From 925232d395f9c86e52ecbb8498e746f90f40e903 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Mon, 12 Feb 2024 00:15:01 +0000
Subject: [PATCH] fix: node_modules/sigstore/package.json to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-IP-6240864
---
 node_modules/sigstore/package.json | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/node_modules/sigstore/package.json b/node_modules/sigstore/package.json
index 02655a6c79bc8..992d7000226e5 100644
--- a/node_modules/sigstore/package.json
+++ b/node_modules/sigstore/package.json
@@ -37,8 +37,8 @@
   },
   "dependencies": {
     "@sigstore/protobuf-specs": "^0.1.0",
-    "@sigstore/tuf": "^1.0.1",
-    "make-fetch-happen": "^11.0.1"
+    "@sigstore/tuf": "^2.0.0",
+    "make-fetch-happen": "^12.0.0"
   },
   "engines": {
     "node": "^14.17.0 || ^16.13.0 || >=18.0.0"