From 330381ac693f5d403f6918027f847accaceda81f Mon Sep 17 00:00:00 2001
From: Bill Collins <bill@bill.works>
Date: Mon, 8 Sep 2025 18:48:52 +0100
Subject: [PATCH] Update to color ^5.0.0

Color had transitive dependencies on is-arrayish and simple-swizzle, two
recently compromised packages.

As simple-swizzle is no longer recommended (and never really was) this
seems like a good time to update to the latest version of color which
eliminates those dependencies
---
 package.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/package.json b/package.json
index 59e3b420b..f50938765 100644
--- a/package.json
+++ b/package.json
@@ -137,7 +137,7 @@
     "vips"
   ],
   "dependencies": {
-    "color": "^4.2.3",
+    "color": "^5.0.1",
     "detect-libc": "^2.0.4",
     "semver": "^7.7.2"
   },