From 172e43ec91ef95d734ab78ee412bc005999a6418 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Wed, 21 Jun 2023 15:43:19 +0000
Subject: [PATCH] fix: package.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://dev.snyk.io/vuln/SNYK-JS-SEMVER-3247795
- https://dev.snyk.io/vuln/SNYK-JS-VALIDATOR-1090599
- https://dev.snyk.io/vuln/SNYK-JS-VALIDATOR-1090600
- https://dev.snyk.io/vuln/SNYK-JS-VALIDATOR-1090601
- https://dev.snyk.io/vuln/SNYK-JS-VALIDATOR-1090602
---
 package.json | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/package.json b/package.json
index f03cd21b9a4..af29e7ea758 100644
--- a/package.json
+++ b/package.json
@@ -73,7 +73,7 @@
     "@reactioncommerce/api-plugin-email": "^1.1.0",
     "@reactioncommerce/api-plugin-email-smtp": "^1.0.5",
     "@reactioncommerce/api-plugin-email-templates": "^1.1.1",
-    "@reactioncommerce/api-plugin-files": "^1.0.19",
+    "@reactioncommerce/api-plugin-files": "^1.1.0",
     "@reactioncommerce/api-plugin-i18n": "^1.0.4",
     "@reactioncommerce/api-plugin-inventory": "^1.0.3",
     "@reactioncommerce/api-plugin-inventory-simple": "^1.0.4",
@@ -106,7 +106,7 @@
     "@reactioncommerce/random": "^1.0.2",
     "@snyk/protect": "latest",
     "graphql": "~14.7.0",
-    "semver": "~6.3.0",
+    "semver": "~7.5.2",
     "sharp": "^0.29.3"
   },
   "devDependencies": {