From 954f2cf9bbd22a06a7271410f2eb9622667a7d73 Mon Sep 17 00:00:00 2001 From: BCGov-NR PR Bot <42219260+bcgov-devops@users.noreply.github.com> Date: Fri, 26 Apr 2024 15:04:29 -0700 Subject: [PATCH 1/2] [Snyk] Upgrade cypress from 13.6.4 to 13.7.2 (#331) fix: upgrade cypress from 13.6.4 to 13.7.2 Snyk has created this PR to upgrade cypress from 13.6.4 to 13.7.2. See this package in npm: https://www.npmjs.com/package/cypress See this project in Snyk: https://app.snyk.io/org/bcgov/project/9487e25e-036b-4b7b-8b55-bde71b318964?utm_source=github&utm_medium=referral&page=upgrade-pr Co-authored-by: snyk-bot --- frontend/package-lock.json | 12 ++++++------ frontend/package.json | 2 +- 2 files changed, 7 insertions(+), 7 deletions(-) diff --git a/frontend/package-lock.json b/frontend/package-lock.json index 0a80bc69..02456384 100644 --- a/frontend/package-lock.json +++ b/frontend/package-lock.json @@ -36,7 +36,7 @@ "@types/react": "^17.0.0", "@types/react-dom": "^17.0.0", "@vitejs/plugin-react": "^4.0.0", - "cypress": "^13.0.0", + "cypress": "^13.7.2", "vite": "^4.3.9" } }, @@ -2912,9 +2912,9 @@ "integrity": "sha512-M1uQkMl8rQK/szD0LNhtqxIPLpimGm8sOBwU7lLnCpSbTyY3yeU1Vc7l4KT5zT4s/yOxHH5O7tIuuLOCnLADRw==" }, "node_modules/cypress": { - "version": "13.6.4", - "resolved": "https://registry.npmjs.org/cypress/-/cypress-13.6.4.tgz", - "integrity": "sha512-pYJjCfDYB+hoOoZuhysbbYhEmNW7DEDsqn+ToCLwuVowxUXppIWRr7qk4TVRIU471ksfzyZcH+mkoF0CQUKnpw==", + "version": "13.7.2", + "resolved": "https://registry.npmjs.org/cypress/-/cypress-13.7.2.tgz", + "integrity": "sha512-FF5hFI5wlRIHY8urLZjJjj/YvfCBrRpglbZCLr/cYcL9MdDe0+5usa8kTIrDHthlEc9lwihbkb5dmwqBDNS2yw==", "dev": true, "hasInstallScript": true, "dependencies": { @@ -2925,7 +2925,7 @@ "arch": "^2.2.0", "blob-util": "^2.0.2", "bluebird": "^3.7.2", - "buffer": "^5.6.0", + "buffer": "^5.7.1", "cachedir": "^2.3.0", "chalk": "^4.1.0", "check-more-types": "^2.24.0", @@ -2943,7 +2943,7 @@ "figures": "^3.2.0", "fs-extra": "^9.1.0", "getos": "^3.2.1", - "is-ci": "^3.0.0", + "is-ci": "^3.0.1", "is-installed-globally": "~0.4.0", "lazy-ass": "^1.6.0", "listr2": "^3.8.3", diff --git a/frontend/package.json b/frontend/package.json index ea0af50d..5d88cdb3 100644 --- a/frontend/package.json +++ b/frontend/package.json @@ -39,7 +39,7 @@ "@types/react": "^17.0.0", "@types/react-dom": "^17.0.0", "@vitejs/plugin-react": "^4.0.0", - "cypress": "^13.0.0", + "cypress": "^13.7.2", "vite": "^4.3.9" }, "overrides": { From 2f78b8bef49f432e5638ca03fe448570a84075ac Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Fri, 26 Apr 2024 22:10:03 +0000 Subject: [PATCH 2/2] chore(deps): update aquasecurity/trivy-action action to v0.19.0 (#336) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- .github/workflows/analysis.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/analysis.yml b/.github/workflows/analysis.yml index 91024ae6..6ba25629 100644 --- a/.github/workflows/analysis.yml +++ b/.github/workflows/analysis.yml @@ -24,7 +24,7 @@ jobs: - uses: actions/checkout@v4 - name: Run Trivy vulnerability scanner in repo mode - uses: aquasecurity/trivy-action@0.18.0 + uses: aquasecurity/trivy-action@0.19.0 with: format: "sarif" output: "trivy-results.sarif"