From db9ee44bd6d5b6ea60c57478e798601b6d11f25a Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 4 Jan 2022 15:41:02 +0000 Subject: [PATCH] fix: upgrade @actions/core from 1.2.4 to 1.6.0 Snyk has created this PR to upgrade @actions/core from 1.2.4 to 1.6.0. See this package in npm: https://www.npmjs.com/package/@actions/core See this project in Snyk: https://app.snyk.io/org/ironcladhq/project/64f6b393-31e3-4e1c-9850-4b6a615ce938?utm_source=github&utm_medium=referral&page=upgrade-pr --- package-lock.json | 19 ++++++++++++++++--- package.json | 2 +- 2 files changed, 17 insertions(+), 4 deletions(-) diff --git a/package-lock.json b/package-lock.json index 00fcf02..b65774d 100644 --- a/package-lock.json +++ b/package-lock.json @@ -5,9 +5,22 @@ "requires": true, "dependencies": { "@actions/core": { - "version": "1.2.4", - "resolved": "https://registry.npmjs.org/@actions/core/-/core-1.2.4.tgz", - "integrity": "sha512-YJCEq8BE3CdN8+7HPZ/4DxJjk/OkZV2FFIf+DlZTC/4iBlzYCD5yjRR6eiOS5llO11zbRltIRuKAjMKaWTE6cg==" + "version": "1.6.0", + "resolved": "https://registry.npmjs.org/@actions/core/-/core-1.6.0.tgz", + "integrity": "sha512-NB1UAZomZlCV/LmJqkLhNTqtKfFXJZAUPcfl/zqG7EfsQdeUJtaWO98SGbuQ3pydJ3fHl2CvI/51OKYlCYYcaw==", + "requires": { + "@actions/http-client": "^1.0.11" + }, + "dependencies": { + "@actions/http-client": { + "version": "1.0.11", + "resolved": "https://registry.npmjs.org/@actions/http-client/-/http-client-1.0.11.tgz", + "integrity": "sha512-VRYHGQV1rqnROJqdMvGUbY/Kn8vriQe/F9HR2AlYHzmKuM/p3kjNuXhmdBfcVgsvRWTz5C5XW5xvndZrVBuAYg==", + "requires": { + "tunnel": "0.0.6" + } + } + } }, "@actions/exec": { "version": "1.0.4", diff --git a/package.json b/package.json index 80f2844..6bd6e44 100644 --- a/package.json +++ b/package.json @@ -18,7 +18,7 @@ }, "homepage": "https://github.com/ActionsRML/get-PR-latest-commit#readme", "dependencies": { - "@actions/core": "^1.2.4", + "@actions/core": "^1.6.0", "@actions/exec": "^1.0.4", "@actions/github": "^4.0.0", "@octokit/core": "^3.1.0",