json icon indicating copy to clipboard operation
json copied to clipboard
verified publisher icon stoplightio

chore: bump cross-spawn to 7.0.5

Open SB-venkatyadavilli opened this issue 1 year ago • 1 comments

Motivation and Context

STOP-1309

Description

To resolve the security issue, I have upgraded cross-spawn version to 7.0.5

How Has This Been Tested?

This package is a Dev Dependency , therefore I tested it by running the commands yarn build, yarn test, and yarn lint.

Screenshot(s)/recordings(s)

Before

image

After

22 vulnerabilities found - Packages audited 1336

yarn build

copying extra files ot dist folder

yarn test

Test Suites 31

Types of changes

  • [x] Bug fix (non-breaking change which fixes an issue)
  • [ ] New feature (non-breaking change which adds functionality)
  • [ ] Breaking change (fix or feature that would cause existing functionality to change)

Checklist

  • [ ] This PR's code follows as closely as possible the coding style/guidelines of this project.
  • [ ] I have added error reporting and followed the error reporting guidelines.
  • [ ] I have added event tracking and followed the event tracking guidelines.
  • [ ] I have updated any relevant documentation accordingly to reflect this PR's changes.
  • [ ] I have added automated tests (unit/integration/e2e/other) to cover my changes.
  • [ ] All new and existing tests pass locally (excluding flaky CI tests).

SB-venkatyadavilli avatar Dec 07 '24 17:12 SB-venkatyadavilli

looks good to me as its dev dependency. go ahead with this.

SB-pradeep-bande avatar Dec 08 '24 14:12 SB-pradeep-bande