Skip to content

Commit 46f7220

Browse files
sejliopensearch-changeset-bot[bot]
sejli
and
opensearch-changeset-bot[bot]
authored
[CVE-2024-53382] Add prismjs 1.30.0 to resolutions (opensearch-project#9634)
* adding resolution for prismjs Signed-off-by: Sean Li <lnse@amazon.com> * Changeset file for PR opensearch-project#9634 created/updated --------- Signed-off-by: Sean Li <lnse@amazon.com> Co-authored-by: opensearch-changeset-bot[bot] <154024398+opensearch-changeset-bot[bot]@users.noreply.github.com>
1 parent 38a0d9f commit 46f7220

File tree

3 files changed

+8
-5
lines changed

3 files changed

+8
-5
lines changed

changelogs/fragments/9634.yml

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,2 @@
1+
security:
2+
- Resolve CVE-2024-53392 by bumping prismjs to 1.30.0 ([#9634](https://github.com/opensearch-project/OpenSearch-Dashboards/pull/9634))

package.json

Lines changed: 2 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -143,7 +143,8 @@
143143
"**/yaml": "^2.2.2",
144144
"**/json5": "^2.2.3",
145145
"**/mime": "^3.0.0",
146-
"**/performance-now": "^2.1.0"
146+
"**/performance-now": "^2.1.0",
147+
"**/prismjs": "^1.30.0"
147148
},
148149
"workspaces": {
149150
"packages": [

yarn.lock

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -15631,10 +15631,10 @@ pretty-format@^28.0.0, pretty-format@^28.1.3:
1563115631
ansi-styles "^5.0.0"
1563215632
react-is "^18.0.0"
1563315633

15634-
prismjs@~1.27.0:
15635-
version "1.27.0"
15636-
resolved "https://registry.yarnpkg.com/prismjs/-/prismjs-1.27.0.tgz#bb6ee3138a0b438a3653dd4d6ce0cc6510a45057"
15637-
integrity sha512-t13BGPUlFDR7wRB5kQDG4jjl7XeuH6jbJGt11JHPL96qwsEHNX2+68tFXqc1/k+/jALsbSWJKUOT/hcYAZ5LkA==
15634+
prismjs@^1.30.0, prismjs@~1.27.0:
15635+
version "1.30.0"
15636+
resolved "https://registry.yarnpkg.com/prismjs/-/prismjs-1.30.0.tgz#d9709969d9d4e16403f6f348c63553b19f0975a9"
15637+
integrity sha512-DEvV2ZF2r2/63V+tK8hQvrR2ZGn10srHbXviTlcv7Kpzw8jWiNTqbVgjO3IY8RxrrOUF8VPMQQFysYYYv0YZxw==
1563815638

1563915639
process-nextick-args@^2.0.0, process-nextick-args@~2.0.0:
1564015640
version "2.0.1"

0 commit comments

Comments
 (0)