diff --git a/workspaces/arborist/test/fixtures/audit-one-vuln/package-lock.json b/workspaces/arborist/test/fixtures/audit-one-vuln/package-lock.json
index 5345e69fd09c8..1e93acd5cc128 100644
--- a/workspaces/arborist/test/fixtures/audit-one-vuln/package-lock.json
+++ b/workspaces/arborist/test/fixtures/audit-one-vuln/package-lock.json
@@ -3,9 +3,9 @@
   "lockfileVersion": 1,
   "dependencies": {
     "minimist": {
-      "version": "1.0.0",
-      "resolved": "https://registry.npmjs.org/minimist/-/minimist-1.0.0.tgz",
-      "integrity": "sha1-lCnE+D4NIlkKdq62EABtzD+Jxw8="
+      "version": "1.2.8",
+      "resolved": "https://registry.npmjs.org/minimist/-/minimist-1.2.8.tgz",
+      "integrity": "sha512-2yyAR8qBkN3YuheJanUpWC5U3bb5osDywNB8RzDVlDwDHbocAJveqqj1u8+SVD7jkWT4yvsHCpWqqWqAxb0zCA=="
     }
   }
 }
diff --git a/workspaces/arborist/test/fixtures/audit-one-vuln/package.json b/workspaces/arborist/test/fixtures/audit-one-vuln/package.json
index 1988b6a125a57..00ba281c9c544 100644
--- a/workspaces/arborist/test/fixtures/audit-one-vuln/package.json
+++ b/workspaces/arborist/test/fixtures/audit-one-vuln/package.json
@@ -1,5 +1,5 @@
 {
   "dependencies": {
-    "minimist": "^1.0.0"
+    "minimist": "^1.2.8"
   }
 }