From f419db855d0701c52a4b9a3c9064aab000bcd451 Mon Sep 17 00:00:00 2001 From: Fathy Boundjadj Date: Mon, 30 Mar 2020 18:47:31 +0200 Subject: [PATCH 1/2] Upgrade extend to ^3.0.2 Snyk vulnerability: https://app.snyk.io/org/segment-pro/project/fdd0c84c-35c2-465e-83f3-9770fd4bc1a1/pr-check/04f9695e-9ff0-40de-8bc3-ab9ef9ebdf7b?refs=bb53041f707d3fb84318776053efc03b075180f7..aa10d2c750456e3a57a642b92a861fda4a913387 --- package.json | 2 +- yarn.lock | 7 ++++++- 2 files changed, 7 insertions(+), 2 deletions(-) diff --git a/package.json b/package.json index 3cbcb26..382c57a 100644 --- a/package.json +++ b/package.json @@ -35,7 +35,7 @@ "component-emitter": "^1.2.0", "debug": "^2.2.0", "domify": "^1.4.0", - "extend": "3.0.1", + "extend": "^3.0.2", "is": "^3.1.0", "load-iframe": "^1.0.0", "next-tick": "^0.2.2", diff --git a/yarn.lock b/yarn.lock index d107bc3..7513757 100644 --- a/yarn.lock +++ b/yarn.lock @@ -1572,10 +1572,15 @@ expand-range@^1.8.1: dependencies: fill-range "^2.1.0" -extend@3, extend@3.0.1, extend@^3.0.0, extend@~3.0.0, extend@~3.0.1: +extend@3, extend@^3.0.0, extend@~3.0.0, extend@~3.0.1: version "3.0.1" resolved "https://registry.yarnpkg.com/extend/-/extend-3.0.1.tgz#a755ea7bc1adfcc5a31ce7e762dbaadc5e636444" +extend@^3.0.2: + version "3.0.2" + resolved "https://registry.yarnpkg.com/extend/-/extend-3.0.2.tgz#f8b1136b4071fbd8eb140aff858b1019ec2915fa" + integrity sha512-fjquC59cD7CyW6urNXK0FBufkZcoiGG80wTuPujX590cB5Ttln20E2UB4S/WARVqhXffZl2LNgS+gQdPIIim/g== + extglob@^0.3.1: version "0.3.2" resolved "https://registry.yarnpkg.com/extglob/-/extglob-0.3.2.tgz#2e18ff3d2f49ab2765cec9023f011daa8d8349a1" From be4afc77a48b4777ee9238f3363b14464390d94d Mon Sep 17 00:00:00 2001 From: Fathy Boundjadj Date: Mon, 30 Mar 2020 20:34:00 +0200 Subject: [PATCH 2/2] Upgrade CI to Node 12 --- .circleci/config.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.circleci/config.yml b/.circleci/config.yml index edc0625..11b6c5e 100644 --- a/.circleci/config.yml +++ b/.circleci/config.yml @@ -2,7 +2,7 @@ version: 2 jobs: test: docker: - - image: circleci/node:4-browsers + - image: circleci/node:12-browsers steps: - checkout - restore_cache: @@ -29,7 +29,7 @@ jobs: - node_modules publish: docker: - - image: circleci/node:4-browsers + - image: circleci/node:12-browsers steps: - checkout - run: