From 40c9a95a0dd4eacb20eebf95e40c961c5f7606ca Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 25 Oct 2023 21:57:00 +0000
Subject: [PATCH] Bump crypto-js from 3.2.1 to 4.2.0

Bumps [crypto-js](https://github.com/brix/crypto-js) from 3.2.1 to 4.2.0.
- [Commits](https://github.com/brix/crypto-js/compare/3.2.1...4.2.0)

---
updated-dependencies:
- dependency-name: crypto-js
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 package.json | 2 +-
 yarn.lock    | 8 ++++----
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/package.json b/package.json
index 8f70066..9f37ed5 100644
--- a/package.json
+++ b/package.json
@@ -55,7 +55,7 @@
     "axios": "^1.3.6",
     "convict": "^6.2.4",
     "cors": "^2.8.5",
-    "crypto-js": "3.2.1",
+    "crypto-js": "4.2.0",
     "delay": "^5.0.0",
     "ed2curve": "^0.3.0",
     "helmet": "^6.1.5",
diff --git a/yarn.lock b/yarn.lock
index 2cd78ea..bfca24e 100644
--- a/yarn.lock
+++ b/yarn.lock
@@ -1721,10 +1721,10 @@ cross-spawn@^7.0.2, cross-spawn@^7.0.3:
     shebang-command "^2.0.0"
     which "^2.0.1"
 
-crypto-js@3.2.1:
-  version "3.2.1"
-  resolved "https://registry.yarnpkg.com/crypto-js/-/crypto-js-3.2.1.tgz#9408ed6695905ae97e05e8a6ca11937819b216a7"
-  integrity sha512-fIEXOyiXnmPbPk2+q8t97VYDSo8naqvI+2v0AJeLraQzhuL/GZ2qgcRpEadVQ7r8pXwBOHVjwOdyAXYYb3DWiQ==
+crypto-js@4.2.0:
+  version "4.2.0"
+  resolved "https://registry.yarnpkg.com/crypto-js/-/crypto-js-4.2.0.tgz#4d931639ecdfd12ff80e8186dba6af2c2e856631"
+  integrity sha512-KALDyEYgpY+Rlob/iriUtjV6d5Eq+Y191A5g4UqLAi8CyGP9N1+FdVbkc1SxKc2r4YAYqG8JzO2KGL+AizD70Q==
 
 debug@2.6.9:
   version "2.6.9"