From 3d2a52b0d2acc45ad22a716ce37eee4e162d8acc Mon Sep 17 00:00:00 2001
From: tempixtl <tom@lauerman.dev>
Date: Sat, 5 Jun 2021 11:13:28 -0500
Subject: [PATCH 1/2] Bump PostCSS to 8.3, resolving CVE-2021-23368

Fixes PostCSS ReDoS vulnerability. See
https://www.npmjs.com/advisories/1693
---
 package.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/package.json b/package.json
index a3229bc..50e1a67 100644
--- a/package.json
+++ b/package.json
@@ -26,7 +26,7 @@
   "dependencies": {
     "acorn": "^6.4.1",
     "normalize-path": "^3.0.0",
-    "postcss": "^7.0.16",
+    "postcss": "^8.3.0",
     "source-map": "^0.6.0",
     "through2": "^3.0.1"
   },

From 4e3a9614a93967cd84e2f67d980059fc8fbf44b5 Mon Sep 17 00:00:00 2001
From: Tom Lauerman <tom@lauerman.dev>
Date: Wed, 15 May 2024 13:18:36 -0700
Subject: [PATCH 2/2] Update package.json

Co-authored-by: Alex Voznyuk-Kovaltchuk <67268243+alex-voznyuk-kovaltchuk-sp@users.noreply.github.com>
---
 package.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/package.json b/package.json
index 50e1a67..febb46b 100644
--- a/package.json
+++ b/package.json
@@ -26,7 +26,7 @@
   "dependencies": {
     "acorn": "^6.4.1",
     "normalize-path": "^3.0.0",
-    "postcss": "^8.3.0",
+    "postcss": "^8.4.38",
     "source-map": "^0.6.0",
     "through2": "^3.0.1"
   },