Merge pull request #276 from ImagingDataCommons/fix-vulnerabilities

fix: fast-xml-parser vulnerability
ImagingDataCommons · Jul 30, 2024 · 278de3a · 278de3a
2 parents 0d6010a + 94b2a52
commit 278de3a
Show file tree

Hide file tree

Showing 2 changed files with 5 additions and 5 deletions.
diff --git a/package.json b/package.json
@@ -167,7 +167,7 @@
     "minimist": "1.2.8",
     "**/node-gyp": "8.4.1",
     "**/@babel/runtime": "7.5.5",
-    "fast-xml-parser": "4.2.4",
+    "fast-xml-parser": "4.4.1",
     "xlsx": "https://cdn.sheetjs.com/xlsx-0.20.2/xlsx-0.20.2.tgz",
     "lodash.pick": "https://github.com/lodash/lodash/archive/refs/tags/4.17.21.tar.gz",
     "lodash.template": "https://github.com/lodash/lodash/archive/refs/tags/4.17.21.tar.gz",

diff --git a/yarn.lock b/yarn.lock
@@ -7658,10 +7658,10 @@ [email protected]:
   dependencies:
     punycode "^1.3.2"
 
-fast-xml-parser@4.2.4, fast-xml-parser@^3.19.0:
-  version "4.2.4"
-  resolved "https://registry.yarnpkg.com/fast-xml-parser/-/fast-xml-parser-4.2.4.tgz#6e846ede1e56ad9e5ef07d8720809edf0ed07e9b"
-  integrity sha512-fbfMDvgBNIdDJLdLOwacjFAPYt67tr31H9ZhWSm45CDAxvd0I6WTlSOUo7K2P/K5sA5JgMKG64PI3DMcaFdWpQ==
+fast-xml-parser@4.4.1, fast-xml-parser@^3.19.0:
+  version "4.4.1"
+  resolved "https://registry.yarnpkg.com/fast-xml-parser/-/fast-xml-parser-4.4.1.tgz#86dbf3f18edf8739326447bcaac31b4ae7f6514f"
+  integrity sha512-xkjOecfnKGkSsOwtZ5Pz7Us/T6mrbPQrq0nh+aCO5V9nk5NLWmasAHumTKjiPJPWANe+kAZ84Jc8ooJkzZ88Sw==
   dependencies:
     strnum "^1.0.5"