Update package-lock.json

node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor
2026-02-08 12:07:25 +00:00 · 2022-03-14 23:49:26 +03:00 · 2022-03-14 23:49:26 +03:00 · ae9873ff75
commit ae9873ff75
parent 790717940b
1 changed files with 3 additions and 0 deletions
--- a/package-lock.json
+++ b/package-lock.json
@ -15,6 +15,7 @@
        "openpgp": "^5.0.1"
      },
      "devDependencies": {
+        "node-fetch" : " >=2.6,7 " 
        "@types/jest": "^27.0.3",
        "@types/node": "^16.11.12",
        "@typescript-eslint/eslint-plugin": "^5.6.0",
@ -26,6 +27,8 @@
        "jest-junit": "^13.0.0",
        "ts-jest": "^27.1.1",
        "typescript": "^4.5.3"
+      
+}
      }
    },
    "node_modules/@actions/core": {