Giters

kulshekhar / ts-jest

A Jest transformer with source map support that lets you use Jest to test projects written in TypeScript.

Home Page:https://kulshekhar.github.io/ts-jest

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

[Bug]: Update json5 version to 2.2.2 in order to fix CVE-2022-46175

mboaventura opened this issue · comments

commented

Version

29.0.3

Steps to reproduce

npm i ts-jest
npm list json5

Expected behavior

I expected to see:

npm list json5
├─┬ ts-jest@29.0.3
  └── json5@2.2.2

Actual behavior

├─┬ ts-jest@29.0.3
  └── json5@2.2.1

Debug log

N/A

Additional context

https://nvd.nist.gov/vuln/detail/CVE-2022-46175

Environment

System:
    OS: macOS 13.1
    CPU: (12) x64 Intel(R) Core(TM) i7-9750H CPU @ 2.60GHz
  Binaries:
    Node: 14.17.5 - ~/.nvm/versions/node/v14.17.5/bin/node
    npm: 6.14.14 - ~/.nvm/versions/node/v14.17.5/bin/npm
  npmPackages:
    jest: ^29.3.1 => 29.3.1