From 18cbd32f0290dc6c7d148b2bcd0c2397d88517d8 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Wed, 6 Dec 2023 23:39:47 +0000
Subject: [PATCH] fix: package.json & yarn.lock to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/npm:debug:20170905
---
 package.json | 2 +-
 yarn.lock    | 7 +++++++
 2 files changed, 8 insertions(+), 1 deletion(-)

diff --git a/package.json b/package.json
index f1eb063..d922b2f 100644
--- a/package.json
+++ b/package.json
@@ -48,7 +48,7 @@
     "body-parser": "^1.17.1",
     "botbuilder": "^4.4.0",
     "botbuilder-adapter-facebook-erxes": "^1.0.5",
-    "debug": "^4.1.1",
+    "debug": "^4.3.1",
     "dotenv": "^4.0.0",
     "erxes-inmemory-storage": "^1.0.16",
     "erxes-message-broker": "^1.0.17",
diff --git a/yarn.lock b/yarn.lock
index efb7bef..bcec8e9 100644
--- a/yarn.lock
+++ b/yarn.lock
@@ -2390,6 +2390,13 @@ debug@^3.1.0, debug@^3.1.1, debug@^3.2.6:
   dependencies:
     ms "^2.1.1"
 
+debug@^4.3.1:
+  version "4.3.4"
+  resolved "https://registry.yarnpkg.com/debug/-/debug-4.3.4.tgz#1319f6579357f2338d3337d2cdd4914bb5dcc865"
+  integrity sha512-PRWFHuSU3eDtQJPvnNY7Jcket1j0t5OuOsFzPPzsekD52Zl8qUfFIPEiswXqIvHWGVHOgX+7G/vCNNhehwxfkQ==
+  dependencies:
+    ms "2.1.2"
+
 decamelize-keys@^1.0.0, decamelize-keys@^1.1.0:
   version "1.1.0"
   resolved "https://registry.yarnpkg.com/decamelize-keys/-/decamelize-keys-1.1.0.tgz#d171a87933252807eb3cb61dc1c1445d078df2d9"