Add parse-url to audit allow list

2022-09-16 13:46:01 +00:00 · 2022-09-16 13:46:01 +00:00 · 0388e62759
parent e6257f1117
commit 0388e62759
1 changed files with 11 additions and 1 deletions
--- a/scripts/audit-allow-list
+++ b/scripts/audit-allow-list
@ -54,6 +54,16 @@ const AUDIT_ALLOW_LIST = [
    path: "lerna>@lerna/version>@lerna/conventional-commits>conventional-changelog-core>get-pkg-repo>meow>trim-newlines",
    advisoryUrl: "https://www.npmjs.com/advisories/1753",
    justification: "dependency of lerna (dev only); low severity"
+  },
+  {
+    path: "lerna>@lerna/version>@lerna/github-client>git-url-parse>git-up>parse-url",
+    advisoryUrl: "https://github.com/advisories/GHSA-j9fq-vwqv-2fm2",
+    justification: "dependency of lerna; moderate severity"
+  },
+  {
+    path: "lerna>@lerna/publish>@lerna/version>@lerna/github-client>git-url-parse>git-up>parse-url",
+    advisoryUrl: "https://github.com/advisories/GHSA-j9fq-vwqv-2fm2",
+    justification: "dependency of lerna; moderate severity"
  }
 ]