From 56d88cd194a2157d91c4bbb5d41c99e6a0ad9e86 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sat, 12 Sep 2020 01:48:42 +0000
Subject: [PATCH] fix: code-gov-repo-metrics/package.json &
 code-gov-repo-metrics/package-lock.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-NODEFETCH-674311
---
 code-gov-repo-metrics/package-lock.json | 28 +++----------------------
 code-gov-repo-metrics/package.json      |  2 +-
 2 files changed, 4 insertions(+), 26 deletions(-)

diff --git a/code-gov-repo-metrics/package-lock.json b/code-gov-repo-metrics/package-lock.json
index 66b7e24..d6790f4 100644
--- a/code-gov-repo-metrics/package-lock.json
+++ b/code-gov-repo-metrics/package-lock.json
@@ -4,15 +4,6 @@
   "lockfileVersion": 1,
   "requires": true,
   "dependencies": {
-    "cross-fetch": {
-      "version": "2.2.2",
-      "resolved": "https://registry.npmjs.org/cross-fetch/-/cross-fetch-2.2.2.tgz",
-      "integrity": "sha1-pH/09/xxLauo9qaVoRyUhEDUVyM=",
-      "requires": {
-        "node-fetch": "2.1.2",
-        "whatwg-fetch": "2.0.4"
-      }
-    },
     "csv-writer": {
       "version": "1.4.0",
       "resolved": "https://registry.npmjs.org/csv-writer/-/csv-writer-1.4.0.tgz",
@@ -24,22 +15,9 @@
       "integrity": "sha512-30xVGqjLjiUOArT4+M5q9sYdvuR4riM6yK9wMcas9Vbp6zZa+ocC9dp6QoftuhTPhFAiLK/0C5Ni2nou/Bk8lg=="
     },
     "graphql-request": {
-      "version": "1.8.2",
-      "resolved": "https://registry.npmjs.org/graphql-request/-/graphql-request-1.8.2.tgz",
-      "integrity": "sha512-dDX2M+VMsxXFCmUX0Vo0TopIZIX4ggzOtiCsThgtrKR4niiaagsGTDIHj3fsOMFETpa064vzovI+4YV4QnMbcg==",
-      "requires": {
-        "cross-fetch": "2.2.2"
-      }
-    },
-    "node-fetch": {
-      "version": "2.1.2",
-      "resolved": "https://registry.npmjs.org/node-fetch/-/node-fetch-2.1.2.tgz",
-      "integrity": "sha1-q4hOjn5X44qUR1POxwb3iNF2i7U="
-    },
-    "whatwg-fetch": {
-      "version": "2.0.4",
-      "resolved": "https://registry.npmjs.org/whatwg-fetch/-/whatwg-fetch-2.0.4.tgz",
-      "integrity": "sha512-dcQ1GWpOD/eEQ97k66aiEVpNnapVj90/+R+SXTPYGHpYBBypfKJEQjLrvMZ7YXbKm21gXd4NcuxUTjiv1YtLng=="
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/graphql-request/-/graphql-request-2.0.0.tgz",
+      "integrity": "sha512-Ww3Ax+G3l2d+mPT8w7HC9LfrKjutnCKtnDq7ZZp2ghVk5IQDjwAk3/arRF1ix17Ky15rm0hrSKVKxRhIVlSuoQ=="
     }
   }
 }
diff --git a/code-gov-repo-metrics/package.json b/code-gov-repo-metrics/package.json
index 8f64ca3..d2bfa34 100644
--- a/code-gov-repo-metrics/package.json
+++ b/code-gov-repo-metrics/package.json
@@ -12,6 +12,6 @@
   "dependencies": {
     "csv-writer": "^1.4.0",
     "dotenv": "^8.0.0",
-    "graphql-request": "^1.8.2"
+    "graphql-request": "^2.0.0"
   }
 }