diff --git a/CHANGELOG.md b/CHANGELOG.md index 6ffd193..4a8c7f1 100755 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -5,6 +5,12 @@ All notable changes to this project will be documented in this file. The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/), and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html). +## [2.6.4] - 2024-10-10 + +### Security +- `rollup` to mitigate [CVE-2024-47068] + + ## [2.6.3] - 2024-09-12 ### Changed diff --git a/source/portal/package-lock.json b/source/portal/package-lock.json index 2a22330..bee7688 100644 --- a/source/portal/package-lock.json +++ b/source/portal/package-lock.json @@ -194,25 +194,25 @@ } }, "node_modules/@aws-amplify/api": { - "version": "5.4.13", - "resolved": "https://registry.npmjs.org/@aws-amplify/api/-/api-5.4.13.tgz", - "integrity": "sha512-3G2gLAoxG8bb+DRxVreUKHbxi6Y3MlKDXLFvHPMsxY28qUVi+ee1MBZqf6WqYBTe6H9KFIPORCMIDqFNeO2kgg==", + "version": "5.4.14", + "resolved": "https://registry.npmjs.org/@aws-amplify/api/-/api-5.4.14.tgz", + "integrity": "sha512-kmt2N+cyQzd2w6SLMO6raVnxVU16bScs51+DBlhQ8jlPYAXD1ighqxFOOowlkmucVc7FLQrFkwWbTxN3CtQTBg==", "dependencies": { - "@aws-amplify/api-graphql": "3.4.19", + "@aws-amplify/api-graphql": "3.4.20", "@aws-amplify/api-rest": "3.5.13", "tslib": "^1.8.0" } }, "node_modules/@aws-amplify/api-graphql": { - "version": "3.4.19", - "resolved": "https://registry.npmjs.org/@aws-amplify/api-graphql/-/api-graphql-3.4.19.tgz", - "integrity": "sha512-Pvg57LMwAqaFeYdBJCdyWNcLdyEqpgfPZPShrBJxbpNQZsuZwzRcOe8VOibCEBQS7XJi7NNBHzq19ESuLPhXtQ==", + "version": "3.4.20", + "resolved": "https://registry.npmjs.org/@aws-amplify/api-graphql/-/api-graphql-3.4.20.tgz", + "integrity": "sha512-B/wxb2Gpi15w/1KDMg6gqh3UxbRMllkM0HKzCG31ERX3D/sna7pyYNz2OvBBaQ2hY5PYmxAB44MRMvhNfapCxg==", "dependencies": { "@aws-amplify/api-rest": "3.5.13", "@aws-amplify/auth": "5.6.13", "@aws-amplify/cache": "5.1.19", "@aws-amplify/core": "5.8.13", - "@aws-amplify/pubsub": "5.5.13", + "@aws-amplify/pubsub": "5.6.0", "graphql": "15.8.0", "tslib": "^1.8.0", "uuid": "^3.2.1", @@ -326,14 +326,14 @@ } }, "node_modules/@aws-amplify/datastore": { - "version": "4.7.13", - "resolved": "https://registry.npmjs.org/@aws-amplify/datastore/-/datastore-4.7.13.tgz", - "integrity": "sha512-6HZR13bHGMpQfrJuD00JgMxEZU+mmp3EcOYTOVZyvYwg3OuG3iHyu66ik6cEvjf/CmrWFoil9tmoruBq5y+XRg==", + "version": "4.7.14", + "resolved": "https://registry.npmjs.org/@aws-amplify/datastore/-/datastore-4.7.14.tgz", + "integrity": "sha512-yydfme4hgw+vJdi2oKaPhqBLYeco1U0kpJHxFVg6fWU+uSouDMGBBZOdUE4hj8rtKCHpoB7YAvyHrVAfu28ylg==", "dependencies": { - "@aws-amplify/api": "5.4.13", + "@aws-amplify/api": "5.4.14", "@aws-amplify/auth": "5.6.13", "@aws-amplify/core": "5.8.13", - "@aws-amplify/pubsub": "5.5.13", + "@aws-amplify/pubsub": "5.6.0", "amazon-cognito-identity-js": "6.3.13", "buffer": "4.9.2", "idb": "5.0.6", @@ -385,9 +385,9 @@ "integrity": "sha512-Xni35NKzjgMrwevysHTCArtLDpPvye8zV/0E4EyYn43P7/7qvQwPh9BGkHewbMulVntbigmcT7rdX3BNo9wRJg==" }, "node_modules/@aws-amplify/interactions": { - "version": "5.2.19", - "resolved": "https://registry.npmjs.org/@aws-amplify/interactions/-/interactions-5.2.19.tgz", - "integrity": "sha512-BxJYifIlSELRcYgPRzSczobqj6xqUbahhD1KWVNzVR+zF31AwcoIpxo+pf/0z66azW8L3o50Cep9GHETvs0xaA==", + "version": "5.2.20", + "resolved": "https://registry.npmjs.org/@aws-amplify/interactions/-/interactions-5.2.20.tgz", + "integrity": "sha512-B/L2PwKmRzx42E9DRS0gdsmAX+ejz9vlOOFD6W3Ea9nNLDoN8RSRn0TrCp+5IlFJLXgJ9dNS6ipSs14mCyQ9UA==", "dependencies": { "@aws-amplify/core": "5.8.13", "@aws-sdk/client-lex-runtime-service": "3.186.4", @@ -425,12 +425,12 @@ } }, "node_modules/@aws-amplify/predictions": { - "version": "5.5.14", - "resolved": "https://registry.npmjs.org/@aws-amplify/predictions/-/predictions-5.5.14.tgz", - "integrity": "sha512-eJzo6pnbt2FEi70Ib3Z4L3dWN5jH3pLW1hqvpAKuJjKpJ90C3dVSSTCOftbU8iu913TbXH2GvXUZ63FK3GKwEg==", + "version": "5.5.16", + "resolved": "https://registry.npmjs.org/@aws-amplify/predictions/-/predictions-5.5.16.tgz", + "integrity": "sha512-ki0r+KNQbWivY7kF+LfuZBhobvrFXOfsw8pID1C/qOIXT1SZOHIAHhk5YbXH6fM1Rs8+4/1hdR5Qa6rzTcbA0w==", "dependencies": { "@aws-amplify/core": "5.8.13", - "@aws-amplify/storage": "5.9.14", + "@aws-amplify/storage": "5.9.15", "@aws-sdk/client-comprehend": "3.6.1", "@aws-sdk/client-polly": "3.6.1", "@aws-sdk/client-rekognition": "3.6.1", @@ -458,9 +458,9 @@ } }, "node_modules/@aws-amplify/pubsub": { - "version": "5.5.13", - "resolved": "https://registry.npmjs.org/@aws-amplify/pubsub/-/pubsub-5.5.13.tgz", - "integrity": "sha512-64RS6igRjSLvviUPPgGDUVkK1nxF63mXjkB34d6Ds7T4THdie02Kl5YzJVSiLog1/FjyD4zf7lNF2Cy+fTqiWA==", + "version": "5.6.0", + "resolved": "https://registry.npmjs.org/@aws-amplify/pubsub/-/pubsub-5.6.0.tgz", + "integrity": "sha512-NTsxowXD/IABenklIx/8ej300ZzzBMuR8Qs6Fs7tT5dwyaTBl+JFJ3tQyz9iJznfs3bDG8quMAfYaAPHB61NMg==", "dependencies": { "@aws-amplify/auth": "5.6.13", "@aws-amplify/cache": "5.1.19", @@ -502,9 +502,9 @@ "integrity": "sha512-C3y+iL8/9800wWOyIAVYAKzrHZkFeI3y2ZoJlj0xot+dCbQZkMr/XjO2ZwfC58XRKUiDKFfzCJW/XoyZlvthfw==" }, "node_modules/@aws-amplify/storage": { - "version": "5.9.14", - "resolved": "https://registry.npmjs.org/@aws-amplify/storage/-/storage-5.9.14.tgz", - "integrity": "sha512-aEMA75chg28ChJGr/KwEF6QtsQrLDphDWZ7juZuRaKi3ilmRcmXh9nL/ZrHR/7zBDqDEWVOOgHUkgVlCt6LyeA==", + "version": "5.9.15", + "resolved": "https://registry.npmjs.org/@aws-amplify/storage/-/storage-5.9.15.tgz", + "integrity": "sha512-U88da+7HFYzzn+orF1G9AE/xFpT5cGOmZGaBlhoGFAu6xs7b5CQkCyZubUXpi5EPFJEz2624uKiCmldZJxFfKA==", "dependencies": { "@aws-amplify/core": "5.8.13", "@aws-sdk/md5-js": "3.6.1", @@ -674,11 +674,11 @@ } }, "node_modules/@aws-crypto/crc32/node_modules/@aws-sdk/types": { - "version": "3.609.0", - "resolved": "https://registry.npmjs.org/@aws-sdk/types/-/types-3.609.0.tgz", - "integrity": "sha512-+Tqnh9w0h2LcrUsdXyT1F8mNhXz+tVYBtP19LpeEGntmvHwa2XzvLUCWpoIAIVsHp5+HdB2X9Sn0KAtmbFXc2Q==", + "version": "3.664.0", + "resolved": "https://registry.npmjs.org/@aws-sdk/types/-/types-3.664.0.tgz", + "integrity": "sha512-+GtXktvVgpreM2b+NJL9OqZGsOzHwlCUrO8jgQUvH/yA6Kd8QO2YFhQCp0C9sSzTteZJVqGBu8E0CQurxJHPbw==", "dependencies": { - "@smithy/types": "^3.3.0", + "@smithy/types": "^3.5.0", "tslib": "^2.6.2" }, "engines": { @@ -686,9 +686,9 @@ } }, "node_modules/@aws-crypto/crc32/node_modules/@aws-sdk/types/node_modules/tslib": { - "version": "2.6.3", - "resolved": "https://registry.npmjs.org/tslib/-/tslib-2.6.3.tgz", - "integrity": "sha512-xNvxJEOUiWPGhUuUdQgAJPKOOJfGnIyKySOc09XkKsgdUV/3E2zvwZYdejjmRgPCgcym1juLH3226yA7sEFJKQ==" + "version": "2.7.0", + "resolved": "https://registry.npmjs.org/tslib/-/tslib-2.7.0.tgz", + "integrity": "sha512-gLXCKdN1/j47AiHiOkJN69hJmcbGTHI0ImLmbYLHykhgeN0jVGola9yVjFgzCUklsZQMW55o+dW7IXv3RCXDzA==" }, "node_modules/@aws-crypto/crc32/node_modules/tslib": { "version": "1.14.1", @@ -10486,9 +10486,9 @@ } }, "node_modules/@smithy/types": { - "version": "3.3.0", - "resolved": "https://registry.npmjs.org/@smithy/types/-/types-3.3.0.tgz", - "integrity": "sha512-IxvBBCTFDHbVoK7zIxqA1ZOdc4QfM5HM7rGleCuHi7L1wnKv5Pn69xXJQ9hgxH60ZVygH9/JG0jRgtUncE3QUA==", + "version": "3.5.0", + "resolved": "https://registry.npmjs.org/@smithy/types/-/types-3.5.0.tgz", + "integrity": "sha512-QN0twHNfe8mNJdH9unwsCK13GURU7oEAZqkBI+rsvpv1jrmserO+WnLE7jidR9W/1dxwZ0u/CB01mV2Gms/K2Q==", "dependencies": { "tslib": "^2.6.2" }, @@ -12585,22 +12585,22 @@ } }, "node_modules/aws-amplify": { - "version": "5.3.21", - "resolved": "https://registry.npmjs.org/aws-amplify/-/aws-amplify-5.3.21.tgz", - "integrity": "sha512-wTzycfJ/BnMx9yjv5GXnRc0KM5IA27ZFy6v/dnj2umeG81QpbK5bJP1DOfhhRUl3vKIXIjFL+b2Pb5yVwr05ZQ==", + "version": "5.3.24", + "resolved": "https://registry.npmjs.org/aws-amplify/-/aws-amplify-5.3.24.tgz", + "integrity": "sha512-gQc1xsbVfF+kz5VmVjje4AwFQr8ip6LAXq9IvwAbyxOG+BHB7tNf33SxdLpT/dGoz6wIuRYAkQiYIJYa/pkVMw==", "dependencies": { "@aws-amplify/analytics": "6.5.13", - "@aws-amplify/api": "5.4.13", + "@aws-amplify/api": "5.4.14", "@aws-amplify/auth": "5.6.13", "@aws-amplify/cache": "5.1.19", "@aws-amplify/core": "5.8.13", - "@aws-amplify/datastore": "4.7.13", + "@aws-amplify/datastore": "4.7.14", "@aws-amplify/geo": "2.3.13", - "@aws-amplify/interactions": "5.2.19", + "@aws-amplify/interactions": "5.2.20", "@aws-amplify/notifications": "1.6.14", - "@aws-amplify/predictions": "5.5.14", - "@aws-amplify/pubsub": "5.5.13", - "@aws-amplify/storage": "5.9.14", + "@aws-amplify/predictions": "5.5.16", + "@aws-amplify/pubsub": "5.6.0", + "@aws-amplify/storage": "5.9.15", "tslib": "^2.0.0" } }, @@ -13164,21 +13164,6 @@ "integrity": "sha512-Tpp60P6IUJDTuOq/5Z8cdskzJujfwqfOTkrwIwj7IRISpnkJnT6SyJ4PCPnGMoFjC9ddhal5KVIYtAt97ix05A==", "dev": true }, - "node_modules/body-parser/node_modules/qs": { - "version": "6.13.0", - "resolved": "https://registry.npmjs.org/qs/-/qs-6.13.0.tgz", - "integrity": "sha512-+38qI9SOr8tfZ4QmJNplMUxqjbe7LKvvZgWdExBOmd+egZTtjLB67Gu0HRX3u/XOq7UU2Nx6nsjvS16Z9uwfpg==", - "dev": true, - "dependencies": { - "side-channel": "^1.0.6" - }, - "engines": { - "node": ">=0.6" - }, - "funding": { - "url": "https://github.com/sponsors/ljharb" - } - }, "node_modules/bonjour-service": { "version": "1.2.1", "resolved": "https://registry.npmjs.org/bonjour-service/-/bonjour-service-1.2.1.tgz", @@ -14999,9 +14984,9 @@ "integrity": "sha512-ucAnuBEhUK4boH2HjVYG5Q2mQyPorvv0u/ocS+zhdw0S8AlHYY+GOFhP1Gio5z4icpP2ivFSvhtFjQi8+T9ppw==" }, "node_modules/encodeurl": { - "version": "1.0.2", - "resolved": "https://registry.npmjs.org/encodeurl/-/encodeurl-1.0.2.tgz", - "integrity": "sha512-TPJXq8JqFaVYm2CWmPvnP2Iyo4ZSM7/QKcSmuMLDObfpH5fi7RUGmd/rTDf+rut/saiDiQEeVTNgAmJEdAOx0w==", + "version": "2.0.0", + "resolved": "https://registry.npmjs.org/encodeurl/-/encodeurl-2.0.0.tgz", + "integrity": "sha512-Q0n9HRi4m6JuGIV1eFlmvJB7ZEVxu93IrMyiMsGC0lrMJMWzRgx6WGquyfQgZVb31vhGgXnfmPNNXmxnOkRBrg==", "dev": true, "engines": { "node": ">= 0.8" @@ -16483,9 +16468,9 @@ } }, "node_modules/express": { - "version": "4.20.0", - "resolved": "https://registry.npmjs.org/express/-/express-4.20.0.tgz", - "integrity": "sha512-pLdae7I6QqShF5PnNTCVn4hI91Dx0Grkn2+IAsMTgMIKuQVte2dN9PeGSSAME2FR8anOhVA62QDIUaWVfEXVLw==", + "version": "4.21.0", + "resolved": "https://registry.npmjs.org/express/-/express-4.21.0.tgz", + "integrity": "sha512-VqcNGcj/Id5ZT1LZ/cfihi3ttTn+NJmkli2eZADigjq29qTlWi/hAQ43t/VLPq8+UX06FCEx3ByOYet6ZFblng==", "dev": true, "dependencies": { "accepts": "~1.3.8", @@ -16500,7 +16485,7 @@ "encodeurl": "~2.0.0", "escape-html": "~1.0.3", "etag": "~1.8.1", - "finalhandler": "1.2.0", + "finalhandler": "1.3.1", "fresh": "0.5.2", "http-errors": "2.0.0", "merge-descriptors": "1.0.3", @@ -16509,11 +16494,11 @@ "parseurl": "~1.3.3", "path-to-regexp": "0.1.10", "proxy-addr": "~2.0.7", - "qs": "6.11.0", + "qs": "6.13.0", "range-parser": "~1.2.1", "safe-buffer": "5.2.1", "send": "0.19.0", - "serve-static": "1.16.0", + "serve-static": "1.16.2", "setprototypeof": "1.2.0", "statuses": "2.0.1", "type-is": "~1.6.18", @@ -16542,15 +16527,6 @@ "ms": "2.0.0" } }, - "node_modules/express/node_modules/encodeurl": { - "version": "2.0.0", - "resolved": "https://registry.npmjs.org/encodeurl/-/encodeurl-2.0.0.tgz", - "integrity": "sha512-Q0n9HRi4m6JuGIV1eFlmvJB7ZEVxu93IrMyiMsGC0lrMJMWzRgx6WGquyfQgZVb31vhGgXnfmPNNXmxnOkRBrg==", - "dev": true, - "engines": { - "node": ">= 0.8" - } - }, "node_modules/express/node_modules/ms": { "version": "2.0.0", "resolved": "https://registry.npmjs.org/ms/-/ms-2.0.0.tgz", @@ -16790,13 +16766,13 @@ } }, "node_modules/finalhandler": { - "version": "1.2.0", - "resolved": "https://registry.npmjs.org/finalhandler/-/finalhandler-1.2.0.tgz", - "integrity": "sha512-5uXcUVftlQMFnWC9qu/svkWv3GTd2PfUhK/3PLkYNAe7FbqJMt3515HaxE6eRL74GdsriiwujiawdaB1BpEISg==", + "version": "1.3.1", + "resolved": "https://registry.npmjs.org/finalhandler/-/finalhandler-1.3.1.tgz", + "integrity": "sha512-6BN9trH7bp3qvnrRyzsBz+g3lZxTNZTbVO2EV1CS0WIcDbawYVdYvGflME/9QP0h0pYlCDBCTjYa9nZzMDpyxQ==", "dev": true, "dependencies": { "debug": "2.6.9", - "encodeurl": "~1.0.2", + "encodeurl": "~2.0.0", "escape-html": "~1.0.3", "on-finished": "2.4.1", "parseurl": "~1.3.3", @@ -24311,12 +24287,12 @@ } }, "node_modules/qs": { - "version": "6.11.0", - "resolved": "https://registry.npmjs.org/qs/-/qs-6.11.0.tgz", - "integrity": "sha512-MvjoMCJwEarSbUYk5O+nmoSzSutSsTwF85zcHPQ9OrlFoZOYIjaqBAJIqIXjptyD5vThxGq52Xu/MaJzRkIk4Q==", + "version": "6.13.0", + "resolved": "https://registry.npmjs.org/qs/-/qs-6.13.0.tgz", + "integrity": "sha512-+38qI9SOr8tfZ4QmJNplMUxqjbe7LKvvZgWdExBOmd+egZTtjLB67Gu0HRX3u/XOq7UU2Nx6nsjvS16Z9uwfpg==", "dev": true, "dependencies": { - "side-channel": "^1.0.4" + "side-channel": "^1.0.6" }, "engines": { "node": ">=0.6" @@ -25360,9 +25336,9 @@ } }, "node_modules/rollup": { - "version": "2.79.1", - "resolved": "https://registry.npmjs.org/rollup/-/rollup-2.79.1.tgz", - "integrity": "sha512-uKxbd0IhMZOhjAiD5oAFp7BqvkA4Dv47qpOCtaNvng4HBwdbWtdOh8f5nZNuk2rp51PMGk3bzfWu5oayNEuYnw==", + "version": "2.79.2", + "resolved": "https://registry.npmjs.org/rollup/-/rollup-2.79.2.tgz", + "integrity": "sha512-fS6iqSPZDs3dr/y7Od6y5nha8dW1YnbgtsyotCVvoFGKbERG++CVRFv1meyGDE1SNItQA8BrnCw7ScdAhRJ3XQ==", "dev": true, "bin": { "rollup": "dist/bin/rollup" @@ -25668,6 +25644,15 @@ "integrity": "sha512-Tpp60P6IUJDTuOq/5Z8cdskzJujfwqfOTkrwIwj7IRISpnkJnT6SyJ4PCPnGMoFjC9ddhal5KVIYtAt97ix05A==", "dev": true }, + "node_modules/send/node_modules/encodeurl": { + "version": "1.0.2", + "resolved": "https://registry.npmjs.org/encodeurl/-/encodeurl-1.0.2.tgz", + "integrity": "sha512-TPJXq8JqFaVYm2CWmPvnP2Iyo4ZSM7/QKcSmuMLDObfpH5fi7RUGmd/rTDf+rut/saiDiQEeVTNgAmJEdAOx0w==", + "dev": true, + "engines": { + "node": ">= 0.8" + } + }, "node_modules/send/node_modules/ms": { "version": "2.1.3", "resolved": "https://registry.npmjs.org/ms/-/ms-2.1.3.tgz", @@ -25771,15 +25756,15 @@ } }, "node_modules/serve-static": { - "version": "1.16.0", - "resolved": "https://registry.npmjs.org/serve-static/-/serve-static-1.16.0.tgz", - "integrity": "sha512-pDLK8zwl2eKaYrs8mrPZBJua4hMplRWJ1tIFksVC3FtBEBnl8dxgeHtsaMS8DhS9i4fLObaon6ABoc4/hQGdPA==", + "version": "1.16.2", + "resolved": "https://registry.npmjs.org/serve-static/-/serve-static-1.16.2.tgz", + "integrity": "sha512-VqpjJZKadQB/PEbEwvFdO43Ax5dFBZ2UECszz8bQ7pi7wt//PWe1P6MN7eCnjsatYtBT6EuiClbjSWP2WrIoTw==", "dev": true, "dependencies": { - "encodeurl": "~1.0.2", + "encodeurl": "~2.0.0", "escape-html": "~1.0.3", "parseurl": "~1.3.3", - "send": "0.18.0" + "send": "0.19.0" }, "engines": { "node": ">= 0.8.0"