From 5e29d1f3dafb812c474596f9497cb43833b5ef79 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Fri, 22 Jan 2021 02:05:10 +0000
Subject: [PATCH] fix: upgrade js-yaml from 2.0.4 to 2.1.3

Snyk has created this PR to upgrade js-yaml from 2.0.4 to 2.1.3.

See this package in npm:
https://www.npmjs.com/package/js-yaml

See this project in Snyk:
https://app.snyk.io/org/codefresh-org-1/project/db6284a7-4457-43a3-bf55-83c03023c6fd?utm_source=github&utm_medium=upgrade-pr
---
 package.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/package.json b/package.json
index 9a804d0..9e06eec 100644
--- a/package.json
+++ b/package.json
@@ -3,7 +3,7 @@
   "description": "a vulnerable node app for demos",
   "version": "0.0.1",
   "dependencies": {
-    "js-yaml": "<2.0.5",
+    "js-yaml": "2.1.3",
     "connect": ">3.0.0",
     "serve-static": ">0.0.0",
     "finalhandler": ">0.0.0",