From be860e411cd44afe2efab1222f24968900556c2a Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 6 Sep 2024 06:54:39 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-WS-7266574 - https://snyk.io/vuln/SNYK-JS-FASTXMLPARSER-7573289 --- package-lock.json | 140 ++++++++++++++++++++++++++++------------------ package.json | 6 +- 2 files changed, 88 insertions(+), 58 deletions(-) diff --git a/package-lock.json b/package-lock.json index b486283..9c790b8 100644 --- a/package-lock.json +++ b/package-lock.json @@ -12,9 +12,9 @@ "@aws-sdk/client-s3": "^3.550.0", "@aws-sdk/client-transcribe": "^3.549.0", "@azure/storage-blob": "^12.17.0", - "@deepgram/sdk": "^1.21.0", + "@deepgram/sdk": "^3.0.0", "@google-cloud/speech": "^6.5.0", - "@google-cloud/storage": "^7.9.0", + "@google-cloud/storage": "^7.12.1", "@jambonz/db-helpers": "^0.9.3", "@jambonz/lamejs": "^1.2.2", "@jambonz/mw-registrar": "^0.2.7", @@ -24,7 +24,7 @@ "@jambonz/verb-specifications": "^0.0.72", "@soniox/soniox-node": "^1.2.2", "argon2": "^0.40.1", - "assemblyai": "^4.3.4", + "assemblyai": "^4.6.0", "bent": "^7.3.12", "cors": "^2.8.5", "debug": "^4.3.4", @@ -1547,34 +1547,33 @@ "node": ">=6.9.0" } }, - "node_modules/@deepgram/sdk": { - "version": "1.21.0", - "resolved": "https://registry.npmjs.org/@deepgram/sdk/-/sdk-1.21.0.tgz", - "integrity": "sha512-irMYwmARosHA7bcDs0vzAC8wDEX6+s6IS09ZapYYs8s1mfJuwwKjgceNddSsJhGfCkfXayTbXgwwPxxPXxwEtA==", + "node_modules/@deepgram/captions": { + "version": "1.2.0", + "resolved": "https://registry.npmjs.org/@deepgram/captions/-/captions-1.2.0.tgz", + "integrity": "sha512-8B1C/oTxTxyHlSFubAhNRgCbQ2SQ5wwvtlByn8sDYZvdDtdn/VE2yEPZ4BvUnrKWmsbTQY6/ooLV+9Ka2qmDSQ==", + "license": "MIT", "dependencies": { - "bufferutil": "^4.0.6", - "utf-8-validate": "^5.0.9", - "ws": "^7.5.5" + "dayjs": "^1.11.10" + }, + "engines": { + "node": ">=18.0.0" } }, - "node_modules/@deepgram/sdk/node_modules/ws": { - "version": "7.5.9", - "resolved": "https://registry.npmjs.org/ws/-/ws-7.5.9.tgz", - "integrity": "sha512-F+P9Jil7UiSKSkppIiD94dN07AwvFixvLIj1Og1Rl9GGMuNipJnV9JzjD6XuqmAeiswGvUmNLjr5cFuXwNS77Q==", - "engines": { - "node": ">=8.3.0" - }, - "peerDependencies": { - "bufferutil": "^4.0.1", - "utf-8-validate": "^5.0.2" + "node_modules/@deepgram/sdk": { + "version": "3.0.0", + "resolved": "https://registry.npmjs.org/@deepgram/sdk/-/sdk-3.0.0.tgz", + "integrity": "sha512-Fmi8fqBqbCqUolr1JueVmbbD/wIBlnPSd3YuGs2kW8RZJiyFpoWCHaogylmWrzUtNIbBUJfAXIEfR/tOV0T8rA==", + "license": "MIT", + "dependencies": { + "@deepgram/captions": "^1.1.1", + "@types/websocket": "^1.0.9", + "cross-fetch": "^3.1.5", + "deepmerge": "^4.3.1", + "events": "^3.3.0", + "websocket": "^1.0.34" }, - "peerDependenciesMeta": { - "bufferutil": { - "optional": true - }, - "utf-8-validate": { - "optional": true - } + "engines": { + "node": ">=18.0.0" } }, "node_modules/@eslint-community/eslint-utils": { @@ -1697,23 +1696,22 @@ } }, "node_modules/@google-cloud/storage": { - "version": "7.9.0", - "resolved": "https://registry.npmjs.org/@google-cloud/storage/-/storage-7.9.0.tgz", - "integrity": "sha512-PlFl7g3r91NmXtZHXsSEfTZES5ysD3SSBWmX4iBdQ2TFH7tN/Vn/IhnVELCHtgh1vc+uYPZ7XvRYaqtDCdghIA==", + "version": "7.12.1", + "resolved": "https://registry.npmjs.org/@google-cloud/storage/-/storage-7.12.1.tgz", + "integrity": "sha512-Z3ZzOnF3YKLuvpkvF+TjQ6lztxcAyTILp+FjKonmVpEwPa9vFvxpZjubLR4sB6bf19i/8HL2AXRjA0YFgHFRmQ==", + "license": "Apache-2.0", "dependencies": { "@google-cloud/paginator": "^5.0.0", "@google-cloud/projectify": "^4.0.0", "@google-cloud/promisify": "^4.0.0", "abort-controller": "^3.0.0", "async-retry": "^1.3.3", - "compressible": "^2.0.12", "duplexify": "^4.1.3", - "ent": "^2.2.0", - "fast-xml-parser": "^4.3.0", + "fast-xml-parser": "^4.4.1", "gaxios": "^6.0.2", "google-auth-library": "^9.6.3", + "html-entities": "^2.5.2", "mime": "^3.0.0", - "mime-types": "^2.0.8", "p-limit": "^3.0.1", "retry-request": "^7.0.0", "teeny-request": "^9.0.0", @@ -1724,9 +1722,9 @@ } }, "node_modules/@google-cloud/storage/node_modules/fast-xml-parser": { - "version": "4.3.6", - "resolved": "https://registry.npmjs.org/fast-xml-parser/-/fast-xml-parser-4.3.6.tgz", - "integrity": "sha512-M2SovcRxD4+vC493Uc2GZVcZaj66CCJhWurC4viynVSTvrpErCShNcDz1lAho6n9REQKvL/ll4A4/fw6Y9z8nw==", + "version": "4.5.0", + "resolved": "https://registry.npmjs.org/fast-xml-parser/-/fast-xml-parser-4.5.0.tgz", + "integrity": "sha512-/PlTQCI96+fZMAOLMZK4CWG1ItCbfZ/0jx7UIJFChPNrx7tcEgerUgWbeieCM9MfHInUDyK8DWYZ+YrywDJuTg==", "funding": [ { "type": "github", @@ -1737,6 +1735,7 @@ "url": "https://paypal.me/naturalintelligence" } ], + "license": "MIT", "dependencies": { "strnum": "^1.0.5" }, @@ -3424,11 +3423,12 @@ } }, "node_modules/assemblyai": { - "version": "4.3.4", - "resolved": "https://registry.npmjs.org/assemblyai/-/assemblyai-4.3.4.tgz", - "integrity": "sha512-qsDkLjbAKqgVrpxTdoxF1b5dt1Txmdh49lmO/02MJzXFXzMFUqpsgE/hvQ8Hkfykx/aXuU7WcU2otA9tXKgTPA==", + "version": "4.6.0", + "resolved": "https://registry.npmjs.org/assemblyai/-/assemblyai-4.6.0.tgz", + "integrity": "sha512-K2EMoov3rm7DTI1xcMhvZeFQ4jyPK74aBEb6AYH6ItcSrA3ETnecxVQfwgPXlVjv4kZPxgs6fwvn+8GFTOXf/g==", + "license": "MIT", "dependencies": { - "ws": "^8.16.0" + "ws": "^8.17.1" }, "engines": { "node": ">=18" @@ -3907,17 +3907,6 @@ "integrity": "sha512-W9pAhw0ja1Edb5GVdIF1mjZw/ASI0AlShXM83UUGe2DVr5TdAPEA1OA8m/g8zWp9x6On7gqufY+FatDbC3MDQg==", "dev": true }, - "node_modules/compressible": { - "version": "2.0.18", - "resolved": "https://registry.npmjs.org/compressible/-/compressible-2.0.18.tgz", - "integrity": "sha512-AF3r7P5dWxL8MxyITRMlORQNaOA2IkAFaTr4k7BUumjPtRpGDTZpl0Pb1XCO6JeDCBdp126Cgs9sMxqSjgYyRg==", - "dependencies": { - "mime-db": ">= 1.43.0 < 2" - }, - "engines": { - "node": ">= 0.6" - } - }, "node_modules/concat-map": { "version": "0.0.1", "resolved": "https://registry.npmjs.org/concat-map/-/concat-map-0.0.1.tgz", @@ -3978,6 +3967,15 @@ "node": ">= 0.10" } }, + "node_modules/cross-fetch": { + "version": "3.1.8", + "resolved": "https://registry.npmjs.org/cross-fetch/-/cross-fetch-3.1.8.tgz", + "integrity": "sha512-cvA+JwZoU0Xq+h6WkMvAUqPEYy92Obet6UdKLfW60qn99ftItKjB5T+BkyWOFWe2pUyfQ+IJHmpOTznqk1M6Kg==", + "license": "MIT", + "dependencies": { + "node-fetch": "^2.6.12" + } + }, "node_modules/cross-spawn": { "version": "7.0.3", "resolved": "https://registry.npmjs.org/cross-spawn/-/cross-spawn-7.0.3.tgz", @@ -4067,6 +4065,12 @@ "url": "https://github.com/sponsors/ljharb" } }, + "node_modules/dayjs": { + "version": "1.11.13", + "resolved": "https://registry.npmjs.org/dayjs/-/dayjs-1.11.13.tgz", + "integrity": "sha512-oaMBel6gjolK862uaPQOVTA7q3TZhuSvuMQAAglQDOWYO9A91IrAOUJEyKVlqJlHE0vq5p5UXxzdPfMH/x6xNg==", + "license": "MIT" + }, "node_modules/debug": { "version": "4.3.4", "resolved": "https://registry.npmjs.org/debug/-/debug-4.3.4.tgz", @@ -4130,6 +4134,15 @@ "integrity": "sha512-oIPzksmTg4/MriiaYGO+okXDT7ztn/w3Eptv/+gSIdMdKsJo0u4CfYNFJPy+4SKMuCqGw2wxnA+URMg3t8a/bQ==", "dev": true }, + "node_modules/deepmerge": { + "version": "4.3.1", + "resolved": "https://registry.npmjs.org/deepmerge/-/deepmerge-4.3.1.tgz", + "integrity": "sha512-3sUqbMEc77XqpdNO7FRyRog+eW3ph+GYCbj+rK+uYyRMuwsVy0rMiVtPn+QJlKFvWP/1PYpapqYn0Me2knFn+A==", + "license": "MIT", + "engines": { + "node": ">=0.10.0" + } + }, "node_modules/default-require-extensions": { "version": "3.0.1", "resolved": "https://registry.npmjs.org/default-require-extensions/-/default-require-extensions-3.0.1.tgz", @@ -5593,6 +5606,22 @@ "node": ">=16.0.0" } }, + "node_modules/html-entities": { + "version": "2.5.2", + "resolved": "https://registry.npmjs.org/html-entities/-/html-entities-2.5.2.tgz", + "integrity": "sha512-K//PSRMQk4FZ78Kyau+mZurHn3FH0Vwr+H36eE0rPbeYkRRi9YxceYPhuN60UwWorxyKHhqoAJl2OFKa4BVtaA==", + "funding": [ + { + "type": "github", + "url": "https://github.com/sponsors/mdevils" + }, + { + "type": "patreon", + "url": "https://patreon.com/mdevils" + } + ], + "license": "MIT" + }, "node_modules/html-escaper": { "version": "2.0.2", "resolved": "https://registry.npmjs.org/html-escaper/-/html-escaper-2.0.2.tgz", @@ -9620,9 +9649,10 @@ } }, "node_modules/ws": { - "version": "8.16.0", - "resolved": "https://registry.npmjs.org/ws/-/ws-8.16.0.tgz", - "integrity": "sha512-HS0c//TP7Ina87TfiPUz1rQzMhHrl/SG2guqRcTOIUYD2q8uhUdNHZYJUaQ8aTGPzCh+c6oawMKW35nFl1dxyQ==", + "version": "8.18.0", + "resolved": "https://registry.npmjs.org/ws/-/ws-8.18.0.tgz", + "integrity": "sha512-8VbfWfHLbbwu3+N6OKsOMpBdT4kXPDDB9cJk2bJ6mh9ucxdlnNvH1e+roYkKmN9Nxw2yjz7VzeO9oOz2zJ04Pw==", + "license": "MIT", "engines": { "node": ">=10.0.0" }, diff --git a/package.json b/package.json index 2b14055..e3f71f3 100644 --- a/package.json +++ b/package.json @@ -22,9 +22,9 @@ "@aws-sdk/client-s3": "^3.550.0", "@aws-sdk/client-transcribe": "^3.549.0", "@azure/storage-blob": "^12.17.0", - "@deepgram/sdk": "^1.21.0", + "@deepgram/sdk": "^3.0.0", "@google-cloud/speech": "^6.5.0", - "@google-cloud/storage": "^7.9.0", + "@google-cloud/storage": "^7.12.1", "@jambonz/db-helpers": "^0.9.3", "@jambonz/lamejs": "^1.2.2", "@jambonz/mw-registrar": "^0.2.7", @@ -34,7 +34,7 @@ "@jambonz/verb-specifications": "^0.0.72", "@soniox/soniox-node": "^1.2.2", "argon2": "^0.40.1", - "assemblyai": "^4.3.4", + "assemblyai": "^4.6.0", "bent": "^7.3.12", "cors": "^2.8.5", "debug": "^4.3.4",