From 4908dac5b1cda1c0724c7551ce924bfa4a06ea67 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sun, 20 Jul 2025 23:39:44 +0000 Subject: [PATCH] fix: package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-ELLIPTIC-8187303 - https://snyk.io/vuln/SNYK-JS-NODEFORGE-2330875 - https://snyk.io/vuln/SNYK-JS-NODEFORGE-2430339 - https://snyk.io/vuln/SNYK-JS-NODEFORGE-2331908 - https://snyk.io/vuln/SNYK-JS-NODEFORGE-2430337 - https://snyk.io/vuln/SNYK-JS-NODEFORGE-2430341 --- package.json | 20 ++++++++++---------- 1 file changed, 10 insertions(+), 10 deletions(-) diff --git a/package.json b/package.json index d908183deb..b2a2999e68 100644 --- a/package.json +++ b/package.json @@ -129,19 +129,19 @@ "ky": "^0.14.0", "ky-universal": "~0.3.0", "libp2p": "^0.26.2", - "libp2p-bootstrap": "~0.9.3", - "libp2p-crypto": "^0.16.2", + "libp2p-bootstrap": "~0.14.0", + "libp2p-crypto": "^0.21.2", "libp2p-delegated-content-routing": "^0.3.1", - "libp2p-delegated-peer-routing": "^0.3.1", + "libp2p-delegated-peer-routing": "^0.11.0", "libp2p-floodsub": "^0.18.0", - "libp2p-gossipsub": "~0.0.5", - "libp2p-kad-dht": "~0.16.0", - "libp2p-keychain": "^0.5.1", - "libp2p-mdns": "~0.12.0", + "libp2p-gossipsub": "~0.12.0", + "libp2p-kad-dht": "~0.27.0", + "libp2p-keychain": "^0.6.1", + "libp2p-mdns": "~0.18.0", "libp2p-record": "~0.7.0", "libp2p-secio": "~0.11.0", "libp2p-tcp": "^0.13.0", - "libp2p-webrtc-star": "~0.16.0", + "libp2p-webrtc-star": "~0.25.0", "libp2p-websocket-star-multi": "~0.4.3", "libp2p-websockets": "~0.12.3", "lodash": "^4.17.15", @@ -161,8 +161,8 @@ "p-iteration": "^1.1.8", "p-queue": "^6.1.0", "peer-book": "^0.9.1", - "peer-id": "^0.12.2", - "peer-info": "~0.15.1", + "peer-id": "^0.16.0", + "peer-info": "~0.17.5", "progress": "^2.0.1", "promise-nodeify": "^3.0.1", "promisify-es6": "^1.0.3",