robojerk/codeql-action

Require xml2js >=0.5.0 to address CVE-2023-0842

Browse source
This commit is contained in:
Henry Mercer 2023-04-11 13:33:36 +01:00
parent 9c13316a15
commit c2b5d643fd
6 changed files with 45 additions and 18 deletions
Download patch file Download diff file Expand all files Collapse all files

5
node_modules/xml2js/package.json generated vendored
View file

@ -6,7 +6,7 @@
"json"
],
"homepage": "https://github.com/Leonidas-from-XIV/node-xml2js",
"version": "0.4.23",
"version": "0.5.0",
"author": "Marek Kubica <marek@xivilization.net> (https://xivilization.net)",
"contributors": [
"maqr <maqr.lollerskates@gmail.com> (https://github.com/maqr)",
@ -53,7 +53,8 @@
"David Wood <david.p.wood@gmail.com> (http://codesleuth.co.uk/)",
"Nicolas Maquet (https://github.com/nmaquet)",
"Lovell Fuller (http://lovell.info/)",
"d3adc0d3 (https://github.com/d3adc0d3)"
"d3adc0d3 (https://github.com/d3adc0d3)",
"James Crosby (https://github.com/autopulated)"
],
"main": "./lib/xml2js",
"files": [