patch for ip cve fix

**Description**

- added patch for updating [email protected] to [email protected]

**Motivation**

There is a CVE for [email protected] that is fixed with [email protected]

Author: JedML

CONTRIBUTING.md

@@ -53,6 +53,22 @@ [email protected] with any additional questions or comments.
 ## Security issue notifications
 If you discover a potential security issue in this project we ask that you notify AWS/Amazon Security via our [vulnerability reporting page](http://aws.amazon.com/security/vulnerability-reporting/). Please do **not** create a public github issue.
 
+[Source](https://raphaelhertzog.com/2012/08/08/how-to-use-quilt-to-manage-patches-in-debian-packages/)
+
+### Patching Code
+
+0. You can go through the patch stack with `quilt push` and `quilt pop`.
+1. Create a new patch (`quilt new {name}.diff`) or use an existing patch.
+1. Add the file(s) you are patching (`quilt add [-P patch] {file}`). A file
+   **must** be added before you make changes to it.
+1. Make your changes. Patches do not need to be independent of each other but
+   each patch must result in a working sagemaker-code-editor without any broken in-between
+   states otherwise they are difficult to test and modify.
+1. Add your changes to the patch (`quilt refresh`)
+1. Add a comment in the patch about the reason for the patch and how to
+   reproduce the behavior it fixes or adds. Every patch should have an e2e test
+   as well.
+
 
 ## Licensing
 

patched-vscode/product.json

@@ -47,4 +47,4 @@
 	"linkProtectionTrustedDomains": [
 		"https://open-vsx.org"
 	]
-}
+}

patched-vscode/yarn.lock

@@ -5567,9 +5567,9 @@ invert-kv@^2.0.0:
   integrity sha512-wPVv/y/QQ/Uiirj/vh3oP+1Ww+AWehmi1g5fFWGPF6IpCBCDVrhgHRMvrLfdYcwDh3QJbGXDW4JAuzxElLSqKA==
 
 ip@^2.0.0:
-  version "2.0.0"
-  resolved "https://registry.yarnpkg.com/ip/-/ip-2.0.0.tgz#4cf4ab182fee2314c75ede1276f8c80b479936da"
-  integrity sha512-WKa+XuLG1A1R0UWhl2+1XQSi+fZWMsYKffMZTTYsiZaUD8k2yDAj5atimTUD2TZkyCkNEeYE5NhFZmupOGtjYQ==
+  version "2.0.1"
+  resolved "https://registry.yarnpkg.com/ip/-/ip-2.0.1.tgz#e8f3595d33a3ea66490204234b77636965307105"
+  integrity sha512-lJUL9imLTNi1ZfXT+DU6rBBdbiKGBuay9B6xGSPVjUeQwaH1RIGqef8RZkUtHioLmSNpPR5M4HVKJGm1j8FWVQ==
 
 is-absolute-url@^2.0.0:
   version "2.1.0"

patches/security.diff

@@ -0,0 +1,17 @@
+Index: smce/vscode/yarn.lock
+===================================================================
+--- smce.orig/vscode/yarn.lock
++++ smce/vscode/yarn.lock
+@@ -5567,9 +5567,9 @@ invert-kv@^2.0.0:
+   integrity sha512-wPVv/y/QQ/Uiirj/vh3oP+1Ww+AWehmi1g5fFWGPF6IpCBCDVrhgHRMvrLfdYcwDh3QJbGXDW4JAuzxElLSqKA==
+ 
+ ip@^2.0.0:
+-  version "2.0.0"
+-  resolved "https://registry.yarnpkg.com/ip/-/ip-2.0.0.tgz#4cf4ab182fee2314c75ede1276f8c80b479936da"
+-  integrity sha512-WKa+XuLG1A1R0UWhl2+1XQSi+fZWMsYKffMZTTYsiZaUD8k2yDAj5atimTUD2TZkyCkNEeYE5NhFZmupOGtjYQ==
++  version "2.0.1"
++  resolved "https://registry.yarnpkg.com/ip/-/ip-2.0.1.tgz#e8f3595d33a3ea66490204234b77636965307105"
++  integrity sha512-lJUL9imLTNi1ZfXT+DU6rBBdbiKGBuay9B6xGSPVjUeQwaH1RIGqef8RZkUtHioLmSNpPR5M4HVKJGm1j8FWVQ==
+ 
+ is-absolute-url@^2.0.0:
+   version "2.1.0"

patches/series

@@ -1,8 +1,9 @@
+security.diff
 sagemaker-extension.diff
 disable-online-services.diff
 disable-telemetry.diff
 base-path.diff
 webview.diff
 local-storage.diff
 sagemaker-integration.diff
-license.diff
+license.diff