From 61ffdd23f18d9411a5c26abd89ba187fcbdd045a Mon Sep 17 00:00:00 2001 From: "dependabot-preview[bot]" <27856297+dependabot-preview[bot]@users.noreply.github.com> Date: Fri, 26 Feb 2021 07:00:24 +0000 Subject: [PATCH] [Security] Bump bcrypt from 0.8.7 to 5.0.1 Bumps [bcrypt](https://github.com/kelektiv/node.bcrypt.js) from 0.8.7 to 5.0.1. **This update includes a security fix.** - [Release notes](https://github.com/kelektiv/node.bcrypt.js/releases) - [Changelog](https://github.com/kelektiv/node.bcrypt.js/blob/master/CHANGELOG.md) - [Commits](https://github.com/kelektiv/node.bcrypt.js/compare/v0.8.7...v5.0.1) Signed-off-by: dependabot-preview[bot] --- package.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/package.json b/package.json index cb46ede..dbeb1b0 100644 --- a/package.json +++ b/package.json @@ -26,7 +26,7 @@ "homepage": "https://github.com/TwilioDevEd/account-verification-node", "dependencies": { "authy": "^1.2.0", - "bcrypt": "^0.8.1", + "bcrypt": "^5.0.1", "body-parser": "^1.12.0", "connect-flash": "^0.1.1", "dotenv-safe": "^3.0.0",