diff --git a/.gitignore b/.gitignore
index 08911b0..5023da7 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1 +1 @@
-SOURCES/nodemon-v2.0.19-bundled.tar.gz
+SOURCES/nodemon-v2.0.20-bundled.tar.gz
diff --git a/.nodejs-nodemon.metadata b/.nodejs-nodemon.metadata
index b84843f..2b8c5db 100644
--- a/.nodejs-nodemon.metadata
+++ b/.nodejs-nodemon.metadata
@@ -1 +1 @@
-0ec238b5ca5f1798f1787f4c6365142f66242d7c SOURCES/nodemon-v2.0.19-bundled.tar.gz
+c7b270296bf6f24f7611d0c41b3a3381f972abc8 SOURCES/nodemon-v2.0.20-bundled.tar.gz
diff --git a/SPECS/nodejs-nodemon.spec b/SPECS/nodejs-nodemon.spec
index e0f24aa..d61799b 100644
--- a/SPECS/nodejs-nodemon.spec
+++ b/SPECS/nodejs-nodemon.spec
@@ -5,8 +5,8 @@
 %global enable_tests 0
 
 Name:          nodejs-%{npm_name}
-Version:       2.0.19
-Release:       1%{?dist}
+Version:       2.0.20
+Release:       2%{?dist}
 Summary:       Simple monitor script for use during development of a node.js app
 License:       MIT
 URL:           https://github.com/remy/nodemon
@@ -64,9 +64,18 @@ npm run test
 %{_bindir}/nodemon
 
 %changelog
-* Wed Aug 31 2022 Jan Staněk <jstanek@redhat.com> - 2.0.3-6
+* Thu Dec 08 2022 Zuzana Svetlikova <zsvetlik@redhat.com> - 2.0.20-2
+- Record CVE fixed in the current or previous upstream versions
+- Resolves: CVE-2021-44906
+
+* Fri Nov 18 2022 Jan Staněk <jstanek@redhat.com> - 2.0.20-1
+- Rebase to 2.0.20
+  Resolves: CVE-2022-3517
+
+* Wed Aug 31 2022 Jan Staněk <jstanek@redhat.com> - 2.0.19-1
 - Rebase to 2.0.19
   Resolves: CVE-2022-33987 rhbz#2073156 CVE-2021-33502 CVE-2021-3807 CVE-2020-28469
+  Resolves: CVE-2020-7788
 
 * Mon Aug 09 2021 Mohan Boddu <mboddu@redhat.com> - 2.0.3-6
 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags