Skip to content

Commit

Permalink
Merge pull request #992 from bitpredator/dev
Browse files Browse the repository at this point in the history 
fix: Cross-site Scripting (XSS) in serialize-javascript
  • Loading branch information
@bitpredator
bitpredator authored Feb 12, 2025
2 parents f9a73e1 + 75ed8bb commit b519997
Show file tree
Hide file tree
Showing 2 changed files with 7 additions and 6 deletions.
3 changes: 2 additions & 1 deletion server-data/resources/[system]/[builders]/webpack5/package.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -9,7 +9,8 @@
"author": "",
"license": "ISC",
"dependencies": {
"serialize-javascript": "^6.0.2",
"webpack": "^5.76.0",
"worker-farm": "^1.7.0"
}
}
}
10 changes: 5 additions & 5 deletions server-data/resources/[system]/[builders]/webpack5/yarn.lock
View file
Original file line number Diff line number Diff line change
Expand Up @@ -434,10 +434,10 @@ schema-utils@^3.1.0, schema-utils@^3.1.1:
ajv "^6.12.5"
ajv-keywords "^3.5.2"

serialize-javascript@^6.0.0:
version "6.0.0"
resolved "https://registry.yarnpkg.com/serialize-javascript/-/serialize-javascript-6.0.0.tgz#efae5d88f45d7924141da8b5c3a7a7e663fefeb8"
integrity sha512-Qr3TosvguFt8ePWqsvRfrKyQXIiW+nGbYpy8XK24NQHE83caxWt+mIymTT19DGFbNWNLfEwsrkSmN64lVWB9ag==
serialize-javascript@^6.0.2:
version "6.0.2"
resolved "https://registry.yarnpkg.com/serialize-javascript/-/serialize-javascript-6.0.2.tgz#defa1e055c83bf6d59ea805d8da862254eb6a6c2"
integrity sha512-Saa1xPByTTq2gdeFZYLLo+RFE35NHZkAbqZeWNd3BpzppeVisAqpDjcp8dyf6uIvEqJRd46jemmyA4iFIeVk8g==
dependencies:
randombytes "^2.1.0"

Expand Down Expand Up @@ -474,7 +474,7 @@ terser-webpack-plugin@^5.1.3:
"@jridgewell/trace-mapping" "^0.3.7"
jest-worker "^27.4.5"
schema-utils "^3.1.1"
serialize-javascript "^6.0.0"
serialize-javascript "^6.0.2"
terser "^5.7.2"

terser@^5.7.2:
Expand Down

0 comments on commit b519997

Please sign in to comment.