From f219600c884a1e2fcc3f925b7d144a88d188c7b5 Mon Sep 17 00:00:00 2001
From: Michael Elhadad <michael.elhadad@gmail.com>
Date: Mon, 25 Jul 2022 18:13:32 +0300
Subject: [PATCH] Bump jpeg-js over 0.4.4 to avoid cve-2022-25851

https://avd.aquasec.com/nvd/2022/cve-2022-25851/ is present on 0.4.2
---
 packages/type-jpeg/package.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/packages/type-jpeg/package.json b/packages/type-jpeg/package.json
index ea096b9c0..c6689472c 100644
--- a/packages/type-jpeg/package.json
+++ b/packages/type-jpeg/package.json
@@ -22,7 +22,7 @@
   "dependencies": {
     "@babel/runtime": "^7.7.2",
     "@jimp/utils": "link:../utils",
-    "jpeg-js": "0.4.2"
+    "jpeg-js": "^0.4.2"
   },
   "peerDependencies": {
     "@jimp/custom": ">=0.3.5"