From 77d29c73501672450bf3744fe3a82704853856bb Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 24 Sep 2020 04:37:26 +0000
Subject: [PATCH] fix: package.json & package-lock.json to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-NODEFETCH-674311
---
 package-lock.json | 46 ++++++++++++++++++++++++++++++++++++++++------
 package.json      |  2 +-
 2 files changed, 41 insertions(+), 7 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index e97050bf..96231e84 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -9767,6 +9767,21 @@
         "warning": "^4.0.3"
       }
     },
+    "cross-fetch": {
+      "version": "3.0.6",
+      "resolved": "https://registry.npmjs.org/cross-fetch/-/cross-fetch-3.0.6.tgz",
+      "integrity": "sha512-KBPUbqgFjzWlVcURG+Svp9TlhA5uliYtiNx/0r8nv0pdypeQCRJ9IaSIc3q/x3q8t3F75cHuwxVql1HFGHCNJQ==",
+      "requires": {
+        "node-fetch": "2.6.1"
+      },
+      "dependencies": {
+        "node-fetch": {
+          "version": "2.6.1",
+          "resolved": "https://registry.npmjs.org/node-fetch/-/node-fetch-2.6.1.tgz",
+          "integrity": "sha512-V4aYg89jEoVRxRb2fJdAg8FHvI7cEyYdVAh94HH0UIK8oJxUfkjlDQN9RbMx+bEjP7+ggMiFRprSti032Oipxw=="
+        }
+      }
+    },
     "cross-spawn": {
       "version": "5.1.0",
       "resolved": "https://repo.janeirodigital.com/repository/npm-all/cross-spawn/-/cross-spawn-5.1.0.tgz",
@@ -16384,13 +16399,32 @@
       }
     },
     "ldflex": {
-      "version": "2.6.1",
-      "resolved": "https://repo.janeirodigital.com/repository/npm-all/ldflex/-/ldflex-2.6.1.tgz",
-      "integrity": "sha512-5PqMzKbCcbfuWbZigVnCre96ZnCRQP3h14pYYKYsU3wzibH8AQ4N7pvUM0NWE6EKY0Zz7ngZvNbGBLbrSBUxYw==",
+      "version": "2.9.0",
+      "resolved": "https://registry.npmjs.org/ldflex/-/ldflex-2.9.0.tgz",
+      "integrity": "sha512-w6owhXqeeGPmZj1msr1BDG3TkdQtuAHMn8dYh+Bj9xqMeNGTmaJ1UiDkGrwQrJ5VqURII4sz8yTFejS4xBrZMw==",
       "requires": {
-        "@babel/runtime": "^7.1.5",
-        "@rdfjs/data-model": "^1.1.1",
-        "jsonld-context-parser": "^1.2.0"
+        "@rdfjs/data-model": "^1.1.2",
+        "jsonld-context-parser": "^2.0.0"
+      },
+      "dependencies": {
+        "@types/node": {
+          "version": "13.13.21",
+          "resolved": "https://registry.npmjs.org/@types/node/-/node-13.13.21.tgz",
+          "integrity": "sha512-tlFWakSzBITITJSxHV4hg4KvrhR/7h3xbJdSFbYJBVzKubrASbnnIFuSgolUh7qKGo/ZeJPKUfbZ0WS6Jp14DQ=="
+        },
+        "jsonld-context-parser": {
+          "version": "2.1.0",
+          "resolved": "https://registry.npmjs.org/jsonld-context-parser/-/jsonld-context-parser-2.1.0.tgz",
+          "integrity": "sha512-i16aGPG0tz4+fZYvQBzzl+BnC4S+MNjzk9YsaYde/rPV2WPlUAfXOJPIgmdJduQPb7cxDKVEphP0dq2b6ftesQ==",
+          "requires": {
+            "@types/http-link-header": "^1.0.1",
+            "@types/node": "^13.1.0",
+            "canonicalize": "^1.0.1",
+            "cross-fetch": "^3.0.6",
+            "http-link-header": "^1.0.2",
+            "relative-to-absolute-iri": "^1.0.5"
+          }
+        }
       }
     },
     "ldflex-comunica": {
diff --git a/package.json b/package.json
index 609190de..ac2fb4e2 100644
--- a/package.json
+++ b/package.json
@@ -68,7 +68,7 @@
     "file-type": "^10.7.1",
     "html-webpack-include-assets-plugin": "^1.0.6",
     "jsonld": "^1.6.2",
-    "ldflex": "^2.4.0",
+    "ldflex": "^2.9.0",
     "lodash": "^4.17.15",
     "mime-types": "^2.1.24",
     "n3": "^1.1.1",