From ad133e1c53e52b0042afc80f992a5af01d0f438c Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sun, 20 Aug 2023 15:20:37 +0000
Subject: [PATCH] fix: package.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-MOCHA-2863123
- https://snyk.io/vuln/SNYK-JS-XML2JS-5414874
---
 package.json | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/package.json b/package.json
index 4ec219821592c..38f630f544167 100644
--- a/package.json
+++ b/package.json
@@ -78,7 +78,7 @@
         "merge2": "latest",
         "minimist": "latest",
         "mkdirp": "latest",
-        "mocha": "latest",
+        "mocha": "10.1.0",
         "mocha-fivemat-progress-reporter": "latest",
         "ms": "^2.1.3",
         "node-fetch": "^3.3.0",
@@ -88,7 +88,7 @@
         "typescript": "^4.5.5",
         "vinyl": "latest",
         "vinyl-sourcemaps-apply": "latest",
-        "xml2js": "^0.4.19"
+        "xml2js": "^0.5.0"
     },
     "scripts": {
         "prepare": "gulp build-eslint-rules",