Security vulnerability with google-p12-pem library

[christhegrand]

We're using this library, and Dependabot just alerted us to a problem with it:

Dependabot cannot update node-forge to a non-vulnerable version
The latest possible version that can be installed is 0.9.2 because of the following conflicting dependency:
@getstation/electron-google-oauth2@2.1.0 requires node-forge@^0.9.0 via a transitive dependency on google-p12-pem@2.0.4
The earliest fixed version is 0.10.0.

Looking through the yarn.lock file, it looks like google-p12-pem is a dependency of gtoken, which is a dependency of google-auth-library-nodejs. Would it be possible to upgrade the google-auth-library-nodejs dependency?