From 198a37a3012af33b456615d35209f9b8f05afd5a Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 28 Apr 2022 18:42:28 +0000
Subject: [PATCH] build(deps): bump async from 0.9.2 to 2.6.4

Bumps [async](https://github.com/caolan/async) from 0.9.2 to 2.6.4.
- [Release notes](https://github.com/caolan/async/releases)
- [Changelog](https://github.com/caolan/async/blob/v2.6.4/CHANGELOG.md)
- [Commits](https://github.com/caolan/async/compare/0.9.2...v2.6.4)

---
updated-dependencies:
- dependency-name: async
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 package-lock.json | 9 ++++++---
 package.json      | 2 +-
 2 files changed, 7 insertions(+), 4 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index 7483d8e..c5d4cb7 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -470,9 +470,12 @@
       "dev": true
     },
     "async": {
-      "version": "0.9.2",
-      "resolved": "https://registry.npmjs.org/async/-/async-0.9.2.tgz",
-      "integrity": "sha1-rqdNXmHB+JlhO/ZL2mbUx48v0X0="
+      "version": "2.6.4",
+      "resolved": "https://registry.npmjs.org/async/-/async-2.6.4.tgz",
+      "integrity": "sha512-mzo5dfJYwAn29PeiJ0zvwTo04zj8HDJj0Mn8TD7sno7q12prdbnasKJHhkm2c1LgrhlJ0teaea8860oxi51mGA==",
+      "requires": {
+        "lodash": "^4.17.14"
+      }
     },
     "asynckit": {
       "version": "0.4.0",
diff --git a/package.json b/package.json
index 0e9d309..ebaec42 100644
--- a/package.json
+++ b/package.json
@@ -70,7 +70,7 @@
     "sinon": "^7.5.0"
   },
   "dependencies": {
-    "async": "^0.9.2",
+    "async": "^2.6.4",
     "bcryptjs": "^2.4.3",
     "deepmerge": "^3.3.0",
     "http-errors": "^1.7.3",