From 6284492180910edac4f45a95098ed71600ba4aea Mon Sep 17 00:00:00 2001
From: chme <christian.meffert@googlemail.com>
Date: Sun, 16 Jan 2022 12:01:07 +0100
Subject: [PATCH] [web-src] Add "follow-redirects" as dependency to fix
 CVE-2022-0155

"follow-redirects" is a transitive dependency for owntone, e. g. for
axios. Should be removed once, the direct dependencies of owntone
release new versions with a newer version of "follow-redirects".
---
 web-src/package-lock.json | 13 +++++++------
 web-src/package.json      |  1 +
 2 files changed, 8 insertions(+), 6 deletions(-)

diff --git a/web-src/package-lock.json b/web-src/package-lock.json
index 28ce61a5..0f882d9f 100644
--- a/web-src/package-lock.json
+++ b/web-src/package-lock.json
@@ -13,6 +13,7 @@
         "bulma": "^0.9.3",
         "bulma-switch": "^2.0.0",
         "core-js": "^3.15.2",
+        "follow-redirects": "^1.14.7",
         "mdi": "^2.2.43",
         "moment": "^2.29.1",
         "moment-duration-format": "^2.3.2",
@@ -8912,9 +8913,9 @@
       }
     },
     "node_modules/follow-redirects": {
-      "version": "1.14.6",
-      "resolved": "https://registry.npmjs.org/follow-redirects/-/follow-redirects-1.14.6.tgz",
-      "integrity": "sha512-fhUl5EwSJbbl8AR+uYL2KQDxLkdSjZGR36xy46AO7cOMTrCMON6Sa28FmAnC2tRTDbd/Uuzz3aJBv7EBN7JH8A==",
+      "version": "1.14.7",
+      "resolved": "https://registry.npmjs.org/follow-redirects/-/follow-redirects-1.14.7.tgz",
+      "integrity": "sha512-+hbxoLbFMbRKDwohX8GkTataGqO6Jb7jGwpAlwgy2bIz25XtRm7KEzJM76R1WiNT5SwZkX4Y75SwBolkpmE7iQ==",
       "funding": [
         {
           "type": "individual",
@@ -27221,9 +27222,9 @@
       }
     },
     "follow-redirects": {
-      "version": "1.14.6",
-      "resolved": "https://registry.npmjs.org/follow-redirects/-/follow-redirects-1.14.6.tgz",
-      "integrity": "sha512-fhUl5EwSJbbl8AR+uYL2KQDxLkdSjZGR36xy46AO7cOMTrCMON6Sa28FmAnC2tRTDbd/Uuzz3aJBv7EBN7JH8A=="
+      "version": "1.14.7",
+      "resolved": "https://registry.npmjs.org/follow-redirects/-/follow-redirects-1.14.7.tgz",
+      "integrity": "sha512-+hbxoLbFMbRKDwohX8GkTataGqO6Jb7jGwpAlwgy2bIz25XtRm7KEzJM76R1WiNT5SwZkX4Y75SwBolkpmE7iQ=="
     },
     "for-in": {
       "version": "1.0.2",
diff --git a/web-src/package.json b/web-src/package.json
index 46a3ce53..f5c4370f 100644
--- a/web-src/package.json
+++ b/web-src/package.json
@@ -15,6 +15,7 @@
     "bulma": "^0.9.3",
     "bulma-switch": "^2.0.0",
     "core-js": "^3.15.2",
+    "follow-redirects": "^1.14.7",
     "mdi": "^2.2.43",
     "moment": "^2.29.1",
     "moment-duration-format": "^2.3.2",