From c396e0cb892d6e30a74063f48177f806585da4e2 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Sun, 2 Jun 2024 00:44:44 +0000 Subject: [PATCH] chore: Bump helmet-csp from 3.4.0 to 4.0.0 in /server Bumps [helmet-csp](https://github.com/helmetjs/helmet) from 3.4.0 to 4.0.0. - [Changelog](https://github.com/helmetjs/helmet/blob/main/CHANGELOG.md) - [Commits](https://github.com/helmetjs/helmet/compare/v3.4.0...v4.0.0) --- updated-dependencies: - dependency-name: helmet-csp dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- server/package.json | 2 +- server/yarn.lock | 10 +++++----- 2 files changed, 6 insertions(+), 6 deletions(-) diff --git a/server/package.json b/server/package.json index 9d4160fab8..c166056c52 100644 --- a/server/package.json +++ b/server/package.json @@ -8,7 +8,7 @@ "fs-extra": "10.1.0", "handlebars": "4.7.7", "helmet": "4.6.0", - "helmet-csp": "3.4.0", + "helmet-csp": "4.0.0", "http-proxy-middleware": "2.0.6", "logdown": "3.3.1", "moment": "2.30.1", diff --git a/server/yarn.lock b/server/yarn.lock index bb3b58b0f0..20a8c6c3a3 100644 --- a/server/yarn.lock +++ b/server/yarn.lock @@ -3773,10 +3773,10 @@ __metadata: languageName: node linkType: hard -"helmet-csp@npm:3.4.0": - version: 3.4.0 - resolution: "helmet-csp@npm:3.4.0" - checksum: b4da1cc86c7a455f63eaec911ff7941b129c4d4db53eba247821dd28647ed7f97637f80b81daffd6ca748594be75611c6c890564f69ceead3ada699696ad6d57 +"helmet-csp@npm:4.0.0": + version: 4.0.0 + resolution: "helmet-csp@npm:4.0.0" + checksum: f8c9d9054c6a359fc88c53f14d97326609e5b9dcc2dc49316ae5d442ff07700678dc8ed4fba7d6c29162473ec4a0a31a707ca6dcbf9da031b4428fd4ee7d1c21 languageName: node linkType: hard @@ -6230,7 +6230,7 @@ __metadata: generate-changelog: 1.8.0 handlebars: 4.7.7 helmet: 4.6.0 - helmet-csp: 3.4.0 + helmet-csp: 4.0.0 http-proxy-middleware: 2.0.6 jasmine: 4.5.0 jszip: 3.10.1