fix: dependencies with vulnerabilities

Author: niekert

lib/signature.js

@@ -1,6 +1,5 @@
 var crypto = require('crypto');
 var querystring = require('querystring');
-var sortKeys = require('sort-object');
 var Buffer = require('safe-buffer').Buffer;
 var scmp = require('scmp');
 var extend = Object.assign ? Object.assign : require('util')._extend;
@@ -71,8 +70,13 @@ function isValid(req, generatedSignature) {
  */
 function stringifyQuery(query) {
   var normalizedDateTime = query.statusDatetime ? extend(query, { statusDatetime: query.statusDatetime.split(' ').join('+') }) : query;
-  var sortedQuery = sortKeys(normalizedDateTime);
 
+  // The query string needs to be sorted, because we generate a hash from the query
+  var sortedQuery = {};
+  var keys = Object.keys(normalizedDateTime).sort();
+  for (var i = 0; i < keys.length; i++) {
+    sortedQuery[keys[i]] = normalizedDateTime[keys[i]];
+  }
   return querystring.stringify(sortedQuery);
 }