[Snyk] Security upgrade semver from 7.5.0 to 7.5.2 (#23)

The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-SEMVER-3247795 Co-authored-by: snyk-bot <snyk-bot@snyk.io>
clowdhaus · Jul 22, 2023 · b85c72a · b85c72a
1 parent 82d5243
commit b85c72a
Show file tree

Hide file tree

Showing 2 changed files with 8 additions and 1 deletion.
diff --git a/package.json b/package.json
@@ -75,7 +75,7 @@
     "@actions/io": "^1.1.3",
     "find-in-files": "^0.5.0",
     "node-fetch": "^3.3.1",
-    "semver": "^7.5.0"
+    "semver": "^7.5.2"
   },
   "devDependencies": {
     "@semantic-release/changelog": "^6.0.3",

diff --git a/yarn.lock b/yarn.lock
@@ -4849,6 +4849,13 @@ semver@^7.0.0, semver@^7.1.1, semver@^7.1.2, semver@^7.3.2, semver@^7.3.4, semve
   dependencies:
     lru-cache "^6.0.0"
 
+semver@^7.5.2:
+  version "7.5.2"
+  resolved "https://registry.yarnpkg.com/semver/-/semver-7.5.2.tgz#5b851e66d1be07c1cdaf37dfc856f543325a2beb"
+  integrity sha512-SoftuTROv/cRjCze/scjGyiDtcUyxw1rgYQSZY7XTmtR5hX+dm76iDbTH8TkLPHCQmlbQVSSbNZCPM2hb0knnQ==
+  dependencies:
+    lru-cache "^6.0.0"
+
 set-blocking@^2.0.0:
   version "2.0.0"
   resolved "https://registry.yarnpkg.com/set-blocking/-/set-blocking-2.0.0.tgz#045f9782d011ae9a6803ddd382b24392b3d890f7"