From f0111d9bb1c04e56d811ecc387b5b43e58380505 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 12 Oct 2023 11:29:06 +0000 Subject: [PATCH] fix: upgrade @actions/core from 1.6.0 to 1.10.1 Snyk has created this PR to upgrade @actions/core from 1.6.0 to 1.10.1. See this package in npm: https://www.npmjs.com/package/@actions/core See this project in Snyk: https://app.dev.snyk.io/org/prodsec-testingsnykio.onmicrosoft.com-duq/project/7218333e-4163-4224-982c-cf7f2c3f33cd?utm_source=github&utm_medium=referral&page=upgrade-pr --- package-lock.json | 53 ++++++++++++++++++++++++++++++++++++++--------- package.json | 2 +- 2 files changed, 44 insertions(+), 11 deletions(-) diff --git a/package-lock.json b/package-lock.json index 17fa048..341f867 100644 --- a/package-lock.json +++ b/package-lock.json @@ -9,25 +9,42 @@ "version": "1.0.1", "license": "ISC", "dependencies": { - "@actions/core": "^1.6.0", + "@actions/core": "^1.10.1", "@actions/github": "^5.0.0", "check-my-headers": "0.1.1", "g": "^2.0.1", "quick-security-headers-check": "^1.0.0" }, "bin": { - "headers-cheeck": "index.js" + "headers-check": "index.js" }, "devDependencies": { "jest": "^27.5.1" } }, "node_modules/@actions/core": { - "version": "1.6.0", - "resolved": "https://registry.npmjs.org/@actions/core/-/core-1.6.0.tgz", - "integrity": "sha512-NB1UAZomZlCV/LmJqkLhNTqtKfFXJZAUPcfl/zqG7EfsQdeUJtaWO98SGbuQ3pydJ3fHl2CvI/51OKYlCYYcaw==", + "version": "1.10.1", + "resolved": "https://registry.npmjs.org/@actions/core/-/core-1.10.1.tgz", + "integrity": "sha512-3lBR9EDAY+iYIpTnTIXmWcNbX3T2kCkAEQGIQx4NVQ0575nk2k3GRZDTPQG+vVtS2izSLmINlxXf0uLtnrTP+g==", + "dependencies": { + "@actions/http-client": "^2.0.1", + "uuid": "^8.3.2" + } + }, + "node_modules/@actions/core/node_modules/@actions/http-client": { + "version": "2.1.1", + "resolved": "https://registry.npmjs.org/@actions/http-client/-/http-client-2.1.1.tgz", + "integrity": "sha512-qhrkRMB40bbbLo7gF+0vu+X+UawOvQQqNAA/5Unx774RS8poaOhThDOG6BGmxvAnxhQnDp2BG/ZUm65xZILTpw==", "dependencies": { - "@actions/http-client": "^1.0.11" + "tunnel": "^0.0.6" + } + }, + "node_modules/@actions/core/node_modules/uuid": { + "version": "8.3.2", + "resolved": "https://registry.npmjs.org/uuid/-/uuid-8.3.2.tgz", + "integrity": "sha512-+NYs2QeMWy+GWFOEm9xnn6HCDp0l7QBD7ml8zLUmJ+93Q5NF0NocErnwkTkXVFNiX3/fpC6afS8Dhb/gz7R7eg==", + "bin": { + "uuid": "dist/bin/uuid" } }, "node_modules/@actions/github": { @@ -4941,11 +4958,27 @@ }, "dependencies": { "@actions/core": { - "version": "1.6.0", - "resolved": "https://registry.npmjs.org/@actions/core/-/core-1.6.0.tgz", - "integrity": "sha512-NB1UAZomZlCV/LmJqkLhNTqtKfFXJZAUPcfl/zqG7EfsQdeUJtaWO98SGbuQ3pydJ3fHl2CvI/51OKYlCYYcaw==", + "version": "1.10.1", + "resolved": "https://registry.npmjs.org/@actions/core/-/core-1.10.1.tgz", + "integrity": "sha512-3lBR9EDAY+iYIpTnTIXmWcNbX3T2kCkAEQGIQx4NVQ0575nk2k3GRZDTPQG+vVtS2izSLmINlxXf0uLtnrTP+g==", "requires": { - "@actions/http-client": "^1.0.11" + "@actions/http-client": "^2.0.1", + "uuid": "^8.3.2" + }, + "dependencies": { + "@actions/http-client": { + "version": "2.1.1", + "resolved": "https://registry.npmjs.org/@actions/http-client/-/http-client-2.1.1.tgz", + "integrity": "sha512-qhrkRMB40bbbLo7gF+0vu+X+UawOvQQqNAA/5Unx774RS8poaOhThDOG6BGmxvAnxhQnDp2BG/ZUm65xZILTpw==", + "requires": { + "tunnel": "^0.0.6" + } + }, + "uuid": { + "version": "8.3.2", + "resolved": "https://registry.npmjs.org/uuid/-/uuid-8.3.2.tgz", + "integrity": "sha512-+NYs2QeMWy+GWFOEm9xnn6HCDp0l7QBD7ml8zLUmJ+93Q5NF0NocErnwkTkXVFNiX3/fpC6afS8Dhb/gz7R7eg==" + } } }, "@actions/github": { diff --git a/package.json b/package.json index 4937700..1dfdac1 100644 --- a/package.json +++ b/package.json @@ -12,7 +12,7 @@ "headers-check": "./index.js" }, "dependencies": { - "@actions/core": "^1.6.0", + "@actions/core": "^1.10.1", "@actions/github": "^5.0.0", "check-my-headers": "0.1.1", "g": "^2.0.1",