From bd7efcd19301c13f50c0ec7c976b1b7f9409ebdd Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 6 Apr 2022 06:26:39 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-MOMENT-2440688 --- package-lock.json | 6 +++--- package.json | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/package-lock.json b/package-lock.json index 7adf3bf8..4d265b5e 100644 --- a/package-lock.json +++ b/package-lock.json @@ -1351,9 +1351,9 @@ } }, "moment": { - "version": "2.24.0", - "resolved": "https://registry.npmjs.org/moment/-/moment-2.24.0.tgz", - "integrity": "sha512-bV7f+6l2QigeBBZSM/6yTNq4P2fNpSWj/0e7jQcy87A8e7o2nAfP/34/2ky5Vw4B9S446EtIhodAzkFCcR4dQg==" + "version": "2.29.2", + "resolved": "https://registry.npmjs.org/moment/-/moment-2.29.2.tgz", + "integrity": "sha512-UgzG4rvxYpN15jgCmVJwac49h9ly9NurikMWGPdVxm8GZD6XjkKPxDTjQQ43gtGgnV3X0cAyWDdP2Wexoquifg==" }, "ms": { "version": "2.1.1", diff --git a/package.json b/package.json index fdd76dbe..f9e099f8 100644 --- a/package.json +++ b/package.json @@ -20,7 +20,7 @@ "feed-read": "^0.0.1", "fs-extra": "^7.0.1", "html2plaintext": "^2.1.0", - "moment": "^2.22.2", + "moment": "^2.29.2", "node-fetch": "^2.6.1", "pretty-ms": "^3.0.0", "striptags": "^3.1.1",