From c9e5bbc0fbef55c303224bf76bccf002a1335bef Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 1 Apr 2022 09:55:51 +0000 Subject: [PATCH] feat: upgrade helmet from 4.6.0 to 5.0.2 Snyk has created this PR to upgrade helmet from 4.6.0 to 5.0.2. See this package in npm: See this project in Snyk: https://app.snyk.io/org/killshot13/project/e31ae27e-b887-4740-a7d4-133e0261876c?utm_source=github&utm_medium=referral&page=upgrade-pr --- package.json | 2 +- yarn.lock | 8 ++++---- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/package.json b/package.json index b1f9799..c49447f 100644 --- a/package.json +++ b/package.json @@ -9,7 +9,7 @@ "dependencies": { "express": "4.17.1", "express-rate-limit": "5.3.0", - "helmet": "^4.6.0", + "helmet": "^5.0.2", "network-error-logging": "^1.2.1", "report-to": "^1.1.0" }, diff --git a/yarn.lock b/yarn.lock index 4acb28d..030954e 100644 --- a/yarn.lock +++ b/yarn.lock @@ -668,10 +668,10 @@ has-values@^1.0.0: is-number "^3.0.0" kind-of "^4.0.0" -helmet@^4.6.0: - version "4.6.0" - resolved "https://registry.yarnpkg.com/helmet/-/helmet-4.6.0.tgz#579971196ba93c5978eb019e4e8ec0e50076b4df" - integrity sha512-HVqALKZlR95ROkrnesdhbbZJFi/rIVSoNq6f3jA/9u6MIbTsPh3xZwihjeI5+DO/2sOV6HMHooXcEOuwskHpTg== +helmet@^5.0.2: + version "5.0.2" + resolved "https://registry.yarnpkg.com/helmet/-/helmet-5.0.2.tgz#3264ec6bab96c82deaf65e3403c369424cb2366c" + integrity sha512-QWlwUZZ8BtlvwYVTSDTBChGf8EOcQ2LkGMnQJxSzD1mUu8CCjXJZq/BXP8eWw4kikRnzlhtYo3lCk0ucmYA3Vg== http-errors@1.7.2: version "1.7.2"