From 5b33b8374704a1b046716d478a26a0c358ab2a8d Mon Sep 17 00:00:00 2001
From: yyomba <yyomba@salesforce.com>
Date: Mon, 18 Dec 2023 13:56:22 -0500
Subject: [PATCH] chore: bump system info version to address arbitrary command
 injection vulnerability in systeminformation

Signed-off-by: yyomba <yyomba@salesforce.com>
---
 packages/opentelemetry-host-metrics/package.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/packages/opentelemetry-host-metrics/package.json b/packages/opentelemetry-host-metrics/package.json
index d58d1b5539..db007ccf23 100644
--- a/packages/opentelemetry-host-metrics/package.json
+++ b/packages/opentelemetry-host-metrics/package.json
@@ -56,7 +56,7 @@
   },
   "dependencies": {
     "@opentelemetry/sdk-metrics": "^1.8.0",
-    "systeminformation": "^5.0.0"
+    "systeminformation": "^5.21.20"
   },
   "homepage": "https://github.com/open-telemetry/opentelemetry-js-contrib/tree/main/packages/opentelemetry-host-metrics#readme"
 }