nexus/bip39
2
0
Fork 0
mirror of https://github.com/OneKeyHQ/bip39.git synced 2026-04-05 18:43:47 +00:00
Code Issues Packages Projects Releases Wiki Activity

fix: libs/stellar-util/package.json & libs/stellar-util/package-lock.json to reduce vulnerabilities

Browse Source 
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-LODASH-15053838
This commit is contained in:
snyk-bot
2026-01-26 08:44:08 +00:00
parent fff0de03b8
commit a9095029d9
2 changed files with 154 additions and 84 deletions
Download Patch File Download Diff File Expand all files Collapse all files

236
libs/stellar-util/package-lock.json generated
View File

@@ -9,13 +9,19 @@
"version": "0.0.1", "version": "0.0.1",
"dependencies": { "dependencies": {
"ed25519-hd-key": "^1.0.0", "ed25519-hd-key": "^1.0.0",
"stellar-base": "^0.10.0" "stellar-base": "^13.1.0"
}, },
"devDependencies": { "devDependencies": {
"browserify": "^16.2.3", "browserify": "^16.2.3",
"uglify-es": "^3.3.9" "uglify-es": "^3.3.9"
} }
}, },
"node_modules/@stellar/js-xdr": {
"version": "3.1.2",
"resolved": "https://registry.npmjs.org/@stellar/js-xdr/-/js-xdr-3.1.2.tgz",
"integrity": "sha512-VVolPL5goVEIsvuGqDc5uiKxV03lzfWdvYg1KikvwheDmTBO68CKDji3bAZ/kppZrx5iTA8z3Ld5yuytcvhvOQ==",
"license": "Apache-2.0"
},
"node_modules/acorn": { "node_modules/acorn": {
"version": "6.4.1", "version": "6.4.1",
"resolved": "https://registry.npmjs.org/acorn/-/acorn-6.4.1.tgz", "resolved": "https://registry.npmjs.org/acorn/-/acorn-6.4.1.tgz",
@@ -133,6 +139,50 @@
"integrity": "sha1-ibTRmasr7kneFk6gK4nORi1xt2c=", "integrity": "sha1-ibTRmasr7kneFk6gK4nORi1xt2c=",
"dev": true "dev": true
}, },
"node_modules/bare-addon-resolve": {
"version": "1.9.6",
"resolved": "https://registry.npmjs.org/bare-addon-resolve/-/bare-addon-resolve-1.9.6.tgz",
"integrity": "sha512-hvOQY1zDK6u0rSr27T6QlULoVLwi8J2k8HHHJlxSfT7XQdQ/7bsS+AnjYkHtu/TkL+gm3aMXAKucJkJAbrDG/g==",
"license": "Apache-2.0",
"optional": true,
"dependencies": {
"bare-module-resolve": "^1.10.0",
"bare-semver": "^1.0.0"
},
"peerDependencies": {
"bare-url": "*"
},
"peerDependenciesMeta": {
"bare-url": {
"optional": true
}
}
},
"node_modules/bare-module-resolve": {
"version": "1.12.1",
"resolved": "https://registry.npmjs.org/bare-module-resolve/-/bare-module-resolve-1.12.1.tgz",
"integrity": "sha512-hbmAPyFpEq8FoZMd5sFO3u6MC5feluWoGE8YKlA8fCrl6mNtx68Wjg4DTiDJcqRJaovTvOYKfYngoBUnbaT7eg==",
"license": "Apache-2.0",
"optional": true,
"dependencies": {
"bare-semver": "^1.0.0"
},
"peerDependencies": {
"bare-url": "*"
},
"peerDependenciesMeta": {
"bare-url": {
"optional": true
}
}
},
"node_modules/bare-semver": {
"version": "1.0.2",
"resolved": "https://registry.npmjs.org/bare-semver/-/bare-semver-1.0.2.tgz",
"integrity": "sha512-ESVaN2nzWhcI5tf3Zzcq9aqCZ676VWzqw07eEZ0qxAcEOAFYBa0pWq8sK34OQeHLY3JsfKXZS9mDyzyxGjeLzA==",
"license": "Apache-2.0",
"optional": true
},
"node_modules/base32.js": { "node_modules/base32.js": {
"version": "0.1.0", "version": "0.1.0",
"resolved": "https://registry.npmjs.org/base32.js/-/base32.js-0.1.0.tgz", "resolved": "https://registry.npmjs.org/base32.js/-/base32.js-0.1.0.tgz",
@@ -142,25 +192,34 @@
} }
}, },
"node_modules/base64-js": { "node_modules/base64-js": {
"version": "1.3.0", "version": "1.5.1",
"resolved": "https://registry.npmjs.org/base64-js/-/base64-js-1.3.0.tgz", "resolved": "https://registry.npmjs.org/base64-js/-/base64-js-1.5.1.tgz",
"integrity": "sha512-ccav/yGvoa80BQDljCxsmmQ3Xvx60/UpBIij5QN21W3wBi/hhIC9OoO+KLpu9IJTS9j4DRVJ3aDDF9cMSoa2lw==", "integrity": "sha512-AKpaYlHn8t4SVbOHCy+b5+KKgvR4vrsD8vbvrbiQJps7fKDTkjkDry6ji0rUJjC0kzbNePLwzxq8iypo41qeWA==",
"dev": true "funding": [
{
"type": "github",
"url": "https://github.com/sponsors/feross"
},
{
"type": "patreon",
"url": "https://www.patreon.com/feross"
},
{
"type": "consulting",
"url": "https://feross.org/support"
}
],
"license": "MIT"
}, },
"node_modules/bignumber.js": { "node_modules/bignumber.js": {
"version": "4.1.0", "version": "9.3.1",
"resolved": "https://registry.npmjs.org/bignumber.js/-/bignumber.js-4.1.0.tgz", "resolved": "https://registry.npmjs.org/bignumber.js/-/bignumber.js-9.3.1.tgz",
"integrity": "sha512-eJzYkFYy9L4JzXsbymsFn3p54D+llV27oTQ+ziJG7WFRheJcNZilgVXMG0LoZtlQSKBsJdWtLFqOD0u+U0jZKA==", "integrity": "sha512-Ko0uX15oIUS7wJ3Rb30Fs6SkVbLmPBAKdlm7q9+ak9bbIeFf0MwuBsQV6z7+X768/cHsfg+WlysDWJcmthjsjQ==",
"license": "MIT",
"engines": { "engines": {
"node": "*" "node": "*"
} }
}, },
"node_modules/bindings": {
"version": "1.3.1",
"resolved": "https://registry.npmjs.org/bindings/-/bindings-1.3.1.tgz",
"integrity": "sha512-i47mqjF9UbjxJhxGf+pZ6kSxrnI3wBLlnGI2ArWJ4r0VrvDS7ZYXkprq/pLaBWYq4GM0r4zdHY+NNRqEMU7uew==",
"optional": true
},
"node_modules/bip39": { "node_modules/bip39": {
"version": "2.5.0", "version": "2.5.0",
"resolved": "https://registry.npmjs.org/bip39/-/bip39-2.5.0.tgz", "resolved": "https://registry.npmjs.org/bip39/-/bip39-2.5.0.tgz",
@@ -546,11 +605,6 @@
"integrity": "sha1-tf1UIgqivFq1eqtxQMlAdUUDwac=", "integrity": "sha1-tf1UIgqivFq1eqtxQMlAdUUDwac=",
"dev": true "dev": true
}, },
"node_modules/crc": {
"version": "3.5.0",
"resolved": "https://registry.npmjs.org/crc/-/crc-3.5.0.tgz",
"integrity": "sha1-mLi6fUiWZbo5efWbITgTdBAaGWQ="
},
"node_modules/create-ecdh": { "node_modules/create-ecdh": {
"version": "4.0.3", "version": "4.0.3",
"resolved": "https://registry.npmjs.org/create-ecdh/-/create-ecdh-4.0.3.tgz", "resolved": "https://registry.npmjs.org/create-ecdh/-/create-ecdh-4.0.3.tgz",
@@ -608,11 +662,6 @@
"node": "*" "node": "*"
} }
}, },
"node_modules/cursor": {
"version": "0.1.5",
"resolved": "https://registry.npmjs.org/cursor/-/cursor-0.1.5.tgz",
"integrity": "sha1-6neMKwnTPC5WT9khRwdnUEg+uyw="
},
"node_modules/date-now": { "node_modules/date-now": {
"version": "0.1.4", "version": "0.1.4",
"resolved": "https://registry.npmjs.org/date-now/-/date-now-0.1.4.tgz", "resolved": "https://registry.npmjs.org/date-now/-/date-now-0.1.4.tgz",
@@ -728,17 +777,6 @@
"readable-stream": "^2.0.2" "readable-stream": "^2.0.2"
} }
}, },
"node_modules/ed25519": {
"version": "0.0.4",
"resolved": "https://registry.npmjs.org/ed25519/-/ed25519-0.0.4.tgz",
"integrity": "sha1-5WIYrOL8kD0llZOu8LKpY59HW+s=",
"hasInstallScript": true,
"optional": true,
"dependencies": {
"bindings": "^1.2.1",
"nan": "^2.0.9"
}
},
"node_modules/ed25519-hd-key": { "node_modules/ed25519-hd-key": {
"version": "1.0.0", "version": "1.0.0",
"resolved": "https://registry.npmjs.org/ed25519-hd-key/-/ed25519-hd-key-1.0.0.tgz", "resolved": "https://registry.npmjs.org/ed25519-hd-key/-/ed25519-hd-key-1.0.0.tgz",
@@ -1028,10 +1066,24 @@
"dev": true "dev": true
}, },
"node_modules/ieee754": { "node_modules/ieee754": {
"version": "1.1.12", "version": "1.2.1",
"resolved": "https://registry.npmjs.org/ieee754/-/ieee754-1.1.12.tgz", "resolved": "https://registry.npmjs.org/ieee754/-/ieee754-1.2.1.tgz",
"integrity": "sha512-GguP+DRY+pJ3soyIiGPTvdiVXjZ+DbXOxGpXn3eMvNW4x4irjqXm4wHKscC+TfxSJ0yw/S1F24tqdMNsMZTiLA==", "integrity": "sha512-dcyqhDvX1C46lXZcVqCpK+FtMRQVdIMN6/Df5js2zouUsqG7I6sFxitIC+7KYK29KdXOLHdu9zL4sFnoVQnqaA==",
"dev": true "funding": [
{
"type": "github",
"url": "https://github.com/sponsors/feross"
},
{
"type": "patreon",
"url": "https://www.patreon.com/feross"
},
{
"type": "consulting",
"url": "https://feross.org/support"
}
],
"license": "BSD-3-Clause"
}, },
"node_modules/inflight": { "node_modules/inflight": {
"version": "1.0.6", "version": "1.0.6",
@@ -1126,17 +1178,6 @@
"node": "*" "node": "*"
} }
}, },
"node_modules/js-xdr": {
"version": "1.0.5",
"resolved": "https://registry.npmjs.org/js-xdr/-/js-xdr-1.0.5.tgz",
"integrity": "sha512-v0jffMa8bko3uFcGYt1lHrtpd1adhH6qk41RfLPsNPj77/K8fi7LOi4+lUUY3MBEIFnJgaGHrbc6sxdTwHImxQ==",
"deprecated": "⚠️ This package has moved to @stellar/js-xdr! 🚚",
"dependencies": {
"cursor": "^0.1.5",
"lodash": "^4.17.5",
"long": "^2.2.3"
}
},
"node_modules/json-stable-stringify": { "node_modules/json-stable-stringify": {
"version": "0.0.1", "version": "0.0.1",
"resolved": "https://registry.npmjs.org/json-stable-stringify/-/json-stable-stringify-0.0.1.tgz", "resolved": "https://registry.npmjs.org/json-stable-stringify/-/json-stable-stringify-0.0.1.tgz",
@@ -1197,25 +1238,12 @@
"integrity": "sha512-GMxXOiUirWg1xTKRipM0Ek07rX+ubx4nNVElTJdNLYmNO/2YrDkgJGw9CljXn+r4EWiDQg/8lsRdHyg2PJuUaA==", "integrity": "sha512-GMxXOiUirWg1xTKRipM0Ek07rX+ubx4nNVElTJdNLYmNO/2YrDkgJGw9CljXn+r4EWiDQg/8lsRdHyg2PJuUaA==",
"dev": true "dev": true
}, },
"node_modules/lodash": {
"version": "4.17.19",
"resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.19.tgz",
"integrity": "sha512-JNvd8XER9GQX0v2qJgsaN/mzFCNA5BRe/j8JN9d+tWyGLSodKQHKFicdwNYzWwI3wjRnaKPsGj1XkBjx/F96DQ=="
},
"node_modules/lodash.memoize": { "node_modules/lodash.memoize": {
"version": "3.0.4", "version": "3.0.4",
"resolved": "https://registry.npmjs.org/lodash.memoize/-/lodash.memoize-3.0.4.tgz", "resolved": "https://registry.npmjs.org/lodash.memoize/-/lodash.memoize-3.0.4.tgz",
"integrity": "sha1-LcvSwofLwKVcxCMovQxzYVDVPj8=", "integrity": "sha1-LcvSwofLwKVcxCMovQxzYVDVPj8=",
"dev": true "dev": true
}, },
"node_modules/long": {
"version": "2.4.0",
"resolved": "https://registry.npmjs.org/long/-/long-2.4.0.tgz",
"integrity": "sha1-n6GAux2VAM3CnEFWdmoZleH0Uk8=",
"engines": {
"node": ">=0.6"
}
},
"node_modules/math-intrinsics": { "node_modules/math-intrinsics": {
"version": "1.1.0", "version": "1.1.0",
"resolved": "https://registry.npmjs.org/math-intrinsics/-/math-intrinsics-1.1.0.tgz", "resolved": "https://registry.npmjs.org/math-intrinsics/-/math-intrinsics-1.1.0.tgz",
@@ -1326,12 +1354,6 @@
"node": ">= 0.8.0" "node": ">= 0.8.0"
} }
}, },
"node_modules/nan": {
"version": "2.12.0",
"resolved": "https://registry.npmjs.org/nan/-/nan-2.12.0.tgz",
"integrity": "sha512-zT5nC0JhbljmyEf+Z456nvm7iO7XgRV2hYxoBtPpnyp+0Q4aCoP6uWNn76v/I6k2kCYNLWqWbwBWQcjsNI/bjw==",
"optional": true
},
"node_modules/once": { "node_modules/once": {
"version": "1.4.0", "version": "1.4.0",
"resolved": "https://registry.npmjs.org/once/-/once-1.4.0.tgz", "resolved": "https://registry.npmjs.org/once/-/once-1.4.0.tgz",
@@ -1534,6 +1556,19 @@
"safe-buffer": "~5.1.0" "safe-buffer": "~5.1.0"
} }
}, },
"node_modules/require-addon": {
"version": "1.2.0",
"resolved": "https://registry.npmjs.org/require-addon/-/require-addon-1.2.0.tgz",
"integrity": "sha512-VNPDZlYgIYQwWp9jMTzljx+k0ZtatKlcvOhktZ/anNPI3dQ9NXk7cq2U4iJ1wd9IrytRnYhyEocFWbkdPb+MYA==",
"license": "Apache-2.0",
"optional": true,
"dependencies": {
"bare-addon-resolve": "^1.3.0"
},
"engines": {
"bare": ">=1.10.0"
}
},
"node_modules/resolve": { "node_modules/resolve": {
"version": "1.8.1", "version": "1.8.1",
"resolved": "https://registry.npmjs.org/resolve/-/resolve-1.8.1.tgz", "resolved": "https://registry.npmjs.org/resolve/-/resolve-1.8.1.tgz",
@@ -1648,6 +1683,16 @@
"integrity": "sha1-c0TLuLbib7J9ZrL8hvn21Zl1IcY=", "integrity": "sha1-c0TLuLbib7J9ZrL8hvn21Zl1IcY=",
"dev": true "dev": true
}, },
"node_modules/sodium-native": {
"version": "4.3.3",
"resolved": "https://registry.npmjs.org/sodium-native/-/sodium-native-4.3.3.tgz",
"integrity": "sha512-OnxSlN3uyY8D0EsLHpmm2HOFmKddQVvEMmsakCrXUzSd8kjjbzL413t4ZNF3n0UxSwNgwTyUvkmZHTfuCeiYSw==",
"license": "MIT",
"optional": true,
"dependencies": {
"require-addon": "^1.1.0"
}
},
"node_modules/source-map": { "node_modules/source-map": {
"version": "0.5.7", "version": "0.5.7",
"resolved": "https://registry.npmjs.org/source-map/-/source-map-0.5.7.tgz", "resolved": "https://registry.npmjs.org/source-map/-/source-map-0.5.7.tgz",
@@ -1658,24 +1703,48 @@
} }
}, },
"node_modules/stellar-base": { "node_modules/stellar-base": {
"version": "0.10.0", "version": "13.1.0",
"resolved": "https://registry.npmjs.org/stellar-base/-/stellar-base-0.10.0.tgz", "resolved": "https://registry.npmjs.org/stellar-base/-/stellar-base-13.1.0.tgz",
"integrity": "sha512-PPuVWAc9t63q9eiMrV3czO2Q2ZozcU7dEMJX8Hu8AIVuV4DbDMyGk5a4nzsJajVsSZyq2Tyccv3dqVudKkBZUA==", "integrity": "sha512-CAXhSFJfGC1EKrGiHm0F/OQoYmSLLq4wucCaI7EZM2oe/Hg06mK2XWHddIN+yuZgIyDjgDQAdbUtHqVR5Irw/w==",
"deprecated": "⚠️ This package has moved to @stellar/stellar-base! 🚚", "deprecated": "⚠️ This package has moved to @stellar/stellar-base! 🚚",
"license": "Apache-2.0",
"dependencies": { "dependencies": {
"base32.js": "~0.1.0", "@stellar/js-xdr": "^3.1.2",
"bignumber.js": "^4.0.0", "base32.js": "^0.1.0",
"crc": "3.5.0", "bignumber.js": "^9.1.2",
"js-xdr": "^1.0.5", "buffer": "^6.0.3",
"lodash": "^4.17.10",
"sha.js": "^2.3.6", "sha.js": "^2.3.6",
"tweetnacl": "^1.0.0" "tweetnacl": "^1.0.3"
}, },
"engines": { "engines": {
"node": ">=4" "node": ">=18.0.0"
}, },
"optionalDependencies": { "optionalDependencies": {
"ed25519": "0.0.4" "sodium-native": "^4.3.3"
}
},
"node_modules/stellar-base/node_modules/buffer": {
"version": "6.0.3",
"resolved": "https://registry.npmjs.org/buffer/-/buffer-6.0.3.tgz",
"integrity": "sha512-FTiCpNxtwiZZHEZbcbTIcZjERVICn9yq/pDFkTl95/AxzD1naBctN7YO68riM/gLSDY7sdrMby8hofADYuuqOA==",
"funding": [
{
"type": "github",
"url": "https://github.com/sponsors/feross"
},
{
"type": "patreon",
"url": "https://www.patreon.com/feross"
},
{
"type": "consulting",
"url": "https://feross.org/support"
}
],
"license": "MIT",
"dependencies": {
"base64-js": "^1.3.1",
"ieee754": "^1.2.1"
} }
}, },
"node_modules/stream-browserify": { "node_modules/stream-browserify": {
@@ -1829,9 +1898,10 @@
"dev": true "dev": true
}, },
"node_modules/tweetnacl": { "node_modules/tweetnacl": {
"version": "1.0.0", "version": "1.0.3",
"resolved": "https://registry.npmjs.org/tweetnacl/-/tweetnacl-1.0.0.tgz", "resolved": "https://registry.npmjs.org/tweetnacl/-/tweetnacl-1.0.3.tgz",
"integrity": "sha1-cT2LgY2kIGh0C/aDhtBHnmb8ins=" "integrity": "sha512-6rt+RN7aOi1nGMyC4Xa5DdYiukl2UWCbcJft7YhxReBGQD7OAM8Pbxw6YMo4r2diNEA8FEmu32YOn9rhaiE5yw==",
"license": "Unlicense"
}, },
"node_modules/typed-array-buffer": { "node_modules/typed-array-buffer": {
"version": "1.0.3", "version": "1.0.3",

2
libs/stellar-util/package.json
View File

@@ -6,7 +6,7 @@
}, },
"dependencies": { "dependencies": {
"ed25519-hd-key": "^1.0.0", "ed25519-hd-key": "^1.0.0",
"stellar-base": "^0.10.0" "stellar-base": "^13.1.0"
}, },
"devDependencies": { "devDependencies": {
"browserify": "^16.2.3", "browserify": "^16.2.3",