(core) another bundle of dependabot suggestions

Summary: Version changes suggested by dependabot for security issues that may or may not affect us (it is easier to apply the changes than to figure out if the issues are relevant). * understore 1.12.1 * ini 1.3.7, 1.3.8 * electron 19.0.9 * js-yaml 3.13.1, 3.14.1 * highlight.js 10.7.3 * file-type 16.5.4 Test Plan: existing tests pass Reviewers: georgegevoian Reviewed By: georgegevoian Differential Revision: https://phab.getgrist.com/D3629
2026-03-02 04:09:24 +00:00 · 2022-09-12 09:34:28 -04:00
parent 81c623109f
commit 1a091f1dd5
3 changed files with 233 additions and 199 deletions
--- a/package.json
+++ b/package.json
@@ -114,21 +114,21 @@
    "csv": "4.0.0",
    "diff-match-patch": "1.0.5",
    "double-ended-queue": "2.1.0-0",
-    "electron": "3.0.7",
+    "electron": "19.0.9",
    "exceljs": "4.2.1",
    "express": "4.16.4",
-    "file-type": "14.1.4",
+    "file-type": "16.5.4",
    "fs-extra": "7.0.0",
    "grain-rpc": "0.1.7",
    "grainjs": "1.0.2",
    "handlebars": "4.7.7",
-    "highlight.js": "9.13.1",
+    "highlight.js": "10.7.3",
    "http-proxy-agent": "5.0.0",
    "https-proxy-agent": "5.0.1",
    "i18n-iso-countries": "6.1.0",
    "image-size": "0.6.3",
    "jquery": "3.5.0",
-    "js-yaml": "3.12.0",
+    "js-yaml": "3.14.1",
    "jsesc": "3.0.2",
    "jsonwebtoken": "8.3.0",
    "knockout": "3.5.0",
@@ -153,7 +153,7 @@
    "tmp": "0.0.33",
    "ts-interface-checker": "1.0.2",
    "typeorm": "0.3.9",
-    "underscore": "1.9.1",
+    "underscore": "1.12.1",
    "uuid": "3.3.2",
    "winston": "2.4.5",
    "ws": "6.2.2"