fix: package.json & yarn.lock to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-CRYPTOJS-6028119
2023-10-25 14:49:06 +00:00 · 2023-10-25 14:49:06 +00:00 · b9f161f85c
parent 2ade6a8a40
commit b9f161f85c
2 changed files with 5 additions and 5 deletions
--- a/package.json
+++ b/package.json
@ -28,7 +28,7 @@
  "homepage": "https://github.com/bravo68web/randomizer#readme",
  "dependencies": {
    "crypto": "^1.0.1",
-    "crypto-js": "^4.0.0",
+    "crypto-js": "^4.2.0",
    "cryptr": "^6.0.2",
    "tape": "^5.2.2"
  },
--- a/yarn.lock
+++ b/yarn.lock
@ -317,10 +317,10 @@ concat-map@0.0.1:
  resolved "https://registry.yarnpkg.com/concat-map/-/concat-map-0.0.1.tgz#d8a96bd77fd68df7793a73036a3ba0d5405d477b"
  integrity sha1-2Klr13/Wjfd5OnMDajug1UBdR3s=

-crypto-js@^4.0.0:
-  version "4.0.0"
-  resolved "https://registry.yarnpkg.com/crypto-js/-/crypto-js-4.0.0.tgz#2904ab2677a9d042856a2ea2ef80de92e4a36dcc"
-  integrity sha512-bzHZN8Pn+gS7DQA6n+iUmBfl0hO5DJq++QP3U6uTucDtk/0iGpXd/Gg7CGR0p8tJhofJyaKoWBuJI4eAO00BBg==
+crypto-js@^4.2.0:
+  version "4.2.0"
+  resolved "https://registry.yarnpkg.com/crypto-js/-/crypto-js-4.2.0.tgz#4d931639ecdfd12ff80e8186dba6af2c2e856631"
+  integrity sha512-KALDyEYgpY+Rlob/iriUtjV6d5Eq+Y191A5g4UqLAi8CyGP9N1+FdVbkc1SxKc2r4YAYqG8JzO2KGL+AizD70Q==

 crypto@^1.0.1:
  version "1.0.1"