From 38fe2a9241f81b43d34ef7e351e380e77359f974 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 7 Jul 2022 18:07:04 +0000
Subject: [PATCH] fix: package.json & yarn.lock to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-MOMENT-2944238
---
 package.json |  2 +-
 yarn.lock    | 14 ++++++++++----
 2 files changed, 11 insertions(+), 5 deletions(-)

diff --git a/package.json b/package.json
index 588d520b..43ddd1cf 100644
--- a/package.json
+++ b/package.json
@@ -60,7 +60,7 @@
     "jqueryui": "^1.11.1",
     "json-editor": "git+https://github.com/jdorn/json-editor.git",
     "jspm": "^0.16.53",
-    "moment": "^2.17.1",
+    "moment": "^2.29.4",
     "moment-timezone": "^0.4.1",
     "underscore": "^1.8.3"
   },
diff --git a/yarn.lock b/yarn.lock
index 0702d657..58a9b84c 100644
--- a/yarn.lock
+++ b/yarn.lock
@@ -1574,9 +1574,10 @@ fd-slicer@~1.0.1:
   dependencies:
     pend "~1.2.0"
 
-"file-saver@git+https://github.com/eligrey/FileSaver.js.git":
-  version "1.3.3"
-  resolved "git+https://github.com/eligrey/FileSaver.js.git#c347c51f6e6e56221b2fa3d8c9b32e181f76355c"
+file-saver@^1.3.3:
+  version "1.3.8"
+  resolved "https://registry.yarnpkg.com/file-saver/-/file-saver-1.3.8.tgz#e68a30c7cb044e2fb362b428469feb291c2e09d8"
+  integrity sha512-spKHSBQIxxS81N/O21WmuXA2F6wppUCsutpzenOeZzOCCJ5gEfcbqJP983IrpLXzYmXnMUa6J03SubcNPdKrlg==
 
 filename-regex@^2.0.0:
   version "2.0.1"
@@ -3014,10 +3015,15 @@ moment-timezone@^0.4.0, moment-timezone@^0.4.1:
   dependencies:
     moment ">= 2.6.0"
 
-"moment@>= 2.6.0", moment@^2.10, moment@^2.17.1:
+"moment@>= 2.6.0", moment@^2.10:
   version "2.19.1"
   resolved "https://registry.yarnpkg.com/moment/-/moment-2.19.1.tgz#56da1a2d1cbf01d38b7e1afc31c10bcfa1929167"
 
+moment@^2.29.4:
+  version "2.29.4"
+  resolved "https://registry.yarnpkg.com/moment/-/moment-2.29.4.tgz#3dbe052889fe7c1b2ed966fcb3a77328964ef108"
+  integrity sha512-5LC9SOxjSc2HF6vO2CyuTDNivEdoz2IvyJJGj6X8DJ0eFyfszE0QiEd+iXmBvUP3WHxSjFH/vIsA0EN00cgr8w==
+
 ms@2.0.0:
   version "2.0.0"
   resolved "https://registry.yarnpkg.com/ms/-/ms-2.0.0.tgz#5608aeadfc00be6c2901df5f9861788de0d597c8"