Bump jpeg-js over 0.4.4 to avoid cve-2022-25851 (#1093)

https://avd.aquasec.com/nvd/2022/cve-2022-25851/ is present on 0.4.2
jimp-dev · Sep 15, 2022 · dad05fa · dad05fa
1 parent 53ff9d1
commit dad05fa
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/packages/type-jpeg/package.json b/packages/type-jpeg/package.json
@@ -22,7 +22,7 @@
   "dependencies": {
     "@babel/runtime": "^7.7.2",
     "@jimp/utils": "link:../utils",
-    "jpeg-js": "0.4.2"
+    "jpeg-js": "^0.4.2"
   },
   "peerDependencies": {
     "@jimp/custom": ">=0.3.5"