From fd48aaee15b11c401b5c3d5ef7ccd64c1c03b851 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 28 Nov 2023 19:52:11 +0000
Subject: [PATCH] fix: deps/npm/node_modules/@npmcli/arborist/package.json to
 reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-REQUEST-3361831
- https://snyk.io/vuln/SNYK-JS-TOUGHCOOKIE-5672873
---
 deps/npm/node_modules/@npmcli/arborist/package.json | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/deps/npm/node_modules/@npmcli/arborist/package.json b/deps/npm/node_modules/@npmcli/arborist/package.json
index 56046eaa5f3578..f5fd13b68c503b 100644
--- a/deps/npm/node_modules/@npmcli/arborist/package.json
+++ b/deps/npm/node_modules/@npmcli/arborist/package.json
@@ -5,12 +5,12 @@
   "dependencies": {
     "@npmcli/installed-package-contents": "^1.0.7",
     "@npmcli/map-workspaces": "^1.0.2",
-    "@npmcli/metavuln-calculator": "^1.1.0",
+    "@npmcli/metavuln-calculator": "^2.0.0",
     "@npmcli/move-file": "^1.1.0",
     "@npmcli/name-from-folder": "^1.0.1",
     "@npmcli/node-gyp": "^1.0.1",
     "@npmcli/package-json": "^1.0.1",
-    "@npmcli/run-script": "^1.8.2",
+    "@npmcli/run-script": "^2.0.0",
     "bin-links": "^2.2.1",
     "cacache": "^15.0.3",
     "common-ancestor-path": "^1.0.1",
@@ -22,7 +22,7 @@
     "npm-package-arg": "^8.1.5",
     "npm-pick-manifest": "^6.1.0",
     "npm-registry-fetch": "^11.0.0",
-    "pacote": "^11.3.5",
+    "pacote": "^12.0.0",
     "parse-conflict-json": "^1.1.1",
     "proc-log": "^1.0.0",
     "promise-all-reject-late": "^1.0.0",