chore(deps): update vulnerable dependencies

- Forced the resolution of `@babel/traverse@7.23.2` brought in by `@theia/cli`. (eclipse-theia/theia#13024) - Updated to `auth0-js@9.21.3` to transitively pull `crypto-js@4.2.0` in with the security fixes. GitHub Advisory Database refs: - https://github.com/advisories/GHSA-67hx-6x53-jw92 - https://github.com/advisories/GHSA-xwcq-pm8m-c4vf Signed-off-by: Akos Kitta <a.kitta@arduino.cc>
2025-10-17 23:38:30 +00:00 · 2023-11-02 09:34:32 +01:00
parent 503533d712
commit 22a69f7488
3 changed files with 20 additions and 17 deletions
--- a/arduino-ide-extension/package.json
+++ b/arduino-ide-extension/package.json
@@ -46,7 +46,7 @@
    "@theia/typehierarchy": "1.41.0",
    "@theia/workspace": "1.41.0",
    "@tippyjs/react": "^4.2.5",
-    "@types/auth0-js": "^9.14.0",
+    "@types/auth0-js": "^9.21.3",
    "@types/btoa": "^1.2.3",
    "@types/dateformat": "^3.0.1",
    "@types/google-protobuf": "^3.7.2",
@@ -60,7 +60,7 @@
    "@types/temp": "^0.8.34",
    "arduino-serial-plotter-webapp": "0.2.0",
    "async-mutex": "^0.3.0",
-    "auth0-js": "^9.14.0",
+    "auth0-js": "^9.23.2",
    "btoa": "^1.2.1",
    "classnames": "^2.3.1",
    "cpy": "^10.0.0",