From ac47d074667cac003fd364acfea15a7e1bf4112c Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Mon, 15 Apr 2024 00:12:43 +0000 Subject: [PATCH] fix: upgrade dotenv from 16.0.1 to 16.4.5 Snyk has created this PR to upgrade dotenv from 16.0.1 to 16.4.5. See this package in npm: See this project in Snyk: https://app.snyk.io/org/ashutoshbrl/project/b92217cf-cfa9-4e38-a235-cbb74acd971d?utm_source=github&utm_medium=referral&page=upgrade-pr --- package.json | 2 +- yarn.lock | 8 ++++---- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/package.json b/package.json index eaadb4f..57908e0 100644 --- a/package.json +++ b/package.json @@ -36,7 +36,7 @@ }, "dependencies": { "cors": "^2.8.5", - "dotenv": "^16.0.1", + "dotenv": "^16.4.5", "express": "^4.18.1", "knex": "^3.1.0", "knex-stringcase": "^1.4.6", diff --git a/yarn.lock b/yarn.lock index dbdeb05..9760bf8 100644 --- a/yarn.lock +++ b/yarn.lock @@ -705,10 +705,10 @@ diff@^4.0.1: resolved "https://registry.yarnpkg.com/diff/-/diff-4.0.2.tgz#60f3aecb89d5fae520c11aa19efc2bb982aade7d" integrity sha512-58lmxKSA4BNyLz+HHMUzlOEpg09FV+ev6ZMe3vJihgdxzgcwZ8VoEEPmALCZG9LmqfVoNMMKpttIYTVG6uDY7A== -dotenv@^16.0.1: - version "16.0.1" - resolved "https://registry.yarnpkg.com/dotenv/-/dotenv-16.0.1.tgz#8f8f9d94876c35dac989876a5d3a82a267fdce1d" - integrity sha512-1K6hR6wtk2FviQ4kEiSjFiH5rpzEVi8WW0x96aztHVMhEspNpc4DVOUTEHtEva5VThQ8IaBX1Pe4gSzpVVUsKQ== +dotenv@^16.4.5: + version "16.4.5" + resolved "https://registry.yarnpkg.com/dotenv/-/dotenv-16.4.5.tgz#cdd3b3b604cb327e286b4762e13502f717cb099f" + integrity sha512-ZmdL2rui+eB2YwhsWzjInR8LldtZHGDoQ1ugH85ppHKwpUHL7j7rN0Ti9NCnGiQbhaZ11FpR+7ao1dNsmduNUg== ee-first@1.1.1: version "1.1.1"