From cd0c3abe4c637241af5de85f2db7588f75309f2d Mon Sep 17 00:00:00 2001 From: Gene Hazan Date: Mon, 26 Mar 2018 10:56:25 -0700 Subject: [PATCH] Upgrade vulnerable moment dependency --- package-lock.json | 8 ++++---- package.json | 12 ++++++------ 2 files changed, 10 insertions(+), 10 deletions(-) diff --git a/package-lock.json b/package-lock.json index a376252..f8e6f07 100644 --- a/package-lock.json +++ b/package-lock.json @@ -2523,9 +2523,9 @@ } }, "moment": { - "version": "2.15.2", - "resolved": "https://registry.npmjs.org/moment/-/moment-2.15.2.tgz", - "integrity": "sha1-G/3t9qbjRfMi/pVtXfW9CKjOhNw=" + "version": "2.21.0", + "resolved": "https://registry.npmjs.org/moment/-/moment-2.21.0.tgz", + "integrity": "sha512-TCZ36BjURTeFTM/CwRcViQlfkMvL1/vFISuNLO5GkcVm1+QHfbSiNqZuWeMFjj1/3+uAjXswgRk30j1kkLYJBQ==" }, "mongodb": { "version": "2.2.11", @@ -3097,7 +3097,7 @@ "requires": { "jscs": "2.11.0", "lodash": "3.10.1", - "moment": "2.15.2", + "moment": "2.21.0", "q": "1.4.1", "redis": "2.6.3" }, diff --git a/package.json b/package.json index 9e3d790..05d288c 100644 --- a/package.json +++ b/package.json @@ -25,12 +25,6 @@ "url": "https://github.com/microsoft/ghcrawler" }, "dependencies": { - "extend": "3.0.0", - "moment": "2.15.2", - "node-uuid": "^1.4.7", - "parse-link-header": "^0.4.1", - "q": "1.4.1", - "qlimit": "^0.1.1", "amqp10": "noodlefrenzy/node-amqp10#issue295", "amqplib": "^0.5.1", "applicationinsights": "^0.17.0", @@ -43,14 +37,20 @@ "express": "^4.14.0", "express-init": "^1.1.0", "express-joi": "^0.3.1", + "extend": "3.0.0", "ghrequestor": "^0.1.6", "htmlencode": "0.0.4", "ip": "^1.1.4", "memory-cache": "^0.1.6", + "moment": "^2.21.0", "mongodb": "2.2.11", "morgan": "^1.7.0", + "node-uuid": "^1.4.7", "painless-config": "^0.1.0", + "parse-link-header": "^0.4.1", "promise-retry": "1.1.1", + "q": "1.4.1", + "qlimit": "^0.1.1", "redis": "2.6.3", "redis-metrics": "^0.4.1", "redis-rate-limiter": "jeffmcaffer/redis-rate-limiter",