From 7011ea19ae4620dbcb3994677f978f547e9f8936 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 18 Jun 2021 23:39:43 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-POSTCSS-1255640 --- package-lock.json | 61 ++++++++++++++++++++++++++++++++++++++++------- package.json | 2 +- 2 files changed, 54 insertions(+), 9 deletions(-) diff --git a/package-lock.json b/package-lock.json index 66e1cbc..0f66505 100644 --- a/package-lock.json +++ b/package-lock.json @@ -5665,7 +5665,8 @@ "ansi-regex": { "version": "2.1.1", "bundled": true, - "dev": true + "dev": true, + "optional": true }, "aproba": { "version": "1.2.0", @@ -6080,7 +6081,8 @@ "safe-buffer": { "version": "5.1.1", "bundled": true, - "dev": true + "dev": true, + "optional": true }, "safer-buffer": { "version": "2.1.2", @@ -6136,6 +6138,7 @@ "version": "3.0.1", "bundled": true, "dev": true, + "optional": true, "requires": { "ansi-regex": "^2.0.0" } @@ -6179,12 +6182,14 @@ "wrappy": { "version": "1.0.2", "bundled": true, - "dev": true + "dev": true, + "optional": true }, "yallist": { "version": "3.0.2", "bundled": true, - "dev": true + "dev": true, + "optional": true } } }, @@ -9528,11 +9533,51 @@ } }, "postcss-aspect-ratio-mini": { - "version": "0.0.2", - "resolved": "http://registry.npm.taobao.org/postcss-aspect-ratio-mini/download/postcss-aspect-ratio-mini-0.0.2.tgz", - "integrity": "sha1-rqNemgVg0wbKpaYHEDgSzIMChaM=", + "version": "1.0.0", + "resolved": "https://registry.npmjs.org/postcss-aspect-ratio-mini/-/postcss-aspect-ratio-mini-1.0.0.tgz", + "integrity": "sha512-Kl8OwqlWs3bybJgNLPxE2AyhOP/vzizi2enNVLvCTzEew1P10Wk8DLrhYnuvbexAcIs02/0l5JuUVLtWznnxcw==", "requires": { - "postcss": "^6.0.0" + "postcss": "^7.0.6" + }, + "dependencies": { + "chalk": { + "version": "2.4.2", + "resolved": "https://registry.npmjs.org/chalk/-/chalk-2.4.2.tgz", + "integrity": "sha512-Mti+f9lpJNcwF4tWV8/OrTTtF1gZi+f8FqlyAdouralcFWFQWF2+NgCHShjkCb+IFBLq9buZwE1xckQU4peSuQ==", + "requires": { + "ansi-styles": "^3.2.1", + "escape-string-regexp": "^1.0.5", + "supports-color": "^5.3.0" + }, + "dependencies": { + "supports-color": { + "version": "5.5.0", + "resolved": "https://registry.npmjs.org/supports-color/-/supports-color-5.5.0.tgz", + "integrity": "sha512-QjVjwdXIt408MIiAqCX4oUKsgU2EqAGzs2Ppkm4aQYbjm+ZEWEcW4SfFNTr4uMNZma0ey4f5lgLrkB0aX0QMow==", + "requires": { + "has-flag": "^3.0.0" + } + } + } + }, + "postcss": { + "version": "7.0.36", + "resolved": "https://registry.npmjs.org/postcss/-/postcss-7.0.36.tgz", + "integrity": "sha512-BebJSIUMwJHRH0HAQoxN4u1CN86glsrwsW0q7T+/m44eXOUAxSNdHRkNZPYz5vVUbg17hFgOQDE7fZk7li3pZw==", + "requires": { + "chalk": "^2.4.2", + "source-map": "^0.6.1", + "supports-color": "^6.1.0" + } + }, + "supports-color": { + "version": "6.1.0", + "resolved": "https://registry.npmjs.org/supports-color/-/supports-color-6.1.0.tgz", + "integrity": "sha512-qe1jfm1Mg7Nq/NSh6XE24gPXROEVsWHxC1LIx//XNlD9iw7YZQGjZNjYN7xGaEG6iKdA8EtNFW6R0gjnVXp+wQ==", + "requires": { + "has-flag": "^3.0.0" + } + } } }, "postcss-attribute-case-insensitive": { diff --git a/package.json b/package.json index 874713c..c6231e8 100644 --- a/package.json +++ b/package.json @@ -13,7 +13,7 @@ "dependencies": { "cssnano": "^4.0.0", "normalize.css": "^8.0.0", - "postcss-aspect-ratio-mini": "0.0.2", + "postcss-aspect-ratio-mini": "1.0.0", "postcss-cssnext": "^3.1.0", "postcss-px-to-viewport": "0.0.3", "postcss-viewport-units": "^0.1.4",