diff --git a/package-lock.json b/package-lock.json index 224c46bb..5ae812d6 100644 --- a/package-lock.json +++ b/package-lock.json @@ -3026,6 +3026,11 @@ "resolved": "https://registry.npmjs.org/delayed-stream/-/delayed-stream-1.0.0.tgz", "integrity": "sha1-3zrhmayt+31ECqrgsp4icrJOxhk=" }, + "depd": { + "version": "2.0.0", + "resolved": "https://registry.npmjs.org/depd/-/depd-2.0.0.tgz", + "integrity": "sha512-g7nH6P6dyDioJogAAGprGpCtVImJhpPk/roCzdb3fIh61/s/nPsfR6onyMwkCAR/OlC3yBC0lESvUoQEAssIrw==" + }, "detect-newline": { "version": "3.1.0", "resolved": "https://registry.npmjs.org/detect-newline/-/detect-newline-3.1.0.tgz", @@ -3042,9 +3047,9 @@ "integrity": "sha512-Dj6Wk3tWyTE+Fo1rW8v0Xhwk80um6yFYKbuAxc9c3EZxIHFDYwbi34Uk42u1CdnIiVorvt4RmlSDjIPyzGC2ew==" }, "dns-prefetch-control": { - "version": "0.2.0", - "resolved": "https://registry.npmjs.org/dns-prefetch-control/-/dns-prefetch-control-0.2.0.tgz", - "integrity": "sha512-hvSnros73+qyZXhHFjx2CMLwoj3Fe7eR9EJsFsqmcI1bB2OBWL/+0YzaEaKssCHnj/6crawNnUyw74Gm2EKe+Q==" + "version": "0.3.0", + "resolved": "https://registry.npmjs.org/dns-prefetch-control/-/dns-prefetch-control-0.3.0.tgz", + "integrity": "sha512-AOXv1PgYZEn8f2BarV9c2uJEOUE7cJr2jf1L6bnQMgMZUie4xZmgqzRnr3JdZ04er+32kw+LCNBgs8QIZi8I7g==" }, "doctrine": { "version": "3.0.0", @@ -3359,6 +3364,11 @@ "jest-regex-util": "^24.9.0" } }, + "expect-ct": { + "version": "0.3.0", + "resolved": "https://registry.npmjs.org/expect-ct/-/expect-ct-0.3.0.tgz", + "integrity": "sha512-7RWfSVDd3q6gkLCrItM0GiIB391WeD6lRldx9lFmIcq7nrYDtDj30S5mm4xHTOndQ99ZRqXGbh3WnxRLF2rMOg==" + }, "extend": { "version": "3.0.2", "resolved": "https://registry.npmjs.org/extend/-/extend-3.0.2.tgz", @@ -3555,31 +3565,55 @@ } }, "fastify-helmet": { - "version": "3.0.2", - "resolved": "https://registry.npmjs.org/fastify-helmet/-/fastify-helmet-3.0.2.tgz", - "integrity": "sha512-z0ZQynqX2BY24bcWsZWqqZF6wd/fJvTXKxlDXqrSptOTLmKogcXTcxjqs4beWFHkSMdY4ceh/QVmmZccMC/y1A==", + "version": "4.0.2", + "resolved": "https://registry.npmjs.org/fastify-helmet/-/fastify-helmet-4.0.2.tgz", + "integrity": "sha512-VXTQo5yzb3H68qlKoZ+Y84IEyyrXeyiFHnGj6K9kbZiXC+P0Aaj+OCvmH2Ls3Do827poYMa5JKITGP8mcFCe0g==", "requires": { - "dns-prefetch-control": "^0.2.0", + "dns-prefetch-control": "^0.3.0", "dont-sniff-mimetype": "^1.0.0", "expect-ct": "^0.3.0", - "fastify-plugin": "^1.2.1", - "feature-policy": "^0.3.0", + "fastify-plugin": "^2.0.0", + "feature-policy": "^0.5.0", "frameguard": "^3.0.0", - "helmet-crossdomain": "^0.4.0", + "helmet-crossdomain": "^0.5.0", "helmet-csp": "^2.7.1", "hide-powered-by": "^1.0.0", "hpkp": "^2.0.0", "hsts": "^2.1.0", "ienoopen": "^1.0.0", + "middie": "^5.0.0", "nocache": "^2.0.0", "referrer-policy": "^1.1.0", "x-xss-protection": "^1.1.0" }, "dependencies": { - "expect-ct": { - "version": "0.3.0", - "resolved": "https://registry.npmjs.org/expect-ct/-/expect-ct-0.3.0.tgz", - "integrity": "sha512-7RWfSVDd3q6gkLCrItM0GiIB391WeD6lRldx9lFmIcq7nrYDtDj30S5mm4xHTOndQ99ZRqXGbh3WnxRLF2rMOg==" + "fastify-plugin": { + "version": "2.0.0", + "resolved": "https://registry.npmjs.org/fastify-plugin/-/fastify-plugin-2.0.0.tgz", + "integrity": "sha512-5c7xwArjeY5T7PFw+TM66gz7E6mQpEK4PXKXVOmxLXUYh49D34pLAL+gbSRLgr7gg8fTOaNjB9fSj0adV5rrXg==", + "requires": { + "semver": "^7.3.2" + } + }, + "middie": { + "version": "5.1.0", + "resolved": "https://registry.npmjs.org/middie/-/middie-5.1.0.tgz", + "integrity": "sha512-pM9KMIedHAOHIw+wsJbze7QiPdEfPsd3iMhgStvYlpme6/dEpCVp0pTSDP5bXa1NvrPmjfWOpvp2RNbypH8DHQ==", + "requires": { + "fastify-plugin": "^2.0.0", + "path-to-regexp": "^6.1.0", + "reusify": "^1.0.4" + } + }, + "path-to-regexp": { + "version": "6.1.0", + "resolved": "https://registry.npmjs.org/path-to-regexp/-/path-to-regexp-6.1.0.tgz", + "integrity": "sha512-h9DqehX3zZZDCEm+xbfU0ZmwCGFCAAraPJWMXJ4+v32NjZJilVg3k1TcKsRgIb8IQ/izZSaydDc1OhJCZvs2Dw==" + }, + "semver": { + "version": "7.3.2", + "resolved": "https://registry.npmjs.org/semver/-/semver-7.3.2.tgz", + "integrity": "sha512-OrOb32TeeambH6UrhtShmF7CRDqhL6/5XpPNp2DuRH6+9QLw/orhp72j87v8Qa1ScDkvrrBNpZcDejAirJmfXQ==" } } }, @@ -3615,9 +3649,9 @@ } }, "feature-policy": { - "version": "0.3.0", - "resolved": "https://registry.npmjs.org/feature-policy/-/feature-policy-0.3.0.tgz", - "integrity": "sha512-ZtijOTFN7TzCujt1fnNhfWPFPSHeZkesff9AXZj+UEjYBynWNUIYpC87Ve4wHzyexQsImicLu7WsC2LHq7/xrQ==" + "version": "0.5.0", + "resolved": "https://registry.npmjs.org/feature-policy/-/feature-policy-0.5.0.tgz", + "integrity": "sha512-LYcPcOfDVKTcdc21n3eG4mEmUXQm0Qw3ke0UsoMXEkURokWp0vzT1VUw3Inm7CMTPRo6zPvl2iJNXCzlq9Dm1Q==" }, "figures": { "version": "3.2.0", @@ -3949,16 +3983,16 @@ "integrity": "sha512-UqBRqi4ju7T+TqGNdqAO0PaSVGsDGJUBQvk9eUWNGRY1CFGDzYhLWoM7JQEemnlvVcv/YEmc2wNW8BC24EnUsw==" }, "helmet-crossdomain": { - "version": "0.4.0", - "resolved": "https://registry.npmjs.org/helmet-crossdomain/-/helmet-crossdomain-0.4.0.tgz", - "integrity": "sha512-AB4DTykRw3HCOxovD1nPR16hllrVImeFp5VBV9/twj66lJ2nU75DP8FPL0/Jp4jj79JhTfG+pFI2MD02kWJ+fA==" + "version": "0.5.0", + "resolved": "https://registry.npmjs.org/helmet-crossdomain/-/helmet-crossdomain-0.5.0.tgz", + "integrity": "sha512-cKNYQ+iKXrbPjIXZG9NnTLQGFBH0DUlNWXtSsxQqzvJ0g/PyevYA7gamEItKp8VLVNDXbsXksFFahOieAIVEWA==" }, "helmet-csp": { - "version": "2.9.4", - "resolved": "https://registry.npmjs.org/helmet-csp/-/helmet-csp-2.9.4.tgz", - "integrity": "sha512-qUgGx8+yk7Xl8XFEGI4MFu1oNmulxhQVTlV8HP8tV3tpfslCs30OZz/9uQqsWPvDISiu/NwrrCowsZBhFADYqg==", + "version": "2.10.0", + "resolved": "https://registry.npmjs.org/helmet-csp/-/helmet-csp-2.10.0.tgz", + "integrity": "sha512-Rz953ZNEFk8sT2XvewXkYN0Ho4GEZdjAZy4stjiEQV3eN7GDxg1QKmYggH7otDyIA7uGA6XnUMVSgeJwbR5X+w==", "requires": { - "bowser": "^2.7.0", + "bowser": "2.9.0", "camelize": "1.0.0", "content-security-policy-builder": "2.1.0", "dasherize": "2.0.0" @@ -3990,13 +4024,6 @@ "integrity": "sha512-ToaTnQ2TbJkochoVcdXYm4HOCliNozlviNsg+X2XQLQvZNI/kCHR9rZxVYpJB3UPcHz80PgxRyWQ7PdU1r+VBQ==", "requires": { "depd": "2.0.0" - }, - "dependencies": { - "depd": { - "version": "2.0.0", - "resolved": "https://registry.npmjs.org/depd/-/depd-2.0.0.tgz", - "integrity": "sha512-g7nH6P6dyDioJogAAGprGpCtVImJhpPk/roCzdb3fIh61/s/nPsfR6onyMwkCAR/OlC3yBC0lESvUoQEAssIrw==" - } } }, "html-encoding-sniffer": { @@ -4096,9 +4123,9 @@ } }, "ienoopen": { - "version": "1.1.0", - "resolved": "https://registry.npmjs.org/ienoopen/-/ienoopen-1.1.0.tgz", - "integrity": "sha512-MFs36e/ca6ohEKtinTJ5VvAJ6oDRAYFdYXweUnGY9L9vcoqFOU4n2ZhmJ0C4z/cwGZ3YIQRSB3XZ1+ghZkY5NQ==" + "version": "1.1.1", + "resolved": "https://registry.npmjs.org/ienoopen/-/ienoopen-1.1.1.tgz", + "integrity": "sha512-cQr3O+BtFpIJf2xecLfLj/G7+ydPDpGjn0gGvOhI83w1bc5XjvsHBrMVBU9oPe7ke5fTJdoDLOy2Wp6pZrGN2Q==" }, "ignore": { "version": "4.0.6", diff --git a/package.json b/package.json index e7a58299..948a4178 100644 --- a/package.json +++ b/package.json @@ -26,7 +26,7 @@ "dotenv": "^8.2.0", "fastify": "^2.15.1", "fastify-cors": "^3.0.3", - "fastify-helmet": "^3.0.2", + "fastify-helmet": "^4.0.2", "husky": "^4.2.5", "jest": "^25.5.4", "jest-extended": "^0.11.5",