logo

mastofe

My custom branche(s) on git.pleroma.social/pleroma/mastofe
commit: e670fa2af6420268960129d04406db23c3554570
parent: a3d93e8bbede04ddbbab10168360a32aedc6bcf7
Author: unarist <m.unarist@gmail.com>
Date:   Tue, 11 Jul 2017 02:41:55 +0900

Update es5-ext to avoid CSP violation (#4145)

Since es5-ext used `new Function("...")`, it caused CSP violation unless "unsafe-eval" included. So this patch updates it to the version which fixes it.

Note that this package is used in polyfills, so loaded only if needed. I've encountered this issue on iOS9.

cf. medikoo/es5-ext@d3864493

Diffstat:

Myarn.lock4++--
1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/yarn.lock b/yarn.lock @@ -2512,8 +2512,8 @@ es-to-primitive@^1.1.1: is-symbol "^1.0.1" es5-ext@^0.10.14, es5-ext@^0.10.9, es5-ext@~0.10.14: - version "0.10.23" - resolved "https://registry.yarnpkg.com/es5-ext/-/es5-ext-0.10.23.tgz#7578b51be974207a5487821b56538c224e4e7b38" + version "0.10.24" + resolved "https://registry.yarnpkg.com/es5-ext/-/es5-ext-0.10.24.tgz#a55877c9924bc0c8d9bd3c2cbe17495ac1709b14" dependencies: es6-iterator "2" es6-symbol "~3.1"