[Bug]: Update json5 version to 2.2.2 in order to fix CVE-2022-46175
mboaventura opened this issue · comments
Version
29.0.3
Steps to reproduce
npm i ts-jest
npm list json5
Expected behavior
I expected to see:
npm list json5
├─┬ ts-jest@29.0.3
└── json5@2.2.2
Actual behavior
├─┬ ts-jest@29.0.3
└── json5@2.2.1
Debug log
N/A
Additional context
https://nvd.nist.gov/vuln/detail/CVE-2022-46175
Environment
System:
OS: macOS 13.1
CPU: (12) x64 Intel(R) Core(TM) i7-9750H CPU @ 2.60GHz
Binaries:
Node: 14.17.5 - ~/.nvm/versions/node/v14.17.5/bin/node
npm: 6.14.14 - ~/.nvm/versions/node/v14.17.5/bin/npm
npmPackages:
jest: ^29.3.1 => 29.3.1