search

CumulusDS / dlq

CLI tool to manipulate AWS Dead Letter Queues
MIT License
1 stars 2 forks source link

Resolve CVE-2022-25883 - vulnerability in `semver` #76

Closed jeffsays closed 1 year ago

jeffsays commented 1 year ago

Summary

What does this PR do?

bump flow-typed to resolve CVE-2022-25883

Details

Why did you make this change? What does it affect?

resolve security vulnerability

Testing

How can the other reviewers check that your change works?

build should pass

   └─ semver@npm:5.7.2 (via npm:2 || 3 || 4 || 5)
│  └─ semver@npm:5.7.2 (via npm:2 || 3 || 4 || 5)
│  └─ semver@npm:5.7.2 (via npm:^5.3.0)
│  └─ semver@npm:5.7.2 (via npm:^5.4.1)
│  └─ semver@npm:5.7.2 (via npm:^5.5.0)
│  └─ semver@npm:5.7.2 (via npm:^5.6.0)
│  └─ semver@npm:6.3.1 (via npm:^6.0.0)
│  └─ semver@npm:6.3.1 (via npm:^6.1.2)
│  └─ semver@npm:6.3.1 (via npm:^6.3.0)
│  └─ semver@npm:7.5.4 (via npm:^7.2.1)
│  └─ semver@npm:7.5.4 (via npm:^7.3.2)
│  └─ semver@npm:7.5.4 (via npm:^7.3.5)
│  └─ semver@npm:7.5.4 (via npm:^7.5.4)
affected version(s) patched version
< 5.7.2 5.7.2
>= 6.0.0, < 6.3.1 6.3.1
>= 7.0.0, < 7.5.2 7.5.2