From: unarist <m.unarist@gmail.com>
Date: Mon, 10 Jul 2017 17:41:55 +0000 (+0900)
Subject: Update es5-ext to avoid CSP violation (#4145)
X-Git-Url: https://git.xn--scling-oua.cat.family/?a=commitdiff_plain;h=e670fa2af6420268960129d04406db23c3554570;p=mastodon.git

Update es5-ext to avoid CSP violation (#4145)

Since es5-ext used `new Function("...")`, it caused CSP violation unless "unsafe-eval" included. So this patch updates it to the version which fixes it.

Note that this package is used in polyfills, so loaded only if needed. I've encountered this issue on iOS9.

cf. medikoo/es5-ext@d3864493
---

diff --git a/yarn.lock b/yarn.lock
index aedbde6be..fba802e0a 100644
--- a/yarn.lock
+++ b/yarn.lock
@@ -2512,8 +2512,8 @@ es-to-primitive@^1.1.1:
     is-symbol "^1.0.1"
 
 es5-ext@^0.10.14, es5-ext@^0.10.9, es5-ext@~0.10.14:
-  version "0.10.23"
-  resolved "https://registry.yarnpkg.com/es5-ext/-/es5-ext-0.10.23.tgz#7578b51be974207a5487821b56538c224e4e7b38"
+  version "0.10.24"
+  resolved "https://registry.yarnpkg.com/es5-ext/-/es5-ext-0.10.24.tgz#a55877c9924bc0c8d9bd3c2cbe17495ac1709b14"
   dependencies:
     es6-iterator "2"
     es6-symbol "~3.1"