From 187251ed13c969f9b671b696826b18ea73b69a46 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 13 Feb 2020 04:13:48 +0000
Subject: [PATCH] fix: package.json & yarn.lock to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-CRYPTOJS-548472
---
 package.json | 2 +-
 yarn.lock    | 8 ++++----
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/package.json b/package.json
index 0220dbe55..60a7bc47b 100644
--- a/package.json
+++ b/package.json
@@ -18,7 +18,7 @@
         "classnames": "^2.2.5",
         "commander": "^2.15.1",
         "connected-react-router": "^4.3.0",
-        "crypto-js": "^3.1.9-1",
+        "crypto-js": "^3.2.1",
         "electron-devtools-installer": "^2.2.1",
         "electron-squirrel-startup": "^1.0.0",
         "electron-store": "^1.3.0",
diff --git a/yarn.lock b/yarn.lock
index 4dda15a3a..0f16d8f2f 100644
--- a/yarn.lock
+++ b/yarn.lock
@@ -2885,10 +2885,10 @@ crypto-browserify@^3.11.0:
     public-encrypt "^4.0.0"
     randombytes "^2.0.0"
 
-crypto-js@^3.1.9-1:
-  version "3.1.9-1"
-  resolved "https://registry.yarnpkg.com/crypto-js/-/crypto-js-3.1.9-1.tgz#fda19e761fc077e01ffbfdc6e9fdfc59e8806cd8"
-  integrity sha1-/aGedh/Ad+Af+/3G6f38WeiAbNg=
+crypto-js@^3.2.1:
+  version "3.3.0"
+  resolved "https://registry.yarnpkg.com/crypto-js/-/crypto-js-3.3.0.tgz#846dd1cce2f68aacfa156c8578f926a609b7976b"
+  integrity sha512-DIT51nX0dCfKltpRiXV+/TVZq+Qq2NgF4644+K7Ttnla7zEzqc+kjJyiB96BHNyUTBxyjzRcZYpUdZa+QAqi6Q==
 
 crypto-random-string@^1.0.0:
   version "1.0.0"