From ab6ceaa04f5b762cad0d186b33ac67c74380d558 Mon Sep 17 00:00:00 2001
From: Lewis Evans <60709927+awesomelewis2007@users.noreply.github.com>
Date: Tue, 16 May 2023 18:49:31 +0100
Subject: [PATCH] fix: update package.json to patch 9.8 CVSS Critical
 vulnerability  (#841)

Fixes: 9.8 CVSS Critical vulnerability

Bump vm2 version in package.json

Please see:
https://security.snyk.io/vuln/SNYK-JS-VM2-5422057
https://github.com/patriksimek/vm2/issues/516

https://github.com/patriksimek/vm2/security/advisories/GHSA-xj72-wvfv-8985
https://github.com/patriksimek/vm2/releases/tag/3.9.16
---
 package.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/package.json b/package.json
index 2d44d4c8a..9e93ec8e4 100644
--- a/package.json
+++ b/package.json
@@ -62,7 +62,7 @@
     "webpack": "5.76.0",
     "trim": "0.0.3",
     "got": "11.8.5",
-    "vm2": "3.9.15",
+    "vm2": "3.9.18",
     "yaml": "2.2.2"
   }
 }