From 1c289c405e0cb4c5d7a9f1fc2c373f984199cabf Mon Sep 17 00:00:00 2001
From: Gayatri Nair <gayatri.n@browserstack.com>
Date: Tue, 21 Apr 2026 11:13:25 +0530
Subject: [PATCH] Bump protobufjs from 7.4.0 to 7.5.5 in /ios

Fix CVE for arbitrary code execution in protobufjs (GHSA-xq3m-2v4x-88gg).
This matches the android directory which was already patched via Dependabot PR #46.

JIRA: AAP-18854

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
---
 ios/package-lock.json | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/ios/package-lock.json b/ios/package-lock.json
index b10bed6..e999723 100644
--- a/ios/package-lock.json
+++ b/ios/package-lock.json
@@ -7026,9 +7026,9 @@
       }
     },
     "node_modules/protobufjs": {
-      "version": "7.4.0",
-      "resolved": "https://registry.npmjs.org/protobufjs/-/protobufjs-7.4.0.tgz",
-      "integrity": "sha512-mRUWCc3KUU4w1jU8sGxICXH/gNS94DvI1gxqDvBzhj1JpcsimQkYiOJfwsPUykUI5ZaspFbSgmBLER8IrQ3tqw==",
+      "version": "7.5.5",
+      "resolved": "https://registry.npmjs.org/protobufjs/-/protobufjs-7.5.5.tgz",
+      "integrity": "sha512-3wY1AxV+VBNW8Yypfd1yQY9pXnqTAN+KwQxL8iYm3/BjKYMNg4i0owhEe26PWDOMaIrzeeF98Lqd5NGz4omiIg==",
       "dev": true,
       "hasInstallScript": true,
       "dependencies": {