From f77c544c12ad017979239d16602af0d2492f4cf5 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 7 Apr 2022 16:06:36 +0000
Subject: [PATCH] fix: package.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-ASYNC-2441827
---
 package.json | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/package.json b/package.json
index ca504d78..77d7cbe6 100644
--- a/package.json
+++ b/package.json
@@ -34,7 +34,7 @@
     "ampersand-view-switcher": "^2.0",
     "andlog": "^1.0",
     "ansi-html": "^0.0",
-    "async": "^0.9.2",
+    "async": "^3.2.2",
     "bcrypt": "^0.8",
     "bootstrap-notify": "^3.1.3",
     "boss-dnode": "^1.0",
@@ -91,7 +91,7 @@
     "uuid": "^2.0",
     "wantsit": "^2.0",
     "wildemitter": "^1.0",
-    "winston": "^1.0.0"
+    "winston": "^3.3.0"
   },
   "optionalDependencies": {
     "execSync": "^1.0",