From 91be58e652554ba4852391f7afa139a0852c654c Mon Sep 17 00:00:00 2001
From: David Cui <53581635+davidcui-amzn@users.noreply.github.com>
Date: Thu, 14 Jan 2021 09:36:19 -0800
Subject: [PATCH] use forked trim() library to avoid regex DOS (#72)

---
 package.json | 3 ++-
 yarn.lock    | 4 ++++
 2 files changed, 6 insertions(+), 1 deletion(-)

diff --git a/package.json b/package.json
index f95eaea..ed99f16 100644
--- a/package.json
+++ b/package.json
@@ -29,7 +29,8 @@
     "lodash": "^4.17.20",
     "@babel/cli": "^7.10.5",
     "@nteract/outputs": "^3.0.11",
-    "@nteract/presentational-components": "^3.4.3"
+    "@nteract/presentational-components": "^3.4.3",
+    "trim": "https://github.com/davidcui-amzn/trim.git"
   },
   "resolutions": {
     "prismjs": "^1.22.0"
diff --git a/yarn.lock b/yarn.lock
index 566db3b..c2bdcc8 100644
--- a/yarn.lock
+++ b/yarn.lock
@@ -3424,6 +3424,10 @@ trim@0.0.1:
   resolved "https://registry.yarnpkg.com/trim/-/trim-0.0.1.tgz#5858547f6b290757ee95cccc666fb50084c460dd"
   integrity sha1-WFhUf2spB1fulczMZm+1AITEYN0=
 
+"trim@https://github.com/davidcui-amzn/trim.git":
+  version "0.0.1"
+  resolved "https://github.com/davidcui-amzn/trim.git#279ee1d64575b95f929373232115b43914747d2d"
+
 trough@^1.0.0:
   version "1.0.5"
   resolved "https://registry.yarnpkg.com/trough/-/trough-1.0.5.tgz#b8b639cefad7d0bb2abd37d433ff8293efa5f406"