00 committed by GitHub
parent 0570514b78
commit f0eba0a2f3
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
2 changed files with 7 additions and 14 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
packages/nodes-base/package.json
View file

@ -900,7 +900,7 @@
"ssh2-sftp-client": "^7.0.0",
"tmp-promise": "^3.0.2",
"uuid": "^8.3.2",
"vm2": "~3.9.5",
"vm2": "~3.9.15",
"xlsx": "^0.17.0",
"xml2js": "^0.4.23"
}

19
pnpm-lock.yaml
View file

@ -1404,8 +1404,8 @@ importers:
specifier: ^8.3.2
version: 8.3.2
vm2:
specifier: ~3.9.5
version: 3.9.11
specifier: ~3.9.15
version: 3.9.15
xlsx:
specifier: ^0.17.0
version: 0.17.5
@ -7646,17 +7646,10 @@ packages:
hasBin: true
dev: true
/acorn@8.8.0:
resolution: {integrity: sha512-QOxyigPVrpZ2GXT+PFyZTl6TtOFc5egxHIP9IlQ+RbupQuX4RkT/Bee4/kQuC02Xkzg84JcT7oLYtDIQxp+v7w==}
engines: {node: '>=0.4.0'}
hasBin: true
dev: false
/acorn@8.8.1:
resolution: {integrity: sha512-7zFpHzhnqYKrkYdUjF1HI1bzd0VygEGX8lFk4k5zVMqHEoES+P+7TKI+EvLO9WVMJ8eekdO0aDEK044xTXwPPA==}
engines: {node: '>=0.4.0'}
hasBin: true
dev: true
/address@1.2.1:
resolution: {integrity: sha512-B+6bi5D34+fDYENiH5qOlA0cV2rAGKuWZ9LeyUUehbXy8e0VS9e498yO0Jeeh+iM+6KbfudHTFjXw2MmJD4QRA==}
@ -10366,7 +10359,7 @@ packages:
ast-types: 0.13.4
escodegen: 1.14.3
esprima: 4.0.1
vm2: 3.9.11
vm2: 3.9.15
dev: false
/del@6.1.1:
@ -21416,12 +21409,12 @@ packages:
- terser
dev: true
/vm2@3.9.11:
resolution: {integrity: sha512-PFG8iJRSjvvBdisowQ7iVF580DXb1uCIiGaXgm7tynMR1uTBlv7UJlB1zdv5KJ+Tmq1f0Upnj3fayoEOPpCBKg==}
/vm2@3.9.15:
resolution: {integrity: sha512-XqNqknHGw2avJo13gbIwLNZUumvrSHc9mLqoadFZTpo3KaNEJoe1I0lqTFhRXmXD7WkLyG01aaraXdXT0pa4ag==}
engines: {node: '>=6.0'}
hasBin: true
dependencies:
acorn: 8.8.0
acorn: 8.8.1
acorn-walk: 8.2.0
dev: false