trezor-suite chore(suite): upgrade lib: yup

chore(suite): upgrade lib: yup

Open peter-sanderson opened this issue 10 months ago • 2 comments

Description

Related Issue

Resolve https://github.com/trezor/trezor-suite/issues/7611

Screenshots:

May 03 '24 12:05 peter-sanderson

🚨 Potential security issues detected. Learn more about Socket for GitHub ↗︎

To accept the risk, merge this PR and you will not be notified again.

Alert	Package	Note	Source
Uses eval	npm/[email protected]	Eval Type: Function Location: Package overview	Source
Shell access	npm/[email protected]	Module: child_process Location: Package overview	Source
Filesystem access	npm/[email protected]	Module: fs Location: Package overview	Source
Filesystem access	npm/@istanbuljs/[email protected]	Module: fs Location: Package overview	Source
Filesystem access	npm/[email protected]	Module: fs Location: Package overview	Source
New author	npm/@babel/[email protected]	New Author: jlhwung Previous Author: nicolo-ribaudo	Source
New author	npm/@babel/[email protected]	New Author: jlhwung Previous Author: nicolo-ribaudo	Source
New author	npm/@babel/[email protected]	New Author: jlhwung Previous Author: nicolo-ribaudo	Source
Filesystem access	npm/[email protected]	Module: fs Location: Package overview	Source
Filesystem access	npm/[email protected]	Module: fs Location: Package overview	Source
Network access	npm/[email protected]	Module: net Location: Package overview	Source
Filesystem access	npm/[email protected]	Module: fs Location: Package overview	`packages/suite-desktop-core/package.json` `packages/suite-desktop/package.json`
Network access	npm/[email protected]	Module: http Location: Package overview	Source
Network access	npm/[email protected]	Module: https Location: Package overview	Source
Filesystem access	npm/@nodelib/[email protected]	Module: fs Location: Package overview	Source
Filesystem access	npm/@nodelib/[email protected]	Module: fs Location: Package overview	Source
Filesystem access	npm/[email protected]	Module: fs Location: Package overview	`packages/suite-desktop-core/package.json` `packages/suite-desktop/package.json`
Filesystem access	npm/@kwsites/[email protected]	Module: fs Location: Package overview	Source
Network access	npm/@protobufjs/[email protected]	Module: globalThis["fetch"] Location: Package overview	Source
Install scripts	npm/[email protected]	Install script: postinstall Source: `node scripts/postinstall`	Source
Filesystem access	npm/[email protected]	Module: fs Location: Package overview	Source
Network access	npm/[email protected]	Module: globalThis["fetch"] Location: Package overview	Source
Filesystem access	npm/@cspotcode/[email protected]	Module: fs Location: Package overview	orphan: npm/@cspotcode/[email protected]
Shell access	npm/@aw-web-design/[email protected]	Module: child_process Location: Package overview	Source
New author	npm/@expo/[email protected]	New Author: evanbacon Previous Author: brentvatne	Source
Filesystem access	npm/@expo/[email protected]	Module: fs Location: Package overview	Source
Filesystem access	npm/[email protected]	Module: fs Location: Package overview	Source
Filesystem access	npm/[email protected]	Module: fs Location: Package overview	Source
Filesystem access	npm/[email protected]	Module: fs.realpath Location: Package overview	Source
Filesystem access	npm/[email protected]	Module: fs Location: Package overview	Source
Filesystem access	npm/@expo/[email protected]	Module: fs Location: Package overview	Source
Shell access	npm/@expo/[email protected]	Module: child_process Location: Package overview	Source
New author	npm/@expo/[email protected]	New Author: fson Previous Author: dsokal	Source
New author	npm/@hapi/[email protected]	New Author: devinivy Previous Author: hueniverse	Source
Filesystem access	npm/@npmcli/[email protected]	Module: fs Location: Package overview	Source
Filesystem access	npm/@npmcli/[email protected]	Module: fs Location: Package overview	Source
Filesystem access	npm/[email protected]	Module: fs Location: Package overview	Source
Floating dependency	npm/@jest/[email protected]	Location: Package overview	Source
New author	npm/@react-native/[email protected]	New Author: dmitryrykun Previous Author: yungsters	Source
New author	npm/@segment/[email protected]	New Author: f2prateek Previous Author: segment-admin	Source
New author	npm/@sideway/[email protected]	New Author: marsup Previous Author: hueniverse	Source
Shell access	npm/[email protected]	Module: child_process Location: Package overview	Source
Network access	npm/[email protected]	Module: globalThis["fetch"] Location: Package overview	Source
Filesystem access	npm/[email protected]	Module: fs Location: Package overview	Source
Network access	npm/[email protected]	Module: net Location: Package overview	Source
Filesystem access	npm/[email protected]	Module: fs Location: Package overview	Source
Filesystem access	npm/[email protected]	Module: fs Location: Package overview	Source
Network access	npm/[email protected]	Module: https Location: Package overview	Source
Shell access	npm/[email protected]	Module: child_process Location: Package overview	Source
Network access	npm/[email protected]	Module: globalThis["fetch"] Location: Package overview	Source
Install scripts	npm/[email protected]	Install script: postinstall Source: `node install.js`	Source
Network access	npm/[email protected]	Module: http Location: Package overview	`packages/suite/package.json`
Network access	npm/[email protected]	Module: https Location: Package overview	`packages/suite/package.json`
Network access	npm/[email protected]	Module: globalThis["fetch"] Location: Package overview	`packages/suite/package.json`
Network access	npm/@ndelangen/[email protected]	Module: tls Location: Package overview	Source
Network access	npm/@ndelangen/[email protected]	Module: http2 Location: Package overview	Source
Network access	npm/@ndelangen/[email protected]	Module: net Location: Package overview	Source
Network access	npm/@ndelangen/[email protected]	Module: http Location: Package overview	Source
Network access	npm/@ndelangen/[email protected]	Module: https Location: Package overview	Source
Network access	npm/@ndelangen/[email protected]	Module: dns Location: Package overview	Source
New author	npm/@cypress/[email protected]	New Author: cypress-npm-publisher Previous Author: bahmutov	Source
Filesystem access	npm/@cypress/[email protected]

May 03 '24 13:05 socket-security[bot]

I would remove yup in favor of typebox https://github.com/trezor/trezor-suite/blob/develop/packages/schema-utils/package.json#L29

May 06 '24 08:05 mroz22

trezor-suite trezor-suite copied to clipboard

chore(suite): upgrade lib: yup

Description

Related Issue

Screenshots:

trezor-suite
trezor-suite copied to clipboard