@appland/scanner 1.60.0 → 1.62.1

package/CHANGELOG.md

@@ -1,3 +1,25 @@
+# [@appland/scanner-v1.62.1](https://github.com/applandinc/appmap-js/compare/@appland/scanner-v1.62.0...@appland/scanner-v1.62.1) (2022-07-13)
+
+
+### Bug Fixes
+
+* More reliable detection of appmap changes by scanner watch ([b0cc14d](https://github.com/applandinc/appmap-js/commit/b0cc14d61b7e27248975c35022a8cd4da070337b))
+
+# [@appland/scanner-v1.62.0](https://github.com/applandinc/appmap-js/compare/@appland/scanner-v1.61.0...@appland/scanner-v1.62.0) (2022-07-12)
+
+
+### Features
+
+* Support working directory -d arg ([2bd280f](https://github.com/applandinc/appmap-js/commit/2bd280fa2e6bb2d13c6bc1c578b1b78c3a62492a))
+* upload command uses appmap_dir from config ([801b75b](https://github.com/applandinc/appmap-js/commit/801b75bf008b6188d4aacd143a1992149aafebd3))
+
+# [@appland/scanner-v1.61.0](https://github.com/applandinc/appmap-js/compare/@appland/scanner-v1.60.0...@appland/scanner-v1.61.0) (2022-07-11)
+
+
+### Features
+
+* Add participating events to each finding ([f3e8033](https://github.com/applandinc/appmap-js/commit/f3e80332833ec3305ef530d89b12763781a8c85b))
+
 # [@appland/scanner-v1.60.0](https://github.com/applandinc/appmap-js/compare/@appland/scanner-v1.59.2...@appland/scanner-v1.60.0) (2022-06-30)
 
 

package/built/analyzer/recordSecrets.js

@@ -14,7 +14,7 @@ function default_1(secrets, e) {
         if ((0, util_1.verbose)()) {
             console.warn(`Secret generated: ${secret}`);
         }
-        secrets.add(secret);
+        secrets.push({ generatorEvent: e, value: secret });
     }
 }
 exports.default = default_1;

package/built/cli/appmapDirFromConfig.js

@@ -0,0 +1,29 @@
+"use strict";
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.appmapDirFromConfig = void 0;
+const fs_1 = require("fs");
+const promises_1 = require("fs/promises");
+const js_yaml_1 = require("js-yaml");
+const util_1 = require("util");
+function appmapDirFromConfig() {
+    return __awaiter(this, void 0, void 0, function* () {
+        const appMapConfigExists = yield (0, util_1.promisify)(fs_1.exists)('appmap.yml');
+        if (appMapConfigExists) {
+            const appMapConfigData = (0, js_yaml_1.load)((yield (0, promises_1.readFile)('appmap.yml')).toString());
+            if (appMapConfigData && typeof appMapConfigData === 'object') {
+                const configData = appMapConfigData;
+                return configData['appmap_dir'];
+            }
+        }
+    });
+}
+exports.appmapDirFromConfig = appmapDirFromConfig;

package/built/cli/ci/command.js

@@ -18,6 +18,7 @@ const util_1 = require("util");
 const configurationProvider_1 = require("../../configuration/configurationProvider");
 const errors_1 = require("../../errors");
 const util_2 = require("../../rules/lib/util");
+const appmapDirFromConfig_1 = require("../appmapDirFromConfig");
 const findings_1 = require("../../findings");
 const findingsReport_1 = __importDefault(require("../../report/findingsReport"));
 const summaryReport_1 = __importDefault(require("../../report/summaryReport"));
@@ -30,6 +31,7 @@ const updateCommitStatus_1 = __importDefault(require("../updateCommitStatus"));
 const reportUploadURL_1 = __importDefault(require("../reportUploadURL"));
 const fail_1 = __importDefault(require("../fail"));
 const codeVersionArgs_1 = __importDefault(require("../codeVersionArgs"));
+const handleWorkingDirectory_1 = require("../handleWorkingDirectory");
 exports.default = {
     command: 'ci',
     describe: 'Scan AppMaps, report findings to AppMap Server, and update SCM status',
@@ -59,17 +61,16 @@ exports.default = {
     handler(options) {
         return __awaiter(this, void 0, void 0, function* () {
             let { appmapDir } = options;
-            const { config, verbose: isVerbose, fail: failOption, app: appIdArg, reportFile, upload: doUpload, updateCommitStatus: updateCommitStatusOption, mergeKey, commit, branch, environment, } = options;
+            const { config, verbose: isVerbose, fail: failOption, app: appIdArg, directory, reportFile, upload: doUpload, updateCommitStatus: updateCommitStatusOption, mergeKey, commit, branch, environment, } = options;
             if (isVerbose) {
                 (0, util_2.verbose)(true);
             }
+            (0, handleWorkingDirectory_1.handleWorkingDirectory)(directory);
             if (!appmapDir) {
-                appmapDir = yield (0, util_2.appmapDirFromConfig)();
-            }
-            if (!appmapDir) {
-                appmapDir = yield (0, util_2.appmapDirFromConfig)();
-                throw new errors_1.ValidationError('--appmap-dir is required');
+                appmapDir = yield (0, appmapDirFromConfig_1.appmapDirFromConfig)();
             }
+            if (!appmapDir)
+                throw new errors_1.ValidationError('appmapDir must be provided as a command option, or available in appmap.yml');
             yield (0, validateFile_1.default)('directory', appmapDir);
             const appId = yield (0, resolveAppId_1.default)(appIdArg, appmapDir);
             const glob = (0, util_1.promisify)(glob_1.glob);

package/built/cli/handleWorkingDirectory.js

@@ -0,0 +1,8 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.handleWorkingDirectory = void 0;
+function handleWorkingDirectory(directory) {
+    if (directory)
+        process.chdir(directory);
+}
+exports.handleWorkingDirectory = handleWorkingDirectory;

package/built/cli/scan/command.js

@@ -14,12 +14,14 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
 Object.defineProperty(exports, "__esModule", { value: true });
 const errors_1 = require("../../errors");
 const util_1 = require("../../rules/lib/util");
+const appmapDirFromConfig_1 = require("../appmapDirFromConfig");
 const validateFile_1 = __importDefault(require("../validateFile"));
 const scanArgs_1 = __importDefault(require("../scanArgs"));
 const resolveAppId_1 = __importDefault(require("../resolveAppId"));
 const singleScan_1 = __importDefault(require("./singleScan"));
 const watchScan_1 = __importDefault(require("./watchScan"));
 const configurationProvider_1 = require("../../configuration/configurationProvider");
+const handleWorkingDirectory_1 = require("../handleWorkingDirectory");
 exports.default = {
     command: 'scan',
     describe: 'Scan AppMaps for code behavior findings',
@@ -48,10 +50,11 @@ exports.default = {
     handler(options) {
         return __awaiter(this, void 0, void 0, function* () {
             let { appmapDir } = options;
-            const { appmapFile, config, verbose: isVerbose, all: reportAllFindings, watch, app: appIdArg, apiKey, ide, reportFile, } = options;
+            const { appmapFile, config, directory, verbose: isVerbose, all: reportAllFindings, watch, app: appIdArg, apiKey, ide, reportFile, } = options;
             if (isVerbose) {
                 (0, util_1.verbose)(true);
             }
+            (0, handleWorkingDirectory_1.handleWorkingDirectory)(directory);
             if (apiKey) {
                 process.env.APPLAND_API_KEY = apiKey;
             }
@@ -65,7 +68,7 @@ exports.default = {
                 throw new errors_1.ValidationError(`Don't use --app with --watch, because in watch mode all findings are reported`);
             }
             if (!appmapFile && !appmapDir) {
-                appmapDir = (yield (0, util_1.appmapDirFromConfig)()) || '.';
+                appmapDir = (yield (0, appmapDirFromConfig_1.appmapDirFromConfig)()) || '.';
             }
             if (appmapDir)
                 yield (0, validateFile_1.default)('directory', appmapDir);

package/built/cli/scanArgs.js

@@ -1,9 +1,13 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 function default_1(args) {
+    args.option('directory', {
+        describe: 'program working directory',
+        type: 'string',
+        alias: 'd',
+    });
     args.option('appmap-dir', {
         describe: 'directory to recursively inspect for AppMaps',
-        alias: 'd',
     });
     args.option('config', {
         describe: 'path to assertions config file (TypeScript or YAML, check docs for configuration format)',

package/built/cli/upload/command.js

@@ -14,19 +14,26 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
 Object.defineProperty(exports, "__esModule", { value: true });
 const promises_1 = require("fs/promises");
 const util_1 = require("../../rules/lib/util");
+const appmapDirFromConfig_1 = require("../appmapDirFromConfig");
 const validateFile_1 = __importDefault(require("../validateFile"));
 const resolveAppId_1 = __importDefault(require("../resolveAppId"));
 const reportUploadURL_1 = __importDefault(require("../reportUploadURL"));
 const upload_1 = __importDefault(require("../upload"));
 const codeVersionArgs_1 = __importDefault(require("../codeVersionArgs"));
+const errors_1 = require("../../errors");
+const handleWorkingDirectory_1 = require("../handleWorkingDirectory");
 exports.default = {
     command: 'upload',
     describe: 'Upload Findings to the AppMap Server',
     builder(args) {
         (0, codeVersionArgs_1.default)(args);
+        args.option('directory', {
+            describe: 'program working directory',
+            type: 'string',
+            alias: 'd',
+        });
         args.option('appmap-dir', {
             describe: 'base directory of AppMaps',
-            alias: 'd',
         });
         args.option('report-file', {
             describe: 'file containing the findings report',
@@ -42,10 +49,17 @@ exports.default = {
     },
     handler(options) {
         return __awaiter(this, void 0, void 0, function* () {
-            const { verbose: isVerbose, reportFile, appmapDir, app: appIdArg, mergeKey, branch, commit, environment, } = options;
+            let { appmapDir } = options;
+            const { verbose: isVerbose, directory, reportFile, app: appIdArg, mergeKey, branch, commit, environment, } = options;
             if (isVerbose) {
                 (0, util_1.verbose)(true);
             }
+            (0, handleWorkingDirectory_1.handleWorkingDirectory)(directory);
+            if (!appmapDir) {
+                appmapDir = yield (0, appmapDirFromConfig_1.appmapDirFromConfig)();
+            }
+            if (!appmapDir)
+                throw new errors_1.ValidationError('appmapDir must be provided as a command option, or available in appmap.yml');
             yield (0, validateFile_1.default)('directory', appmapDir);
             const appId = yield (0, resolveAppId_1.default)(appIdArg, appmapDir);
             const scanResults = JSON.parse((yield (0, promises_1.readFile)(reportFile)).toString());

package/built/ruleChecker.js

@@ -94,8 +94,9 @@ class RuleChecker {
             if (!checkInstance.filterEvent(event, appMapIndex)) {
                 return;
             }
-            const buildFinding = (matchEvent, message, groupMessage, occurranceCount, 
-            // matchEvent will be added to additionalEvents to create the relatedEvents array
+            const buildFinding = (matchEvent, participatingEvents, message, groupMessage, occurranceCount, 
+            // matchEvent will be added to additionalEvents and participatingEvents.values
+            // to create the relatedEvents array
             additionalEvents) => {
                 const findingEvent = matchEvent || event;
                 // Fixes:
@@ -118,12 +119,19 @@ class RuleChecker {
                         return;
                     }
                     uniqueEvents.add(event.id);
-                    relatedEvents.push(event);
+                    relatedEvents.push((0, eventUtil_1.cloneEvent)(event));
                 });
                 // Update event hash with unique hashes of related events
                 new Set(relatedEvents.map((e) => e.hash)).forEach((eventHash) => {
                     hash.update(eventHash);
                 });
+                Object.values(participatingEvents).forEach((event) => {
+                    if (uniqueEvents.has(event.id)) {
+                        return;
+                    }
+                    uniqueEvents.add(event.id);
+                    relatedEvents.push((0, eventUtil_1.cloneEvent)(event));
+                });
                 return {
                     appMapFile,
                     checkId: checkInstance.checkId,
@@ -138,6 +146,7 @@ class RuleChecker {
                     occurranceCount,
                     relatedEvents: relatedEvents.sort((event) => event.id),
                     impactDomain: checkInstance.checkImpactDomain,
+                    participatingEvents: Object.fromEntries(Object.entries(participatingEvents).map(([k, v]) => [k, (0, eventUtil_1.cloneEvent)(v)])),
                 };
             };
             const matchResult = yield checkInstance.ruleLogic.matcher(event, appMapIndex, checkInstance.filterEvent.bind(checkInstance));
@@ -146,21 +155,21 @@ class RuleChecker {
                 let finding;
                 if (checkInstance.ruleLogic.message) {
                     const message = checkInstance.ruleLogic.message(scope, event);
-                    finding = buildFinding(event, message);
+                    finding = buildFinding(event, {}, message);
                 }
                 else {
-                    finding = buildFinding(event);
+                    finding = buildFinding(event, {});
                 }
                 findings.push(finding);
             }
             else if (typeof matchResult === 'string') {
-                const finding = buildFinding(event, matchResult);
+                const finding = buildFinding(event, {}, matchResult);
                 finding.message = matchResult;
                 findings.push(finding);
             }
             else if (matchResult) {
                 matchResult.forEach((mr) => {
-                    const finding = buildFinding(mr.event, mr.message, mr.groupMessage, mr.occurranceCount, mr.relatedEvents);
+                    const finding = buildFinding(mr.event, mr.participatingEvents || {}, mr.message, mr.groupMessage, mr.occurranceCount, mr.relatedEvents);
                     findings.push(finding);
                 });
             }

package/built/rules/circularDependency.js

@@ -173,13 +173,14 @@ function build(options) {
             .map((cycle) => searchForCycle(cycle, ignoredPackages))
             .filter((path) => path)
             .map((path) => {
+            path = path;
             return {
                 event: path[0],
                 message: [
                     'Cycle in package dependency graph',
                     path.map((event) => event.codeObject.packageOf).join(' -> '),
                 ].join(': '),
-                relatedEvents: path,
+                participatingEvents: Object.fromEntries(path.map((event, index) => [`path[${index}]`, event])),
             };
         });
     }

package/built/rules/illegalPackageDependency.js

@@ -19,18 +19,21 @@ function build(options) {
         return !!e.parent && !!e.parent.codeObject.packageOf && calleePattern(e.codeObject.packageOf);
     }
     function matcher(e) {
+        const parent = e.parent;
+        if (!parent)
+            return;
         const packageNamesStr = options.callerPackages
             .map((config) => config.equal || config.include || config.match)
             .map(String)
             .join(' or ');
-        const parentPackage = e.parent.codeObject.packageOf;
+        const parentPackage = parent.codeObject.packageOf;
         if (!(e.codeObject.packageOf === parentPackage ||
             callerPatterns.some((pattern) => pattern(parentPackage)))) {
             return [
                 {
                     event: e,
                     message: `Code object ${e.codeObject.id} was invoked from ${parentPackage}, not from ${packageNamesStr}`,
-                    relatedEvents: [e.parent],
+                    participatingEvents: { parent },
                 },
             ];
         }

package/built/rules/insecureCompare.js

@@ -8,7 +8,8 @@ const recordSecrets_1 = __importDefault(require("../analyzer/recordSecrets"));
 const secretsRegexes_1 = require("../analyzer/secretsRegexes");
 const parseRuleDescription_1 = __importDefault(require("./lib/parseRuleDescription"));
 const BCRYPT_REGEXP = /^[$]2[abxy]?[$](?:0[4-9]|[12][0-9]|3[01])[$][./0-9a-zA-Z]{53}$/;
-const secrets = new Set();
+const secrets = [];
+const secretStrings = new Set();
 function stringEquals(e) {
     if (!e.parameters || !e.receiver || e.parameters.length !== 1) {
         return false;
@@ -18,7 +19,7 @@ function stringEquals(e) {
         return BCRYPT_REGEXP.test(str);
     }
     function isSecret(str) {
-        return secrets.has(str) || (0, secretsRegexes_1.looksSecret)(str);
+        return secretStrings.has(str) || (0, secretsRegexes_1.looksSecret)(str);
     }
     // BCrypted strings are safe to compare using equals()
     return args.some(isSecret) && !args.some(isBcrypt);
@@ -26,7 +27,12 @@ function stringEquals(e) {
 function build() {
     function matcher(e) {
         if (e.codeObject.labels.has(Secret)) {
+            const numSecrets = secrets.length;
             (0, recordSecrets_1.default)(secrets, e);
+            for (let index = numSecrets; index < secrets.length; index++) {
+                const secret = secrets[index];
+                secretStrings.add(secret.value);
+            }
         }
         if (e.codeObject.labels.has(StringEquals)) {
             return stringEquals(e);

package/built/rules/jobNotCancelled.js

@@ -18,14 +18,11 @@ function build() {
         const missing = creationEvents.length - cancellationEvents.length;
         if (missing === 0)
             return;
-        const result = {
-            event: event,
-            message: `${missing} jobs created but not cancelled in this rolled back transaction`,
-            // if there's a mismatch and there are cancellations we can't tell
-            // for sure which creations they match, so return everything
-            relatedEvents: [...creationEvents, ...cancellationEvents],
-        };
-        return [result];
+        return creationEvents.map((jobCreationEvent) => ({
+            event: jobCreationEvent,
+            message: `Job created by ${jobCreationEvent.codeObject.prettyName} was not cancelled when the enclosing transaction rolled back`,
+            participatingEvents: { beginTransaction: event },
+        }));
     }
     return {
         matcher,

package/built/rules/lib/util.js

@@ -1,33 +1,7 @@
 "use strict";
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.verbose = exports.toRegExpArray = exports.responseContentType = exports.toRegExp = exports.providesAuthentication = exports.pluralize = exports.dasherize = exports.camelize = exports.parseValue = exports.isRoot = exports.ideLink = exports.isTruthy = exports.isFalsey = exports.emptyValue = exports.capitalize = exports.appMapDir = exports.appmapDirFromConfig = void 0;
-const fs_1 = require("fs");
-const promises_1 = require("fs/promises");
-const js_yaml_1 = require("js-yaml");
+exports.verbose = exports.toRegExpArray = exports.responseContentType = exports.toRegExp = exports.providesAuthentication = exports.pluralize = exports.dasherize = exports.camelize = exports.parseValue = exports.isRoot = exports.ideLink = exports.isTruthy = exports.isFalsey = exports.emptyValue = exports.capitalize = exports.appMapDir = void 0;
 const path_1 = require("path");
-const util_1 = require("util");
-function appmapDirFromConfig() {
-    return __awaiter(this, void 0, void 0, function* () {
-        const appMapConfigExists = yield (0, util_1.promisify)(fs_1.exists)('appmap.yml');
-        if (appMapConfigExists) {
-            const appMapConfigData = (0, js_yaml_1.load)((yield (0, promises_1.readFile)('appmap.yml')).toString());
-            if (appMapConfigData && typeof appMapConfigData === 'object') {
-                const configData = appMapConfigData;
-                return configData['appmap_dir'];
-            }
-        }
-    });
-}
-exports.appmapDirFromConfig = appmapDirFromConfig;
 let isVerbose = false;
 function verbose(v = null) {
     if (v === true || v === false) {

package/built/rules/nPlusOneQuery.js

@@ -43,6 +43,7 @@ function build(options) {
                             groupMessage: sql,
                             occurranceCount: occurranceCount,
                             relatedEvents: events.map((e) => e.event),
+                            participatingEvents: { commonAncestor: ancestor },
                         };
                     };
                     if (occurranceCount >= options.errorLimit) {

package/built/rules/queryFromInvalidPackage.js

@@ -18,12 +18,15 @@ function build(options) {
     const allowedPackages = (0, matchPattern_1.buildFilters)(options.allowedPackages);
     const allowedQueries = (0, matchPattern_1.buildFilters)(options.allowedQueries);
     function matcher(e) {
-        if (!allowedPackages.some((filter) => filter(e.parent.codeObject.packageOf))) {
+        if (!e.parent)
+            return;
+        const parent = e.parent;
+        if (!allowedPackages.some((filter) => filter(parent.codeObject.packageOf))) {
             return [
                 {
                     event: e,
-                    message: `${e.codeObject.id} is invoked from illegal package ${e.parent.codeObject.packageOf}`,
-                    relatedEvents: [e.parent],
+                    message: `${e.codeObject.id} is invoked from illegal package ${parent.codeObject.packageOf}`,
+                    participatingEvents: { parent: parent },
                 },
             ];
         }

package/built/rules/secretInLog.js

@@ -32,12 +32,19 @@ const recordSecrets_1 = __importDefault(require("../analyzer/recordSecrets"));
 const url_1 = require("url");
 const parseRuleDescription_1 = __importDefault(require("./lib/parseRuleDescription"));
 class Match {
-    constructor(pattern, value) {
+    constructor(pattern, value, generatorEvent) {
         this.pattern = pattern;
         this.value = value;
+        this.generatorEvent = generatorEvent;
+    }
+    static fromPattern(pattern, value) {
+        return new Match(pattern, value);
+    }
+    static fromSecret(secret, value) {
+        return new Match(secret.value, value, secret.generatorEvent);
     }
 }
-const secrets = new Set();
+const secrets = [];
 const findInLog = (event) => {
     if (!event.parameters)
         return;
@@ -45,24 +52,32 @@ const findInLog = (event) => {
     for (const { value } of event.parameters) {
         if ((0, util_1.emptyValue)(value))
             continue;
-        const patterns = [];
         if ((0, secretsRegexes_1.looksSecret)(value)) {
             // Only look for the exact matching regexes if it matches the catchall regex
-            patterns.push(...Object.values(secretsRegexes_1.default)
+            matches.push(...Object.values(secretsRegexes_1.default)
                 .flat()
-                .filter((re) => re.test(value)));
+                .filter((re) => re.test(value))
+                .map((re) => Match.fromPattern(re, value)));
         }
         for (const secret of secrets) {
-            if (value.includes(secret))
-                patterns.push(secret);
+            if (value.includes(secret.value)) {
+                matches.push(Match.fromSecret(secret, value));
+            }
         }
-        matches.push(...patterns.map((pattern) => new Match(pattern, value)));
     }
     if (matches.length > 0) {
-        return matches.map((match) => ({
-            event,
-            message: `Log event contains secret data: ${match.value}`,
-        }));
+        return matches.map((match) => {
+            const { pattern, value } = match;
+            const participatingEvents = { logEvent: event };
+            if (match.generatorEvent) {
+                participatingEvents.generatorEvent = match.generatorEvent;
+            }
+            return {
+                event,
+                message: `Log message contains secret ${match.generatorEvent ? match.generatorEvent.codeObject.prettyName || 'data' : 'data'} "${pattern}": ${value}`,
+                participatingEvents,
+            };
+        });
     }
 };
 function build() {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@appland/scanner",
-  "version": "1.60.0",
+  "version": "1.62.1",
   "description": "",
   "bin": "built/cli.js",
   "files": [
@@ -65,11 +65,11 @@
     "applicationinsights": "^2.1.4",
     "async": "^3.2.3",
     "chalk": "^4.1.2",
-    "chokidar": "^3.5.3",
+    "chokidar": "applandinc/chokidar#fix/new-file-new-directory-race-on-linux",
     "cli-progress": "^3.11.0",
     "conf": "^10.0.2",
     "form-data": "^4.0.0",
-    "glob": "^7.2.0",
+    "glob": "7.2.3",
     "js-yaml": "^4.1.0",
     "lru-cache": "^6.0.0",
     "minimatch": "^3.0.4",