From 8e41bdabeb28e2825105de7b24691de939793d11 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 6 Sep 2024 04:31:16 +0000 Subject: [PATCH] fix: upgrade winston from 3.13.0 to 3.14.2 Snyk has created this PR to upgrade winston from 3.13.0 to 3.14.2. See this package in npm: winston See this project in Snyk: https://app.snyk.io/org/pavel-durov/project/94dc3fda-4f43-470b-8834-efed0f8570eb?utm_source=github&utm_medium=referral&page=upgrade-pr --- package-lock.json | 11 ++++++----- package.json | 2 +- 2 files changed, 7 insertions(+), 6 deletions(-) diff --git a/package-lock.json b/package-lock.json index 3beca69..6f49064 100644 --- a/package-lock.json +++ b/package-lock.json @@ -15,7 +15,7 @@ "jest": "^29.7.0", "node-telegram-bot-api": "^0.65.1", "ts-jest": "^29.2.3", - "winston": "^3.13.0" + "winston": "^3.14.2" }, "devDependencies": { "@biomejs/biome": "1.1.2", @@ -7303,15 +7303,16 @@ } }, "node_modules/winston": { - "version": "3.13.0", - "resolved": "https://registry.npmjs.org/winston/-/winston-3.13.0.tgz", - "integrity": "sha512-rwidmA1w3SE4j0E5MuIufFhyJPBDG7Nu71RkZor1p2+qHvJSZ9GYDA81AyleQcZbh/+V6HjeBdfnTZJm9rSeQQ==", + "version": "3.14.2", + "resolved": "https://registry.npmjs.org/winston/-/winston-3.14.2.tgz", + "integrity": "sha512-CO8cdpBB2yqzEf8v895L+GNKYJiEq8eKlHU38af3snQBQ+sdAIUepjMSguOIJC7ICbzm0ZI+Af2If4vIJrtmOg==", + "license": "MIT", "dependencies": { "@colors/colors": "^1.6.0", "@dabh/diagnostics": "^2.0.2", "async": "^3.2.3", "is-stream": "^2.0.0", - "logform": "^2.4.0", + "logform": "^2.6.0", "one-time": "^1.0.0", "readable-stream": "^3.4.0", "safe-stable-stringify": "^2.3.1", diff --git a/package.json b/package.json index 18884d6..878a966 100644 --- a/package.json +++ b/package.json @@ -21,7 +21,7 @@ "jest": "^29.7.0", "node-telegram-bot-api": "^0.65.1", "ts-jest": "^29.2.3", - "winston": "^3.13.0" + "winston": "^3.14.2" }, "devDependencies": { "@biomejs/biome": "1.1.2",