Bump learna from 2.11 to 3.22.1

Multiple security fixes. Biggest security fix Addresses CVE-2020-8116: Prototype pollution vulnerability in dot-prop npm package versions before 4.2.1 and versions 5.x before 5.1.1 allows an attacker to add arbitrary properties to JavaScript language constructs such as objects. Use node 12 to build with Travis Signed-off-by: Matthew Khouzam matthew.khouzam@ericsson.com
eclipse-cdt-cloud · Dec 12, 2020 · 5ff3923 · 5ff3923
1 parent b47344e
commit 5ff3923
Show file tree

Hide file tree

Showing 4 changed files with 2,529 additions and 660 deletions.
diff --git a/.travis.yml b/.travis.yml
@@ -1,6 +1,6 @@
 sudo: required
 language: node_js
-node_js: '8'
+node_js: '12'
 git:
   depth: 1
 cache:
@@ -25,4 +25,4 @@ deploy:
     branch: master
 env:
   global:
-  - secure: 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
+  - secure: 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
diff --git a/lerna.json b/lerna.json
@@ -1,6 +1,6 @@
 {
-  "lerna": "2.11.0",
-  "version": "0.1.0",
+  "lerna": "3.22.1",
+  "version": "0.1.1",
   "useWorkspaces": true,
   "npmClient": "yarn",
   "command": {

diff --git a/package.json b/package.json
@@ -1,5 +1,5 @@
 {
-    "version": "0.1.0",
+    "version": "0.1.1",
     "private": true,
     "license": "MIT",
     "scripts": {
@@ -27,7 +27,7 @@
     "homepage": "https://github.com/theia-ide/timeline-chart",
     "devDependencies": {
         "@types/pixi.js": "^5.0.0",
-        "lerna": "2.11.0",
+        "lerna": "3.22.1",
         "typescript": "^3.2.2"
     },
     "workspaces": [