From c885c96644a3d695ff6523e3fd8ee60327552741 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Wed, 9 Nov 2022 14:03:07 -0700 Subject: [PATCH] chore(deps): update minor dependency updates (#5720) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- .github/workflows/publish.yaml | 4 ++-- .github/workflows/security.yaml | 2 +- .github/workflows/trivy-docker.yaml | 2 +- package.json | 2 +- yarn.lock | 12 ++++++------ 5 files changed, 11 insertions(+), 11 deletions(-) diff --git a/.github/workflows/publish.yaml b/.github/workflows/publish.yaml index de50fd07f..7d824d37e 100644 --- a/.github/workflows/publish.yaml +++ b/.github/workflows/publish.yaml @@ -30,7 +30,7 @@ jobs: uses: actions/checkout@v3 - name: Download npm package from release artifacts - uses: robinraju/release-downloader@v1.5 + uses: robinraju/release-downloader@v1.6 with: repository: "coder/code-server" tag: ${{ github.event.inputs.version || github.ref_name }} @@ -174,7 +174,7 @@ jobs: echo "VERSION=${TAG#v}" >> $GITHUB_ENV - name: Download release artifacts - uses: robinraju/release-downloader@v1.5 + uses: robinraju/release-downloader@v1.6 with: repository: "coder/code-server" tag: v${{ env.VERSION }} diff --git a/.github/workflows/security.yaml b/.github/workflows/security.yaml index d0cefad80..a392d3804 100644 --- a/.github/workflows/security.yaml +++ b/.github/workflows/security.yaml @@ -65,7 +65,7 @@ jobs: fetch-depth: 0 - name: Run Trivy vulnerability scanner in repo mode - uses: aquasecurity/trivy-action@e55de85beea5fcec743de6bb6bc56943a0af3c33 + uses: aquasecurity/trivy-action@9ab158e8597f3b310480b9a69402b419bc03dbd5 with: scan-type: "fs" scan-ref: "." diff --git a/.github/workflows/trivy-docker.yaml b/.github/workflows/trivy-docker.yaml index b616a1934..5fc67a803 100644 --- a/.github/workflows/trivy-docker.yaml +++ b/.github/workflows/trivy-docker.yaml @@ -51,7 +51,7 @@ jobs: uses: actions/checkout@v3 - name: Run Trivy vulnerability scanner in image mode - uses: aquasecurity/trivy-action@e55de85beea5fcec743de6bb6bc56943a0af3c33 + uses: aquasecurity/trivy-action@9ab158e8597f3b310480b9a69402b419bc03dbd5 with: image-ref: "docker.io/codercom/code-server:latest" ignore-unfixed: true diff --git a/package.json b/package.json index df72dfc7f..f0c007343 100644 --- a/package.json +++ b/package.json @@ -87,7 +87,7 @@ }, "dependencies": { "@coder/logger": "^3.0.0", - "argon2": "0.29.0", + "argon2": "0.30.2", "compression": "^1.7.4", "cookie-parser": "^1.4.5", "env-paths": "^2.2.0", diff --git a/yarn.lock b/yarn.lock index 1494b734e..c631dd0e5 100644 --- a/yarn.lock +++ b/yarn.lock @@ -41,7 +41,7 @@ resolved "https://registry.yarnpkg.com/@humanwhocodes/object-schema/-/object-schema-1.2.1.tgz#b520529ec21d8e5945a1851dfd1c32e94e39ff45" integrity sha512-ZnQMnLV4e7hDlUvw8H+U8ASL02SS2Gn6+9Ac3wGGLIe7+je2AeAOxPY+izIPJDfFDb7eDjev0Us8MO1iFRN8hA== -"@mapbox/node-pre-gyp@^1.0.9": +"@mapbox/node-pre-gyp@^1.0.10": version "1.0.10" resolved "https://registry.yarnpkg.com/@mapbox/node-pre-gyp/-/node-pre-gyp-1.0.10.tgz#8e6735ccebbb1581e5a7e652244cadc8a844d03c" integrity sha512-4ySo4CjzStuprMwk35H5pPbkymjv1SF3jGLj6rAHp/xT/RF7TL7bd9CTm1xDY49K2qF7jmR/g7k+SkLETP6opA== @@ -505,12 +505,12 @@ arg@^4.1.0: resolved "https://registry.yarnpkg.com/arg/-/arg-4.1.3.tgz#269fc7ad5b8e42cb63c896d5666017261c144089" integrity sha512-58S9QDqG0Xx27YwPSt9fJxivjYl432YCwfDMfZ+71RAqUrZef7LrKQZ3LHLOwCS4FLNBplP533Zx895SeOCHvA== -argon2@0.29.0: - version "0.29.0" - resolved "https://registry.yarnpkg.com/argon2/-/argon2-0.29.0.tgz#94b6ef96cbdbe9f3562523c7130552af4c8d25bb" - integrity sha512-J8XxGYjq90qohrN5ySXTIXJ2HyDjMOw3uXMOsWrHzKe9daT6TtFCCtrADz1wPFuDH2bOxumPwbgBhKa5AknIhw== +argon2@0.30.2: + version "0.30.2" + resolved "https://registry.yarnpkg.com/argon2/-/argon2-0.30.2.tgz#b308a039d6d0cda5a3c47cbddd12685f033c33fa" + integrity sha512-RBbXTUsrJUQH259/72CCJxQa0hV961pV4PyZ7R1czGkArSsQP4DToCS2axmNfHywXaBNEMPWMW6rM82EArulYA== dependencies: - "@mapbox/node-pre-gyp" "^1.0.9" + "@mapbox/node-pre-gyp" "^1.0.10" "@phc/format" "^1.0.0" node-addon-api "^5.0.0"