From 5f048f8a8238ff88dd8aca001ef00db09dc63766 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 11 Feb 2026 14:01:02 +0000 Subject: [PATCH] fix: scripts/code.angularjs.org-firebase/functions/package.json & scripts/code.angularjs.org-firebase/functions/yarn.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-FASTXMLPARSER-15155603 --- .../functions/package.json | 2 +- .../functions/yarn.lock | 28 +++++++++---------- 2 files changed, 15 insertions(+), 15 deletions(-) diff --git a/scripts/code.angularjs.org-firebase/functions/package.json b/scripts/code.angularjs.org-firebase/functions/package.json index 885203a1ca3b..995cad5d765a 100644 --- a/scripts/code.angularjs.org-firebase/functions/package.json +++ b/scripts/code.angularjs.org-firebase/functions/package.json @@ -5,7 +5,7 @@ "node": "14" }, "dependencies": { - "@google-cloud/storage": "^7.0.0", + "@google-cloud/storage": "^7.19.0", "firebase-admin": "^9.9.0", "firebase-functions": "^3.14.1" }, diff --git a/scripts/code.angularjs.org-firebase/functions/yarn.lock b/scripts/code.angularjs.org-firebase/functions/yarn.lock index 34ab3e8e481a..1c8ca7a90af9 100644 --- a/scripts/code.angularjs.org-firebase/functions/yarn.lock +++ b/scripts/code.angularjs.org-firebase/functions/yarn.lock @@ -140,10 +140,10 @@ stream-events "^1.0.1" xdg-basedir "^4.0.0" -"@google-cloud/storage@^7.0.0": - version "7.16.0" - resolved "https://registry.yarnpkg.com/@google-cloud/storage/-/storage-7.16.0.tgz#62c04ee4f80190992ef06cb033a90c054bcea575" - integrity sha512-7/5LRgykyOfQENcm6hDKP8SX/u9XxE5YOiWOkgkwcoO+cG8xT/cyOvp9wwN3IxfdYgpHs8CE7Nq2PKX2lNaEXw== +"@google-cloud/storage@^7.19.0": + version "7.19.0" + resolved "https://registry.yarnpkg.com/@google-cloud/storage/-/storage-7.19.0.tgz#34fb7cc4eacede5a2f1f0d6cefa0c70a22078c5b" + integrity sha512-n2FjE7NAOYyshogdc7KQOl/VZb4sneqPjWouSyia9CMDdMhRX5+RIbqalNmC7LOLzuLAN89VlF2HvG8na9G+zQ== dependencies: "@google-cloud/paginator" "^5.0.0" "@google-cloud/projectify" "^4.0.0" @@ -151,7 +151,7 @@ abort-controller "^3.0.0" async-retry "^1.3.3" duplexify "^4.1.3" - fast-xml-parser "^4.4.1" + fast-xml-parser "^5.3.4" gaxios "^6.0.2" google-auth-library "^9.6.3" html-entities "^2.5.2" @@ -761,12 +761,12 @@ fast-text-encoding@^1.0.0, fast-text-encoding@^1.0.3: resolved "https://registry.yarnpkg.com/fast-text-encoding/-/fast-text-encoding-1.0.3.tgz#ec02ac8e01ab8a319af182dae2681213cfe9ce53" integrity sha512-dtm4QZH9nZtcDt8qJiOH9fcQd1NAgi+K1O2DbE6GG1PPCK/BWfOH3idCTRQ4ImXRUOyopDEgDEnVEE7Y/2Wrig== -fast-xml-parser@^4.4.1: - version "4.5.3" - resolved "https://registry.yarnpkg.com/fast-xml-parser/-/fast-xml-parser-4.5.3.tgz#c54d6b35aa0f23dc1ea60b6c884340c006dc6efb" - integrity sha512-RKihhV+SHsIUGXObeVy9AXiBbFwkVk7Syp8XgwN5U3JV416+Gwp/GO9i0JYKmikykgz/UHRrrV4ROuZEo/T0ig== +fast-xml-parser@^5.3.4: + version "5.3.5" + resolved "https://registry.yarnpkg.com/fast-xml-parser/-/fast-xml-parser-5.3.5.tgz#3e914cb852e636923cb555deaa356f7366e18b49" + integrity sha512-JeaA2Vm9ffQKp9VjvfzObuMCjUYAp5WDYhRYL5LrBPY/jUDlUtOvDfot0vKSkB9tuX885BDHjtw4fZadD95wnA== dependencies: - strnum "^1.1.1" + strnum "^2.1.2" faye-websocket@0.11.3: version "0.11.3" @@ -1704,10 +1704,10 @@ strip-ansi@^6.0.0: dependencies: ansi-regex "^5.0.0" -strnum@^1.1.1: - version "1.1.2" - resolved "https://registry.yarnpkg.com/strnum/-/strnum-1.1.2.tgz#57bca4fbaa6f271081715dbc9ed7cee5493e28e4" - integrity sha512-vrN+B7DBIoTTZjnPNewwhx6cBA/H+IS7rfW68n7XxC1y7uoiGQBxaKzqucGUgavX15dJgiGztLJ8vxuEzwqBdA== +strnum@^2.1.2: + version "2.1.2" + resolved "https://registry.yarnpkg.com/strnum/-/strnum-2.1.2.tgz#a5e00ba66ab25f9cafa3726b567ce7a49170937a" + integrity sha512-l63NF9y/cLROq/yqKXSLtcMeeyOfnSQlfMSlzFt/K73oIaD8DGaQWd7Z34X9GPiKqP5rbSh84Hl4bOlLcjiSrQ== stubs@^3.0.0: version "3.0.0"