fix(*): remove vulnerable deps and bump version (#946)

* fix(*): remove deps with vulns

Signed-off-by: muhammed-abdulkadir <[email protected]>

* fix(*): bump to 3.19.7

Signed-off-by: muhammed-abdulkadir <[email protected]>

---------

Signed-off-by: muhammed-abdulkadir <[email protected]>
Co-authored-by: muhammed-abdulkadir <[email protected]>

Author: muhabdulkadir

package-lock.json

@@ -3,7 +3,6 @@
     "@types/webgl-ext": "^0.0.37",
     "ajv": "^8.17.1",
     "colors": "1.4.0",
-    "coveralls": "3.1.0",
     "dayjs": "1.11.10",
     "eslint": "8.2.0",
     "glob": "^7.2.0",
@@ -26,7 +25,7 @@
   ],
   "name": "concerto",
   "description": "Define and introspect data models",
-  "version": "3.19.6",
+  "version": "3.19.7",
   "private": true,
   "scripts": {
     "coverage": "node ./scripts/coverage.js \"packages/concerto-*\" && nyc report -t coverage --cwd . --report-dir coverage --reporter=lcov && cat ./coverage/lcov.info",

package.json

@@ -1,6 +1,6 @@
 {
     "name": "@accordproject/concerto-analysis",
-    "version": "3.19.6",
+    "version": "3.19.7",
     "description": "Analysis of Concerto model files",
     "homepage": "https://github.com/accordproject/concerto",
     "engines": {

packages/concerto-analysis/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@accordproject/concerto-core",
-  "version": "3.19.6",
+  "version": "3.19.7",
   "description": "Core Implementation for the Concerto Modeling Language",
   "homepage": "https://github.com/accordproject/concerto",
   "engines": {
@@ -53,7 +53,6 @@
     "jsdoc": "^4.0.2",
     "klaw": "3.0.0",
     "mocha": "10.0.0",
-    "mockery": "2.1.0",
     "moxios": "0.4.0",
     "node-polyfill-webpack-plugin": "2.0.1",
     "nyc": "15.1.0",

packages/concerto-core/package.json

@@ -22,7 +22,6 @@ chai.use(require('chai-as-promised'));
 const path = require('path');
 
 const yargs = require('yargs');
-const mockery = require('mockery');
 const VersionChecker = require('../../scripts/versionchecker');
 
 
@@ -32,10 +31,6 @@ describe('composer cli', () => {
     let stubreadfile;
 
     beforeEach(() => {
-        mockery.enable({
-            warnOnReplace: false,
-            warnOnUnregistered: false
-        });
         sandbox = sinon.createSandbox();
         sandbox.stub(yargs, 'options').returns(yargs);
         sandbox.stub(yargs, 'usage').returns(yargs);
@@ -47,13 +42,18 @@ describe('composer cli', () => {
 
         /** test class */
         stubreadfile = sandbox.stub();
-        let fs =  { readFileSync : stubreadfile };
-        mockery.registerMock('fs', fs);
+        const fs = { readFileSync: stubreadfile };
+        const fsPath = require.resolve('fs');
+        require.cache[fsPath] = {
+            id: fsPath,
+            filename: fsPath,
+            loaded: false,
+            exports: fs,
+        };
         sandbox.stub(console,'log');
     });
 
     afterEach(() => {
-        mockery.deregisterAll();
         sandbox.restore();
     });
 

packages/concerto-core/test/scripts/changelog.js

@@ -1,6 +1,6 @@
 {
   "name": "@accordproject/concerto-cto",
-  "version": "3.19.6",
+  "version": "3.19.7",
   "description": "Parser for Concerto CTO files",
   "homepage": "https://github.com/accordproject/concerto",
   "engines": {

packages/concerto-cto/package.json

@@ -1,6 +1,6 @@
 {
     "name": "@accordproject/concerto-types",
-    "version": "3.19.6",
+    "version": "3.19.7",
     "description": "Types for the Concerto Modeling Language",
     "homepage": "https://github.com/accordproject/concerto",
     "engines": {

packages/concerto-types/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@accordproject/concerto-util",
-  "version": "3.19.6",
+  "version": "3.19.7",
   "description": "Utilities for Concerto Modeling Language",
   "homepage": "https://github.com/accordproject/concerto",
   "engines": {

packages/concerto-util/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@accordproject/concerto-vocabulary",
-  "version": "3.19.6",
+  "version": "3.19.7",
   "description": "Associate human-readable text to model declarations",
   "homepage": "https://github.com/accordproject/concerto",
   "engines": {