From 2c0e9827860d89358ef728a4a03cf803a97109ec Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 26 Aug 2022 15:30:53 +0000 Subject: Bump helmet from 5.1.1 to 6.0.0 (#172) Bumps [helmet](https://github.com/helmetjs/helmet) from 5.1.1 to 6.0.0. - [Release notes](https://github.com/helmetjs/helmet/releases) - [Changelog](https://github.com/helmetjs/helmet/blob/main/CHANGELOG.md) - [Commits](https://github.com/helmetjs/helmet/compare/v5.1.1...v6.0.0) --- updated-dependencies: - dependency-name: helmet dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- package.json | 2 +- yarn.lock | 8 ++++---- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/package.json b/package.json index 7c689c0..f0ff461 100644 --- a/package.json +++ b/package.json @@ -6,7 +6,7 @@ "express": "4.18.1", "express-fileupload": "1.4.0", "express-rate-limit": "6.5.2", - "helmet": "5.1.1", + "helmet": "6.0.0", "passport": "^0.6.0", "passport-saml": "3.2.1", "shell-quote": "1.7.3", diff --git a/yarn.lock b/yarn.lock index 1efbc52..8c87542 100644 --- a/yarn.lock +++ b/yarn.lock @@ -1174,10 +1174,10 @@ has@^1.0.3: dependencies: function-bind "^1.1.1" -helmet@5.1.1: - version "5.1.1" - resolved "https://registry.yarnpkg.com/helmet/-/helmet-5.1.1.tgz#609823c5c2e78aea62dd9afc8f544ca409da5e85" - integrity sha512-/yX0oVZBggA9cLJh8aw3PPCfedBnbd7J2aowjzsaWwZh7/UFY0nccn/aHAggIgWUFfnykX8GKd3a1pSbrmlcVQ== +helmet@6.0.0: + version "6.0.0" + resolved "https://registry.yarnpkg.com/helmet/-/helmet-6.0.0.tgz#8e183820ddccd7729a206ad73c577b264f495595" + integrity sha512-FO9RpR1wNJepH/GbLPQVtkE2eESglXL641p7SdyoT4LngHFJcZheHMoyUcjCZF4qpuMMO1u5q6RK0l9Ux8JBcg== hosted-git-info@^2.1.4: version "2.8.9" -- cgit v1.2.3