From a8e2f20e5e68e85df186c59f50162faf1569f139 Mon Sep 17 00:00:00 2001
From: Dipack Panjabi <dipack@transcend.io>
Date: Mon, 19 Aug 2024 13:29:35 -0700
Subject: [PATCH] Bump Elliptic to resolve low CVE.

---
 package.json | 4 ++++
 yarn.lock    | 8 ++++----
 2 files changed, 8 insertions(+), 4 deletions(-)

diff --git a/package.json b/package.json
index 597141c7..e7ee1673 100644
--- a/package.json
+++ b/package.json
@@ -51,6 +51,10 @@
     "tsconfig.json"
   ],
   "homepage": "https://github.com/transcend-io/penumbra#readme",
+  "resolutions": {
+    "elliptic@npm:^6.5.5": "6.5.7",
+    "elliptic@npm:^6.5.3": "6.5.7"
+  },
   "dependencies": {
     "@transcend-io/conflux": "^4.1.0",
     "@transcend-io/remote-web-streams": "1.0.5",
diff --git a/yarn.lock b/yarn.lock
index 0b2df9b9..6b62109e 100644
--- a/yarn.lock
+++ b/yarn.lock
@@ -4335,9 +4335,9 @@ __metadata:
   languageName: node
   linkType: hard
 
-"elliptic@npm:^6.5.3, elliptic@npm:^6.5.5":
-  version: 6.5.6
-  resolution: "elliptic@npm:6.5.6"
+"elliptic@npm:6.5.7":
+  version: 6.5.7
+  resolution: "elliptic@npm:6.5.7"
   dependencies:
     bn.js: "npm:^4.11.9"
     brorand: "npm:^1.1.0"
@@ -4346,7 +4346,7 @@ __metadata:
     inherits: "npm:^2.0.4"
     minimalistic-assert: "npm:^1.0.1"
     minimalistic-crypto-utils: "npm:^1.0.1"
-  checksum: 09377ec924fdb37775d63e5d7e5ebb2845842e6f08880b68265b1108863e968970c4a4e1c43df622078c8262417deec9a04aeb9d34e8d09a9693e19b5454e1df
+  checksum: fbad1fad0a5cc07df83f80cc1f7a784247ef59075194d3e340eaeb2f4dd594825ee24c7e9b0cf279c9f1982efe610503bb3139737926428c4821d4fca1bcf348
   languageName: node
   linkType: hard