From 7068262bd7ae9a143f8adf3903001f25a3c42f88 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 20 Jan 2022 18:53:49 +0000 Subject: [PATCH] fix: package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-NODEFORGE-2330875 - https://snyk.io/vuln/SNYK-JS-NODEFORGE-2331908 --- package.json | 20 ++++++++++---------- 1 file changed, 10 insertions(+), 10 deletions(-) diff --git a/package.json b/package.json index 7b3aa922..c1a7e3da 100644 --- a/package.json +++ b/package.json @@ -120,26 +120,26 @@ "ipld": "~0.17.3", "ipld-dag-cbor": "~0.12.1", "ipld-dag-pb": "~0.14.6", - "ipns": "~0.2.0", + "ipns": "~0.16.0", "is-ipfs": "~0.4.2", "is-pull-stream": "~0.0.0", "is-stream": "^1.1.0", "joi": "^13.4.0", "joi-browser": "^13.4.0", "joi-multiaddr": "^2.0.0", - "libp2p": "~0.23.0", - "libp2p-bootstrap": "~0.9.3", + "libp2p": "~0.35.0", + "libp2p-bootstrap": "~0.14.0", "libp2p-circuit": "~0.2.0", - "libp2p-crypto": "~0.13.0", - "libp2p-floodsub": "~0.15.0", - "libp2p-kad-dht": "~0.10.1", + "libp2p-crypto": "~0.21.2", + "libp2p-floodsub": "~0.23.0", + "libp2p-kad-dht": "~0.27.0", "libp2p-keychain": "~0.3.1", - "libp2p-mdns": "~0.12.0", + "libp2p-mdns": "~0.18.0", "libp2p-mplex": "~0.8.0", - "libp2p-record": "~0.5.1", + "libp2p-record": "~0.6.0", "libp2p-secio": "~0.10.0", "libp2p-tcp": "~0.12.0", - "libp2p-webrtc-star": "~0.15.3", + "libp2p-webrtc-star": "~0.25.0", "libp2p-websocket-star": "~0.8.1", "libp2p-websockets": "~0.12.0", "lodash": "^4.17.10", @@ -153,7 +153,7 @@ "once": "^1.4.0", "path-exists": "^3.0.0", "peer-book": "~0.8.0", - "peer-id": "~0.11.0", + "peer-id": "~0.16.0", "peer-info": "~0.14.1", "progress": "^2.0.0", "promisify-es6": "^1.0.3",