From a32f6f2578e5509d367cce73bf96df5a9b736c47 Mon Sep 17 00:00:00 2001
From: Bill Church <wmchurch@gmail.com>
Date: Thu, 9 Dec 2021 09:23:37 -0500
Subject: [PATCH] chore: prep for 0.4.4 release

---
 ChangeLog.md          |  9 +++++++
 app/package-lock.json | 60 +++++++++++++++++++++----------------------
 app/package.json      |  4 +--
 3 files changed, 41 insertions(+), 32 deletions(-)

diff --git a/ChangeLog.md b/ChangeLog.md
index 43ec726..70cedff 100644
--- a/ChangeLog.md
+++ b/ChangeLog.md
@@ -1,4 +1,13 @@
 # Change Log
+## 0.4.4 [20211209]
+### Fixes
+- Add ./node_modules to .dockerignore [#240](../../issues/240)
+- validator to 13.7.0 [to mitigate potential Regular Expression Denial of Service (ReDoS)](https://snyk.io/vuln/SNYK-JS-VALIDATOR-1090600)
+- cidr-matcher should be [re-installed to pickup >json-schema@4.0.0 due to prototype pollution vulnerability](https://snyk.io/vuln/SNYK-JS-JSONSCHEMA-1920922)
+
+### Changes
+- update README.md for additional Docker methods thanks @Utopiah
+
 ## 0.4.3 [20211019]
 - update dependencies
   - ssh2 to 1.4.0 [to mitigate potential command injection in windows](https://snyk.io/vuln/SNYK-JS-SSH2-1656673)
diff --git a/app/package-lock.json b/app/package-lock.json
index 9f363ea..55893cb 100644
--- a/app/package-lock.json
+++ b/app/package-lock.json
@@ -10,7 +10,7 @@
       "license": "SEE LICENSE IN FILE - LICENSE",
       "dependencies": {
         "basic-auth": "~2.0.1",
-        "cidr-matcher": "2.1.1",
+        "cidr-matcher": "^2.1.1",
         "colors": "~1.4.0",
         "debug": "^4.3.2",
         "express": "~4.17.1",
@@ -20,7 +20,7 @@
         "serve-favicon": "^2.5.0",
         "socket.io": "^4.1.3",
         "ssh2": "~1.4.0",
-        "validator": "^13.6.0"
+        "validator": "^13.7.0"
       },
       "bin": {
         "webssh2": "index.js"
@@ -5510,12 +5510,12 @@
       }
     },
     "node_modules/ip6addr": {
-      "version": "0.2.3",
-      "resolved": "https://registry.npmjs.org/ip6addr/-/ip6addr-0.2.3.tgz",
-      "integrity": "sha512-qA9DXRAUW+lT47/i/4+Q3GHPwZjGt/atby1FH/THN6GVATA6+Pjp2nztH7k6iKeil7hzYnBwfSsxjthlJ8lJKw==",
+      "version": "0.2.5",
+      "resolved": "https://registry.npmjs.org/ip6addr/-/ip6addr-0.2.5.tgz",
+      "integrity": "sha512-9RGGSB6Zc9Ox5DpDGFnJdIeF0AsqXzdH+FspCfPPaU/L/4tI6P+5lIoFUFm9JXs9IrJv1boqAaNCQmoDADTSKQ==",
       "dependencies": {
         "assert-plus": "^1.0.0",
-        "jsprim": "^1.4.0"
+        "jsprim": "^2.0.2"
       }
     },
     "node_modules/ipaddr.js": {
@@ -5980,9 +5980,9 @@
       "dev": true
     },
     "node_modules/json-schema": {
-      "version": "0.2.3",
-      "resolved": "https://registry.npmjs.org/json-schema/-/json-schema-0.2.3.tgz",
-      "integrity": "sha1-tIDIkuWaLwWVTOcnvT8qTogvnhM="
+      "version": "0.4.0",
+      "resolved": "https://registry.npmjs.org/json-schema/-/json-schema-0.4.0.tgz",
+      "integrity": "sha512-es94M3nTIfsEPisRafak+HDLfHXnKBhV3vU5eqPcS3flIWqcxJWgXHXiey3YrpaNsanY5ei1VoYEbOzijuq9BA=="
     },
     "node_modules/json-schema-traverse": {
       "version": "0.4.1",
@@ -6043,16 +6043,16 @@
       }
     },
     "node_modules/jsprim": {
-      "version": "1.4.1",
-      "resolved": "https://registry.npmjs.org/jsprim/-/jsprim-1.4.1.tgz",
-      "integrity": "sha1-MT5mvB5cwG5Di8G3SZwuXFastqI=",
+      "version": "2.0.2",
+      "resolved": "https://registry.npmjs.org/jsprim/-/jsprim-2.0.2.tgz",
+      "integrity": "sha512-gqXddjPqQ6G40VdnI6T6yObEC+pDNvyP95wdQhkWkg7crHH3km5qP1FsOXEkzEQwnz6gz5qGTn1c2Y52wP3OyQ==",
       "engines": [
         "node >=0.6.0"
       ],
       "dependencies": {
         "assert-plus": "1.0.0",
         "extsprintf": "1.3.0",
-        "json-schema": "0.2.3",
+        "json-schema": "0.4.0",
         "verror": "1.10.0"
       }
     },
@@ -10968,9 +10968,9 @@
       }
     },
     "node_modules/validator": {
-      "version": "13.6.0",
-      "resolved": "https://registry.npmjs.org/validator/-/validator-13.6.0.tgz",
-      "integrity": "sha512-gVgKbdbHgtxpRyR8K0O6oFZPhhB5tT1jeEHZR0Znr9Svg03U0+r9DXWMrnRAB+HtCStDQKlaIZm42tVsVjqtjg==",
+      "version": "13.7.0",
+      "resolved": "https://registry.npmjs.org/validator/-/validator-13.7.0.tgz",
+      "integrity": "sha512-nYXQLCBkpJ8X6ltALua9dRrZDHVYxjJ1wgskNt1lH9fzGjs3tgojGSCBjmEPwkWS1y29+DrizMTW19Pr9uB2nw==",
       "engines": {
         "node": ">= 0.10"
       }
@@ -15949,12 +15949,12 @@
       "dev": true
     },
     "ip6addr": {
-      "version": "0.2.3",
-      "resolved": "https://registry.npmjs.org/ip6addr/-/ip6addr-0.2.3.tgz",
-      "integrity": "sha512-qA9DXRAUW+lT47/i/4+Q3GHPwZjGt/atby1FH/THN6GVATA6+Pjp2nztH7k6iKeil7hzYnBwfSsxjthlJ8lJKw==",
+      "version": "0.2.5",
+      "resolved": "https://registry.npmjs.org/ip6addr/-/ip6addr-0.2.5.tgz",
+      "integrity": "sha512-9RGGSB6Zc9Ox5DpDGFnJdIeF0AsqXzdH+FspCfPPaU/L/4tI6P+5lIoFUFm9JXs9IrJv1boqAaNCQmoDADTSKQ==",
       "requires": {
         "assert-plus": "^1.0.0",
-        "jsprim": "^1.4.0"
+        "jsprim": "^2.0.2"
       }
     },
     "ipaddr.js": {
@@ -16280,9 +16280,9 @@
       "dev": true
     },
     "json-schema": {
-      "version": "0.2.3",
-      "resolved": "https://registry.npmjs.org/json-schema/-/json-schema-0.2.3.tgz",
-      "integrity": "sha1-tIDIkuWaLwWVTOcnvT8qTogvnhM="
+      "version": "0.4.0",
+      "resolved": "https://registry.npmjs.org/json-schema/-/json-schema-0.4.0.tgz",
+      "integrity": "sha512-es94M3nTIfsEPisRafak+HDLfHXnKBhV3vU5eqPcS3flIWqcxJWgXHXiey3YrpaNsanY5ei1VoYEbOzijuq9BA=="
     },
     "json-schema-traverse": {
       "version": "0.4.1",
@@ -16328,13 +16328,13 @@
       }
     },
     "jsprim": {
-      "version": "1.4.1",
-      "resolved": "https://registry.npmjs.org/jsprim/-/jsprim-1.4.1.tgz",
-      "integrity": "sha1-MT5mvB5cwG5Di8G3SZwuXFastqI=",
+      "version": "2.0.2",
+      "resolved": "https://registry.npmjs.org/jsprim/-/jsprim-2.0.2.tgz",
+      "integrity": "sha512-gqXddjPqQ6G40VdnI6T6yObEC+pDNvyP95wdQhkWkg7crHH3km5qP1FsOXEkzEQwnz6gz5qGTn1c2Y52wP3OyQ==",
       "requires": {
         "assert-plus": "1.0.0",
         "extsprintf": "1.3.0",
-        "json-schema": "0.2.3",
+        "json-schema": "0.4.0",
         "verror": "1.10.0"
       }
     },
@@ -20241,9 +20241,9 @@
       }
     },
     "validator": {
-      "version": "13.6.0",
-      "resolved": "https://registry.npmjs.org/validator/-/validator-13.6.0.tgz",
-      "integrity": "sha512-gVgKbdbHgtxpRyR8K0O6oFZPhhB5tT1jeEHZR0Znr9Svg03U0+r9DXWMrnRAB+HtCStDQKlaIZm42tVsVjqtjg=="
+      "version": "13.7.0",
+      "resolved": "https://registry.npmjs.org/validator/-/validator-13.7.0.tgz",
+      "integrity": "sha512-nYXQLCBkpJ8X6ltALua9dRrZDHVYxjJ1wgskNt1lH9fzGjs3tgojGSCBjmEPwkWS1y29+DrizMTW19Pr9uB2nw=="
     },
     "vary": {
       "version": "1.1.2",
diff --git a/app/package.json b/app/package.json
index dd2b79c..90f17cc 100644
--- a/app/package.json
+++ b/app/package.json
@@ -33,7 +33,7 @@
   },
   "dependencies": {
     "basic-auth": "~2.0.1",
-    "cidr-matcher": "2.1.1",
+    "cidr-matcher": "^2.1.1",
     "colors": "~1.4.0",
     "debug": "^4.3.2",
     "express": "~4.17.1",
@@ -43,7 +43,7 @@
     "serve-favicon": "^2.5.0",
     "socket.io": "^4.1.3",
     "ssh2": "~1.4.0",
-    "validator": "^13.6.0"
+    "validator": "^13.7.0"
   },
   "scripts": {
     "start": "node index.js",