From 043d5e894223350626b3dae8fd5b64094e8b24e5 Mon Sep 17 00:00:00 2001 From: nmanu1 <88398086+nmanu1@users.noreply.github.com> Date: Thu, 29 Sep 2022 12:45:17 -0400 Subject: [PATCH 1/4] Upgrade `nwsapi` to address vulnerability (#163) Upgrade `nwsapi` to v2.2.2 to address a vulnerability in v2.2.0. J=none TEST=none --- package-lock.json | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) diff --git a/package-lock.json b/package-lock.json index b5a63b2..7f52240 100644 --- a/package-lock.json +++ b/package-lock.json @@ -10950,9 +10950,9 @@ } }, "node_modules/nwsapi": { - "version": "2.2.0", - "resolved": "https://registry.npmjs.org/nwsapi/-/nwsapi-2.2.0.tgz", - "integrity": "sha512-h2AatdwYH+JHiZpv7pt/gSX1XoRGb7L/qSIeuqA6GwYoF9w1vP1cw42TO0aI2pNyshRK5893hNSl+1//vHK7hQ==", + "version": "2.2.2", + "resolved": "https://registry.npmjs.org/nwsapi/-/nwsapi-2.2.2.tgz", + "integrity": "sha512-90yv+6538zuvUMnN+zCr8LuV6bPFdq50304114vJYJ8RDyK8D5O9Phpbd6SZWgI7PwzmmfN1upeOJlvybDSgCw==", "dev": true }, "node_modules/object-assign": { @@ -20459,9 +20459,9 @@ } }, "nwsapi": { - "version": "2.2.0", - "resolved": "https://registry.npmjs.org/nwsapi/-/nwsapi-2.2.0.tgz", - "integrity": "sha512-h2AatdwYH+JHiZpv7pt/gSX1XoRGb7L/qSIeuqA6GwYoF9w1vP1cw42TO0aI2pNyshRK5893hNSl+1//vHK7hQ==", + "version": "2.2.2", + "resolved": "https://registry.npmjs.org/nwsapi/-/nwsapi-2.2.2.tgz", + "integrity": "sha512-90yv+6538zuvUMnN+zCr8LuV6bPFdq50304114vJYJ8RDyK8D5O9Phpbd6SZWgI7PwzmmfN1upeOJlvybDSgCw==", "dev": true }, "object-assign": { From 97b7dc1a74a5236cd351fe967ad1ba1eca80b2ea Mon Sep 17 00:00:00 2001 From: Tristan Timblin Date: Wed, 5 Oct 2022 14:56:42 -0400 Subject: [PATCH 2/4] style: rename tsconfig.base.json to tsconfig.json (#164) J=SLAP-2356 TEST=eslint --- tests/tsconfig.json | 6 ++++++ tsconfig.cjs.json | 2 +- tsconfig.esm.json | 2 +- tsconfig.base.json => tsconfig.json | 0 4 files changed, 8 insertions(+), 2 deletions(-) create mode 100644 tests/tsconfig.json rename tsconfig.base.json => tsconfig.json (100%) diff --git a/tests/tsconfig.json b/tests/tsconfig.json new file mode 100644 index 0000000..2c304b1 --- /dev/null +++ b/tests/tsconfig.json @@ -0,0 +1,6 @@ +{ + "extends": "../tsconfig.json", + "include": [ + "." + ] +} \ No newline at end of file diff --git a/tsconfig.cjs.json b/tsconfig.cjs.json index 923fcae..09d1a7a 100644 --- a/tsconfig.cjs.json +++ b/tsconfig.cjs.json @@ -1,5 +1,5 @@ { - "extends": "./tsconfig.base.json", + "extends": "./tsconfig.json", "compilerOptions": { "module": "commonjs", "outDir": "lib/commonjs" diff --git a/tsconfig.esm.json b/tsconfig.esm.json index 8c3c701..e023e6c 100644 --- a/tsconfig.esm.json +++ b/tsconfig.esm.json @@ -1,5 +1,5 @@ { - "extends": "./tsconfig.base.json", + "extends": "./tsconfig.json", "compilerOptions": { "module": "esnext", "outDir": "lib/esm", diff --git a/tsconfig.base.json b/tsconfig.json similarity index 100% rename from tsconfig.base.json rename to tsconfig.json From 7ba9508c438f82e9d382c26049a495f7351a8e68 Mon Sep 17 00:00:00 2001 From: nmanu1 <88398086+nmanu1@users.noreply.github.com> Date: Tue, 8 Nov 2022 08:43:28 -0500 Subject: [PATCH 3/4] Address vulnerabilities in `@xmldom/xmldom` (#165) Update the version of `@xmldom/xmldom` to address Snyk vulnerabilities in the package. J=none TEST=none --- package-lock.json | 9 ++++++--- 1 file changed, 6 insertions(+), 3 deletions(-) diff --git a/package-lock.json b/package-lock.json index 7f52240..62a8fc0 100644 --- a/package-lock.json +++ b/package-lock.json @@ -4207,9 +4207,10 @@ } }, "node_modules/@xmldom/xmldom": { - "version": "0.7.5", + "version": "0.7.9", + "resolved": "https://registry.npmjs.org/@xmldom/xmldom/-/xmldom-0.7.9.tgz", + "integrity": "sha512-yceMpm/xd4W2a85iqZyO09gTnHvXF6pyiWjD2jcOJs7hRoZtNNOO1eJlhHj1ixA+xip2hOyGn+LgcvLCMo5zXA==", "dev": true, - "license": "MIT", "engines": { "node": ">=10.0.0" } @@ -15683,7 +15684,9 @@ } }, "@xmldom/xmldom": { - "version": "0.7.5", + "version": "0.7.9", + "resolved": "https://registry.npmjs.org/@xmldom/xmldom/-/xmldom-0.7.9.tgz", + "integrity": "sha512-yceMpm/xd4W2a85iqZyO09gTnHvXF6pyiWjD2jcOJs7hRoZtNNOO1eJlhHj1ixA+xip2hOyGn+LgcvLCMo5zXA==", "dev": true }, "@yext/eslint-config-slapshot": { From 5a35d3f3b5032f5ff5cd7a80c725d79e423d6314 Mon Sep 17 00:00:00 2001 From: Tom Meyer Date: Tue, 15 Nov 2022 09:09:53 -0500 Subject: [PATCH 4/4] Bump version to v2.1.0. --- package-lock.json | 34 +++++++++++++++++----------------- package.json | 4 ++-- 2 files changed, 19 insertions(+), 19 deletions(-) diff --git a/package-lock.json b/package-lock.json index 58668f8..6985aac 100644 --- a/package-lock.json +++ b/package-lock.json @@ -1,15 +1,15 @@ { "name": "@yext/search-headless-react", - "version": "2.0.1", + "version": "2.1.0", "lockfileVersion": 2, "requires": true, "packages": { "": { "name": "@yext/search-headless-react", - "version": "2.0.1", + "version": "2.1.0", "license": "BSD-3-Clause", "dependencies": { - "@yext/search-headless": "^2.0.0", + "@yext/search-headless": "^2.1.0", "use-sync-external-store": "^1.1.0" }, "devDependencies": { @@ -4245,9 +4245,9 @@ } }, "node_modules/@yext/search-core": { - "version": "2.0.0", - "resolved": "https://registry.npmjs.org/@yext/search-core/-/search-core-2.0.0.tgz", - "integrity": "sha512-V5Z8aJrNAtuagB4y/ipzGUCfFBPdhXt3NTrGgUS5cguxCFM+AjlNyCZCjQyMa9BiITqWUBnSjIWVvCjnpsBf0w==", + "version": "2.1.0", + "resolved": "https://registry.npmjs.org/@yext/search-core/-/search-core-2.1.0.tgz", + "integrity": "sha512-zlR3es8AYWKowp+h5uAdvNyyy66xI3FBq6YA5RRF+47J/Zrg9JDM95O+GzkQD1c9yuy4aRDn+NB59f05VQwACQ==", "dependencies": { "@babel/runtime-corejs3": "^7.12.5", "cross-fetch": "^3.1.5" @@ -4257,12 +4257,12 @@ } }, "node_modules/@yext/search-headless": { - "version": "2.0.0", - "resolved": "https://registry.npmjs.org/@yext/search-headless/-/search-headless-2.0.0.tgz", - "integrity": "sha512-+YWcpH30ghDoM0G4WCmo5c6NzSNZ4gkOjXis67WlOQ9wOf6+EWsi/H0o3PR0Vrri45LKXFYEpS5oNVet7z1dGg==", + "version": "2.1.0", + "resolved": "https://registry.npmjs.org/@yext/search-headless/-/search-headless-2.1.0.tgz", + "integrity": "sha512-OGjqC9NxSTUCZRdxLEHNpww3QGhypmLTRvjlDxwtVWSsAhWWWMEh1iUmo0fVsdLq7SAmxa5t11V2dgZhk9HMcQ==", "dependencies": { "@reduxjs/toolkit": "^1.8.1", - "@yext/search-core": "^2.0.0", + "@yext/search-core": "^2.1.0", "js-levenshtein": "^1.1.6", "lodash": "^4.17.21" } @@ -15709,21 +15709,21 @@ } }, "@yext/search-core": { - "version": "2.0.0", - "resolved": "https://registry.npmjs.org/@yext/search-core/-/search-core-2.0.0.tgz", - "integrity": "sha512-V5Z8aJrNAtuagB4y/ipzGUCfFBPdhXt3NTrGgUS5cguxCFM+AjlNyCZCjQyMa9BiITqWUBnSjIWVvCjnpsBf0w==", + "version": "2.1.0", + "resolved": "https://registry.npmjs.org/@yext/search-core/-/search-core-2.1.0.tgz", + "integrity": "sha512-zlR3es8AYWKowp+h5uAdvNyyy66xI3FBq6YA5RRF+47J/Zrg9JDM95O+GzkQD1c9yuy4aRDn+NB59f05VQwACQ==", "requires": { "@babel/runtime-corejs3": "^7.12.5", "cross-fetch": "^3.1.5" } }, "@yext/search-headless": { - "version": "2.0.0", - "resolved": "https://registry.npmjs.org/@yext/search-headless/-/search-headless-2.0.0.tgz", - "integrity": "sha512-+YWcpH30ghDoM0G4WCmo5c6NzSNZ4gkOjXis67WlOQ9wOf6+EWsi/H0o3PR0Vrri45LKXFYEpS5oNVet7z1dGg==", + "version": "2.1.0", + "resolved": "https://registry.npmjs.org/@yext/search-headless/-/search-headless-2.1.0.tgz", + "integrity": "sha512-OGjqC9NxSTUCZRdxLEHNpww3QGhypmLTRvjlDxwtVWSsAhWWWMEh1iUmo0fVsdLq7SAmxa5t11V2dgZhk9HMcQ==", "requires": { "@reduxjs/toolkit": "^1.8.1", - "@yext/search-core": "^2.0.0", + "@yext/search-core": "^2.1.0", "js-levenshtein": "^1.1.6", "lodash": "^4.17.21" } diff --git a/package.json b/package.json index eabb991..d566ed2 100644 --- a/package.json +++ b/package.json @@ -1,6 +1,6 @@ { "name": "@yext/search-headless-react", - "version": "2.0.1", + "version": "2.1.0", "description": "The official React UI Bindings layer for Search Headless", "main": "./lib/esm/index.js", "license": "BSD-3-Clause", @@ -32,7 +32,7 @@ "generate-notices": "generate-license-file --input package.json --output THIRD-PARTY-NOTICES --overwrite" }, "dependencies": { - "@yext/search-headless": "^2.0.0", + "@yext/search-headless": "^2.1.0", "use-sync-external-store": "^1.1.0" }, "devDependencies": {