From fcdd86dfdf43fd2c2ad93b71741b421e4f76e232 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sat, 7 Feb 2026 18:48:14 +0000 Subject: [PATCH] fix: package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://dev.snyk.io/vuln/npm:negotiator:20160616 - https://dev.snyk.io/vuln/npm:qs:20140806 - https://dev.snyk.io/vuln/npm:qs:20170213 - https://dev.snyk.io/vuln/npm:tunnel-agent:20170305 - https://dev.snyk.io/vuln/npm:http-signature:20150122 - https://dev.snyk.io/vuln/npm:qs:20140806-1 - https://dev.snyk.io/vuln/SNYK-JS-BUNYAN-573166 - https://dev.snyk.io/vuln/npm:semver:20150403 - https://dev.snyk.io/vuln/npm:node-uuid:20160328 - https://dev.snyk.io/vuln/npm:mime:20170907 --- package.json | 16 ++++++++-------- 1 file changed, 8 insertions(+), 8 deletions(-) diff --git a/package.json b/package.json index dca19b106..a78dfe862 100644 --- a/package.json +++ b/package.json @@ -49,22 +49,22 @@ "dependencies": { "assert-plus": "0.1.4", "backoff": "2.3.0", - "bunyan": "0.22.0", + "bunyan": "1.8.13", "csv": "0.3.6", "deep-equal": "0.0.0", "escape-regexp-component": "1.0.2", "formidable": "1.0.14", - "http-signature": "0.10.0", + "http-signature": "1.0.0", "keep-alive-agent": "0.0.1", "lru-cache": "2.3.1", - "mime": "1.2.11", - "negotiator": "0.3.0", - "node-uuid": "1.4.0", + "mime": "1.4.1", + "negotiator": "0.6.1", + "node-uuid": "1.4.8", "once": "1.3.0", - "qs": "0.6.5", - "semver": "2.2.1", + "qs": "6.0.4", + "semver": "4.3.2", "spdy": "1.14.12", - "tunnel-agent": "0.3.0", + "tunnel-agent": "0.6.0", "verror": "1.3.6" }, "optionalDependencies": {