From 8a9ea66bdf002387c0fbe7f44c28b82d2fbe5fb0 Mon Sep 17 00:00:00 2001
From: Bhaskara Ram <39507881+bhaskarvilles@users.noreply.github.com>
Date: Mon, 28 Feb 2022 12:40:43 +0530
Subject: [PATCH] node-fetch is vulnerable to Exposure of Sensitive Information
 to an Unauthorized Actor

upgrade to node-fetch npm package
---
 lotuspond/front/package-lock.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/lotuspond/front/package-lock.json b/lotuspond/front/package-lock.json
index 252a42a6d4f..9bc04c8a38f 100644
--- a/lotuspond/front/package-lock.json
+++ b/lotuspond/front/package-lock.json
@@ -6630,7 +6630,7 @@
       "resolved": "https://registry.npmjs.org/isomorphic-fetch/-/isomorphic-fetch-2.2.1.tgz",
       "integrity": "sha1-YRrhrPFPXoH3KVB0coGf6XM1WKk=",
       "requires": {
-        "node-fetch": "^1.0.1",
+        "node-fetch": "^2.6.7",
         "whatwg-fetch": ">=0.10.0"
       }
     },