fix: add uri-js to resolutions to fix cve vulnerability

hjaraujof · hjaraujof · commit 5290e0a828f1 · 2022-11-24T17:59:40.000-03:00
diff --git a/package.json b/package.json
@@ -64,5 +64,8 @@
       "yarn lint:fix",
       "git add --force"
     ]
+  },
+  "resolutions": {
+    "**/uri-js": "^3.0.1"
   }
 }
diff --git a/yarn.lock b/yarn.lock
@@ -6125,10 +6125,10 @@ update-browserslist-db@^1.0.9:
     escalade "^3.1.1"
     picocolors "^1.0.0"
 
-uri-js@^4.2.2:
-  version "4.4.1"
-  resolved "https://registry.yarnpkg.com/uri-js/-/uri-js-4.4.1.tgz#9b1a52595225859e55f669d928f88c6c57f2a77e"
-  integrity sha512-7rKUyy33Q1yc98pQ1DAmLtwX109F7TIfWlW1Ydo8Wl1ii1SeHieeh0HHfPeL2fMXK6z0s8ecKs9frCuLJvndBg==
+uri-js@^3.0.1, uri-js@^4.2.2:
+  version "3.0.2"
+  resolved "https://registry.yarnpkg.com/uri-js/-/uri-js-3.0.2.tgz#f90b858507f81dea4dcfbb3c4c3dbfa2b557faaa"
+  integrity sha512-SoboS4c924cg+wR2vxl8fospPPli3ZmVPIkRpJEWcrGIPeE8Tr3m9zNIyjYKn9YlF8EgiXQDCy3XVZxSFNjh8A==
   dependencies:
     punycode "^2.1.0"
 
