From 003757bb28d7c5a7c1684e8fa13f77ba35aba614 Mon Sep 17 00:00:00 2001 From: Jane Jeon Date: Fri, 24 Sep 2021 21:30:01 -0400 Subject: [PATCH 1/2] bump got-ssrf version for better protection --- package-lock.json | 36 ++++++++++++++++-------------------- package.json | 4 ++-- 2 files changed, 18 insertions(+), 22 deletions(-) diff --git a/package-lock.json b/package-lock.json index 8597c8a..2454a76 100644 --- a/package-lock.json +++ b/package-lock.json @@ -14,7 +14,7 @@ "debug": "^4.3.2", "got": "^12.0.0-beta.4", "got-scraping": "^3.2.3", - "got-ssrf": "^1.1.0", + "got-ssrf": "^1.2.0", "ipaddr.js": "^2.0.1", "leven": "^4.0.0", "lodash": "^4.17.21", @@ -38,7 +38,7 @@ "eslint-config-standard": "^16.0.3", "eslint-plugin-import": "^2.24.2", "eslint-plugin-node": "^11.1.0", - "eslint-plugin-prettier": "^3.1.4", + "eslint-plugin-prettier": "^4", "eslint-plugin-promise": "^5.1.0", "husky": "^4.3.8", "jest": "^27.2.1", @@ -2961,9 +2961,9 @@ } }, "node_modules/eslint-plugin-prettier": { - "version": "3.4.0", - "resolved": "https://registry.npmjs.org/eslint-plugin-prettier/-/eslint-plugin-prettier-3.4.0.tgz", - "integrity": "sha512-UDK6rJT6INSfcOo545jiaOwB701uAIt2/dR7WnFQoGCVl1/EMqdANBmwUaqqQ45aXprsTGzSa39LI1PyuRBxxw==", + "version": "4.0.0", + "resolved": "https://registry.npmjs.org/eslint-plugin-prettier/-/eslint-plugin-prettier-4.0.0.tgz", + "integrity": "sha512-98MqmCJ7vJodoQK359bqQWaxOE0CS8paAz/GgjaZLyex4TTk3g9HugoO89EqWCrFiOqn9EVvcoo7gZzONCWVwQ==", "dev": true, "dependencies": { "prettier-linter-helpers": "^1.0.0" @@ -2972,8 +2972,8 @@ "node": ">=6.0.0" }, "peerDependencies": { - "eslint": ">=5.0.0", - "prettier": ">=1.13.0" + "eslint": ">=7.28.0", + "prettier": ">=2.0.0" }, "peerDependenciesMeta": { "eslint-config-prettier": { @@ -3662,17 +3662,13 @@ "integrity": "sha512-77EbyPPpMz+FRFRuAFlWMtmgUWGe9UOG2Z25NqCwiIjRhOf5iKGuzSe5P2w1laq+FkRy4p+PCuVkJSGkzTEKVw==" }, "node_modules/got-ssrf": { - "version": "1.1.0", - "resolved": "https://registry.npmjs.org/got-ssrf/-/got-ssrf-1.1.0.tgz", - "integrity": "sha512-XsoB8S+0FqrnFGLu8M4HMZa3T+spFpVPQ0A/MDIl2U6KomrYbYUTWou3lGa7fvniqcP6R9dObkFZeAA5so8fNA==", + "version": "1.2.0", + "resolved": "https://registry.npmjs.org/got-ssrf/-/got-ssrf-1.2.0.tgz", + "integrity": "sha512-P1VabgAvSItdAEf09W444t4tMYD9gtiwe7yq5W0EX/VR7n8xJJc6z5TkefptjZaWdwxvFy693QMKoMxIaeDmBw==", "dependencies": { "debug": "^4.3.2", "got": "^12.0.0-beta.4", "ipaddr.js": "^2.0.1" - }, - "engines": { - "node": ">=15", - "npm": ">=7" } }, "node_modules/graceful-fs": { @@ -10479,9 +10475,9 @@ } }, "eslint-plugin-prettier": { - "version": "3.4.0", - "resolved": "https://registry.npmjs.org/eslint-plugin-prettier/-/eslint-plugin-prettier-3.4.0.tgz", - "integrity": "sha512-UDK6rJT6INSfcOo545jiaOwB701uAIt2/dR7WnFQoGCVl1/EMqdANBmwUaqqQ45aXprsTGzSa39LI1PyuRBxxw==", + "version": "4.0.0", + "resolved": "https://registry.npmjs.org/eslint-plugin-prettier/-/eslint-plugin-prettier-4.0.0.tgz", + "integrity": "sha512-98MqmCJ7vJodoQK359bqQWaxOE0CS8paAz/GgjaZLyex4TTk3g9HugoO89EqWCrFiOqn9EVvcoo7gZzONCWVwQ==", "dev": true, "requires": { "prettier-linter-helpers": "^1.0.0" @@ -11006,9 +11002,9 @@ } }, "got-ssrf": { - "version": "1.1.0", - "resolved": "https://registry.npmjs.org/got-ssrf/-/got-ssrf-1.1.0.tgz", - "integrity": "sha512-XsoB8S+0FqrnFGLu8M4HMZa3T+spFpVPQ0A/MDIl2U6KomrYbYUTWou3lGa7fvniqcP6R9dObkFZeAA5so8fNA==", + "version": "1.2.0", + "resolved": "https://registry.npmjs.org/got-ssrf/-/got-ssrf-1.2.0.tgz", + "integrity": "sha512-P1VabgAvSItdAEf09W444t4tMYD9gtiwe7yq5W0EX/VR7n8xJJc6z5TkefptjZaWdwxvFy693QMKoMxIaeDmBw==", "requires": { "debug": "^4.3.2", "got": "^12.0.0-beta.4", diff --git a/package.json b/package.json index e566e2b..96d540d 100644 --- a/package.json +++ b/package.json @@ -21,7 +21,7 @@ "debug": "^4.3.2", "got": "^12.0.0-beta.4", "got-scraping": "^3.2.3", - "got-ssrf": "^1.1.0", + "got-ssrf": "^1.2.0", "ipaddr.js": "^2.0.1", "leven": "^4.0.0", "lodash": "^4.17.21", @@ -42,7 +42,7 @@ "eslint-config-standard": "^16.0.3", "eslint-plugin-import": "^2.24.2", "eslint-plugin-node": "^11.1.0", - "eslint-plugin-prettier": "^3.1.4", + "eslint-plugin-prettier": "^4", "eslint-plugin-promise": "^5.1.0", "husky": "^4.3.8", "jest": "^27.2.1", From c8a6abf8eabd6580d0678c13ec369424d361b741 Mon Sep 17 00:00:00 2001 From: Jane Jeon Date: Fri, 24 Sep 2021 21:30:26 -0400 Subject: [PATCH 2/2] 1.4.2 --- package-lock.json | 4 ++-- package.json | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/package-lock.json b/package-lock.json index 2454a76..c1ccc58 100644 --- a/package-lock.json +++ b/package-lock.json @@ -1,12 +1,12 @@ { "name": "normalize-url-plus", - "version": "1.4.1", + "version": "1.4.2", "lockfileVersion": 2, "requires": true, "packages": { "": { "name": "normalize-url-plus", - "version": "1.4.1", + "version": "1.4.2", "license": "LGPL-3.0", "dependencies": { "cacheable-lookup": "^6.0.1", diff --git a/package.json b/package.json index 96d540d..d7844ca 100644 --- a/package.json +++ b/package.json @@ -1,6 +1,6 @@ { "name": "normalize-url-plus", - "version": "1.4.1", + "version": "1.4.2", "description": "normalize-url plus additional features to supercharge link normalization!", "exports": "./index.js", "type": "module",