From 43b2625631d415173906ac17d4c7bdfa025920e6 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 27 Apr 2021 05:06:33 +0000 Subject: [PATCH] fix: packages/gatsby/package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-POSTCSS-1255640 - https://snyk.io/vuln/SNYK-JS-XMLHTTPREQUESTSSL-1255647 --- packages/gatsby/package.json | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/packages/gatsby/package.json b/packages/gatsby/package.json index 204f82960ebae..fee39063c7153 100644 --- a/packages/gatsby/package.json +++ b/packages/gatsby/package.json @@ -17,7 +17,7 @@ "@babel/runtime": "^7.0.0", "@babel/traverse": "^7.0.0", "@reach/router": "^1.1.1", - "autoprefixer": "^8.6.5", + "autoprefixer": "^10.0.0", "babel-core": "7.0.0-bridge.0", "babel-eslint": "^8.2.2", "babel-loader": "8.0.0-beta.4", @@ -36,7 +36,7 @@ "convert-hrtime": "^2.0.0", "copyfiles": "^1.2.0", "core-js": "^2.5.0", - "css-loader": "^1.0.0", + "css-loader": "^5.0.0", "debug": "^3.1.0", "del": "^3.0.0", "detect-port": "^1.2.1", @@ -93,8 +93,8 @@ "optimize-css-assets-webpack-plugin": "^5.0.1", "parse-filepath": "^1.0.1", "physical-cpu-count": "^2.0.0", - "postcss-flexbugs-fixes": "^3.0.0", - "postcss-loader": "^2.1.3", + "postcss-flexbugs-fixes": "^5.0.0", + "postcss-loader": "^4.0.0", "raw-loader": "^0.5.1", "react-dev-utils": "^4.2.1", "react-error-overlay": "^3.0.0", @@ -107,7 +107,7 @@ "sift": "^5.1.0", "signal-exit": "^3.0.2", "slash": "^1.0.0", - "socket.io": "^2.0.3", + "socket.io": "^3.0.0", "string-similarity": "^1.2.0", "style-loader": "^0.21.0", "terser-webpack-plugin": "^1.0.2",