diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml index 65ea4b191d..093dcba85f 100644 --- a/pnpm-lock.yaml +++ b/pnpm-lock.yaml @@ -659,8 +659,8 @@ importers: specifier: ^1.3.0 version: 1.3.2 js-yaml: - specifier: ^4.1.0 - version: 4.1.1 + specifier: ^4.2.0 + version: 4.3.0 p-queue: specifier: ^8.1.0 version: 8.1.0 @@ -1346,8 +1346,8 @@ importers: specifier: ^5.8.0 version: 5.8.0 js-yaml: - specifier: ^4.1.1 - version: 4.1.1 + specifier: ^4.2.0 + version: 4.3.0 jsonwebtoken: specifier: ^9.0.0 version: 9.0.3 @@ -1722,8 +1722,8 @@ importers: specifier: ^1.6.8 version: 1.8.1 js-yaml: - specifier: ^4.1.1 - version: 4.1.1 + specifier: ^4.2.0 + version: 4.3.0 moment: specifier: ~2.29.4 version: 2.29.4 @@ -4839,6 +4839,9 @@ packages: '@types/estree@1.0.8': resolution: {integrity: sha512-dWHzHa2WqEXI/O1E9OjrocMTKJl2mSrEolh1Iomrv6U+JuNwaHXsXx9bLu5gG7BUWFIN0skIQJQ/L1rIex4X6w==} + '@types/estree@1.0.9': + resolution: {integrity: sha512-GhdPgy1el4/ImP05X05Uw4cw2/M93BCUmnEvWZNStlCzEKME4Fkk+YpoA5OiHNQmoS7Cafb8Xa3Pya8m1Qrzeg==} + '@types/express-serve-static-core@4.19.0': resolution: {integrity: sha512-bGyep3JqPCRry1wq+O5n7oiBgGWmeIJXPjXXCo8EK0u8duZGSYar7cGqd3ML2JUsLGeB7fmc06KYo9fLGWqPvQ==} @@ -6992,7 +6995,7 @@ packages: git-raw-commits@4.0.0: resolution: {integrity: sha512-ICsMM1Wk8xSGMowkOmPrzo2Fgmfo4bMHLNX6ytHjajRJUqvHOw/TFapQ+QG75c3X/tTDDhOSRPGC52dDbNM8FQ==} engines: {node: '>=16'} - deprecated: This package is no longer maintained. For the JavaScript API, please use @conventional-changelog/git-client instead. + deprecated: Deprecated and no longer maintained. Use @conventional-changelog/git-client instead. hasBin: true glob-parent@5.1.2: @@ -7618,14 +7621,18 @@ packages: js-tokens@9.0.1: resolution: {integrity: sha512-mxa9E9ITFOt0ban3j6L5MpjwegGz6lBQmM1IJkWeBZGcMxto50+eWdjC/52xDbS2vy0k7vIMK0Fe2wfL9OQSpQ==} - js-yaml@3.14.2: - resolution: {integrity: sha512-PMSmkqxr106Xa156c2M265Z+FTrPl+oxd/rgOQy2tijQeK5TxQ43psO1ZCwhVOSdnn+RzkzlRz/eY4BgJBYVpg==} + js-yaml@3.15.0: + resolution: {integrity: sha512-ttBQIIQPDeLjpPOohtUdXuXUVoA2uIB6fEH9HyJ7234s5mBJ5wTx20njxplLZQgLaOfpmPQA7X2t5AX6tIPbog==} hasBin: true js-yaml@4.1.1: resolution: {integrity: sha512-qQKT4zQxXl8lLwBtHMWwaTcGfFOZviOJet3Oy/xmGk2gZH677CJM9EvtfdSkgWcATZhj/55JZ0rmy3myCT5lsA==} hasBin: true + js-yaml@4.3.0: + resolution: {integrity: sha512-1td788aAnnZ5qs7V2QIRl1owjtYpbKt749Y3xauqQgwIIGF/xXWz1wMTEBx5O3LK3lXLVuqXPdPxj2BoFHaW9Q==} + hasBin: true + jsesc@2.5.2: resolution: {integrity: sha512-OYu7XEzjkCQ3C5Ps3QIZsQfNpqoJyZZA99wd9aWd05NCtC5pWOkShK2mkL6HXQR6/Cy2lbNdPlZBpuQHXE63gA==} engines: {node: '>=4'} @@ -8175,8 +8182,8 @@ packages: engines: {node: '>= 4.4.x'} hasBin: true - needle@https://codeload.github.com/clearbit/needle/tar.gz/84d28b5f2c3916db1e7eb84aeaa9d976cc40054b: - resolution: {tarball: https://codeload.github.com/clearbit/needle/tar.gz/84d28b5f2c3916db1e7eb84aeaa9d976cc40054b} + needle@git+https://git@github.com:clearbit/needle.git#84d28b5f2c3916db1e7eb84aeaa9d976cc40054b: + resolution: {commit: 84d28b5f2c3916db1e7eb84aeaa9d976cc40054b, repo: git@github.com:clearbit/needle.git, type: git} version: 0.7.10 engines: {node: '>= 0.10.x'} hasBin: true @@ -10480,8 +10487,8 @@ snapshots: dependencies: '@aws-crypto/sha256-browser': 3.0.0 '@aws-crypto/sha256-js': 3.0.0 - '@aws-sdk/client-sso-oidc': 3.572.0(@aws-sdk/client-sts@3.572.0) - '@aws-sdk/client-sts': 3.572.0 + '@aws-sdk/client-sso-oidc': 3.572.0 + '@aws-sdk/client-sts': 3.572.0(@aws-sdk/client-sso-oidc@3.572.0) '@aws-sdk/core': 3.572.0 '@aws-sdk/credential-provider-node': 3.572.0(@aws-sdk/client-sso-oidc@3.572.0)(@aws-sdk/client-sts@3.572.0) '@aws-sdk/middleware-host-header': 3.567.0 @@ -10675,11 +10682,11 @@ snapshots: transitivePeerDependencies: - aws-crt - '@aws-sdk/client-sso-oidc@3.572.0(@aws-sdk/client-sts@3.572.0)': + '@aws-sdk/client-sso-oidc@3.572.0': dependencies: '@aws-crypto/sha256-browser': 3.0.0 '@aws-crypto/sha256-js': 3.0.0 - '@aws-sdk/client-sts': 3.572.0 + '@aws-sdk/client-sts': 3.572.0(@aws-sdk/client-sso-oidc@3.572.0) '@aws-sdk/core': 3.572.0 '@aws-sdk/credential-provider-node': 3.572.0(@aws-sdk/client-sso-oidc@3.572.0)(@aws-sdk/client-sts@3.572.0) '@aws-sdk/middleware-host-header': 3.567.0 @@ -10718,7 +10725,6 @@ snapshots: '@smithy/util-utf8': 2.3.0 tslib: 2.6.2 transitivePeerDependencies: - - '@aws-sdk/client-sts' - aws-crt '@aws-sdk/client-sso@3.556.0': @@ -10894,11 +10900,11 @@ snapshots: transitivePeerDependencies: - aws-crt - '@aws-sdk/client-sts@3.572.0': + '@aws-sdk/client-sts@3.572.0(@aws-sdk/client-sso-oidc@3.572.0)': dependencies: '@aws-crypto/sha256-browser': 3.0.0 '@aws-crypto/sha256-js': 3.0.0 - '@aws-sdk/client-sso-oidc': 3.572.0(@aws-sdk/client-sts@3.572.0) + '@aws-sdk/client-sso-oidc': 3.572.0 '@aws-sdk/core': 3.572.0 '@aws-sdk/credential-provider-node': 3.572.0(@aws-sdk/client-sso-oidc@3.572.0)(@aws-sdk/client-sts@3.572.0) '@aws-sdk/middleware-host-header': 3.567.0 @@ -10937,6 +10943,7 @@ snapshots: '@smithy/util-utf8': 2.3.0 tslib: 2.6.2 transitivePeerDependencies: + - '@aws-sdk/client-sso-oidc' - aws-crt '@aws-sdk/client-sts@3.985.0': @@ -11102,7 +11109,7 @@ snapshots: '@aws-sdk/credential-provider-ini@3.572.0(@aws-sdk/client-sso-oidc@3.572.0)(@aws-sdk/client-sts@3.572.0)': dependencies: - '@aws-sdk/client-sts': 3.572.0 + '@aws-sdk/client-sts': 3.572.0(@aws-sdk/client-sso-oidc@3.572.0) '@aws-sdk/credential-provider-env': 3.568.0 '@aws-sdk/credential-provider-process': 3.572.0 '@aws-sdk/credential-provider-sso': 3.572.0(@aws-sdk/client-sso-oidc@3.572.0) @@ -11279,7 +11286,7 @@ snapshots: '@aws-sdk/credential-provider-web-identity@3.568.0(@aws-sdk/client-sts@3.572.0)': dependencies: - '@aws-sdk/client-sts': 3.572.0 + '@aws-sdk/client-sts': 3.572.0(@aws-sdk/client-sso-oidc@3.572.0) '@aws-sdk/types': 3.567.0 '@smithy/property-provider': 2.2.0 '@smithy/types': 2.12.0 @@ -11591,7 +11598,7 @@ snapshots: '@aws-sdk/token-providers@3.572.0(@aws-sdk/client-sso-oidc@3.572.0)': dependencies: - '@aws-sdk/client-sso-oidc': 3.572.0(@aws-sdk/client-sts@3.572.0) + '@aws-sdk/client-sso-oidc': 3.572.0 '@aws-sdk/types': 3.567.0 '@smithy/property-provider': 2.2.0 '@smithy/shared-ini-file-loader': 2.4.0 @@ -12279,7 +12286,7 @@ snapshots: globals: 13.24.0 ignore: 5.3.1 import-fresh: 3.3.0 - js-yaml: 4.1.1 + js-yaml: 4.3.0 minimatch: 3.1.2 strip-json-comments: 3.1.1 transitivePeerDependencies: @@ -12920,7 +12927,7 @@ snapshots: '@jsdevtools/ono': 7.1.3 '@types/json-schema': 7.0.15 call-me-maybe: 1.0.2 - js-yaml: 4.1.1 + js-yaml: 4.3.0 '@readme/openapi-parser@2.5.1(openapi-types@12.1.3)': dependencies: @@ -13973,12 +13980,15 @@ snapshots: '@types/eslint@9.6.1': dependencies: - '@types/estree': 1.0.8 + '@types/estree': 1.0.9 '@types/json-schema': 7.0.15 optional: true '@types/estree@1.0.8': {} + '@types/estree@1.0.9': + optional: true + '@types/express-serve-static-core@4.19.0': dependencies: '@types/node': 20.12.7 @@ -15063,7 +15073,7 @@ snapshots: bluebird: 2.11.0 create-error: 0.3.1 lodash: 4.17.21 - needle: https://codeload.github.com/clearbit/needle/tar.gz/84d28b5f2c3916db1e7eb84aeaa9d976cc40054b + needle: git+https://git@github.com:clearbit/needle.git#84d28b5f2c3916db1e7eb84aeaa9d976cc40054b cli-boxes@2.2.1: {} @@ -15310,7 +15320,7 @@ snapshots: dependencies: env-paths: 2.2.1 import-fresh: 3.3.0 - js-yaml: 4.1.1 + js-yaml: 4.3.0 parse-json: 5.2.0 optionalDependencies: typescript: 5.6.3 @@ -16807,7 +16817,7 @@ snapshots: gray-matter@4.0.3: dependencies: - js-yaml: 3.14.2 + js-yaml: 3.15.0 kind-of: 6.0.3 section-matter: 1.0.0 strip-bom-string: 1.0.0 @@ -17276,7 +17286,7 @@ snapshots: js-tokens@9.0.1: {} - js-yaml@3.14.2: + js-yaml@3.15.0: dependencies: argparse: 1.0.10 esprima: 4.0.1 @@ -17285,6 +17295,10 @@ snapshots: dependencies: argparse: 2.0.1 + js-yaml@4.3.0: + dependencies: + argparse: 2.0.1 + jsesc@2.5.2: {} json-bigint@1.0.0: @@ -17801,7 +17815,7 @@ snapshots: transitivePeerDependencies: - supports-color - needle@https://codeload.github.com/clearbit/needle/tar.gz/84d28b5f2c3916db1e7eb84aeaa9d976cc40054b: + needle@git+https://git@github.com:clearbit/needle.git#84d28b5f2c3916db1e7eb84aeaa9d976cc40054b: dependencies: iconv-lite: 0.4.24 @@ -17989,7 +18003,7 @@ snapshots: oas-normalize@6.0.0(encoding@0.1.13)(openapi-types@12.1.3): dependencies: '@readme/openapi-parser': 2.5.1(openapi-types@12.1.3) - js-yaml: 4.1.1 + js-yaml: 4.3.0 node-fetch: 2.7.0(encoding@0.1.13) swagger2openapi: 7.0.8(encoding@0.1.13) transitivePeerDependencies: diff --git a/services/apps/cron_service/package.json b/services/apps/cron_service/package.json index 1077a2e0b1..1f7c49b115 100644 --- a/services/apps/cron_service/package.json +++ b/services/apps/cron_service/package.json @@ -28,7 +28,7 @@ "@crowd/telemetry": "workspace:*", "@crowd/redis": "workspace:*", "@aws-sdk/client-s3": "^3.700.0", - "js-yaml": "^4.1.0", + "js-yaml": "^4.2.0", "@dsnp/parquetjs": "^1.7.0", "cron": "^2.1.0", "cron-time-generator": "^1.3.0", diff --git a/services/apps/packages_worker/package.json b/services/apps/packages_worker/package.json index 1d3f345578..3a3fbc1c98 100644 --- a/services/apps/packages_worker/package.json +++ b/services/apps/packages_worker/package.json @@ -75,7 +75,7 @@ "@temporalio/activity": "~1.17.2", "@temporalio/client": "~1.17.2", "@temporalio/workflow": "~1.17.2", - "js-yaml": "^4.1.1", + "js-yaml": "^4.2.0", "jsonwebtoken": "^9.0.0", "semver": "^7.6.0", "axios": "^1.16.1", diff --git a/services/apps/security_best_practices_worker/package.json b/services/apps/security_best_practices_worker/package.json index cbe29e4051..7d1595c72b 100644 --- a/services/apps/security_best_practices_worker/package.json +++ b/services/apps/security_best_practices_worker/package.json @@ -24,7 +24,7 @@ "@temporalio/client": "~1.17.2", "@temporalio/workflow": "~1.17.2", "axios": "^1.6.8", - "js-yaml": "^4.1.1", + "js-yaml": "^4.2.0", "moment": "~2.29.4", "tsx": "^4.7.1", "typescript": "^5.6.3"