From c45d8eef702bcdd4361fe518e31def24b22e94f1 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 22 Jun 2026 20:44:40 +0000
Subject: [PATCH] Bump js-yaml from 4.1.1 to 4.2.0

Bumps [js-yaml](https://github.com/nodeca/js-yaml) from 4.1.1 to 4.2.0.
- [Changelog](https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md)
- [Commits](https://github.com/nodeca/js-yaml/compare/4.1.1...4.2.0)

---
updated-dependencies:
- dependency-name: js-yaml
  dependency-version: 4.2.0
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 package.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/package.json b/package.json
index b580fc1..bc70d4a 100644
--- a/package.json
+++ b/package.json
@@ -30,7 +30,7 @@
     "@yarnpkg/lockfile": "1.1.0",
     "axios": "1.16.0",
     "debuglog": "1.0.1",
-    "js-yaml": "4.1.1",
+    "js-yaml": "4.2.0",
     "packageurl-js": "1.2.1",
     "semver": "7.7.4",
     "yargs": "17.7.2"