Merge pull request #58 from facile-it/dependabot/npm_and_yarn/tough-c…

…ookie-4.1.3 Bump tough-cookie from 4.0.0 to 4.1.3
facile-it · Jul 10, 2023 · 2b80f7b · 2b80f7b
2 parents 803a747 + 76b40f0
commit 2b80f7b
Show file tree

Hide file tree

Showing 2 changed files with 37 additions and 8 deletions.
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -10,6 +10,10 @@ The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
 
 - Complete the list of `Http` errors.
 
+### Security
+
+- Fix CVE-2023-26136.
+
 ## [0.1.7](https://github.com/facile-it/fortepiano/compare/v0.1.6...v0.1.7) - 2023-01-02
 
 ### Added

diff --git a/yarn.lock b/yarn.lock
@@ -5921,6 +5921,13 @@ __metadata:
  languageName: node
  linkType: hard
 
+"querystringify@npm:^2.1.1":
+ version: 2.2.0
+ resolution: "querystringify@npm:2.2.0"
+ checksum: 5641ea231bad7ef6d64d9998faca95611ed4b11c2591a8cae741e178a974f6a8e0ebde008475259abe1621cb15e692404e6b6626e927f7b849d5c09392604b15
+ languageName: node
+ linkType: hard
+
 "queue-microtask@npm:^1.2.2":
  version: 1.2.3
  resolution: "queue-microtask@npm:1.2.3"
@@ -6107,6 +6114,13 @@ __metadata:
  languageName: node
  linkType: hard
 
+"requires-port@npm:^1.0.0":
+ version: 1.0.0
+ resolution: "requires-port@npm:1.0.0"
+ checksum: eee0e303adffb69be55d1a214e415cf42b7441ae858c76dfc5353148644f6fd6e698926fc4643f510d5c126d12a705e7c8ed7e38061113bdf37547ab356797ff
+ languageName: node
+ linkType: hard
+
 "resolve-alpn@npm:^1.0.0":
  version: 1.2.1
  resolution: "resolve-alpn@npm:1.2.1"
@@ -6912,13 +6926,14 @@ __metadata:
  linkType: hard
 
 "tough-cookie@npm:^4.0.0":
- version: 4.0.0
- resolution: "tough-cookie@npm:4.0.0"
+ version: 4.1.3
+ resolution: "tough-cookie@npm:4.1.3"
  dependencies:
  psl: ^1.1.33
  punycode: ^2.1.1
- universalify: ^0.1.2
- checksum: 0891b37eb7d17faa3479d47f0dce2e3007f2583094ad272f2670d120fbcc3df3b0b0a631ba96ecad49f9e2297d93ff8995ce0d3292d08dd7eabe162f5b224d69
+ universalify: ^0.2.0
+ url-parse: ^1.5.3
+ checksum: c9226afff36492a52118432611af083d1d8493a53ff41ec4ea48e5b583aec744b989e4280bcf476c910ec1525a89a4a0f1cae81c08b18fb2ec3a9b3a72b91dcc
  languageName: node
  linkType: hard
 
@@ -7159,10 +7174,10 @@ __metadata:
  languageName: node
  linkType: hard
 
-"universalify@npm:^0.1.2":
- version: 0.1.2
- resolution: "universalify@npm:0.1.2"
- checksum: 40cdc60f6e61070fe658ca36016a8f4ec216b29bf04a55dce14e3710cc84c7448538ef4dad3728d0bfe29975ccd7bfb5f414c45e7b78883567fb31b246f02dff
+"universalify@npm:^0.2.0":
+ version: 0.2.0
+ resolution: "universalify@npm:0.2.0"
+ checksum: e86134cb12919d177c2353196a4cc09981524ee87abf621f7bc8d249dbbbebaec5e7d1314b96061497981350df786e4c5128dbf442eba104d6e765bc260678b5
  languageName: node
  linkType: hard
 
@@ -7213,6 +7228,16 @@ __metadata:
  languageName: node
  linkType: hard
 
+"url-parse@npm:^1.5.3":
+ version: 1.5.10
+ resolution: "url-parse@npm:1.5.10"
+ dependencies:
+ querystringify: ^2.1.1
+ requires-port: ^1.0.0
+ checksum: fbdba6b1d83336aca2216bbdc38ba658d9cfb8fc7f665eb8b17852de638ff7d1a162c198a8e4ed66001ddbf6c9888d41e4798912c62b4fd777a31657989f7bdf
+ languageName: node
+ linkType: hard
+
 "use@npm:^3.1.0":
  version: 3.1.1
  resolution: "use@npm:3.1.1"