From d8e35f4425d44f71d4923cdff3875868c56d8839 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Fri, 11 Jul 2025 05:33:41 +0000
Subject: [PATCH] fix: package.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-ELLIPTIC-7577916
- https://snyk.io/vuln/SNYK-JS-ELLIPTIC-7577917
- https://snyk.io/vuln/SNYK-JS-ELLIPTIC-7577918
- https://snyk.io/vuln/SNYK-JS-ELLIPTIC-8720086
- https://snyk.io/vuln/SNYK-JS-SOCKETIOPARSER-3091012
- https://snyk.io/vuln/SNYK-JS-SOCKETIOPARSER-1056752
- https://snyk.io/vuln/SNYK-JS-LODASH-1040724
- https://snyk.io/vuln/SNYK-JS-ELLIPTIC-8172694
- https://snyk.io/vuln/SNYK-JS-COLORSTRING-1082939
- https://snyk.io/vuln/SNYK-JS-LODASH-1018905
- https://snyk.io/vuln/SNYK-JS-POSTCSS-1255640
- https://snyk.io/vuln/SNYK-JS-ELLIPTIC-1064899
---
 package.json | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/package.json b/package.json
index d498e51f3..68eb8c1d9 100644
--- a/package.json
+++ b/package.json
@@ -36,7 +36,7 @@
   },
   "dependencies": {
     "bignumber.js": "4.0.4",
-    "bitcore-mnemonic": "1.2.5",
+    "bitcore-mnemonic": "8.1.0",
     "copy-to-clipboard": "3.0.8",
     "electron-localshortcut": "^2.0.2",
     "flexboxgrid": "=6.3.1",
@@ -49,7 +49,7 @@
     "moment": "2.20.1",
     "numeral": "=2.0.6",
     "postcss": "6.0.12",
-    "postcss-cssnext": "2.11.0",
+    "postcss-cssnext": "3.1.1",
     "prop-types": "=15.5.10",
     "qrcode.react": "0.7.2",
     "react": "=16.0.0",
@@ -66,7 +66,7 @@
     "redux": "3.7.2",
     "redux-logger": "=3.0.6",
     "redux-thunk": "=2.2.0",
-    "socket.io-client": "=2.0.3",
+    "socket.io-client": "2.2.0",
     "webpack-merge": "=4.1.0"
   },
   "devDependencies": {