From accaca84b305c53ae3b16be0abcee209dee35ce3 Mon Sep 17 00:00:00 2001
From: Joseph Frazier <1212jtraceur@gmail.com>
Date: Tue, 26 Sep 2017 11:32:06 -0400
Subject: [PATCH] Use tough-cookie 2.3.3 to avoid ReDoS

https://github.com/salesforce/tough-cookie/issues/92
https://github.com/yarnpkg/rfcs/pull/68/files?short_path=5fea01a#diff-5fea01aeb695df728ddc217df0caa27e
---
 package.json | 3 +++
 yarn.lock    | 6 +++---
 2 files changed, 6 insertions(+), 3 deletions(-)

diff --git a/package.json b/package.json
index afc7c26..402e361 100644
--- a/package.json
+++ b/package.json
@@ -79,5 +79,8 @@
   "optionalDependencies": {
     "fsevents": "*"
   },
+  "resolutions": {
+    "tough-cookie": "2.3.3"
+  },
   "private": true
 }
diff --git a/yarn.lock b/yarn.lock
index bd74e2b..f4bdd1b 100644
--- a/yarn.lock
+++ b/yarn.lock
@@ -5616,9 +5616,9 @@ topo@1.x.x:
   dependencies:
     hoek "2.x.x"
 
-tough-cookie@>=2.3.0, tough-cookie@^2.3.2, tough-cookie@~2.3.0:
-  version "2.3.2"
-  resolved "https://registry.yarnpkg.com/tough-cookie/-/tough-cookie-2.3.2.tgz#f081f76e4c85720e6c37a5faced737150d84072a"
+tough-cookie@2.3.3, tough-cookie@>=2.3.0, tough-cookie@^2.3.2, tough-cookie@~2.3.0:
+  version "2.3.3"
+  resolved "https://registry.yarnpkg.com/tough-cookie/-/tough-cookie-2.3.3.tgz#0b618a5565b6dea90bf3425d04d55edc475a7561"
   dependencies:
     punycode "^1.4.1"