mediawiki/extensions/Wikistories (main)

sourcepatches
From 707f11cae676bfee96144a14e34d0ce27745d33f Mon Sep 17 00:00:00 2001
From: libraryupgrader <tools.libraryupgrader@tools.wmflabs.org>
Date: Fri, 12 Apr 2024 19:06:37 +0000
Subject: [PATCH] build: Updating tar to 6.2.1

* https://github.com/advisories/GHSA-f5x3-32g6-xq36

Change-Id: I7d3b1545c0aa38ce0158c856ae527f134f244079
---
 package-lock.json | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index 96688c7..bc614dd 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -27381,9 +27381,9 @@
 			}
 		},
 		"node_modules/tar": {
-			"version": "6.1.15",
-			"resolved": "https://registry.npmjs.org/tar/-/tar-6.1.15.tgz",
-			"integrity": "sha512-/zKt9UyngnxIT/EAGYuxaMYgOIJiP81ab9ZfkILq4oNLPFX50qyYmu7jRj9qeXoxmJHjGlbH0+cm2uy1WCs10A==",
+			"version": "6.2.1",
+			"resolved": "https://registry.npmjs.org/tar/-/tar-6.2.1.tgz",
+			"integrity": "sha512-DZ4yORTwrbTj/7MZYq2w+/ZFdI6OZ/f9SFHR+71gIVUZhOQPHzVCLpvRnPgyaMpfWxxk/4ONva3GQSyNIKRv6A==",
 			"dev": true,
 			"dependencies": {
 				"chownr": "^2.0.0",
@@ -51917,9 +51917,9 @@
 			"dev": true
 		},
 		"tar": {
-			"version": "6.1.15",
-			"resolved": "https://registry.npmjs.org/tar/-/tar-6.1.15.tgz",
-			"integrity": "sha512-/zKt9UyngnxIT/EAGYuxaMYgOIJiP81ab9ZfkILq4oNLPFX50qyYmu7jRj9qeXoxmJHjGlbH0+cm2uy1WCs10A==",
+			"version": "6.2.1",
+			"resolved": "https://registry.npmjs.org/tar/-/tar-6.2.1.tgz",
+			"integrity": "sha512-DZ4yORTwrbTj/7MZYq2w+/ZFdI6OZ/f9SFHR+71gIVUZhOQPHzVCLpvRnPgyaMpfWxxk/4ONva3GQSyNIKRv6A==",
 			"dev": true,
 			"requires": {
 				"chownr": "^2.0.0",
-- 
2.39.2

$ date
--- stdout ---
Fri Apr 12 19:04:16 UTC 2024

--- end ---
$ git clone file:///srv/git/mediawiki-extensions-Wikistories.git repo --depth=1 -b master
--- stderr ---
Cloning into 'repo'...
--- stdout ---

--- end ---
$ git config user.name libraryupgrader
--- stdout ---

--- end ---
$ git config user.email tools.libraryupgrader@tools.wmflabs.org
--- stdout ---

--- end ---
$ git submodule update --init
--- stdout ---

--- end ---
$ grr init
--- stdout ---
Installed commit-msg hook.

--- end ---
$ git show-ref refs/heads/master
--- stdout ---
6b6e307c4871b54e3bf1bde954ed8fdf1739ac4d refs/heads/master

--- end ---
$ /usr/bin/npm audit --json
--- stdout ---
{
  "auditReportVersion": 2,
  "vulnerabilities": {
    "@mdx-js/mdx": {
      "name": "@mdx-js/mdx",
      "severity": "high",
      "isDirect": false,
      "via": [
        "remark-mdx",
        "remark-parse"
      ],
      "effects": [
        "@storybook/mdx1-csf"
      ],
      "range": "<=1.6.22",
      "nodes": [
        "node_modules/@mdx-js/mdx"
      ],
      "fixAvailable": {
        "name": "@storybook/addon-essentials",
        "version": "8.0.8",
        "isSemVerMajor": true
      }
    },
    "@storybook/addon-docs": {
      "name": "@storybook/addon-docs",
      "severity": "high",
      "isDirect": false,
      "via": [
        "@storybook/mdx1-csf"
      ],
      "effects": [
        "@storybook/addon-essentials"
      ],
      "range": "6.5.0-alpha.1 - 7.0.3 || 7.1.0-alpha.0 - 7.1.0-rc.2",
      "nodes": [
        "node_modules/@storybook/addon-docs"
      ],
      "fixAvailable": {
        "name": "@storybook/addon-essentials",
        "version": "8.0.8",
        "isSemVerMajor": true
      }
    },
    "@storybook/addon-essentials": {
      "name": "@storybook/addon-essentials",
      "severity": "high",
      "isDirect": true,
      "via": [
        "@storybook/addon-docs"
      ],
      "effects": [],
      "range": "6.5.0-alpha.1 - 7.0.3 || 7.1.0-alpha.0 - 7.1.0-rc.2",
      "nodes": [
        "node_modules/@storybook/addon-essentials"
      ],
      "fixAvailable": {
        "name": "@storybook/addon-essentials",
        "version": "8.0.8",
        "isSemVerMajor": true
      }
    },
    "@storybook/builder-webpack4": {
      "name": "@storybook/builder-webpack4",
      "severity": "high",
      "isDirect": true,
      "via": [
        "autoprefixer",
        "css-loader",
        "postcss",
        "postcss-flexbugs-fixes",
        "webpack-dev-middleware"
      ],
      "effects": [
        "@storybook/core-server"
      ],
      "range": "*",
      "nodes": [
        "node_modules/@storybook/builder-webpack4"
      ],
      "fixAvailable": {
        "name": "@storybook/vue3",
        "version": "8.0.8",
        "isSemVerMajor": true
      }
    },
    "@storybook/core": {
      "name": "@storybook/core",
      "severity": "moderate",
      "isDirect": false,
      "via": [
        "@storybook/core-server"
      ],
      "effects": [
        "@storybook/vue3"
      ],
      "range": ">=6.2.0-alpha.0",
      "nodes": [
        "node_modules/@storybook/core"
      ],
      "fixAvailable": {
        "name": "@storybook/vue3",
        "version": "8.0.8",
        "isSemVerMajor": true
      }
    },
    "@storybook/core-server": {
      "name": "@storybook/core-server",
      "severity": "high",
      "isDirect": false,
      "via": [
        "@storybook/builder-webpack4",
        "@storybook/csf-tools",
        "@storybook/manager-webpack4",
        "cpy"
      ],
      "effects": [
        "@storybook/core"
      ],
      "range": "<=7.0.0-rc.11",
      "nodes": [
        "node_modules/@storybook/core-server"
      ],
      "fixAvailable": {
        "name": "@storybook/vue3",
        "version": "8.0.8",
        "isSemVerMajor": true
      }
    },
    "@storybook/csf-tools": {
      "name": "@storybook/csf-tools",
      "severity": "high",
      "isDirect": false,
      "via": [
        "@storybook/mdx1-csf"
      ],
      "effects": [
        "@storybook/core-server"
      ],
      "range": "6.5.0-alpha.1 - 6.5.17-alpha.0",
      "nodes": [
        "node_modules/@storybook/csf-tools"
      ],
      "fixAvailable": {
        "name": "@storybook/vue3",
        "version": "8.0.8",
        "isSemVerMajor": true
      }
    },
    "@storybook/manager-webpack4": {
      "name": "@storybook/manager-webpack4",
      "severity": "high",
      "isDirect": true,
      "via": [
        "css-loader",
        "webpack-dev-middleware"
      ],
      "effects": [
        "@storybook/core-server"
      ],
      "range": "*",
      "nodes": [
        "node_modules/@storybook/manager-webpack4"
      ],
      "fixAvailable": {
        "name": "@storybook/vue3",
        "version": "8.0.8",
        "isSemVerMajor": true
      }
    },
    "@storybook/mdx1-csf": {
      "name": "@storybook/mdx1-csf",
      "severity": "high",
      "isDirect": false,
      "via": [
        "@mdx-js/mdx"
      ],
      "effects": [
        "@storybook/addon-docs",
        "@storybook/csf-tools"
      ],
      "range": "*",
      "nodes": [
        "node_modules/@storybook/mdx1-csf"
      ],
      "fixAvailable": {
        "name": "@storybook/addon-essentials",
        "version": "8.0.8",
        "isSemVerMajor": true
      }
    },
    "@storybook/vue3": {
      "name": "@storybook/vue3",
      "severity": "moderate",
      "isDirect": true,
      "via": [
        "@storybook/core"
      ],
      "effects": [],
      "range": "<=6.5.17-alpha.0",
      "nodes": [
        "node_modules/@storybook/vue3"
      ],
      "fixAvailable": {
        "name": "@storybook/vue3",
        "version": "8.0.8",
        "isSemVerMajor": true
      }
    },
    "autoprefixer": {
      "name": "autoprefixer",
      "severity": "moderate",
      "isDirect": false,
      "via": [
        "postcss"
      ],
      "effects": [],
      "range": "1.0.20131222 - 9.8.8",
      "nodes": [
        "node_modules/autoprefixer"
      ],
      "fixAvailable": true
    },
    "chokidar": {
      "name": "chokidar",
      "severity": "high",
      "isDirect": false,
      "via": [
        "glob-parent"
      ],
      "effects": [
        "watchpack-chokidar2"
      ],
      "range": "1.0.0-rc1 - 2.1.8",
      "nodes": [
        "node_modules/watchpack-chokidar2/node_modules/chokidar"
      ],
      "fixAvailable": true
    },
    "cpy": {
      "name": "cpy",
      "severity": "high",
      "isDirect": false,
      "via": [
        "globby"
      ],
      "effects": [
        "@storybook/core-server"
      ],
      "range": "7.0.0 - 8.1.2",
      "nodes": [
        "node_modules/cpy"
      ],
      "fixAvailable": {
        "name": "@storybook/vue3",
        "version": "8.0.8",
        "isSemVerMajor": true
      }
    },
    "css-loader": {
      "name": "css-loader",
      "severity": "moderate",
      "isDirect": false,
      "via": [
        "icss-utils",
        "postcss",
        "postcss-modules-extract-imports",
        "postcss-modules-local-by-default",
        "postcss-modules-scope",
        "postcss-modules-values"
      ],
      "effects": [],
      "range": "0.15.0 - 4.3.0",
      "nodes": [
        "node_modules/css-loader"
      ],
      "fixAvailable": true
    },
    "fast-glob": {
      "name": "fast-glob",
      "severity": "high",
      "isDirect": false,
      "via": [
        "glob-parent"
      ],
      "effects": [
        "globby"
      ],
      "range": "<=2.2.7",
      "nodes": [
        "node_modules/cpy/node_modules/fast-glob"
      ],
      "fixAvailable": {
        "name": "@storybook/vue3",
        "version": "8.0.8",
        "isSemVerMajor": true
      }
    },
    "glob-parent": {
      "name": "glob-parent",
      "severity": "high",
      "isDirect": false,
      "via": [
        {
          "source": 1095007,
          "name": "glob-parent",
          "dependency": "glob-parent",
          "title": "glob-parent vulnerable to Regular Expression Denial of Service in enclosure regex",
          "url": "https://github.com/advisories/GHSA-ww39-953v-wcq6",
          "severity": "high",
          "cwe": [
            "CWE-400"
          ],
          "cvss": {
            "score": 7.5,
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
          },
          "range": "<5.1.2"
        }
      ],
      "effects": [
        "chokidar",
        "fast-glob"
      ],
      "range": "<5.1.2",
      "nodes": [
        "node_modules/cpy/node_modules/glob-parent",
        "node_modules/watchpack-chokidar2/node_modules/glob-parent"
      ],
      "fixAvailable": {
        "name": "@storybook/vue3",
        "version": "8.0.8",
        "isSemVerMajor": true
      }
    },
    "globby": {
      "name": "globby",
      "severity": "high",
      "isDirect": false,
      "via": [
        "fast-glob"
      ],
      "effects": [
        "cpy"
      ],
      "range": "8.0.0 - 9.2.0",
      "nodes": [
        "node_modules/cpy/node_modules/globby"
      ],
      "fixAvailable": {
        "name": "@storybook/vue3",
        "version": "8.0.8",
        "isSemVerMajor": true
      }
    },
    "icss-utils": {
      "name": "icss-utils",
      "severity": "moderate",
      "isDirect": false,
      "via": [
        "postcss"
      ],
      "effects": [
        "css-loader",
        "postcss-modules-local-by-default",
        "postcss-modules-values"
      ],
      "range": "<=4.1.1",
      "nodes": [
        "node_modules/icss-utils"
      ],
      "fixAvailable": true
    },
    "meow": {
      "name": "meow",
      "severity": "high",
      "isDirect": false,
      "via": [
        "trim-newlines"
      ],
      "effects": [],
      "range": "3.4.0 - 5.0.0",
      "nodes": [
        "node_modules/default-browser-id/node_modules/meow"
      ],
      "fixAvailable": true
    },
    "mwbot": {
      "name": "mwbot",
      "severity": "moderate",
      "isDirect": false,
      "via": [
        "request"
      ],
      "effects": [
        "wdio-mediawiki"
      ],
      "range": ">=0.1.6",
      "nodes": [
        "node_modules/mwbot"
      ],
      "fixAvailable": false
    },
    "postcss": {
      "name": "postcss",
      "severity": "moderate",
      "isDirect": false,
      "via": [
        {
          "source": 1094544,
          "name": "postcss",
          "dependency": "postcss",
          "title": "PostCSS line return parsing error",
          "url": "https://github.com/advisories/GHSA-7fh5-64p2-3v2j",
          "severity": "moderate",
          "cwe": [
            "CWE-74",
            "CWE-144"
          ],
          "cvss": {
            "score": 5.3,
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"
          },
          "range": "<8.4.31"
        }
      ],
      "effects": [
        "@storybook/builder-webpack4",
        "autoprefixer",
        "css-loader",
        "icss-utils",
        "postcss-flexbugs-fixes",
        "postcss-modules-extract-imports",
        "postcss-modules-local-by-default",
        "postcss-modules-scope",
        "postcss-modules-values"
      ],
      "range": "<8.4.31",
      "nodes": [
        "node_modules/@storybook/builder-webpack4/node_modules/postcss",
        "node_modules/autoprefixer/node_modules/postcss",
        "node_modules/css-loader/node_modules/postcss",
        "node_modules/icss-utils/node_modules/postcss",
        "node_modules/postcss-flexbugs-fixes/node_modules/postcss",
        "node_modules/postcss-modules-extract-imports/node_modules/postcss",
        "node_modules/postcss-modules-local-by-default/node_modules/postcss",
        "node_modules/postcss-modules-scope/node_modules/postcss",
        "node_modules/postcss-modules-values/node_modules/postcss"
      ],
      "fixAvailable": {
        "name": "@storybook/vue3",
        "version": "8.0.8",
        "isSemVerMajor": true
      }
    },
    "postcss-flexbugs-fixes": {
      "name": "postcss-flexbugs-fixes",
      "severity": "moderate",
      "isDirect": false,
      "via": [
        "postcss"
      ],
      "effects": [],
      "range": "<=4.2.1",
      "nodes": [
        "node_modules/postcss-flexbugs-fixes"
      ],
      "fixAvailable": true
    },
    "postcss-modules-extract-imports": {
      "name": "postcss-modules-extract-imports",
      "severity": "moderate",
      "isDirect": false,
      "via": [
        "postcss"
      ],
      "effects": [],
      "range": "<=2.0.0",
      "nodes": [
        "node_modules/postcss-modules-extract-imports"
      ],
      "fixAvailable": true
    },
    "postcss-modules-local-by-default": {
      "name": "postcss-modules-local-by-default",
      "severity": "moderate",
      "isDirect": false,
      "via": [
        "icss-utils",
        "postcss"
      ],
      "effects": [],
      "range": "<=4.0.0-rc.4",
      "nodes": [
        "node_modules/postcss-modules-local-by-default"
      ],
      "fixAvailable": true
    },
    "postcss-modules-scope": {
      "name": "postcss-modules-scope",
      "severity": "moderate",
      "isDirect": false,
      "via": [
        "postcss"
      ],
      "effects": [],
      "range": "<=2.2.0",
      "nodes": [
        "node_modules/postcss-modules-scope"
      ],
      "fixAvailable": true
    },
    "postcss-modules-values": {
      "name": "postcss-modules-values",
      "severity": "moderate",
      "isDirect": false,
      "via": [
        "icss-utils",
        "postcss"
      ],
      "effects": [
        "css-loader"
      ],
      "range": "<=4.0.0-rc.5",
      "nodes": [
        "node_modules/postcss-modules-values"
      ],
      "fixAvailable": true
    },
    "remark-mdx": {
      "name": "remark-mdx",
      "severity": "high",
      "isDirect": false,
      "via": [
        "remark-parse"
      ],
      "effects": [
        "@mdx-js/mdx"
      ],
      "range": "<=1.6.22",
      "nodes": [
        "node_modules/remark-mdx"
      ],
      "fixAvailable": {
        "name": "@storybook/addon-essentials",
        "version": "8.0.8",
        "isSemVerMajor": true
      }
    },
    "remark-parse": {
      "name": "remark-parse",
      "severity": "high",
      "isDirect": false,
      "via": [
        "trim"
      ],
      "effects": [
        "@mdx-js/mdx",
        "remark-mdx"
      ],
      "range": "<=8.0.3",
      "nodes": [
        "node_modules/remark-parse"
      ],
      "fixAvailable": {
        "name": "@storybook/addon-essentials",
        "version": "8.0.8",
        "isSemVerMajor": true
      }
    },
    "request": {
      "name": "request",
      "severity": "moderate",
      "isDirect": false,
      "via": [
        {
          "source": 1096727,
          "name": "request",
          "dependency": "request",
          "title": "Server-Side Request Forgery in Request",
          "url": "https://github.com/advisories/GHSA-p8p7-x288-28g6",
          "severity": "moderate",
          "cwe": [
            "CWE-918"
          ],
          "cvss": {
            "score": 6.1,
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"
          },
          "range": "<=2.88.2"
        },
        "tough-cookie"
      ],
      "effects": [
        "mwbot"
      ],
      "range": "*",
      "nodes": [
        "node_modules/request"
      ],
      "fixAvailable": false
    },
    "tar": {
      "name": "tar",
      "severity": "moderate",
      "isDirect": false,
      "via": [
        {
          "source": 1096915,
          "name": "tar",
          "dependency": "tar",
          "title": "Denial of service while parsing a tar file due to lack of folders count validation",
          "url": "https://github.com/advisories/GHSA-f5x3-32g6-xq36",
          "severity": "moderate",
          "cwe": [
            "CWE-400"
          ],
          "cvss": {
            "score": 6.5,
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"
          },
          "range": "<6.2.1"
        }
      ],
      "effects": [],
      "range": "<6.2.1",
      "nodes": [
        "node_modules/tar"
      ],
      "fixAvailable": true
    },
    "tough-cookie": {
      "name": "tough-cookie",
      "severity": "moderate",
      "isDirect": false,
      "via": [
        {
          "source": 1096643,
          "name": "tough-cookie",
          "dependency": "tough-cookie",
          "title": "tough-cookie Prototype Pollution vulnerability",
          "url": "https://github.com/advisories/GHSA-72xf-g2v4-qvf3",
          "severity": "moderate",
          "cwe": [
            "CWE-1321"
          ],
          "cvss": {
            "score": 6.5,
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"
          },
          "range": "<4.1.3"
        }
      ],
      "effects": [
        "request"
      ],
      "range": "<4.1.3",
      "nodes": [
        "node_modules/request/node_modules/tough-cookie"
      ],
      "fixAvailable": false
    },
    "trim": {
      "name": "trim",
      "severity": "high",
      "isDirect": false,
      "via": [
        {
          "source": 1089867,
          "name": "trim",
          "dependency": "trim",
          "title": "Regular Expression Denial of Service in trim",
          "url": "https://github.com/advisories/GHSA-w5p7-h5w8-2hfq",
          "severity": "high",
          "cwe": [
            "CWE-400"
          ],
          "cvss": {
            "score": 7.5,
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
          },
          "range": "<0.0.3"
        }
      ],
      "effects": [
        "remark-parse"
      ],
      "range": "<0.0.3",
      "nodes": [
        "node_modules/trim"
      ],
      "fixAvailable": {
        "name": "@storybook/addon-essentials",
        "version": "8.0.8",
        "isSemVerMajor": true
      }
    },
    "trim-newlines": {
      "name": "trim-newlines",
      "severity": "high",
      "isDirect": false,
      "via": [
        {
          "source": 1095100,
          "name": "trim-newlines",
          "dependency": "trim-newlines",
          "title": "Uncontrolled Resource Consumption in trim-newlines",
          "url": "https://github.com/advisories/GHSA-7p7h-4mm5-852v",
          "severity": "high",
          "cwe": [
            "CWE-400"
          ],
          "cvss": {
            "score": 7.5,
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
          },
          "range": "<3.0.1"
        }
      ],
      "effects": [
        "meow"
      ],
      "range": "<3.0.1",
      "nodes": [
        "node_modules/default-browser-id/node_modules/trim-newlines"
      ],
      "fixAvailable": true
    },
    "watchpack": {
      "name": "watchpack",
      "severity": "high",
      "isDirect": false,
      "via": [
        "watchpack-chokidar2"
      ],
      "effects": [
        "webpack"
      ],
      "range": "1.7.2 - 1.7.5",
      "nodes": [
        "node_modules/webpack/node_modules/watchpack"
      ],
      "fixAvailable": true
    },
    "watchpack-chokidar2": {
      "name": "watchpack-chokidar2",
      "severity": "high",
      "isDirect": false,
      "via": [
        "chokidar"
      ],
      "effects": [
        "watchpack"
      ],
      "range": "*",
      "nodes": [
        "node_modules/watchpack-chokidar2"
      ],
      "fixAvailable": true
    },
    "wdio-mediawiki": {
      "name": "wdio-mediawiki",
      "severity": "moderate",
      "isDirect": true,
      "via": [
        "mwbot"
      ],
      "effects": [],
      "range": "*",
      "nodes": [
        "node_modules/wdio-mediawiki"
      ],
      "fixAvailable": false
    },
    "webpack": {
      "name": "webpack",
      "severity": "high",
      "isDirect": false,
      "via": [
        "watchpack"
      ],
      "effects": [],
      "range": "4.44.0 - 4.47.0",
      "nodes": [
        "node_modules/webpack"
      ],
      "fixAvailable": true
    },
    "webpack-dev-middleware": {
      "name": "webpack-dev-middleware",
      "severity": "high",
      "isDirect": false,
      "via": [
        {
          "source": 1096729,
          "name": "webpack-dev-middleware",
          "dependency": "webpack-dev-middleware",
          "title": "Path traversal in webpack-dev-middleware",
          "url": "https://github.com/advisories/GHSA-wr3j-pwj9-hqq6",
          "severity": "high",
          "cwe": [
            "CWE-22"
          ],
          "cvss": {
            "score": 7.4,
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"
          },
          "range": "<=5.3.3"
        }
      ],
      "effects": [
        "@storybook/manager-webpack4"
      ],
      "range": "<=5.3.3",
      "nodes": [
        "node_modules/webpack-dev-middleware"
      ],
      "fixAvailable": {
        "name": "@storybook/vue3",
        "version": "8.0.8",
        "isSemVerMajor": true
      }
    }
  },
  "metadata": {
    "vulnerabilities": {
      "info": 0,
      "low": 0,
      "moderate": 16,
      "high": 22,
      "critical": 0,
      "total": 38
    },
    "dependencies": {
      "prod": 1,
      "dev": 2516,
      "optional": 58,
      "peer": 0,
      "peerOptional": 0,
      "total": 2516
    }
  }
}

--- end ---
$ /usr/bin/composer install
--- stderr ---
No composer.lock file present. Updating dependencies to latest instead of installing from lock file. See https://getcomposer.org/install for more information.
Loading composer repositories with package information
Updating dependencies
Lock file operations: 39 installs, 0 updates, 0 removals
  - Locking composer/pcre (3.1.3)
  - Locking composer/semver (3.4.0)
  - Locking composer/spdx-licenses (1.5.8)
  - Locking composer/xdebug-handler (3.0.4)
  - Locking dealerdirect/phpcodesniffer-composer-installer (v1.0.0)
  - Locking doctrine/deprecations (1.1.3)
  - Locking felixfbecker/advanced-json-rpc (v3.2.1)
  - Locking mediawiki/mediawiki-codesniffer (v43.0.0)
  - Locking mediawiki/mediawiki-phan-config (0.14.0)
  - Locking mediawiki/minus-x (1.1.1)
  - Locking mediawiki/phan-taint-check-plugin (6.0.0)
  - Locking microsoft/tolerant-php-parser (v0.1.2)
  - Locking netresearch/jsonmapper (v4.4.1)
  - Locking phan/phan (5.4.3)
  - Locking php-parallel-lint/php-console-color (v1.0.1)
  - Locking php-parallel-lint/php-console-highlighter (v1.0.0)
  - Locking php-parallel-lint/php-parallel-lint (v1.3.2)
  - Locking phpcsstandards/phpcsextra (1.1.2)
  - Locking phpcsstandards/phpcsutils (1.0.9)
  - Locking phpdocumentor/reflection-common (2.2.0)
  - Locking phpdocumentor/reflection-docblock (5.4.0)
  - Locking phpdocumentor/type-resolver (1.8.2)
  - Locking phpstan/phpdoc-parser (1.28.0)
  - Locking psr/container (2.0.2)
  - Locking psr/log (2.0.0)
  - Locking sabre/event (5.1.4)
  - Locking squizlabs/php_codesniffer (3.8.1)
  - Locking symfony/console (v5.4.36)
  - Locking symfony/deprecation-contracts (v3.4.0)
  - Locking symfony/polyfill-ctype (v1.29.0)
  - Locking symfony/polyfill-intl-grapheme (v1.29.0)
  - Locking symfony/polyfill-intl-normalizer (v1.29.0)
  - Locking symfony/polyfill-mbstring (v1.29.0)
  - Locking symfony/polyfill-php73 (v1.29.0)
  - Locking symfony/polyfill-php80 (v1.29.0)
  - Locking symfony/service-contracts (v3.4.2)
  - Locking symfony/string (v6.4.4)
  - Locking tysonandre/var_representation_polyfill (0.1.3)
  - Locking webmozart/assert (1.11.0)
Writing lock file
Installing dependencies from lock file (including require-dev)
Package operations: 39 installs, 0 updates, 0 removals
    0 [>---------------------------]    0 [->--------------------------]
  - Installing squizlabs/php_codesniffer (3.8.1): Extracting archive
  - Installing dealerdirect/phpcodesniffer-composer-installer (v1.0.0): Extracting archive
  - Installing composer/pcre (3.1.3): Extracting archive
  - Installing symfony/polyfill-php80 (v1.29.0): Extracting archive
  - Installing phpcsstandards/phpcsutils (1.0.9): Extracting archive
  - Installing phpcsstandards/phpcsextra (1.1.2): Extracting archive
  - Installing symfony/polyfill-mbstring (v1.29.0): Extracting archive
  - Installing composer/spdx-licenses (1.5.8): Extracting archive
  - Installing composer/semver (3.4.0): Extracting archive
  - Installing mediawiki/mediawiki-codesniffer (v43.0.0): Extracting archive
  - Installing tysonandre/var_representation_polyfill (0.1.3): Extracting archive
  - Installing symfony/polyfill-intl-normalizer (v1.29.0): Extracting archive
  - Installing symfony/polyfill-intl-grapheme (v1.29.0): Extracting archive
  - Installing symfony/polyfill-ctype (v1.29.0): Extracting archive
  - Installing symfony/string (v6.4.4): Extracting archive
  - Installing psr/container (2.0.2): Extracting archive
  - Installing symfony/service-contracts (v3.4.2): Extracting archive
  - Installing symfony/polyfill-php73 (v1.29.0): Extracting archive
  - Installing symfony/deprecation-contracts (v3.4.0): Extracting archive
  - Installing symfony/console (v5.4.36): Extracting archive
  - Installing sabre/event (5.1.4): Extracting archive
  - Installing netresearch/jsonmapper (v4.4.1): Extracting archive
  - Installing microsoft/tolerant-php-parser (v0.1.2): Extracting archive
  - Installing webmozart/assert (1.11.0): Extracting archive
  - Installing phpstan/phpdoc-parser (1.28.0): Extracting archive
  - Installing phpdocumentor/reflection-common (2.2.0): Extracting archive
  - Installing doctrine/deprecations (1.1.3): Extracting archive
  - Installing phpdocumentor/type-resolver (1.8.2): Extracting archive
  - Installing phpdocumentor/reflection-docblock (5.4.0): Extracting archive
  - Installing felixfbecker/advanced-json-rpc (v3.2.1): Extracting archive
  - Installing psr/log (2.0.0): Extracting archive
  - Installing composer/xdebug-handler (3.0.4): Extracting archive
  - Installing phan/phan (5.4.3): Extracting archive
  - Installing mediawiki/phan-taint-check-plugin (6.0.0): Extracting archive
  - Installing mediawiki/mediawiki-phan-config (0.14.0): Extracting archive
  - Installing mediawiki/minus-x (1.1.1): Extracting archive
  - Installing php-parallel-lint/php-console-color (v1.0.1): Extracting archive
  - Installing php-parallel-lint/php-console-highlighter (v1.0.0): Extracting archive
  - Installing php-parallel-lint/php-parallel-lint (v1.3.2): Extracting archive
  0/37 [>---------------------------]   0%
 22/37 [================>-----------]  59%
 36/37 [===========================>]  97%
 37/37 [============================] 100%
3 package suggestions were added by new dependencies, use `composer suggest` to see details.
Generating autoload files
16 packages you are using are looking for funding.
Use the `composer fund` command to find out more!
--- stdout ---
PHP CodeSniffer Config installed_paths set to ../../mediawiki/mediawiki-codesniffer,../../phpcsstandards/phpcsextra,../../phpcsstandards/phpcsutils

--- end ---
$ /usr/bin/npm audit --json
--- stdout ---
{
  "auditReportVersion": 2,
  "vulnerabilities": {
    "@mdx-js/mdx": {
      "name": "@mdx-js/mdx",
      "severity": "high",
      "isDirect": false,
      "via": [
        "remark-mdx",
        "remark-parse"
      ],
      "effects": [
        "@storybook/mdx1-csf"
      ],
      "range": "<=1.6.22",
      "nodes": [
        "node_modules/@mdx-js/mdx"
      ],
      "fixAvailable": {
        "name": "@storybook/vue3",
        "version": "8.0.8",
        "isSemVerMajor": true
      }
    },
    "@storybook/addon-docs": {
      "name": "@storybook/addon-docs",
      "severity": "high",
      "isDirect": false,
      "via": [
        "@storybook/mdx1-csf"
      ],
      "effects": [
        "@storybook/addon-essentials"
      ],
      "range": "6.5.0-alpha.1 - 7.0.3 || 7.1.0-alpha.0 - 7.1.0-rc.2",
      "nodes": [
        "node_modules/@storybook/addon-docs"
      ],
      "fixAvailable": {
        "name": "@storybook/addon-essentials",
        "version": "8.0.8",
        "isSemVerMajor": true
      }
    },
    "@storybook/addon-essentials": {
      "name": "@storybook/addon-essentials",
      "severity": "high",
      "isDirect": true,
      "via": [
        "@storybook/addon-docs"
      ],
      "effects": [],
      "range": "6.5.0-alpha.1 - 7.0.3 || 7.1.0-alpha.0 - 7.1.0-rc.2",
      "nodes": [
        "node_modules/@storybook/addon-essentials"
      ],
      "fixAvailable": {
        "name": "@storybook/addon-essentials",
        "version": "8.0.8",
        "isSemVerMajor": true
      }
    },
    "@storybook/builder-webpack4": {
      "name": "@storybook/builder-webpack4",
      "severity": "high",
      "isDirect": true,
      "via": [
        "autoprefixer",
        "css-loader",
        "postcss",
        "postcss-flexbugs-fixes",
        "webpack-dev-middleware"
      ],
      "effects": [
        "@storybook/core-server"
      ],
      "range": "*",
      "nodes": [
        "node_modules/@storybook/builder-webpack4"
      ],
      "fixAvailable": {
        "name": "@storybook/vue3",
        "version": "8.0.8",
        "isSemVerMajor": true
      }
    },
    "@storybook/core": {
      "name": "@storybook/core",
      "severity": "moderate",
      "isDirect": false,
      "via": [
        "@storybook/core-server"
      ],
      "effects": [
        "@storybook/vue3"
      ],
      "range": ">=6.2.0-alpha.0",
      "nodes": [
        "node_modules/@storybook/core"
      ],
      "fixAvailable": {
        "name": "@storybook/vue3",
        "version": "8.0.8",
        "isSemVerMajor": true
      }
    },
    "@storybook/core-server": {
      "name": "@storybook/core-server",
      "severity": "high",
      "isDirect": false,
      "via": [
        "@storybook/builder-webpack4",
        "@storybook/csf-tools",
        "@storybook/manager-webpack4",
        "cpy"
      ],
      "effects": [
        "@storybook/core"
      ],
      "range": "<=7.0.0-rc.11",
      "nodes": [
        "node_modules/@storybook/core-server"
      ],
      "fixAvailable": {
        "name": "@storybook/vue3",
        "version": "8.0.8",
        "isSemVerMajor": true
      }
    },
    "@storybook/csf-tools": {
      "name": "@storybook/csf-tools",
      "severity": "high",
      "isDirect": false,
      "via": [
        "@storybook/mdx1-csf"
      ],
      "effects": [
        "@storybook/core-server"
      ],
      "range": "6.5.0-alpha.1 - 6.5.17-alpha.0",
      "nodes": [
        "node_modules/@storybook/csf-tools"
      ],
      "fixAvailable": {
        "name": "@storybook/vue3",
        "version": "8.0.8",
        "isSemVerMajor": true
      }
    },
    "@storybook/manager-webpack4": {
      "name": "@storybook/manager-webpack4",
      "severity": "high",
      "isDirect": true,
      "via": [
        "css-loader",
        "webpack-dev-middleware"
      ],
      "effects": [
        "@storybook/core-server"
      ],
      "range": "*",
      "nodes": [
        "node_modules/@storybook/manager-webpack4"
      ],
      "fixAvailable": {
        "name": "@storybook/vue3",
        "version": "8.0.8",
        "isSemVerMajor": true
      }
    },
    "@storybook/mdx1-csf": {
      "name": "@storybook/mdx1-csf",
      "severity": "high",
      "isDirect": false,
      "via": [
        "@mdx-js/mdx"
      ],
      "effects": [
        "@storybook/addon-docs",
        "@storybook/csf-tools"
      ],
      "range": "*",
      "nodes": [
        "node_modules/@storybook/mdx1-csf"
      ],
      "fixAvailable": {
        "name": "@storybook/vue3",
        "version": "8.0.8",
        "isSemVerMajor": true
      }
    },
    "@storybook/vue3": {
      "name": "@storybook/vue3",
      "severity": "moderate",
      "isDirect": true,
      "via": [
        "@storybook/core"
      ],
      "effects": [],
      "range": "<=6.5.17-alpha.0",
      "nodes": [
        "node_modules/@storybook/vue3"
      ],
      "fixAvailable": {
        "name": "@storybook/vue3",
        "version": "8.0.8",
        "isSemVerMajor": true
      }
    },
    "autoprefixer": {
      "name": "autoprefixer",
      "severity": "moderate",
      "isDirect": false,
      "via": [
        "postcss"
      ],
      "effects": [],
      "range": "1.0.20131222 - 9.8.8",
      "nodes": [
        "node_modules/autoprefixer"
      ],
      "fixAvailable": true
    },
    "chokidar": {
      "name": "chokidar",
      "severity": "high",
      "isDirect": false,
      "via": [
        "glob-parent"
      ],
      "effects": [
        "watchpack-chokidar2"
      ],
      "range": "1.0.0-rc1 - 2.1.8",
      "nodes": [
        "node_modules/watchpack-chokidar2/node_modules/chokidar"
      ],
      "fixAvailable": true
    },
    "cpy": {
      "name": "cpy",
      "severity": "high",
      "isDirect": false,
      "via": [
        "globby"
      ],
      "effects": [
        "@storybook/core-server"
      ],
      "range": "7.0.0 - 8.1.2",
      "nodes": [
        "node_modules/cpy"
      ],
      "fixAvailable": {
        "name": "@storybook/vue3",
        "version": "8.0.8",
        "isSemVerMajor": true
      }
    },
    "css-loader": {
      "name": "css-loader",
      "severity": "moderate",
      "isDirect": false,
      "via": [
        "icss-utils",
        "postcss",
        "postcss-modules-extract-imports",
        "postcss-modules-local-by-default",
        "postcss-modules-scope",
        "postcss-modules-values"
      ],
      "effects": [],
      "range": "0.15.0 - 4.3.0",
      "nodes": [
        "node_modules/css-loader"
      ],
      "fixAvailable": true
    },
    "fast-glob": {
      "name": "fast-glob",
      "severity": "high",
      "isDirect": false,
      "via": [
        "glob-parent"
      ],
      "effects": [
        "globby"
      ],
      "range": "<=2.2.7",
      "nodes": [
        "node_modules/cpy/node_modules/fast-glob"
      ],
      "fixAvailable": {
        "name": "@storybook/vue3",
        "version": "8.0.8",
        "isSemVerMajor": true
      }
    },
    "glob-parent": {
      "name": "glob-parent",
      "severity": "high",
      "isDirect": false,
      "via": [
        {
          "source": 1095007,
          "name": "glob-parent",
          "dependency": "glob-parent",
          "title": "glob-parent vulnerable to Regular Expression Denial of Service in enclosure regex",
          "url": "https://github.com/advisories/GHSA-ww39-953v-wcq6",
          "severity": "high",
          "cwe": [
            "CWE-400"
          ],
          "cvss": {
            "score": 7.5,
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
          },
          "range": "<5.1.2"
        }
      ],
      "effects": [
        "chokidar",
        "fast-glob"
      ],
      "range": "<5.1.2",
      "nodes": [
        "node_modules/cpy/node_modules/glob-parent",
        "node_modules/watchpack-chokidar2/node_modules/glob-parent"
      ],
      "fixAvailable": {
        "name": "@storybook/vue3",
        "version": "8.0.8",
        "isSemVerMajor": true
      }
    },
    "globby": {
      "name": "globby",
      "severity": "high",
      "isDirect": false,
      "via": [
        "fast-glob"
      ],
      "effects": [
        "cpy"
      ],
      "range": "8.0.0 - 9.2.0",
      "nodes": [
        "node_modules/cpy/node_modules/globby"
      ],
      "fixAvailable": {
        "name": "@storybook/vue3",
        "version": "8.0.8",
        "isSemVerMajor": true
      }
    },
    "icss-utils": {
      "name": "icss-utils",
      "severity": "moderate",
      "isDirect": false,
      "via": [
        "postcss"
      ],
      "effects": [
        "css-loader",
        "postcss-modules-local-by-default",
        "postcss-modules-values"
      ],
      "range": "<=4.1.1",
      "nodes": [
        "node_modules/icss-utils"
      ],
      "fixAvailable": true
    },
    "meow": {
      "name": "meow",
      "severity": "high",
      "isDirect": false,
      "via": [
        "trim-newlines"
      ],
      "effects": [],
      "range": "3.4.0 - 5.0.0",
      "nodes": [
        "node_modules/default-browser-id/node_modules/meow"
      ],
      "fixAvailable": true
    },
    "mwbot": {
      "name": "mwbot",
      "severity": "moderate",
      "isDirect": false,
      "via": [
        "request"
      ],
      "effects": [
        "wdio-mediawiki"
      ],
      "range": ">=0.1.6",
      "nodes": [
        "node_modules/mwbot"
      ],
      "fixAvailable": false
    },
    "postcss": {
      "name": "postcss",
      "severity": "moderate",
      "isDirect": false,
      "via": [
        {
          "source": 1094544,
          "name": "postcss",
          "dependency": "postcss",
          "title": "PostCSS line return parsing error",
          "url": "https://github.com/advisories/GHSA-7fh5-64p2-3v2j",
          "severity": "moderate",
          "cwe": [
            "CWE-74",
            "CWE-144"
          ],
          "cvss": {
            "score": 5.3,
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"
          },
          "range": "<8.4.31"
        }
      ],
      "effects": [
        "@storybook/builder-webpack4",
        "autoprefixer",
        "css-loader",
        "icss-utils",
        "postcss-flexbugs-fixes",
        "postcss-modules-extract-imports",
        "postcss-modules-local-by-default",
        "postcss-modules-scope",
        "postcss-modules-values"
      ],
      "range": "<8.4.31",
      "nodes": [
        "node_modules/@storybook/builder-webpack4/node_modules/postcss",
        "node_modules/autoprefixer/node_modules/postcss",
        "node_modules/css-loader/node_modules/postcss",
        "node_modules/icss-utils/node_modules/postcss",
        "node_modules/postcss-flexbugs-fixes/node_modules/postcss",
        "node_modules/postcss-modules-extract-imports/node_modules/postcss",
        "node_modules/postcss-modules-local-by-default/node_modules/postcss",
        "node_modules/postcss-modules-scope/node_modules/postcss",
        "node_modules/postcss-modules-values/node_modules/postcss"
      ],
      "fixAvailable": {
        "name": "@storybook/vue3",
        "version": "8.0.8",
        "isSemVerMajor": true
      }
    },
    "postcss-flexbugs-fixes": {
      "name": "postcss-flexbugs-fixes",
      "severity": "moderate",
      "isDirect": false,
      "via": [
        "postcss"
      ],
      "effects": [],
      "range": "<=4.2.1",
      "nodes": [
        "node_modules/postcss-flexbugs-fixes"
      ],
      "fixAvailable": true
    },
    "postcss-modules-extract-imports": {
      "name": "postcss-modules-extract-imports",
      "severity": "moderate",
      "isDirect": false,
      "via": [
        "postcss"
      ],
      "effects": [],
      "range": "<=2.0.0",
      "nodes": [
        "node_modules/postcss-modules-extract-imports"
      ],
      "fixAvailable": true
    },
    "postcss-modules-local-by-default": {
      "name": "postcss-modules-local-by-default",
      "severity": "moderate",
      "isDirect": false,
      "via": [
        "icss-utils",
        "postcss"
      ],
      "effects": [],
      "range": "<=4.0.0-rc.4",
      "nodes": [
        "node_modules/postcss-modules-local-by-default"
      ],
      "fixAvailable": true
    },
    "postcss-modules-scope": {
      "name": "postcss-modules-scope",
      "severity": "moderate",
      "isDirect": false,
      "via": [
        "postcss"
      ],
      "effects": [],
      "range": "<=2.2.0",
      "nodes": [
        "node_modules/postcss-modules-scope"
      ],
      "fixAvailable": true
    },
    "postcss-modules-values": {
      "name": "postcss-modules-values",
      "severity": "moderate",
      "isDirect": false,
      "via": [
        "icss-utils",
        "postcss"
      ],
      "effects": [
        "css-loader"
      ],
      "range": "<=4.0.0-rc.5",
      "nodes": [
        "node_modules/postcss-modules-values"
      ],
      "fixAvailable": true
    },
    "remark-mdx": {
      "name": "remark-mdx",
      "severity": "high",
      "isDirect": false,
      "via": [
        "remark-parse"
      ],
      "effects": [
        "@mdx-js/mdx"
      ],
      "range": "<=1.6.22",
      "nodes": [
        "node_modules/remark-mdx"
      ],
      "fixAvailable": {
        "name": "@storybook/vue3",
        "version": "8.0.8",
        "isSemVerMajor": true
      }
    },
    "remark-parse": {
      "name": "remark-parse",
      "severity": "high",
      "isDirect": false,
      "via": [
        "trim"
      ],
      "effects": [
        "@mdx-js/mdx",
        "remark-mdx"
      ],
      "range": "<=8.0.3",
      "nodes": [
        "node_modules/remark-parse"
      ],
      "fixAvailable": {
        "name": "@storybook/vue3",
        "version": "8.0.8",
        "isSemVerMajor": true
      }
    },
    "request": {
      "name": "request",
      "severity": "moderate",
      "isDirect": false,
      "via": [
        {
          "source": 1096727,
          "name": "request",
          "dependency": "request",
          "title": "Server-Side Request Forgery in Request",
          "url": "https://github.com/advisories/GHSA-p8p7-x288-28g6",
          "severity": "moderate",
          "cwe": [
            "CWE-918"
          ],
          "cvss": {
            "score": 6.1,
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"
          },
          "range": "<=2.88.2"
        },
        "tough-cookie"
      ],
      "effects": [
        "mwbot"
      ],
      "range": "*",
      "nodes": [
        "node_modules/request"
      ],
      "fixAvailable": false
    },
    "tar": {
      "name": "tar",
      "severity": "moderate",
      "isDirect": false,
      "via": [
        {
          "source": 1096915,
          "name": "tar",
          "dependency": "tar",
          "title": "Denial of service while parsing a tar file due to lack of folders count validation",
          "url": "https://github.com/advisories/GHSA-f5x3-32g6-xq36",
          "severity": "moderate",
          "cwe": [
            "CWE-400"
          ],
          "cvss": {
            "score": 6.5,
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"
          },
          "range": "<6.2.1"
        }
      ],
      "effects": [],
      "range": "<6.2.1",
      "nodes": [
        "node_modules/tar"
      ],
      "fixAvailable": true
    },
    "tough-cookie": {
      "name": "tough-cookie",
      "severity": "moderate",
      "isDirect": false,
      "via": [
        {
          "source": 1096643,
          "name": "tough-cookie",
          "dependency": "tough-cookie",
          "title": "tough-cookie Prototype Pollution vulnerability",
          "url": "https://github.com/advisories/GHSA-72xf-g2v4-qvf3",
          "severity": "moderate",
          "cwe": [
            "CWE-1321"
          ],
          "cvss": {
            "score": 6.5,
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"
          },
          "range": "<4.1.3"
        }
      ],
      "effects": [
        "request"
      ],
      "range": "<4.1.3",
      "nodes": [
        "node_modules/request/node_modules/tough-cookie"
      ],
      "fixAvailable": false
    },
    "trim": {
      "name": "trim",
      "severity": "high",
      "isDirect": false,
      "via": [
        {
          "source": 1089867,
          "name": "trim",
          "dependency": "trim",
          "title": "Regular Expression Denial of Service in trim",
          "url": "https://github.com/advisories/GHSA-w5p7-h5w8-2hfq",
          "severity": "high",
          "cwe": [
            "CWE-400"
          ],
          "cvss": {
            "score": 7.5,
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
          },
          "range": "<0.0.3"
        }
      ],
      "effects": [
        "remark-parse"
      ],
      "range": "<0.0.3",
      "nodes": [
        "node_modules/trim"
      ],
      "fixAvailable": {
        "name": "@storybook/vue3",
        "version": "8.0.8",
        "isSemVerMajor": true
      }
    },
    "trim-newlines": {
      "name": "trim-newlines",
      "severity": "high",
      "isDirect": false,
      "via": [
        {
          "source": 1095100,
          "name": "trim-newlines",
          "dependency": "trim-newlines",
          "title": "Uncontrolled Resource Consumption in trim-newlines",
          "url": "https://github.com/advisories/GHSA-7p7h-4mm5-852v",
          "severity": "high",
          "cwe": [
            "CWE-400"
          ],
          "cvss": {
            "score": 7.5,
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
          },
          "range": "<3.0.1"
        }
      ],
      "effects": [
        "meow"
      ],
      "range": "<3.0.1",
      "nodes": [
        "node_modules/default-browser-id/node_modules/trim-newlines"
      ],
      "fixAvailable": true
    },
    "watchpack": {
      "name": "watchpack",
      "severity": "high",
      "isDirect": false,
      "via": [
        "watchpack-chokidar2"
      ],
      "effects": [
        "webpack"
      ],
      "range": "1.7.2 - 1.7.5",
      "nodes": [
        "node_modules/webpack/node_modules/watchpack"
      ],
      "fixAvailable": true
    },
    "watchpack-chokidar2": {
      "name": "watchpack-chokidar2",
      "severity": "high",
      "isDirect": false,
      "via": [
        "chokidar"
      ],
      "effects": [
        "watchpack"
      ],
      "range": "*",
      "nodes": [
        "node_modules/watchpack-chokidar2"
      ],
      "fixAvailable": true
    },
    "wdio-mediawiki": {
      "name": "wdio-mediawiki",
      "severity": "moderate",
      "isDirect": true,
      "via": [
        "mwbot"
      ],
      "effects": [],
      "range": "*",
      "nodes": [
        "node_modules/wdio-mediawiki"
      ],
      "fixAvailable": false
    },
    "webpack": {
      "name": "webpack",
      "severity": "high",
      "isDirect": false,
      "via": [
        "watchpack"
      ],
      "effects": [],
      "range": "4.44.0 - 4.47.0",
      "nodes": [
        "node_modules/webpack"
      ],
      "fixAvailable": true
    },
    "webpack-dev-middleware": {
      "name": "webpack-dev-middleware",
      "severity": "high",
      "isDirect": false,
      "via": [
        {
          "source": 1096729,
          "name": "webpack-dev-middleware",
          "dependency": "webpack-dev-middleware",
          "title": "Path traversal in webpack-dev-middleware",
          "url": "https://github.com/advisories/GHSA-wr3j-pwj9-hqq6",
          "severity": "high",
          "cwe": [
            "CWE-22"
          ],
          "cvss": {
            "score": 7.4,
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"
          },
          "range": "<=5.3.3"
        }
      ],
      "effects": [
        "@storybook/manager-webpack4"
      ],
      "range": "<=5.3.3",
      "nodes": [
        "node_modules/webpack-dev-middleware"
      ],
      "fixAvailable": {
        "name": "@storybook/vue3",
        "version": "8.0.8",
        "isSemVerMajor": true
      }
    }
  },
  "metadata": {
    "vulnerabilities": {
      "info": 0,
      "low": 0,
      "moderate": 16,
      "high": 22,
      "critical": 0,
      "total": 38
    },
    "dependencies": {
      "prod": 1,
      "dev": 2516,
      "optional": 58,
      "peer": 0,
      "peerOptional": 0,
      "total": 2516
    }
  }
}

--- end ---
Attempting to npm audit fix
$ /usr/bin/npm audit fix --dry-run --only=dev --json
--- stderr ---
npm WARN invalid config only="dev" set in command line options
npm WARN invalid config Must be one of: null, prod, production
npm WARN EBADENGINE Unsupported engine {
npm WARN EBADENGINE   package: '@es-joy/jsdoccomment@0.23.6',
npm WARN EBADENGINE   required: { node: '^12 || ^14 || ^16 || ^17' },
npm WARN EBADENGINE   current: { node: 'v18.19.0', npm: '9.2.0' }
npm WARN EBADENGINE }
npm WARN EBADENGINE Unsupported engine {
npm WARN EBADENGINE   package: 'eslint-plugin-jsdoc@39.2.2',
npm WARN EBADENGINE   required: { node: '^14 || ^16 || ^17' },
npm WARN EBADENGINE   current: { node: 'v18.19.0', npm: '9.2.0' }
npm WARN EBADENGINE }
npm WARN EBADENGINE Unsupported engine {
npm WARN EBADENGINE   package: 'wdio-mediawiki@2.5.0',
npm WARN EBADENGINE   required: { node: '>=18.17.0', npm: '>=9.6.7' },
npm WARN EBADENGINE   current: { node: 'v18.19.0', npm: '9.2.0' }
npm WARN EBADENGINE }
--- stdout ---
{
  "added": 2516,
  "removed": 0,
  "changed": 0,
  "audited": 2517,
  "funding": 330,
  "audit": {
    "auditReportVersion": 2,
    "vulnerabilities": {
      "@mdx-js/mdx": {
        "name": "@mdx-js/mdx",
        "severity": "high",
        "isDirect": false,
        "via": [
          "remark-mdx",
          "remark-parse"
        ],
        "effects": [
          "@storybook/mdx1-csf"
        ],
        "range": "<=1.6.22",
        "nodes": [
          "node_modules/@mdx-js/mdx"
        ],
        "fixAvailable": {
          "name": "@storybook/vue3",
          "version": "8.0.8",
          "isSemVerMajor": true
        }
      },
      "@storybook/addon-docs": {
        "name": "@storybook/addon-docs",
        "severity": "high",
        "isDirect": false,
        "via": [
          "@storybook/mdx1-csf"
        ],
        "effects": [
          "@storybook/addon-essentials"
        ],
        "range": "6.5.0-alpha.1 - 7.0.3 || 7.1.0-alpha.0 - 7.1.0-rc.2",
        "nodes": [
          "node_modules/@storybook/addon-docs"
        ],
        "fixAvailable": {
          "name": "@storybook/addon-essentials",
          "version": "8.0.8",
          "isSemVerMajor": true
        }
      },
      "@storybook/addon-essentials": {
        "name": "@storybook/addon-essentials",
        "severity": "high",
        "isDirect": true,
        "via": [
          "@storybook/addon-docs"
        ],
        "effects": [],
        "range": "6.5.0-alpha.1 - 7.0.3 || 7.1.0-alpha.0 - 7.1.0-rc.2",
        "nodes": [
          "node_modules/@storybook/addon-essentials"
        ],
        "fixAvailable": {
          "name": "@storybook/addon-essentials",
          "version": "8.0.8",
          "isSemVerMajor": true
        }
      },
      "@storybook/builder-webpack4": {
        "name": "@storybook/builder-webpack4",
        "severity": "high",
        "isDirect": true,
        "via": [
          "autoprefixer",
          "css-loader",
          "postcss",
          "postcss-flexbugs-fixes",
          "webpack-dev-middleware"
        ],
        "effects": [
          "@storybook/core-server"
        ],
        "range": "*",
        "nodes": [
          "node_modules/@storybook/builder-webpack4"
        ],
        "fixAvailable": {
          "name": "@storybook/vue3",
          "version": "8.0.8",
          "isSemVerMajor": true
        }
      },
      "@storybook/core": {
        "name": "@storybook/core",
        "severity": "moderate",
        "isDirect": false,
        "via": [
          "@storybook/core-server"
        ],
        "effects": [
          "@storybook/vue3"
        ],
        "range": ">=6.2.0-alpha.0",
        "nodes": [
          "node_modules/@storybook/core"
        ],
        "fixAvailable": {
          "name": "@storybook/vue3",
          "version": "8.0.8",
          "isSemVerMajor": true
        }
      },
      "@storybook/core-server": {
        "name": "@storybook/core-server",
        "severity": "high",
        "isDirect": false,
        "via": [
          "@storybook/builder-webpack4",
          "@storybook/csf-tools",
          "@storybook/manager-webpack4",
          "cpy"
        ],
        "effects": [
          "@storybook/core"
        ],
        "range": "<=7.0.0-rc.11",
        "nodes": [
          "node_modules/@storybook/core-server"
        ],
        "fixAvailable": {
          "name": "@storybook/vue3",
          "version": "8.0.8",
          "isSemVerMajor": true
        }
      },
      "@storybook/csf-tools": {
        "name": "@storybook/csf-tools",
        "severity": "high",
        "isDirect": false,
        "via": [
          "@storybook/mdx1-csf"
        ],
        "effects": [
          "@storybook/core-server"
        ],
        "range": "6.5.0-alpha.1 - 6.5.17-alpha.0",
        "nodes": [
          "node_modules/@storybook/csf-tools"
        ],
        "fixAvailable": {
          "name": "@storybook/vue3",
          "version": "8.0.8",
          "isSemVerMajor": true
        }
      },
      "@storybook/manager-webpack4": {
        "name": "@storybook/manager-webpack4",
        "severity": "high",
        "isDirect": true,
        "via": [
          "css-loader",
          "webpack-dev-middleware"
        ],
        "effects": [
          "@storybook/core-server"
        ],
        "range": "*",
        "nodes": [
          "node_modules/@storybook/manager-webpack4"
        ],
        "fixAvailable": {
          "name": "@storybook/vue3",
          "version": "8.0.8",
          "isSemVerMajor": true
        }
      },
      "@storybook/mdx1-csf": {
        "name": "@storybook/mdx1-csf",
        "severity": "high",
        "isDirect": false,
        "via": [
          "@mdx-js/mdx"
        ],
        "effects": [
          "@storybook/addon-docs",
          "@storybook/csf-tools"
        ],
        "range": "*",
        "nodes": [
          "node_modules/@storybook/mdx1-csf"
        ],
        "fixAvailable": {
          "name": "@storybook/vue3",
          "version": "8.0.8",
          "isSemVerMajor": true
        }
      },
      "@storybook/vue3": {
        "name": "@storybook/vue3",
        "severity": "moderate",
        "isDirect": true,
        "via": [
          "@storybook/core"
        ],
        "effects": [],
        "range": "<=6.5.17-alpha.0",
        "nodes": [
          "node_modules/@storybook/vue3"
        ],
        "fixAvailable": {
          "name": "@storybook/vue3",
          "version": "8.0.8",
          "isSemVerMajor": true
        }
      },
      "autoprefixer": {
        "name": "autoprefixer",
        "severity": "moderate",
        "isDirect": false,
        "via": [
          "postcss"
        ],
        "effects": [],
        "range": "1.0.20131222 - 9.8.8",
        "nodes": [
          "node_modules/autoprefixer"
        ],
        "fixAvailable": true
      },
      "chokidar": {
        "name": "chokidar",
        "severity": "high",
        "isDirect": false,
        "via": [
          "glob-parent"
        ],
        "effects": [
          "watchpack-chokidar2"
        ],
        "range": "1.0.0-rc1 - 2.1.8",
        "nodes": [
          "node_modules/watchpack-chokidar2/node_modules/chokidar"
        ],
        "fixAvailable": true
      },
      "cpy": {
        "name": "cpy",
        "severity": "high",
        "isDirect": false,
        "via": [
          "globby"
        ],
        "effects": [
          "@storybook/core-server"
        ],
        "range": "7.0.0 - 8.1.2",
        "nodes": [
          "node_modules/cpy"
        ],
        "fixAvailable": {
          "name": "@storybook/vue3",
          "version": "8.0.8",
          "isSemVerMajor": true
        }
      },
      "css-loader": {
        "name": "css-loader",
        "severity": "moderate",
        "isDirect": false,
        "via": [
          "icss-utils",
          "postcss",
          "postcss-modules-extract-imports",
          "postcss-modules-local-by-default",
          "postcss-modules-scope",
          "postcss-modules-values"
        ],
        "effects": [],
        "range": "0.15.0 - 4.3.0",
        "nodes": [
          "node_modules/css-loader"
        ],
        "fixAvailable": true
      },
      "fast-glob": {
        "name": "fast-glob",
        "severity": "high",
        "isDirect": false,
        "via": [
          "glob-parent"
        ],
        "effects": [
          "globby"
        ],
        "range": "<=2.2.7",
        "nodes": [
          "node_modules/cpy/node_modules/fast-glob"
        ],
        "fixAvailable": {
          "name": "@storybook/vue3",
          "version": "8.0.8",
          "isSemVerMajor": true
        }
      },
      "glob-parent": {
        "name": "glob-parent",
        "severity": "high",
        "isDirect": false,
        "via": [
          {
            "source": 1095007,
            "name": "glob-parent",
            "dependency": "glob-parent",
            "title": "glob-parent vulnerable to Regular Expression Denial of Service in enclosure regex",
            "url": "https://github.com/advisories/GHSA-ww39-953v-wcq6",
            "severity": "high",
            "cwe": [
              "CWE-400"
            ],
            "cvss": {
              "score": 7.5,
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
            },
            "range": "<5.1.2"
          }
        ],
        "effects": [
          "chokidar",
          "fast-glob"
        ],
        "range": "<5.1.2",
        "nodes": [
          "node_modules/cpy/node_modules/glob-parent",
          "node_modules/watchpack-chokidar2/node_modules/glob-parent"
        ],
        "fixAvailable": {
          "name": "@storybook/vue3",
          "version": "8.0.8",
          "isSemVerMajor": true
        }
      },
      "globby": {
        "name": "globby",
        "severity": "high",
        "isDirect": false,
        "via": [
          "fast-glob"
        ],
        "effects": [
          "cpy"
        ],
        "range": "8.0.0 - 9.2.0",
        "nodes": [
          "node_modules/cpy/node_modules/globby"
        ],
        "fixAvailable": {
          "name": "@storybook/vue3",
          "version": "8.0.8",
          "isSemVerMajor": true
        }
      },
      "icss-utils": {
        "name": "icss-utils",
        "severity": "moderate",
        "isDirect": false,
        "via": [
          "postcss"
        ],
        "effects": [
          "css-loader",
          "postcss-modules-local-by-default",
          "postcss-modules-values"
        ],
        "range": "<=4.1.1",
        "nodes": [
          "node_modules/icss-utils"
        ],
        "fixAvailable": true
      },
      "meow": {
        "name": "meow",
        "severity": "high",
        "isDirect": false,
        "via": [
          "trim-newlines"
        ],
        "effects": [],
        "range": "3.4.0 - 5.0.0",
        "nodes": [
          "node_modules/default-browser-id/node_modules/meow"
        ],
        "fixAvailable": true
      },
      "mwbot": {
        "name": "mwbot",
        "severity": "moderate",
        "isDirect": false,
        "via": [
          "request"
        ],
        "effects": [
          "wdio-mediawiki"
        ],
        "range": ">=0.1.6",
        "nodes": [
          "node_modules/mwbot"
        ],
        "fixAvailable": false
      },
      "postcss": {
        "name": "postcss",
        "severity": "moderate",
        "isDirect": false,
        "via": [
          {
            "source": 1094544,
            "name": "postcss",
            "dependency": "postcss",
            "title": "PostCSS line return parsing error",
            "url": "https://github.com/advisories/GHSA-7fh5-64p2-3v2j",
            "severity": "moderate",
            "cwe": [
              "CWE-74",
              "CWE-144"
            ],
            "cvss": {
              "score": 5.3,
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"
            },
            "range": "<8.4.31"
          }
        ],
        "effects": [
          "@storybook/builder-webpack4",
          "autoprefixer",
          "css-loader",
          "icss-utils",
          "postcss-flexbugs-fixes",
          "postcss-modules-extract-imports",
          "postcss-modules-local-by-default",
          "postcss-modules-scope",
          "postcss-modules-values"
        ],
        "range": "<8.4.31",
        "nodes": [
          "node_modules/@storybook/builder-webpack4/node_modules/postcss",
          "node_modules/autoprefixer/node_modules/postcss",
          "node_modules/css-loader/node_modules/postcss",
          "node_modules/icss-utils/node_modules/postcss",
          "node_modules/postcss-flexbugs-fixes/node_modules/postcss",
          "node_modules/postcss-modules-extract-imports/node_modules/postcss",
          "node_modules/postcss-modules-local-by-default/node_modules/postcss",
          "node_modules/postcss-modules-scope/node_modules/postcss",
          "node_modules/postcss-modules-values/node_modules/postcss"
        ],
        "fixAvailable": {
          "name": "@storybook/vue3",
          "version": "8.0.8",
          "isSemVerMajor": true
        }
      },
      "postcss-flexbugs-fixes": {
        "name": "postcss-flexbugs-fixes",
        "severity": "moderate",
        "isDirect": false,
        "via": [
          "postcss"
        ],
        "effects": [],
        "range": "<=4.2.1",
        "nodes": [
          "node_modules/postcss-flexbugs-fixes"
        ],
        "fixAvailable": true
      },
      "postcss-modules-extract-imports": {
        "name": "postcss-modules-extract-imports",
        "severity": "moderate",
        "isDirect": false,
        "via": [
          "postcss"
        ],
        "effects": [],
        "range": "<=2.0.0",
        "nodes": [
          "node_modules/postcss-modules-extract-imports"
        ],
        "fixAvailable": true
      },
      "postcss-modules-local-by-default": {
        "name": "postcss-modules-local-by-default",
        "severity": "moderate",
        "isDirect": false,
        "via": [
          "icss-utils",
          "postcss"
        ],
        "effects": [],
        "range": "<=4.0.0-rc.4",
        "nodes": [
          "node_modules/postcss-modules-local-by-default"
        ],
        "fixAvailable": true
      },
      "postcss-modules-scope": {
        "name": "postcss-modules-scope",
        "severity": "moderate",
        "isDirect": false,
        "via": [
          "postcss"
        ],
        "effects": [],
        "range": "<=2.2.0",
        "nodes": [
          "node_modules/postcss-modules-scope"
        ],
        "fixAvailable": true
      },
      "postcss-modules-values": {
        "name": "postcss-modules-values",
        "severity": "moderate",
        "isDirect": false,
        "via": [
          "icss-utils",
          "postcss"
        ],
        "effects": [
          "css-loader"
        ],
        "range": "<=4.0.0-rc.5",
        "nodes": [
          "node_modules/postcss-modules-values"
        ],
        "fixAvailable": true
      },
      "remark-mdx": {
        "name": "remark-mdx",
        "severity": "high",
        "isDirect": false,
        "via": [
          "remark-parse"
        ],
        "effects": [
          "@mdx-js/mdx"
        ],
        "range": "<=1.6.22",
        "nodes": [
          "node_modules/remark-mdx"
        ],
        "fixAvailable": {
          "name": "@storybook/vue3",
          "version": "8.0.8",
          "isSemVerMajor": true
        }
      },
      "remark-parse": {
        "name": "remark-parse",
        "severity": "high",
        "isDirect": false,
        "via": [
          "trim"
        ],
        "effects": [
          "@mdx-js/mdx",
          "remark-mdx"
        ],
        "range": "<=8.0.3",
        "nodes": [
          "node_modules/remark-parse"
        ],
        "fixAvailable": {
          "name": "@storybook/vue3",
          "version": "8.0.8",
          "isSemVerMajor": true
        }
      },
      "request": {
        "name": "request",
        "severity": "moderate",
        "isDirect": false,
        "via": [
          {
            "source": 1096727,
            "name": "request",
            "dependency": "request",
            "title": "Server-Side Request Forgery in Request",
            "url": "https://github.com/advisories/GHSA-p8p7-x288-28g6",
            "severity": "moderate",
            "cwe": [
              "CWE-918"
            ],
            "cvss": {
              "score": 6.1,
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"
            },
            "range": "<=2.88.2"
          },
          "tough-cookie"
        ],
        "effects": [
          "mwbot"
        ],
        "range": "*",
        "nodes": [
          "node_modules/request"
        ],
        "fixAvailable": false
      },
      "tar": {
        "name": "tar",
        "severity": "moderate",
        "isDirect": false,
        "via": [
          {
            "source": 1096915,
            "name": "tar",
            "dependency": "tar",
            "title": "Denial of service while parsing a tar file due to lack of folders count validation",
            "url": "https://github.com/advisories/GHSA-f5x3-32g6-xq36",
            "severity": "moderate",
            "cwe": [
              "CWE-400"
            ],
            "cvss": {
              "score": 6.5,
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"
            },
            "range": "<6.2.1"
          }
        ],
        "effects": [],
        "range": "<6.2.1",
        "nodes": [
          ""
        ],
        "fixAvailable": true
      },
      "tough-cookie": {
        "name": "tough-cookie",
        "severity": "moderate",
        "isDirect": false,
        "via": [
          {
            "source": 1096643,
            "name": "tough-cookie",
            "dependency": "tough-cookie",
            "title": "tough-cookie Prototype Pollution vulnerability",
            "url": "https://github.com/advisories/GHSA-72xf-g2v4-qvf3",
            "severity": "moderate",
            "cwe": [
              "CWE-1321"
            ],
            "cvss": {
              "score": 6.5,
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"
            },
            "range": "<4.1.3"
          }
        ],
        "effects": [
          "request"
        ],
        "range": "<4.1.3",
        "nodes": [
          "node_modules/request/node_modules/tough-cookie"
        ],
        "fixAvailable": false
      },
      "trim": {
        "name": "trim",
        "severity": "high",
        "isDirect": false,
        "via": [
          {
            "source": 1089867,
            "name": "trim",
            "dependency": "trim",
            "title": "Regular Expression Denial of Service in trim",
            "url": "https://github.com/advisories/GHSA-w5p7-h5w8-2hfq",
            "severity": "high",
            "cwe": [
              "CWE-400"
            ],
            "cvss": {
              "score": 7.5,
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
            },
            "range": "<0.0.3"
          }
        ],
        "effects": [
          "remark-parse"
        ],
        "range": "<0.0.3",
        "nodes": [
          "node_modules/trim"
        ],
        "fixAvailable": {
          "name": "@storybook/vue3",
          "version": "8.0.8",
          "isSemVerMajor": true
        }
      },
      "trim-newlines": {
        "name": "trim-newlines",
        "severity": "high",
        "isDirect": false,
        "via": [
          {
            "source": 1095100,
            "name": "trim-newlines",
            "dependency": "trim-newlines",
            "title": "Uncontrolled Resource Consumption in trim-newlines",
            "url": "https://github.com/advisories/GHSA-7p7h-4mm5-852v",
            "severity": "high",
            "cwe": [
              "CWE-400"
            ],
            "cvss": {
              "score": 7.5,
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
            },
            "range": "<3.0.1"
          }
        ],
        "effects": [
          "meow"
        ],
        "range": "<3.0.1",
        "nodes": [
          "node_modules/default-browser-id/node_modules/trim-newlines"
        ],
        "fixAvailable": true
      },
      "watchpack": {
        "name": "watchpack",
        "severity": "high",
        "isDirect": false,
        "via": [
          "watchpack-chokidar2"
        ],
        "effects": [
          "webpack"
        ],
        "range": "1.7.2 - 1.7.5",
        "nodes": [
          "node_modules/webpack/node_modules/watchpack"
        ],
        "fixAvailable": true
      },
      "watchpack-chokidar2": {
        "name": "watchpack-chokidar2",
        "severity": "high",
        "isDirect": false,
        "via": [
          "chokidar"
        ],
        "effects": [
          "watchpack"
        ],
        "range": "*",
        "nodes": [
          "node_modules/watchpack-chokidar2"
        ],
        "fixAvailable": true
      },
      "wdio-mediawiki": {
        "name": "wdio-mediawiki",
        "severity": "moderate",
        "isDirect": true,
        "via": [
          "mwbot"
        ],
        "effects": [],
        "range": "*",
        "nodes": [
          "node_modules/wdio-mediawiki"
        ],
        "fixAvailable": false
      },
      "webpack": {
        "name": "webpack",
        "severity": "high",
        "isDirect": false,
        "via": [
          "watchpack"
        ],
        "effects": [],
        "range": "4.44.0 - 4.47.0",
        "nodes": [
          "node_modules/webpack"
        ],
        "fixAvailable": true
      },
      "webpack-dev-middleware": {
        "name": "webpack-dev-middleware",
        "severity": "high",
        "isDirect": false,
        "via": [
          {
            "source": 1096729,
            "name": "webpack-dev-middleware",
            "dependency": "webpack-dev-middleware",
            "title": "Path traversal in webpack-dev-middleware",
            "url": "https://github.com/advisories/GHSA-wr3j-pwj9-hqq6",
            "severity": "high",
            "cwe": [
              "CWE-22"
            ],
            "cvss": {
              "score": 7.4,
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"
            },
            "range": "<=5.3.3"
          }
        ],
        "effects": [
          "@storybook/manager-webpack4"
        ],
        "range": "<=5.3.3",
        "nodes": [
          "node_modules/webpack-dev-middleware"
        ],
        "fixAvailable": {
          "name": "@storybook/vue3",
          "version": "8.0.8",
          "isSemVerMajor": true
        }
      }
    },
    "metadata": {
      "vulnerabilities": {
        "info": 0,
        "low": 0,
        "moderate": 16,
        "high": 22,
        "critical": 0,
        "total": 38
      },
      "dependencies": {
        "prod": 1,
        "dev": 2516,
        "optional": 58,
        "peer": 0,
        "peerOptional": 0,
        "total": 2516
      }
    }
  }
}

--- end ---
{"added": 2516, "removed": 0, "changed": 0, "audited": 2517, "funding": 330, "audit": {"auditReportVersion": 2, "vulnerabilities": {"@mdx-js/mdx": {"name": "@mdx-js/mdx", "severity": "high", "isDirect": false, "via": ["remark-mdx", "remark-parse"], "effects": ["@storybook/mdx1-csf"], "range": "<=1.6.22", "nodes": ["node_modules/@mdx-js/mdx"], "fixAvailable": {"name": "@storybook/vue3", "version": "8.0.8", "isSemVerMajor": true}}, "@storybook/addon-docs": {"name": "@storybook/addon-docs", "severity": "high", "isDirect": false, "via": ["@storybook/mdx1-csf"], "effects": ["@storybook/addon-essentials"], "range": "6.5.0-alpha.1 - 7.0.3 || 7.1.0-alpha.0 - 7.1.0-rc.2", "nodes": ["node_modules/@storybook/addon-docs"], "fixAvailable": {"name": "@storybook/addon-essentials", "version": "8.0.8", "isSemVerMajor": true}}, "@storybook/addon-essentials": {"name": "@storybook/addon-essentials", "severity": "high", "isDirect": true, "via": ["@storybook/addon-docs"], "effects": [], "range": "6.5.0-alpha.1 - 7.0.3 || 7.1.0-alpha.0 - 7.1.0-rc.2", "nodes": ["node_modules/@storybook/addon-essentials"], "fixAvailable": {"name": "@storybook/addon-essentials", "version": "8.0.8", "isSemVerMajor": true}}, "@storybook/builder-webpack4": {"name": "@storybook/builder-webpack4", "severity": "high", "isDirect": true, "via": ["autoprefixer", "css-loader", "postcss", "postcss-flexbugs-fixes", "webpack-dev-middleware"], "effects": ["@storybook/core-server"], "range": "*", "nodes": ["node_modules/@storybook/builder-webpack4"], "fixAvailable": {"name": "@storybook/vue3", "version": "8.0.8", "isSemVerMajor": true}}, "@storybook/core": {"name": "@storybook/core", "severity": "moderate", "isDirect": false, "via": ["@storybook/core-server"], "effects": ["@storybook/vue3"], "range": ">=6.2.0-alpha.0", "nodes": ["node_modules/@storybook/core"], "fixAvailable": {"name": "@storybook/vue3", "version": "8.0.8", "isSemVerMajor": true}}, "@storybook/core-server": {"name": "@storybook/core-server", "severity": "high", "isDirect": false, "via": ["@storybook/builder-webpack4", "@storybook/csf-tools", "@storybook/manager-webpack4", "cpy"], "effects": ["@storybook/core"], "range": "<=7.0.0-rc.11", "nodes": ["node_modules/@storybook/core-server"], "fixAvailable": {"name": "@storybook/vue3", "version": "8.0.8", "isSemVerMajor": true}}, "@storybook/csf-tools": {"name": "@storybook/csf-tools", "severity": "high", "isDirect": false, "via": ["@storybook/mdx1-csf"], "effects": ["@storybook/core-server"], "range": "6.5.0-alpha.1 - 6.5.17-alpha.0", "nodes": ["node_modules/@storybook/csf-tools"], "fixAvailable": {"name": "@storybook/vue3", "version": "8.0.8", "isSemVerMajor": true}}, "@storybook/manager-webpack4": {"name": "@storybook/manager-webpack4", "severity": "high", "isDirect": true, "via": ["css-loader", "webpack-dev-middleware"], "effects": ["@storybook/core-server"], "range": "*", "nodes": ["node_modules/@storybook/manager-webpack4"], "fixAvailable": {"name": "@storybook/vue3", "version": "8.0.8", "isSemVerMajor": true}}, "@storybook/mdx1-csf": {"name": "@storybook/mdx1-csf", "severity": "high", "isDirect": false, "via": ["@mdx-js/mdx"], "effects": ["@storybook/addon-docs", "@storybook/csf-tools"], "range": "*", "nodes": ["node_modules/@storybook/mdx1-csf"], "fixAvailable": {"name": "@storybook/vue3", "version": "8.0.8", "isSemVerMajor": true}}, "@storybook/vue3": {"name": "@storybook/vue3", "severity": "moderate", "isDirect": true, "via": ["@storybook/core"], "effects": [], "range": "<=6.5.17-alpha.0", "nodes": ["node_modules/@storybook/vue3"], "fixAvailable": {"name": "@storybook/vue3", "version": "8.0.8", "isSemVerMajor": true}}, "autoprefixer": {"name": "autoprefixer", "severity": "moderate", "isDirect": false, "via": ["postcss"], "effects": [], "range": "1.0.20131222 - 9.8.8", "nodes": ["node_modules/autoprefixer"], "fixAvailable": true}, "chokidar": {"name": "chokidar", "severity": "high", "isDirect": false, "via": ["glob-parent"], "effects": ["watchpack-chokidar2"], "range": "1.0.0-rc1 - 2.1.8", "nodes": ["node_modules/watchpack-chokidar2/node_modules/chokidar"], "fixAvailable": true}, "cpy": {"name": "cpy", "severity": "high", "isDirect": false, "via": ["globby"], "effects": ["@storybook/core-server"], "range": "7.0.0 - 8.1.2", "nodes": ["node_modules/cpy"], "fixAvailable": {"name": "@storybook/vue3", "version": "8.0.8", "isSemVerMajor": true}}, "css-loader": {"name": "css-loader", "severity": "moderate", "isDirect": false, "via": ["icss-utils", "postcss", "postcss-modules-extract-imports", "postcss-modules-local-by-default", "postcss-modules-scope", "postcss-modules-values"], "effects": [], "range": "0.15.0 - 4.3.0", "nodes": ["node_modules/css-loader"], "fixAvailable": true}, "fast-glob": {"name": "fast-glob", "severity": "high", "isDirect": false, "via": ["glob-parent"], "effects": ["globby"], "range": "<=2.2.7", "nodes": ["node_modules/cpy/node_modules/fast-glob"], "fixAvailable": {"name": "@storybook/vue3", "version": "8.0.8", "isSemVerMajor": true}}, "glob-parent": {"name": "glob-parent", "severity": "high", "isDirect": false, "via": [{"source": 1095007, "name": "glob-parent", "dependency": "glob-parent", "title": "glob-parent vulnerable to Regular Expression Denial of Service in enclosure regex", "url": "https://github.com/advisories/GHSA-ww39-953v-wcq6", "severity": "high", "cwe": ["CWE-400"], "cvss": {"score": 7.5, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}, "range": "<5.1.2"}], "effects": ["chokidar", "fast-glob"], "range": "<5.1.2", "nodes": ["node_modules/cpy/node_modules/glob-parent", "node_modules/watchpack-chokidar2/node_modules/glob-parent"], "fixAvailable": {"name": "@storybook/vue3", "version": "8.0.8", "isSemVerMajor": true}}, "globby": {"name": "globby", "severity": "high", "isDirect": false, "via": ["fast-glob"], "effects": ["cpy"], "range": "8.0.0 - 9.2.0", "nodes": ["node_modules/cpy/node_modules/globby"], "fixAvailable": {"name": "@storybook/vue3", "version": "8.0.8", "isSemVerMajor": true}}, "icss-utils": {"name": "icss-utils", "severity": "moderate", "isDirect": false, "via": ["postcss"], "effects": ["css-loader", "postcss-modules-local-by-default", "postcss-modules-values"], "range": "<=4.1.1", "nodes": ["node_modules/icss-utils"], "fixAvailable": true}, "meow": {"name": "meow", "severity": "high", "isDirect": false, "via": ["trim-newlines"], "effects": [], "range": "3.4.0 - 5.0.0", "nodes": ["node_modules/default-browser-id/node_modules/meow"], "fixAvailable": true}, "mwbot": {"name": "mwbot", "severity": "moderate", "isDirect": false, "via": ["request"], "effects": ["wdio-mediawiki"], "range": ">=0.1.6", "nodes": ["node_modules/mwbot"], "fixAvailable": false}, "postcss": {"name": "postcss", "severity": "moderate", "isDirect": false, "via": [{"source": 1094544, "name": "postcss", "dependency": "postcss", "title": "PostCSS line return parsing error", "url": "https://github.com/advisories/GHSA-7fh5-64p2-3v2j", "severity": "moderate", "cwe": ["CWE-74", "CWE-144"], "cvss": {"score": 5.3, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"}, "range": "<8.4.31"}], "effects": ["@storybook/builder-webpack4", "autoprefixer", "css-loader", "icss-utils", "postcss-flexbugs-fixes", "postcss-modules-extract-imports", "postcss-modules-local-by-default", "postcss-modules-scope", "postcss-modules-values"], "range": "<8.4.31", "nodes": ["node_modules/@storybook/builder-webpack4/node_modules/postcss", "node_modules/autoprefixer/node_modules/postcss", "node_modules/css-loader/node_modules/postcss", "node_modules/icss-utils/node_modules/postcss", "node_modules/postcss-flexbugs-fixes/node_modules/postcss", "node_modules/postcss-modules-extract-imports/node_modules/postcss", "node_modules/postcss-modules-local-by-default/node_modules/postcss", "node_modules/postcss-modules-scope/node_modules/postcss", "node_modules/postcss-modules-values/node_modules/postcss"], "fixAvailable": {"name": "@storybook/vue3", "version": "8.0.8", "isSemVerMajor": true}}, "postcss-flexbugs-fixes": {"name": "postcss-flexbugs-fixes", "severity": "moderate", "isDirect": false, "via": ["postcss"], "effects": [], "range": "<=4.2.1", "nodes": ["node_modules/postcss-flexbugs-fixes"], "fixAvailable": true}, "postcss-modules-extract-imports": {"name": "postcss-modules-extract-imports", "severity": "moderate", "isDirect": false, "via": ["postcss"], "effects": [], "range": "<=2.0.0", "nodes": ["node_modules/postcss-modules-extract-imports"], "fixAvailable": true}, "postcss-modules-local-by-default": {"name": "postcss-modules-local-by-default", "severity": "moderate", "isDirect": false, "via": ["icss-utils", "postcss"], "effects": [], "range": "<=4.0.0-rc.4", "nodes": ["node_modules/postcss-modules-local-by-default"], "fixAvailable": true}, "postcss-modules-scope": {"name": "postcss-modules-scope", "severity": "moderate", "isDirect": false, "via": ["postcss"], "effects": [], "range": "<=2.2.0", "nodes": ["node_modules/postcss-modules-scope"], "fixAvailable": true}, "postcss-modules-values": {"name": "postcss-modules-values", "severity": "moderate", "isDirect": false, "via": ["icss-utils", "postcss"], "effects": ["css-loader"], "range": "<=4.0.0-rc.5", "nodes": ["node_modules/postcss-modules-values"], "fixAvailable": true}, "remark-mdx": {"name": "remark-mdx", "severity": "high", "isDirect": false, "via": ["remark-parse"], "effects": ["@mdx-js/mdx"], "range": "<=1.6.22", "nodes": ["node_modules/remark-mdx"], "fixAvailable": {"name": "@storybook/vue3", "version": "8.0.8", "isSemVerMajor": true}}, "remark-parse": {"name": "remark-parse", "severity": "high", "isDirect": false, "via": ["trim"], "effects": ["@mdx-js/mdx", "remark-mdx"], "range": "<=8.0.3", "nodes": ["node_modules/remark-parse"], "fixAvailable": {"name": "@storybook/vue3", "version": "8.0.8", "isSemVerMajor": true}}, "request": {"name": "request", "severity": "moderate", "isDirect": false, "via": [{"source": 1096727, "name": "request", "dependency": "request", "title": "Server-Side Request Forgery in Request", "url": "https://github.com/advisories/GHSA-p8p7-x288-28g6", "severity": "moderate", "cwe": ["CWE-918"], "cvss": {"score": 6.1, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}, "range": "<=2.88.2"}, "tough-cookie"], "effects": ["mwbot"], "range": "*", "nodes": ["node_modules/request"], "fixAvailable": false}, "tar": {"name": "tar", "severity": "moderate", "isDirect": false, "via": [{"source": 1096915, "name": "tar", "dependency": "tar", "title": "Denial of service while parsing a tar file due to lack of folders count validation", "url": "https://github.com/advisories/GHSA-f5x3-32g6-xq36", "severity": "moderate", "cwe": ["CWE-400"], "cvss": {"score": 6.5, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}, "range": "<6.2.1"}], "effects": [], "range": "<6.2.1", "nodes": [""], "fixAvailable": true}, "tough-cookie": {"name": "tough-cookie", "severity": "moderate", "isDirect": false, "via": [{"source": 1096643, "name": "tough-cookie", "dependency": "tough-cookie", "title": "tough-cookie Prototype Pollution vulnerability", "url": "https://github.com/advisories/GHSA-72xf-g2v4-qvf3", "severity": "moderate", "cwe": ["CWE-1321"], "cvss": {"score": 6.5, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"}, "range": "<4.1.3"}], "effects": ["request"], "range": "<4.1.3", "nodes": ["node_modules/request/node_modules/tough-cookie"], "fixAvailable": false}, "trim": {"name": "trim", "severity": "high", "isDirect": false, "via": [{"source": 1089867, "name": "trim", "dependency": "trim", "title": "Regular Expression Denial of Service in trim", "url": "https://github.com/advisories/GHSA-w5p7-h5w8-2hfq", "severity": "high", "cwe": ["CWE-400"], "cvss": {"score": 7.5, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}, "range": "<0.0.3"}], "effects": ["remark-parse"], "range": "<0.0.3", "nodes": ["node_modules/trim"], "fixAvailable": {"name": "@storybook/vue3", "version": "8.0.8", "isSemVerMajor": true}}, "trim-newlines": {"name": "trim-newlines", "severity": "high", "isDirect": false, "via": [{"source": 1095100, "name": "trim-newlines", "dependency": "trim-newlines", "title": "Uncontrolled Resource Consumption in trim-newlines", "url": "https://github.com/advisories/GHSA-7p7h-4mm5-852v", "severity": "high", "cwe": ["CWE-400"], "cvss": {"score": 7.5, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}, "range": "<3.0.1"}], "effects": ["meow"], "range": "<3.0.1", "nodes": ["node_modules/default-browser-id/node_modules/trim-newlines"], "fixAvailable": true}, "watchpack": {"name": "watchpack", "severity": "high", "isDirect": false, "via": ["watchpack-chokidar2"], "effects": ["webpack"], "range": "1.7.2 - 1.7.5", "nodes": ["node_modules/webpack/node_modules/watchpack"], "fixAvailable": true}, "watchpack-chokidar2": {"name": "watchpack-chokidar2", "severity": "high", "isDirect": false, "via": ["chokidar"], "effects": ["watchpack"], "range": "*", "nodes": ["node_modules/watchpack-chokidar2"], "fixAvailable": true}, "wdio-mediawiki": {"name": "wdio-mediawiki", "severity": "moderate", "isDirect": true, "via": ["mwbot"], "effects": [], "range": "*", "nodes": ["node_modules/wdio-mediawiki"], "fixAvailable": false}, "webpack": {"name": "webpack", "severity": "high", "isDirect": false, "via": ["watchpack"], "effects": [], "range": "4.44.0 - 4.47.0", "nodes": ["node_modules/webpack"], "fixAvailable": true}, "webpack-dev-middleware": {"name": "webpack-dev-middleware", "severity": "high", "isDirect": false, "via": [{"source": 1096729, "name": "webpack-dev-middleware", "dependency": "webpack-dev-middleware", "title": "Path traversal in webpack-dev-middleware", "url": "https://github.com/advisories/GHSA-wr3j-pwj9-hqq6", "severity": "high", "cwe": ["CWE-22"], "cvss": {"score": 7.4, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"}, "range": "<=5.3.3"}], "effects": ["@storybook/manager-webpack4"], "range": "<=5.3.3", "nodes": ["node_modules/webpack-dev-middleware"], "fixAvailable": {"name": "@storybook/vue3", "version": "8.0.8", "isSemVerMajor": true}}}, "metadata": {"vulnerabilities": {"info": 0, "low": 0, "moderate": 16, "high": 22, "critical": 0, "total": 38}, "dependencies": {"prod": 1, "dev": 2516, "optional": 58, "peer": 0, "peerOptional": 0, "total": 2516}}}}
$ /usr/bin/npm audit fix --only=dev
--- stderr ---
npm WARN invalid config only="dev" set in command line options
npm WARN invalid config Must be one of: null, prod, production
npm WARN EBADENGINE Unsupported engine {
npm WARN EBADENGINE   package: '@es-joy/jsdoccomment@0.23.6',
npm WARN EBADENGINE   required: { node: '^12 || ^14 || ^16 || ^17' },
npm WARN EBADENGINE   current: { node: 'v18.19.0', npm: '9.2.0' }
npm WARN EBADENGINE }
npm WARN EBADENGINE Unsupported engine {
npm WARN EBADENGINE   package: 'eslint-plugin-jsdoc@39.2.2',
npm WARN EBADENGINE   required: { node: '^14 || ^16 || ^17' },
npm WARN EBADENGINE   current: { node: 'v18.19.0', npm: '9.2.0' }
npm WARN EBADENGINE }
npm WARN EBADENGINE Unsupported engine {
npm WARN EBADENGINE   package: 'wdio-mediawiki@2.5.0',
npm WARN EBADENGINE   required: { node: '>=18.17.0', npm: '>=9.6.7' },
npm WARN EBADENGINE   current: { node: 'v18.19.0', npm: '9.2.0' }
npm WARN EBADENGINE }
npm WARN deprecated @npmcli/move-file@1.1.2: This functionality has been moved to @npmcli/fs
npm WARN deprecated source-map-url@0.4.1: See https://github.com/lydell/source-map-url#deprecated
npm WARN deprecated stable@0.1.8: Modern JS already guarantees Array#sort() is a stable sort, so this library is deprecated. See the compatibility table on MDN: https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/Array/sort#browser_compatibility
npm WARN deprecated urix@0.1.0: Please see https://github.com/lydell/urix#deprecated
npm WARN deprecated trim@0.0.1: Use String.prototype.trim() instead
npm WARN deprecated har-validator@5.1.5: this library is no longer supported
npm WARN deprecated resolve-url@0.2.1: https://github.com/lydell/resolve-url#deprecated
npm WARN deprecated uuid-browser@3.1.0: Package no longer supported and required. Use the uuid package or crypto.randomUUID instead
npm WARN deprecated source-map-resolve@0.5.3: See https://github.com/lydell/source-map-resolve#deprecated
npm WARN deprecated querystring@0.2.1: The querystring API is considered Legacy. new code should use the URLSearchParams API instead.
npm WARN deprecated sane@4.1.0: some dependency vulnerabilities fixed, support for node < 10 dropped, and newer ECMAScript syntax/features added
npm WARN deprecated chokidar@2.1.8: Chokidar 2 does not receive security updates since 2019. Upgrade to chokidar 3 with 15x fewer dependencies
npm WARN deprecated querystring@0.2.0: The querystring API is considered Legacy. new code should use the URLSearchParams API instead.
npm WARN deprecated uuid@3.4.0: Please upgrade  to version 7 or higher.  Older versions may use Math.random() in certain circumstances, which is known to be problematic.  See https://v8.dev/blog/math-random for details.
npm WARN deprecated request@2.88.2: request has been deprecated, see https://github.com/request/request/issues/3142
npm WARN deprecated stylelint-stylistic@0.4.3: This package has been deprecated in favor of @stylistic/stylelint-plugin
--- stdout ---

added 2511 packages, and audited 2512 packages in 36s

330 packages are looking for funding
  run `npm fund` for details

# npm audit report

glob-parent  <5.1.2
Severity: high
glob-parent vulnerable to Regular Expression Denial of Service in enclosure regex - https://github.com/advisories/GHSA-ww39-953v-wcq6
fix available via `npm audit fix --force`
Will install @storybook/vue3@8.0.8, which is a breaking change
node_modules/cpy/node_modules/glob-parent
node_modules/watchpack-chokidar2/node_modules/glob-parent
  chokidar  1.0.0-rc1 - 2.1.8
  Depends on vulnerable versions of glob-parent
  node_modules/watchpack-chokidar2/node_modules/chokidar
    watchpack-chokidar2  *
    Depends on vulnerable versions of chokidar
    node_modules/watchpack-chokidar2
      watchpack  1.7.2 - 1.7.5
      Depends on vulnerable versions of watchpack-chokidar2
      node_modules/webpack/node_modules/watchpack
        webpack  4.44.0 - 4.47.0
        Depends on vulnerable versions of watchpack
        node_modules/webpack
  fast-glob  <=2.2.7
  Depends on vulnerable versions of glob-parent
  node_modules/cpy/node_modules/fast-glob
    globby  8.0.0 - 9.2.0
    Depends on vulnerable versions of fast-glob
    node_modules/cpy/node_modules/globby
      cpy  7.0.0 - 8.1.2
      Depends on vulnerable versions of globby
      node_modules/cpy
        @storybook/core-server  <=7.0.0-rc.11
        Depends on vulnerable versions of @storybook/builder-webpack4
        Depends on vulnerable versions of @storybook/csf-tools
        Depends on vulnerable versions of @storybook/manager-webpack4
        Depends on vulnerable versions of cpy
        node_modules/@storybook/core-server
          @storybook/core  >=6.2.0-alpha.0
          Depends on vulnerable versions of @storybook/core-server
          node_modules/@storybook/core
            @storybook/vue3  <=6.5.17-alpha.0
            Depends on vulnerable versions of @storybook/core
            node_modules/@storybook/vue3

postcss  <8.4.31
Severity: moderate
PostCSS line return parsing error - https://github.com/advisories/GHSA-7fh5-64p2-3v2j
fix available via `npm audit fix --force`
Will install @storybook/vue3@8.0.8, which is a breaking change
node_modules/@storybook/builder-webpack4/node_modules/postcss
node_modules/autoprefixer/node_modules/postcss
node_modules/css-loader/node_modules/postcss
node_modules/icss-utils/node_modules/postcss
node_modules/postcss-flexbugs-fixes/node_modules/postcss
node_modules/postcss-modules-extract-imports/node_modules/postcss
node_modules/postcss-modules-local-by-default/node_modules/postcss
node_modules/postcss-modules-scope/node_modules/postcss
node_modules/postcss-modules-values/node_modules/postcss
  @storybook/builder-webpack4  *
  Depends on vulnerable versions of autoprefixer
  Depends on vulnerable versions of css-loader
  Depends on vulnerable versions of postcss
  Depends on vulnerable versions of postcss-flexbugs-fixes
  Depends on vulnerable versions of webpack-dev-middleware
  node_modules/@storybook/builder-webpack4
  autoprefixer  1.0.20131222 - 9.8.8
  Depends on vulnerable versions of postcss
  node_modules/autoprefixer
  css-loader  0.15.0 - 4.3.0
  Depends on vulnerable versions of icss-utils
  Depends on vulnerable versions of postcss
  Depends on vulnerable versions of postcss-modules-extract-imports
  Depends on vulnerable versions of postcss-modules-local-by-default
  Depends on vulnerable versions of postcss-modules-scope
  Depends on vulnerable versions of postcss-modules-values
  node_modules/css-loader
  icss-utils  <=4.1.1
  Depends on vulnerable versions of postcss
  node_modules/icss-utils
    postcss-modules-local-by-default  <=4.0.0-rc.4
    Depends on vulnerable versions of icss-utils
    Depends on vulnerable versions of postcss
    node_modules/postcss-modules-local-by-default
    postcss-modules-values  <=4.0.0-rc.5
    Depends on vulnerable versions of icss-utils
    Depends on vulnerable versions of postcss
    node_modules/postcss-modules-values
  postcss-flexbugs-fixes  <=4.2.1
  Depends on vulnerable versions of postcss
  node_modules/postcss-flexbugs-fixes
  postcss-modules-extract-imports  <=2.0.0
  Depends on vulnerable versions of postcss
  node_modules/postcss-modules-extract-imports
  postcss-modules-scope  <=2.2.0
  Depends on vulnerable versions of postcss
  node_modules/postcss-modules-scope

request  *
Severity: moderate
Server-Side Request Forgery in Request - https://github.com/advisories/GHSA-p8p7-x288-28g6
Depends on vulnerable versions of tough-cookie
No fix available
node_modules/request
  mwbot  >=0.1.6
  Depends on vulnerable versions of request
  node_modules/mwbot
    wdio-mediawiki  *
    Depends on vulnerable versions of mwbot
    node_modules/wdio-mediawiki

tough-cookie  <4.1.3
Severity: moderate
tough-cookie Prototype Pollution vulnerability - https://github.com/advisories/GHSA-72xf-g2v4-qvf3
No fix available
node_modules/request/node_modules/tough-cookie

trim  <0.0.3
Severity: high
Regular Expression Denial of Service in trim - https://github.com/advisories/GHSA-w5p7-h5w8-2hfq
fix available via `npm audit fix --force`
Will install @storybook/addon-essentials@8.0.8, which is a breaking change
node_modules/trim
  remark-parse  <=8.0.3
  Depends on vulnerable versions of trim
  node_modules/remark-parse
    @mdx-js/mdx  <=1.6.22
    Depends on vulnerable versions of remark-mdx
    Depends on vulnerable versions of remark-parse
    node_modules/@mdx-js/mdx
      @storybook/mdx1-csf  *
      Depends on vulnerable versions of @mdx-js/mdx
      node_modules/@storybook/mdx1-csf
        @storybook/addon-docs  6.5.0-alpha.1 - 7.0.3 || 7.1.0-alpha.0 - 7.1.0-rc.2
        Depends on vulnerable versions of @storybook/mdx1-csf
        node_modules/@storybook/addon-docs
          @storybook/addon-essentials  6.5.0-alpha.1 - 7.0.3 || 7.1.0-alpha.0 - 7.1.0-rc.2
          Depends on vulnerable versions of @storybook/addon-docs
          node_modules/@storybook/addon-essentials
        @storybook/csf-tools  6.5.0-alpha.1 - 6.5.17-alpha.0
        Depends on vulnerable versions of @storybook/mdx1-csf
        node_modules/@storybook/csf-tools
    remark-mdx  <=1.6.22
    Depends on vulnerable versions of remark-parse
    node_modules/remark-mdx

trim-newlines  <3.0.1
Severity: high
Uncontrolled Resource Consumption in trim-newlines - https://github.com/advisories/GHSA-7p7h-4mm5-852v
fix available via `npm audit fix`
node_modules/default-browser-id/node_modules/trim-newlines
  meow  3.4.0 - 5.0.0
  Depends on vulnerable versions of trim-newlines
  node_modules/default-browser-id/node_modules/meow

webpack-dev-middleware  <=5.3.3
Severity: high
Path traversal in webpack-dev-middleware - https://github.com/advisories/GHSA-wr3j-pwj9-hqq6
fix available via `npm audit fix --force`
Will install @storybook/vue3@8.0.8, which is a breaking change
node_modules/webpack-dev-middleware
  @storybook/manager-webpack4  *
  Depends on vulnerable versions of css-loader
  Depends on vulnerable versions of webpack-dev-middleware
  node_modules/@storybook/manager-webpack4

37 vulnerabilities (15 moderate, 22 high)

To address issues that do not require attention, run:
  npm audit fix

To address all issues possible (including breaking changes), run:
  npm audit fix --force

Some issues need review, and may require choosing
a different dependency.

--- end ---
$ package-lock-lint package-lock.json
--- stdout ---
Checking package-lock.json

--- end ---
Verifying that tests still pass
$ /usr/bin/npm ci
--- stderr ---
npm WARN EBADENGINE Unsupported engine {
npm WARN EBADENGINE   package: '@es-joy/jsdoccomment@0.23.6',
npm WARN EBADENGINE   required: { node: '^12 || ^14 || ^16 || ^17' },
npm WARN EBADENGINE   current: { node: 'v18.19.0', npm: '9.2.0' }
npm WARN EBADENGINE }
npm WARN EBADENGINE Unsupported engine {
npm WARN EBADENGINE   package: 'eslint-plugin-jsdoc@39.2.2',
npm WARN EBADENGINE   required: { node: '^14 || ^16 || ^17' },
npm WARN EBADENGINE   current: { node: 'v18.19.0', npm: '9.2.0' }
npm WARN EBADENGINE }
npm WARN EBADENGINE Unsupported engine {
npm WARN EBADENGINE   package: 'wdio-mediawiki@2.5.0',
npm WARN EBADENGINE   required: { node: '>=18.17.0', npm: '>=9.6.7' },
npm WARN EBADENGINE   current: { node: 'v18.19.0', npm: '9.2.0' }
npm WARN EBADENGINE }
npm WARN deprecated @npmcli/move-file@1.1.2: This functionality has been moved to @npmcli/fs
npm WARN deprecated stable@0.1.8: Modern JS already guarantees Array#sort() is a stable sort, so this library is deprecated. See the compatibility table on MDN: https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/Array/sort#browser_compatibility
npm WARN deprecated source-map-url@0.4.1: See https://github.com/lydell/source-map-url#deprecated
npm WARN deprecated urix@0.1.0: Please see https://github.com/lydell/urix#deprecated
npm WARN deprecated trim@0.0.1: Use String.prototype.trim() instead
npm WARN deprecated har-validator@5.1.5: this library is no longer supported
npm WARN deprecated resolve-url@0.2.1: https://github.com/lydell/resolve-url#deprecated
npm WARN deprecated uuid-browser@3.1.0: Package no longer supported and required. Use the uuid package or crypto.randomUUID instead
npm WARN deprecated source-map-resolve@0.5.3: See https://github.com/lydell/source-map-resolve#deprecated
npm WARN deprecated querystring@0.2.1: The querystring API is considered Legacy. new code should use the URLSearchParams API instead.
npm WARN deprecated sane@4.1.0: some dependency vulnerabilities fixed, support for node < 10 dropped, and newer ECMAScript syntax/features added
npm WARN deprecated chokidar@2.1.8: Chokidar 2 does not receive security updates since 2019. Upgrade to chokidar 3 with 15x fewer dependencies
npm WARN deprecated querystring@0.2.0: The querystring API is considered Legacy. new code should use the URLSearchParams API instead.
npm WARN deprecated uuid@3.4.0: Please upgrade  to version 7 or higher.  Older versions may use Math.random() in certain circumstances, which is known to be problematic.  See https://v8.dev/blog/math-random for details.
npm WARN deprecated request@2.88.2: request has been deprecated, see https://github.com/request/request/issues/3142
npm WARN deprecated stylelint-stylistic@0.4.3: This package has been deprecated in favor of @stylistic/stylelint-plugin
--- stdout ---

added 2511 packages, and audited 2512 packages in 59s

330 packages are looking for funding
  run `npm fund` for details

37 vulnerabilities (15 moderate, 22 high)

To address issues that do not require attention, run:
  npm audit fix

To address all issues possible (including breaking changes), run:
  npm audit fix --force

Some issues need review, and may require choosing
a different dependency.

Run `npm audit` for details.

--- end ---
$ /usr/bin/npm test
--- stderr ---
PASS tests/jest/discover/util/convertUrlToThumbnail.test.js
PASS tests/jest/builder/util/safeAssignString.test.js
PASS tests/jest/builder/util/splitSentences.test.js
PASS tests/jest/builder/util/convertUrlToMobile.test.js
PASS tests/jest/builder/store/story.test.js

Test Suites: 5 passed, 5 total
Tests:       19 passed, 19 total
Snapshots:   0 total
Time:        7.088 s
Ran all test suites.
--- stdout ---

> test
> npm run lint:js && npm run lint:css && jest


> lint:js
> eslint .


/src/repo/resources/components/StoryImage.vue
   33:3  warning  Prop 'error' requires default value to be set          vue/require-default-prop
   78:1  warning  This line has a length of 101. Maximum allowed is 100  max-len
   91:1  warning  This line has a length of 123. Maximum allowed is 100  max-len
   92:1  warning  This line has a length of 123. Maximum allowed is 100  max-len
  185:1  warning  This line has a length of 101. Maximum allowed is 100  max-len
  186:1  warning  This line has a length of 103. Maximum allowed is 100  max-len
  198:1  warning  This line has a length of 103. Maximum allowed is 100  max-len
  199:1  warning  This line has a length of 104. Maximum allowed is 100  max-len
  200:1  warning  This line has a length of 104. Maximum allowed is 100  max-len
  201:1  warning  This line has a length of 106. Maximum allowed is 100  max-len

/src/repo/resources/ext.wikistories.builder/App.vue
  29:41  warning  Avoid queries which search the entire DOM. Keep DOM nodes in memory where possible  no-jquery/no-global-selector

/src/repo/resources/ext.wikistories.builder/components/Frames.vue
   11:1  warning  This line has a length of 135. Maximum allowed is 100  max-len
  127:1  warning  This line has a length of 109. Maximum allowed is 100  max-len
  128:1  warning  This line has a length of 107. Maximum allowed is 100  max-len
  176:1  warning  This line has a length of 103. Maximum allowed is 100  max-len

/src/repo/resources/ext.wikistories.builder/components/ImageListView.vue
  151:1  warning  This line has a length of 103. Maximum allowed is 100  max-len

/src/repo/resources/ext.wikistories.builder/components/Notice.vue
  2:1  warning  This line has a length of 102. Maximum allowed is 100  max-len

/src/repo/resources/ext.wikistories.builder/components/StoryTextbox.vue
  12:10  warning  Expected a linebreak before this attribute             vue/first-attribute-linebreak
  13:1   warning  This line has a length of 176. Maximum allowed is 100  max-len

/src/repo/resources/ext.wikistories.builder/mixins/observer.js
  43:28  warning  IntersectionObserverEntry is not supported in Safari 11, iOS Safari 11.0-11.2  compat/compat
  94:19  warning  IntersectionObserver is not supported in Safari 11                             compat/compat

/src/repo/resources/ext.wikistories.builder/util/calculateUnmodifiedContent.js
  23:0  warning  Missing JSDoc @return type                             jsdoc/require-returns-type
  50:1  warning  This line has a length of 109. Maximum allowed is 100  max-len

/src/repo/resources/ext.wikistories.builder/util/sortableFrames.js
  129:6  warning  All possible CSS classes should be documented. See https://w.wiki/PS2 for details  mediawiki/class-doc
  139:4  warning  All possible CSS classes should be documented. See https://w.wiki/PS2 for details  mediawiki/class-doc
  168:6  warning  All possible CSS classes should be documented. See https://w.wiki/PS2 for details  mediawiki/class-doc

/src/repo/resources/ext.wikistories.builder/views/Article.vue
  93:5  warning  All possible CSS classes should be documented. See https://w.wiki/PS2 for details  mediawiki/class-doc
  96:5  warning  All possible CSS classes should be documented. See https://w.wiki/PS2 for details  mediawiki/class-doc

/src/repo/resources/ext.wikistories.builder/views/PublishForm.vue
   46:1   warning  This line has a length of 110. Maximum allowed is 100                                max-len
   61:1   warning  This line has a length of 114. Maximum allowed is 100                                max-len
   72:1   warning  This line has a length of 110. Maximum allowed is 100                                max-len
  180:19  warning  All possible message keys should be documented. See https://w.wiki/4r9a for details  mediawiki/msg-doc
  181:1   warning  This line has a length of 106. Maximum allowed is 100                                max-len
  186:1   warning  This line has a length of 138. Maximum allowed is 100                                max-len
  190:1   warning  This line has a length of 102. Maximum allowed is 100                                max-len

/src/repo/resources/ext.wikistories.discover/Discover.js
   5:21  warning  All possible CSS classes should be documented. See https://w.wiki/PS2 for details   mediawiki/class-doc
   9:17  warning  All possible CSS classes should be documented. See https://w.wiki/PS2 for details   mediawiki/class-doc
  13:16  warning  All possible CSS classes should be documented. See https://w.wiki/PS2 for details   mediawiki/class-doc
  27:9   warning  All possible CSS classes should be documented. See https://w.wiki/PS2 for details   mediawiki/class-doc
  41:15  warning  Avoid queries which search the entire DOM. Keep DOM nodes in memory where possible  no-jquery/no-global-selector
  42:16  warning  Avoid queries which search the entire DOM. Keep DOM nodes in memory where possible  no-jquery/no-global-selector
  57:25  warning  Avoid queries which search the entire DOM. Keep DOM nodes in memory where possible  no-jquery/no-global-selector
  57:25  warning  Selector extensions are not allowed                                                 no-jquery/no-sizzle

/src/repo/resources/ext.wikistories.viewer/StoryViewer.vue
  133:1   warning  This line has a length of 106. Maximum allowed is 100                                  max-len
  135:1   warning  This line has a length of 105. Maximum allowed is 100                                  max-len
  178:10  warning  Dynamic message keys should not be used in templates. Use a computed property instead  mediawiki/no-vue-dynamic-i18n
  434:1   warning  This line has a length of 101. Maximum allowed is 100                                  max-len

/src/repo/resources/ext.wikistories.viewer/index.js
  13:32  warning  All possible CSS classes should be documented. See https://w.wiki/PS2 for details   mediawiki/class-doc
  22:2   warning  Avoid queries which search the entire DOM. Keep DOM nodes in memory where possible  no-jquery/no-global-selector

/src/repo/resources/ext.wikistories.viewer/util/isTouchDevice.js
  1:53  warning  navigator.maxTouchPoints() is not supported in Safari 11, iOS Safari 11.0-11.2  compat/compat

/src/repo/resources/instrumentation/consumptionEvents.js
  29:1  warning  This line has a length of 106. Maximum allowed is 100  max-len

✖ 51 problems (0 errors, 51 warnings)
  0 errors and 1 warning potentially fixable with the `--fix` option.


> lint:css
> stylelint **/*.{vue,less}

------------------------------------|---------|----------|---------|---------|------------------------------------------
File                                | % Stmts | % Branch | % Funcs | % Lines | Uncovered Line #s                        
------------------------------------|---------|----------|---------|---------|------------------------------------------
All files                           |     7.8 |     6.73 |    1.97 |     7.8 |                                          
 components                         |       0 |        0 |       0 |       0 |                                          
  ConfirmDialog.vue                 |       0 |        0 |       0 |       0 | 33-44                                    
  DotsMenu.vue                      |       0 |      100 |       0 |       0 | 17-29                                    
  DotsMenuItem.vue                  |       0 |      100 |       0 |       0 | 16-32                                    
  StoryImage.vue                    |       0 |        0 |       0 |       0 | 25-245                                   
 ext.wikistories.builder            |       0 |        0 |       0 |       0 |                                          
  App.vue                           |       0 |        0 |       0 |       0 | 8-42                                     
  index.js                          |       0 |        0 |     100 |       0 | 1-19                                     
 ext.wikistories.builder/api        |    12.5 |        0 |       0 |   12.74 |                                          
  getPageInfo.js                    |       0 |        0 |       0 |       0 | 6-19                                     
  saveStory.js                      |       0 |        0 |       0 |       0 | 10-38                                    
  searchImages.js                   |   14.94 |        0 |       0 |   15.29 | 17-18,28-54,63-74,78-113,125-176,187-206 
 ext.wikistories.builder/components |       0 |        0 |       0 |       0 |                                          
  Alert.vue                         |       0 |      100 |     100 |       0 | 24                                       
  CurrentFrame.vue                  |       0 |        0 |       0 |       0 | 21-57                                    
  Frames.vue                        |       0 |        0 |       0 |       0 | 29-77                                    
  ImageAttribution.vue              |       0 |        0 |       0 |       0 | 27-41                                    
  ImageListView.vue                 |       0 |        0 |       0 |       0 | 27-72                                    
  ListImage.vue                     |       0 |        0 |       0 |       0 | 12-61                                    
  Navigator.vue                     |       0 |        0 |       0 |       0 | 27-38                                    
  Notice.vue                        |       0 |      100 |     100 |       0 | 12                                       
  Popup.vue                         |       0 |      100 |     100 |       0 | 12                                       
  PrimaryButton.vue                 |       0 |      100 |     100 |       0 | 9                                        
  RouterView.vue                    |       0 |      100 |     100 |       0 | 6-9                                      
  StoryTextbox.vue                  |       0 |        0 |       0 |       0 | 34-90                                    
  Toast.vue                         |       0 |      100 |       0 |       0 | 8-33                                     
 ext.wikistories.builder/mixins     |       0 |        0 |       0 |       0 |                                          
  observer.js                       |       0 |        0 |       0 |       0 | 10-110                                   
 ext.wikistories.builder/plugins    |       0 |      100 |       0 |       0 |                                          
  config.js                         |       0 |      100 |       0 |       0 | 5-20                                     
 ext.wikistories.builder/store      |    6.27 |        0 |       0 |    6.34 |                                          
  article.js                        |       0 |        0 |       0 |       0 | 1-106                                    
  index.js                          |       0 |      100 |     100 |       0 | 1-7                                      
  router.js                         |       0 |        0 |       0 |       0 | 1-62                                     
  search.js                         |       0 |        0 |       0 |       0 | 1-64                                     
  story.js                          |   11.11 |        0 |       0 |   11.34 | 40-325                                   
 ext.wikistories.builder/util       |      33 |    21.48 |   24.13 |   32.68 |                                          
  beforeUnloadListener.js           |       0 |      100 |       0 |       0 | 4-9                                      
  calculateUnmodifiedContent.js     |   16.66 |        0 |       0 |   16.66 | 2-12,26-52                               
  convertUrlToMobile.js             |     100 |      100 |     100 |     100 |                                          
  safeAssignString.js               |   93.33 |     87.5 |     100 |   93.33 | 26                                       
  sortableFrames.js                 |       0 |        0 |       0 |       0 | 5-215                                    
  splitSentences.js                 |   91.48 |       80 |     100 |    91.3 | 40,94,101-102                            
  strip.js                          |   22.22 |        0 |       0 |   22.22 | 6-16                                     
  validateTitle.js                  |       0 |        0 |       0 |       0 | 1-43                                     
 ext.wikistories.builder/views      |       0 |        0 |       0 |       0 |                                          
  Article.vue                       |       0 |        0 |       0 |       0 | 46-123                                   
  PublishForm.vue                   |       0 |        0 |       0 |       0 | 110-268                                  
  Search.vue                        |       0 |        0 |       0 |       0 | 44-134                                   
  Story.vue                         |       0 |        0 |       0 |       0 | 69-248                                   
 ext.wikistories.discover           |       0 |        0 |       0 |       0 |                                          
  Discover.js                       |       0 |        0 |       0 |       0 | 1-92                                     
  index.js                          |       0 |        0 |       0 |       0 | 1-49                                     
 ext.wikistories.discover/api       |       0 |      100 |       0 |       0 |                                          
  getStories.js                     |       0 |      100 |       0 |       0 | 5-13                                     
 ext.wikistories.discover/util      |     100 |      100 |     100 |     100 |                                          
  convertUrlToThumbnail.js          |     100 |      100 |     100 |     100 |                                          
 ext.wikistories.viewaction         |       0 |      100 |     100 |       0 |                                          
  index.js                          |       0 |      100 |     100 |       0 | 1-3                                      
 ext.wikistories.viewer             |       0 |        0 |       0 |       0 |                                          
  StoryViewer.vue                   |       0 |        0 |       0 |       0 | 188-391                                  
  index.js                          |       0 |        0 |       0 |       0 | 1-36                                     
 ext.wikistories.viewer/components  |       0 |        0 |       0 |       0 |                                          
  ImageAttribution.vue              |       0 |      100 |     100 |       0 | 31                                       
  Textbox.vue                       |       0 |        0 |       0 |       0 | 18-100                                   
 ext.wikistories.viewer/store       |       0 |        0 |       0 |       0 |                                          
  index.js                          |       0 |      100 |     100 |       0 | 1-4                                      
  story.js                          |       0 |        0 |       0 |       0 | 1-207                                    
 ext.wikistories.viewer/util        |       0 |        0 |       0 |       0 |                                          
  isTouchDevice.js                  |       0 |        0 |     100 |       0 | 1-4                                      
  timer.js                          |       0 |        0 |       0 |       0 | 4-38                                     
 instrumentation                    |       0 |        0 |       0 |       0 |                                          
  consumptionEvents.js              |       0 |        0 |       0 |       0 | 1-49                                     
  contributionEvents.js             |       0 |        0 |       0 |       0 | 1-64                                     
------------------------------------|---------|----------|---------|---------|------------------------------------------

--- end ---
{}
{}
{}
{}
{"1095100": {"source": 1095100, "name": "trim-newlines", "dependency": "trim-newlines", "title": "Uncontrolled Resource Consumption in trim-newlines", "url": "https://github.com/advisories/GHSA-7p7h-4mm5-852v", "severity": "high", "cwe": ["CWE-400"], "cvss": {"score": 7.5, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}, "range": "<3.0.1"}}
{}
{}
{}
{}
{}
{"1096915": {"source": 1096915, "name": "tar", "dependency": "tar", "title": "Denial of service while parsing a tar file due to lack of folders count validation", "url": "https://github.com/advisories/GHSA-f5x3-32g6-xq36", "severity": "moderate", "cwe": ["CWE-400"], "cvss": {"score": 6.5, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}, "range": "<6.2.1"}}
Upgrading n:tar from 6.1.15 -> 6.2.1
{"1095100": {"source": 1095100, "name": "trim-newlines", "dependency": "trim-newlines", "title": "Uncontrolled Resource Consumption in trim-newlines", "url": "https://github.com/advisories/GHSA-7p7h-4mm5-852v", "severity": "high", "cwe": ["CWE-400"], "cvss": {"score": 7.5, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}, "range": "<3.0.1"}}
{}
{}
{}
$ package-lock-lint package-lock.json
--- stdout ---
Checking package-lock.json

--- end ---
build: Updating tar to 6.2.1

* https://github.com/advisories/GHSA-f5x3-32g6-xq36

$ git add .
--- stdout ---

--- end ---
$ git commit -F /tmp/tmpwu0wirh5
--- stdout ---
[master 707f11c] build: Updating tar to 6.2.1
 1 file changed, 6 insertions(+), 6 deletions(-)

--- end ---
$ git format-patch HEAD~1 --stdout
--- stdout ---
From 707f11cae676bfee96144a14e34d0ce27745d33f Mon Sep 17 00:00:00 2001
From: libraryupgrader <tools.libraryupgrader@tools.wmflabs.org>
Date: Fri, 12 Apr 2024 19:06:37 +0000
Subject: [PATCH] build: Updating tar to 6.2.1

* https://github.com/advisories/GHSA-f5x3-32g6-xq36

Change-Id: I7d3b1545c0aa38ce0158c856ae527f134f244079
---
 package-lock.json | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index 96688c7..bc614dd 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -27381,9 +27381,9 @@
 			}
 		},
 		"node_modules/tar": {
-			"version": "6.1.15",
-			"resolved": "https://registry.npmjs.org/tar/-/tar-6.1.15.tgz",
-			"integrity": "sha512-/zKt9UyngnxIT/EAGYuxaMYgOIJiP81ab9ZfkILq4oNLPFX50qyYmu7jRj9qeXoxmJHjGlbH0+cm2uy1WCs10A==",
+			"version": "6.2.1",
+			"resolved": "https://registry.npmjs.org/tar/-/tar-6.2.1.tgz",
+			"integrity": "sha512-DZ4yORTwrbTj/7MZYq2w+/ZFdI6OZ/f9SFHR+71gIVUZhOQPHzVCLpvRnPgyaMpfWxxk/4ONva3GQSyNIKRv6A==",
 			"dev": true,
 			"dependencies": {
 				"chownr": "^2.0.0",
@@ -51917,9 +51917,9 @@
 			"dev": true
 		},
 		"tar": {
-			"version": "6.1.15",
-			"resolved": "https://registry.npmjs.org/tar/-/tar-6.1.15.tgz",
-			"integrity": "sha512-/zKt9UyngnxIT/EAGYuxaMYgOIJiP81ab9ZfkILq4oNLPFX50qyYmu7jRj9qeXoxmJHjGlbH0+cm2uy1WCs10A==",
+			"version": "6.2.1",
+			"resolved": "https://registry.npmjs.org/tar/-/tar-6.2.1.tgz",
+			"integrity": "sha512-DZ4yORTwrbTj/7MZYq2w+/ZFdI6OZ/f9SFHR+71gIVUZhOQPHzVCLpvRnPgyaMpfWxxk/4ONva3GQSyNIKRv6A==",
 			"dev": true,
 			"requires": {
 				"chownr": "^2.0.0",
-- 
2.39.2


--- end ---

composer dependencies

Development dependencies

npm dependencies

Development dependencies

Logs

Source code is licensed under the AGPL.