From 6d5c7259e5fa7824b87e9d785217d3bb2184169c Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Fri, 8 Apr 2022 16:05:03 +0000
Subject: [PATCH] fix: package.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-ASYNC-2441827
---
 package.json | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/package.json b/package.json
index d97a9c26aa3..7614beb36a3 100644
--- a/package.json
+++ b/package.json
@@ -5,7 +5,7 @@
   "description": "Packs CommonJs/AMD modules for the browser. Allows to split your codebase into multiple bundles, which can be loaded on demand. Support loaders to preprocess files, i.e. json, jsx, es7, css, less, ... and your custom stuff.",
   "dependencies": {
     "acorn": "^3.2.0",
-    "async": "^1.3.0",
+    "async": "^3.2.2",
     "clone": "^1.0.2",
     "enhanced-resolve": "^2.2.0",
     "interpret": "^1.0.0",
@@ -18,7 +18,7 @@
     "source-map": "^0.5.3",
     "supports-color": "^3.1.0",
     "tapable": "~0.2.3",
-    "uglify-js": "~2.6.0",
+    "uglify-js": "~2.8.6",
     "watchpack": "^1.0.0",
     "webpack-sources": "^0.1.0",
     "yargs": "^4.7.1"