From 2c3facb56351317e594949dc756f576c5f3f7aae Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Fri, 23 Sep 2022 19:10:30 +0000
Subject: [PATCH] fix: javascript/ql/test/library-tests/Extend/package.json to
 reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-MERGE-1040469
- https://snyk.io/vuln/SNYK-JS-MERGE-1042987
- https://snyk.io/vuln/SNYK-JS-RAMDA-1582370
---
 javascript/ql/test/library-tests/Extend/package.json | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/javascript/ql/test/library-tests/Extend/package.json b/javascript/ql/test/library-tests/Extend/package.json
index dd73e8e0a5ec..7be77be61ba7 100644
--- a/javascript/ql/test/library-tests/Extend/package.json
+++ b/javascript/ql/test/library-tests/Extend/package.json
@@ -15,7 +15,7 @@
 		"lodash": "^4.17.10",
 		"lodash.defaultsdeep": "^4.6.0",
 		"lodash.mergewith": "^4.6.1",
-		"merge": "^1.2.0",
+		"merge": "^2.1.1",
 		"merge-deep": "^3.0.2",
 		"merge-options": "^1.0.1",
 		"mixin-deep": "^2.0.0",
@@ -24,7 +24,7 @@
 		"object-assign": "^4.1.1",
 		"object.assign": "^4.1.0",
 		"object.defaults": "^1.1.0",
-		"ramda": "^0.25.0",
+		"ramda": "^0.27.2",
 		"smart-extend": "^1.7.3",
 		"util-extend": "^1.0.3",
 		"utils-merge": "^1.0.1",