From bacf8ff0188141ff7d33cad2be1c84b1c9d669d4 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Edgardo=20Avil=C3=A9s-L=C3=B3pez?= <Edgardo.Aviles@ADP.com>
Date: Wed, 2 Aug 2023 10:24:30 -0400
Subject: [PATCH] fix: package.json & package-lock.json to reduce
 vulnerabilities (#722)

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-PROTOBUFJS-5756498

Co-authored-by: snyk-bot <snyk-bot@snyk.io>
Co-authored-by: Nobuji Saito <14101642+albertosaito@users.noreply.github.com>
---
 package-lock.json | 15 +++++++--------
 package.json      |  2 +-
 2 files changed, 8 insertions(+), 9 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index 7811d38..b63b01c 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -5322,9 +5322,9 @@
       }
     },
     "long": {
-      "version": "4.0.0",
-      "resolved": "https://registry.npmjs.org/long/-/long-4.0.0.tgz",
-      "integrity": "sha512-XsP+KhQif4bjX1kbuSiySJFNAehNxgLb6hPRGJ9QsUr8ajHkuXGdrHmFUTUUXhDwVX2R5bY4JNZEwbUiMhV+MA=="
+      "version": "5.2.3",
+      "resolved": "https://registry.npmjs.org/long/-/long-5.2.3.tgz",
+      "integrity": "sha512-lcHwpNoggQTObv5apGNCTdJrO69eHOZMi4BNC+rTLER8iHAqGrUVeLh/irVIM7zTw2bOXA8T6uNPeujwOLg/2Q=="
     },
     "lowercase-keys": {
       "version": "2.0.0",
@@ -6223,9 +6223,9 @@
       "dev": true
     },
     "protobufjs": {
-      "version": "6.11.3",
-      "resolved": "https://registry.npmjs.org/protobufjs/-/protobufjs-6.11.3.tgz",
-      "integrity": "sha512-xL96WDdCZYdU7Slin569tFX712BxsxslWwAfAhCYjQKGTq7dAU91Lomy6nLLhh/dyGhk/YH4TwTSRxTzhuHyZg==",
+      "version": "7.2.4",
+      "resolved": "https://registry.npmjs.org/protobufjs/-/protobufjs-7.2.4.tgz",
+      "integrity": "sha512-AT+RJgD2sH8phPmCf7OUZR8xGdcJRga4+1cOaXJ64hvcSkVhNcRHOwIxUatPH15+nj59WAGTDv3LSGZPEQbJaQ==",
       "requires": {
         "@protobufjs/aspromise": "^1.1.2",
         "@protobufjs/base64": "^1.1.2",
@@ -6237,9 +6237,8 @@
         "@protobufjs/path": "^1.1.2",
         "@protobufjs/pool": "^1.1.0",
         "@protobufjs/utf8": "^1.1.0",
-        "@types/long": "^4.0.1",
         "@types/node": ">=13.7.0",
-        "long": "^4.0.0"
+        "long": "^5.0.0"
       }
     },
     "pseudomap": {
diff --git a/package.json b/package.json
index 70448e9..662ec08 100644
--- a/package.json
+++ b/package.json
@@ -61,7 +61,7 @@
     "lru-cache": "^6.0.0",
     "lzutf8": "^0.6.1",
     "project-name": "^1.0.0",
-    "protobufjs": "^6.11.3",
+    "protobufjs": "^7.2.4",
     "short-uuid": "^4.2.0"
   },
   "devDependencies": {