From 8b12ff967189ea386ff7c51c4d8d8b6957e2aa43 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Fri, 11 Sep 2020 22:19:14 +0000
Subject: [PATCH] fix: package.json & package-lock.json to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-NODEFETCH-674311
---
 package-lock.json | 6 +++---
 package.json      | 2 +-
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index 68f10f0e..628f2c09 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -3338,9 +3338,9 @@
       }
     },
     "node-fetch": {
-      "version": "2.2.0",
-      "resolved": "https://registry.npmjs.org/node-fetch/-/node-fetch-2.2.0.tgz",
-      "integrity": "sha512-OayFWziIxiHY8bCUyLX6sTpDH8Jsbp4FfYd1j1f7vZyfgkcOnAyM4oQR16f8a0s7Gl/viMGRey8eScYk4V4EZA=="
+      "version": "2.6.1",
+      "resolved": "https://registry.npmjs.org/node-fetch/-/node-fetch-2.6.1.tgz",
+      "integrity": "sha512-V4aYg89jEoVRxRb2fJdAg8FHvI7cEyYdVAh94HH0UIK8oJxUfkjlDQN9RbMx+bEjP7+ggMiFRprSti032Oipxw=="
     },
     "nopt": {
       "version": "4.0.3",
diff --git a/package.json b/package.json
index eb217868..8627d5cd 100644
--- a/package.json
+++ b/package.json
@@ -46,7 +46,7 @@
     "moment": "^2.22.0",
     "nan": "^2.11.1",
     "newrelic": "^4.13.1",
-    "node-fetch": "^2.2.0",
+    "node-fetch": "^2.6.1",
     "pug": "^2.0.3",
     "serve-favicon": "^2.5.0",
     "simple-rules-engine": "^1.0.2",