From bfbef1c3b3847b1b08ed0ddc935184d058ad2f05 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 19 Apr 2023 04:57:56 +0000
Subject: [PATCH] Bump openpgp from 5.5.0 to 5.8.0

Bumps [openpgp](https://github.com/openpgpjs/openpgpjs) from 5.5.0 to 5.8.0.
- [Release notes](https://github.com/openpgpjs/openpgpjs/releases)
- [Commits](https://github.com/openpgpjs/openpgpjs/compare/v5.5.0...v5.8.0)

---
updated-dependencies:
- dependency-name: openpgp
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 package.json | 2 +-
 yarn.lock    | 8 ++++----
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/package.json b/package.json
index 1dca8d1..05a4d97 100644
--- a/package.json
+++ b/package.json
@@ -25,7 +25,7 @@
     "@actions/core": "^1.10.0",
     "@actions/exec": "^1.1.1",
     "addressparser": "^1.0.1",
-    "openpgp": "^5.5.0"
+    "openpgp": "^5.8.0"
   },
   "devDependencies": {
     "@types/node": "^16.11.26",
diff --git a/yarn.lock b/yarn.lock
index 961a3c3..50be5d2 100644
--- a/yarn.lock
+++ b/yarn.lock
@@ -2781,10 +2781,10 @@ onetime@^5.1.2:
   dependencies:
     mimic-fn "^2.1.0"
 
-openpgp@^5.5.0:
-  version "5.5.0"
-  resolved "https://registry.yarnpkg.com/openpgp/-/openpgp-5.5.0.tgz#235ae5a49d5fda5cfd1d82c4c42cd91433478c14"
-  integrity sha512-SpwcJnxrK9Y0HRM6KxSFqkAEOSWEabCH/c8dII/+y2e5f6KvuDG5ZE7JXaPBaVJNE4VUZZeTphxXDoZD0KOHrw==
+openpgp@^5.8.0:
+  version "5.8.0"
+  resolved "https://registry.yarnpkg.com/openpgp/-/openpgp-5.8.0.tgz#5e3033e8df59d1626ce65aa01b3cf5abee7ff26b"
+  integrity sha512-hq4+4s/vpjuwGgZSjplGp4j5FzSz+KwiFRiqMx+ZXr7VCK3CvTkktYilMTZMrf2vHsFH8aQ0596Lmn07HeKRmQ==
   dependencies:
     asn1.js "^5.0.0"