From 4f2ca1110c2e5646a1ff6183704152ab96277866 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 11 Jul 2025 06:05:38 +0000 Subject: [PATCH] fix: upgrade node-fetch from 2.6.11 to 2.7.0 Snyk has created this PR to upgrade node-fetch from 2.6.11 to 2.7.0. See this package in npm: node-fetch See this project in Snyk: https://app.snyk.io/org/application-services-red-hat-trusted-profile-analyzer/project/654378c3-b3f6-4ad9-afb5-7896243a3858?utm_source=github&utm_medium=referral&page=upgrade-pr --- package-lock.json | 6 ++++-- package.json | 2 +- 2 files changed, 5 insertions(+), 3 deletions(-) diff --git a/package-lock.json b/package-lock.json index 1e8b1d9..73d82fa 100644 --- a/package-lock.json +++ b/package-lock.json @@ -15,7 +15,7 @@ "fast-xml-parser": "^4.2.4", "help": "^3.0.2", "https-proxy-agent": "^7.0.6", - "node-fetch": "^2.6.7", + "node-fetch": "^2.7.0", "packageurl-js": "^1.0.2", "yargs": "^17.7.2" }, @@ -3950,7 +3950,9 @@ } }, "node_modules/node-fetch": { - "version": "2.6.11", + "version": "2.7.0", + "resolved": "https://registry.npmjs.org/node-fetch/-/node-fetch-2.7.0.tgz", + "integrity": "sha512-c4FRfUm/dbcWZ7U+1Wq0AwCyFL+3nt2bEw05wfxSz+DWpWsitgmSgYmy2dQdWyKC1694ELPqMs/YzUSNozLt8A==", "license": "MIT", "dependencies": { "whatwg-url": "^5.0.0" diff --git a/package.json b/package.json index 99b98c2..2bb7d62 100644 --- a/package.json +++ b/package.json @@ -50,7 +50,7 @@ "fast-xml-parser": "^4.2.4", "help": "^3.0.2", "https-proxy-agent": "^7.0.6", - "node-fetch": "^2.6.7", + "node-fetch": "^2.7.0", "packageurl-js": "^1.0.2", "yargs": "^17.7.2" },