From 3de1c8697687696e8d1e1f054f1747b53cb7ea20 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 10 Nov 2023 13:49:09 +0000
Subject: [PATCH] Bump async from 2.1.4 to 2.6.4

Bumps [async](https://github.com/caolan/async) from 2.1.4 to 2.6.4.
- [Release notes](https://github.com/caolan/async/releases)
- [Changelog](https://github.com/caolan/async/blob/v2.6.4/CHANGELOG.md)
- [Commits](https://github.com/caolan/async/compare/v2.1.4...v2.6.4)

---
updated-dependencies:
- dependency-name: async
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 package-lock.json | 8 ++++----
 package.json      | 2 +-
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index c0ca8fa..7c62f45 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -83,11 +83,11 @@
       "dev": true
     },
     "async": {
-      "version": "2.1.4",
-      "resolved": "https://registry.npmjs.org/async/-/async-2.1.4.tgz",
-      "integrity": "sha1-LSFgx3iAMuTdbL4lAvH5osj2zeQ=",
+      "version": "2.6.4",
+      "resolved": "https://registry.npmjs.org/async/-/async-2.6.4.tgz",
+      "integrity": "sha512-mzo5dfJYwAn29PeiJ0zvwTo04zj8HDJj0Mn8TD7sno7q12prdbnasKJHhkm2c1LgrhlJ0teaea8860oxi51mGA==",
       "requires": {
-        "lodash": "^4.14.0"
+        "lodash": "^4.17.14"
       }
     },
     "babel-code-frame": {
diff --git a/package.json b/package.json
index 6bcfd17..a7025f7 100644
--- a/package.json
+++ b/package.json
@@ -18,7 +18,7 @@
   "author": "Debitoor",
   "license": "MIT",
   "dependencies": {
-    "async": "2.1.4",
+    "async": "2.6.4",
     "mongodb": "3.3.4"
   },
   "devDependencies": {