diff --git a/lib/uk.gov.hmcts-zephyr-automation-independent.jar b/lib/uk.gov.hmcts-zephyr-automation-independent.jar index 8015e67d46..1c7b8fdc53 100644 Binary files a/lib/uk.gov.hmcts-zephyr-automation-independent.jar and b/lib/uk.gov.hmcts-zephyr-automation-independent.jar differ diff --git a/package.json b/package.json index aaa0ab8212..cae3f360b6 100644 --- a/package.json +++ b/package.json @@ -121,7 +121,7 @@ "@hmcts/opal-frontend-common": "^0.0.66", "@hmcts/opal-frontend-common-node": "^0.0.27", "@hmcts/properties-volume": "^1.1.0", - "@hmcts/zephyr-automation-nodejs": "0.0.6", + "@hmcts/zephyr-automation-nodejs": "0.0.7", "@microsoft/applicationinsights-web": "^3.3.5", "@ministryofjustice/frontend": "^8.0.0", "@ngrx/signals": "^21.0.0", diff --git a/yarn-audit-known-issues b/yarn-audit-known-issues index 485768801c..95d7e23b3b 100644 --- a/yarn-audit-known-issues +++ b/yarn-audit-known-issues @@ -2,6 +2,8 @@ {"value":"@angular/ssr","children":{"ID":1113513,"Issue":"Angular SSR has an Open Redirect via X-Forwarded-Prefix","URL":"https://github.com/advisories/GHSA-xh43-g2fq-wjrj","Severity":"moderate","Vulnerable Versions":">=21.0.0-next.0 <21.1.5","Tree Versions":["21.1.4"],"Dependents":["opal-frontend@workspace:."]}} {"value":"@angular/ssr","children":{"ID":1115534,"Issue":"Protocol-Relative URL Injection via Single Backslash Bypass in Angular SSR","URL":"https://github.com/advisories/GHSA-vfx2-hv2g-xj5f","Severity":"moderate","Vulnerable Versions":">=21.0.0-next.0 <21.2.3","Tree Versions":["21.1.4"],"Dependents":["opal-frontend@workspace:."]}} {"value":"ajv","children":{"ID":1113715,"Issue":"ajv has ReDoS when using `$data` option","URL":"https://github.com/advisories/GHSA-2g4f-4pwh-qvx6","Severity":"moderate","Vulnerable Versions":">=7.0.0-alpha.0 <8.18.0","Tree Versions":["8.17.1"],"Dependents":["schema-utils@npm:4.3.3"]}} +{"value":"lodash","children":{"ID":1115806,"Issue":"lodash vulnerable to Code Injection via `_.template` imports key names","URL":"https://github.com/advisories/GHSA-r5fr-rjxr-66jc","Severity":"high","Vulnerable Versions":">=4.0.0 <=4.17.23","Tree Versions":["4.17.23"],"Dependents":["@cypress/webpack-preprocessor@virtual:a675e69e845cebadc36cee9a38065a1960f4aab74a9924442784ad5431c94d53a7f1d4962754c45f81da4004ef26e80c7c562b8c146cee281975b943df474817#npm:7.0.2"]}} +{"value":"lodash","children":{"ID":1115810,"Issue":"lodash vulnerable to Prototype Pollution via array path bypass in `_.unset` and `_.omit`","URL":"https://github.com/advisories/GHSA-f23m-r3pf-42rh","Severity":"moderate","Vulnerable Versions":"<=4.17.23","Tree Versions":["4.17.23"],"Dependents":["@cypress/webpack-preprocessor@virtual:a675e69e845cebadc36cee9a38065a1960f4aab74a9924442784ad5431c94d53a7f1d4962754c45f81da4004ef26e80c7c562b8c146cee281975b943df474817#npm:7.0.2"]}} {"value":"minimatch","children":{"ID":1113459,"Issue":"minimatch has a ReDoS via repeated wildcards with non-matching literal in pattern","URL":"https://github.com/advisories/GHSA-3ppc-4f35-3m26","Severity":"high","Vulnerable Versions":"<3.1.3","Tree Versions":["3.1.2"],"Dependents":["find-cypress-specs@npm:1.47.2"]}} {"value":"minimatch","children":{"ID":1113465,"Issue":"minimatch has a ReDoS via repeated wildcards with non-matching literal in pattern","URL":"https://github.com/advisories/GHSA-3ppc-4f35-3m26","Severity":"high","Vulnerable Versions":">=9.0.0 <9.0.6","Tree Versions":["9.0.5"],"Dependents":["mocha@npm:11.7.5"]}} {"value":"minimatch","children":{"ID":1113538,"Issue":"minimatch has ReDoS: matchOne() combinatorial backtracking via multiple non-adjacent GLOBSTAR segments","URL":"https://github.com/advisories/GHSA-7r86-cg39-jmmj","Severity":"high","Vulnerable Versions":"<3.1.3","Tree Versions":["3.1.2"],"Dependents":["find-cypress-specs@npm:1.47.2"]}} diff --git a/yarn.lock b/yarn.lock index 7a402c6b05..6afa53bb67 100644 --- a/yarn.lock +++ b/yarn.lock @@ -3737,12 +3737,12 @@ __metadata: languageName: node linkType: hard -"@hmcts/zephyr-automation-nodejs@npm:0.0.6": - version: 0.0.6 - resolution: "@hmcts/zephyr-automation-nodejs@npm:0.0.6" +"@hmcts/zephyr-automation-nodejs@npm:0.0.7": + version: 0.0.7 + resolution: "@hmcts/zephyr-automation-nodejs@npm:0.0.7" dependencies: "@hmcts/nodejs-logging": "npm:^4.0.4" - checksum: 10/7574edb5e5873b53894aa0c1701e389ad1ecaee562c0540ffda5a7596bed687fd8be72a5c689f45d5de098af1326e3047b4072d188ff923bd8d2ed91f1d48282 + checksum: 10/926c536f634588d200c93c40ff296166e6cfe61066b0ba6a7149c4d8b24812467b58fc3038afa45d846e5b93b53ca100b2e7203f3eace2c02d4e4daa9cea94de languageName: node linkType: hard @@ -14979,7 +14979,7 @@ __metadata: "@hmcts/opal-frontend-common": "npm:^0.0.66" "@hmcts/opal-frontend-common-node": "npm:^0.0.27" "@hmcts/properties-volume": "npm:^1.1.0" - "@hmcts/zephyr-automation-nodejs": "npm:0.0.6" + "@hmcts/zephyr-automation-nodejs": "npm:0.0.7" "@microsoft/applicationinsights-web": "npm:^3.3.5" "@ministryofjustice/frontend": "npm:^8.0.0" "@ngrx/signals": "npm:^21.0.0"