From ccbfd013e885b3c91fd06c9c9513338b2737a79e Mon Sep 17 00:00:00 2001
From: sanyu <sgichie@lenovo.com>
Date: Tue, 16 Mar 2021 13:49:54 -0400
Subject: [PATCH 1/2] updated xmldom from .4 to .5 to patch 1650 vulnerability

---
 package.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/package.json b/package.json
index c1e971b..0019a93 100644
--- a/package.json
+++ b/package.json
@@ -8,7 +8,7 @@
     "thumbprint": "^0.0.1",
     "xml-crypto": "^2.0.0",
     "xml2js": "^0.4.23",
-    "xmldom": "^0.4.0"
+    "xmldom": "^0.5.0"
   },
   "repository": {
     "type": "git",

From c9a501692de92345ac48f4b0d81308d6792f6a92 Mon Sep 17 00:00:00 2001
From: sanyu <sgichie@lenovo.com>
Date: Tue, 16 Mar 2021 13:56:56 -0400
Subject: [PATCH 2/2] update xml-crypto to fix vulnerability

---
 package-lock.json | 29 +++++++++++------------------
 package.json      |  2 +-
 2 files changed, 12 insertions(+), 19 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index f5a5b8d..eb19e25 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -880,19 +880,12 @@
       "dev": true
     },
     "xml-crypto": {
-      "version": "2.0.0",
-      "resolved": "https://registry.npmjs.org/xml-crypto/-/xml-crypto-2.0.0.tgz",
-      "integrity": "sha512-/a04qr7RpONRZHOxROZ6iIHItdsQQjN3sj8lJkYDDss8tAkEaAs0VrFjb3tlhmS5snQru5lTs9/5ISSMdPDHlg==",
+      "version": "2.1.1",
+      "resolved": "https://registry.npmjs.org/xml-crypto/-/xml-crypto-2.1.1.tgz",
+      "integrity": "sha512-M+m4+HIJa83lu/CnspQjA7ap8gmanNDxxRjSisU8mPD4bqhxbo5N2bdpvG2WgVYOrPpOIOq55iY8Cz8Ai40IeQ==",
       "requires": {
-        "xmldom": "0.1.27",
-        "xpath": "0.0.27"
-      },
-      "dependencies": {
-        "xmldom": {
-          "version": "0.1.27",
-          "resolved": "https://registry.npmjs.org/xmldom/-/xmldom-0.1.27.tgz",
-          "integrity": "sha1-1QH5ezvbQDr4757MIFcxh6rawOk="
-        }
+        "xmldom": "0.5.0",
+        "xpath": "0.0.32"
       }
     },
     "xml2js": {
@@ -910,14 +903,14 @@
       "integrity": "sha512-fDlsI/kFEx7gLvbecc0/ohLG50fugQp8ryHzMTuW9vSa1GJ0XYWKnhsUx7oie3G98+r56aTQIUB4kht42R3JvA=="
     },
     "xmldom": {
-      "version": "0.4.0",
-      "resolved": "https://registry.npmjs.org/xmldom/-/xmldom-0.4.0.tgz",
-      "integrity": "sha512-2E93k08T30Ugs+34HBSTQLVtpi6mCddaY8uO+pMNk1pqSjV5vElzn4mmh6KLxN3hki8rNcHSYzILoh3TEWORvA=="
+      "version": "0.5.0",
+      "resolved": "https://registry.npmjs.org/xmldom/-/xmldom-0.5.0.tgz",
+      "integrity": "sha512-Foaj5FXVzgn7xFzsKeNIde9g6aFBxTPi37iwsno8QvApmtg7KYrr+OPyRHcJF7dud2a5nGRBXK3n0dL62Gf7PA=="
     },
     "xpath": {
-      "version": "0.0.27",
-      "resolved": "https://registry.npmjs.org/xpath/-/xpath-0.0.27.tgz",
-      "integrity": "sha512-fg03WRxtkCV6ohClePNAECYsmpKKTv5L8y/X3Dn1hQrec3POx2jHZ/0P2qQ6HvsrU1BmeqXcof3NGGueG6LxwQ=="
+      "version": "0.0.32",
+      "resolved": "https://registry.npmjs.org/xpath/-/xpath-0.0.32.tgz",
+      "integrity": "sha512-rxMJhSIoiO8vXcWvSifKqhvV96GjiD5wYb8/QHdoRyQvraTpp4IEv944nhGausZZ3u7dhQXteZuZbaqfpB7uYw=="
     },
     "y18n": {
       "version": "4.0.1",
diff --git a/package.json b/package.json
index 0019a93..5e672d9 100644
--- a/package.json
+++ b/package.json
@@ -6,7 +6,7 @@
   "dependencies": {
     "lodash": "^4.17.20",
     "thumbprint": "^0.0.1",
-    "xml-crypto": "^2.0.0",
+    "xml-crypto": "^2.1.1",
     "xml2js": "^0.4.23",
     "xmldom": "^0.5.0"
   },