Fix potential security vulnerability in dependencies

package.json

@@ -4,10 +4,10 @@
   "description": "",
   "main": "lib",
   "dependencies": {
-    "@actions/core": "^1.2.0",
-    "@actions/github": "^2.2.0",
-    "@actions/tool-cache": "^1.3.5",
-    "dotenv": "^8.2.0",
+    "@actions/core": "1.x",
+    "@actions/github": "2.x",
+    "@actions/tool-cache": "1.x",
+    "dotenv": "8.2.x",
     "ncc": "^0.3.6",
     "semver": "^7.3.2",
     "string-argv": "^0.3.1",
@@ -22,11 +22,12 @@
     "@types/superagent": "^4.1.7",
     "@types/tmp": "^0.2.0",
     "@typescript-eslint/parser": "^2.8.0",
-    "eslint": "^5.16.0",
+    "eslint": "^5.x",
     "eslint-plugin-github": "^2.0.0",
     "js-yaml": "^3.13.1",
     "prettier": "^1.19.1",
-    "typescript": "^3.6.4"
+    "typescript": "^3.6.4",
+    "node-fetch": ">=2.6.1"
   },
   "scripts": {
     "build": "tsc",