dependencies: update nyc, 12.0.1 -> 14.1.0

mirror of https://github.com/ether/etherpad-lite.git synced 2026-05-11 23:38:04 +02:00

This is just a dev dependency, so no real risks, but it's better not to scare
users.

Reported vulnerability before this change:

$ npm audit
                       === npm audit security report ===

# Run  npm install --save-dev nyc@14.1.0  to resolve 1 vulnerability
SEMVER WARNING: Recommended action is a potentially breaking change
┌───────────────┬──────────────────────────────────────────────────────────────┐
│ High          │ Prototype Pollution                                          │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Package       │ handlebars                                                   │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Dependency of │ nyc [dev]                                                    │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Path          │ nyc > istanbul-reports > handlebars                          │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ More info     │ https://nodesecurity.io/advisories/755                       │
└───────────────┴──────────────────────────────────────────────────────────────┘

This commit is contained in:

muxator

2019-05-03 23:27:35 +02:00

parent a7220558d2

commit 90b288b576

1 changed files with 1 additions and 1 deletions

									
										2

src/package.json
									
											View File
											
				@ -69,7 +69,7 @@

				  },

				  "devDependencies": {

				    "mocha": "5.2.0",

				    "nyc": "^12.0.2",

				    "nyc": "14.1.0",

				    "supertest": "3.0.0",

				    "wd": "1.11.1"

				  },

dependencies: update nyc, 12.0.1 -> 14.1.0

2 src/package.json Unescape Escape View File

2

src/package.json

View File