From 96ac6f440143bd5629b724063dc18703f4fc5727 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 1 Sep 2020 12:45:41 +0000
Subject: [PATCH] fix: package.json & package-lock.json to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-EXPRESSFILEUPLOAD-595969
- https://snyk.io/vuln/SNYK-JS-LODASH-590103
---
 package-lock.json | 12 ++++++------
 package.json      |  4 ++--
 2 files changed, 8 insertions(+), 8 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index a2fa9ffb57..286981a80b 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -3055,9 +3055,9 @@
       }
     },
     "express-fileupload": {
-      "version": "1.1.8",
-      "resolved": "https://registry.npmjs.org/express-fileupload/-/express-fileupload-1.1.8.tgz",
-      "integrity": "sha512-5FY1of8hxuI6HfmceDKc2Y6vg3EuXAlLz0Jw/BUglzrm7nKRuvjN6Y8ZgBfRp+1t5YkGAX7TEb5a5AmG5RqDcA==",
+      "version": "1.1.10",
+      "resolved": "https://registry.npmjs.org/express-fileupload/-/express-fileupload-1.1.10.tgz",
+      "integrity": "sha512-VEbeJBMDl+N+I/vXjQ17Xg+R35El6l6n/EELcSSpnwQbjqFmtAfXY9p5NpBpto5FqnksIleYImJ1jNlIWlP2aw==",
       "requires": {
         "busboy": "^0.3.1"
       }
@@ -4564,9 +4564,9 @@
       }
     },
     "lodash": {
-      "version": "4.17.19",
-      "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.19.tgz",
-      "integrity": "sha512-JNvd8XER9GQX0v2qJgsaN/mzFCNA5BRe/j8JN9d+tWyGLSodKQHKFicdwNYzWwI3wjRnaKPsGj1XkBjx/F96DQ=="
+      "version": "4.17.20",
+      "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.20.tgz",
+      "integrity": "sha512-PlhdFcillOINfeV7Ni6oF1TAEayyZBoZ8bcshTHqOYJYlrqzRK5hagpagky5o4HfCzzd1TRkXPMFq6cKk9rGmA=="
     },
     "lodash.assign": {
       "version": "4.2.0",
diff --git a/package.json b/package.json
index 21817ff06b..d6d6d178f1 100644
--- a/package.json
+++ b/package.json
@@ -30,11 +30,11 @@
     "ejs-locals": "1.0.2",
     "errorhandler": "^1.5.1",
     "express": "^4.17.1",
-    "express-fileupload": "1.1.8",
+    "express-fileupload": "1.1.10",
     "file-type": "^8.1.0",
     "humanize-ms": "^1.2.1",
     "jquery": "^3.5.0",
-    "lodash": "^4.17.19",
+    "lodash": "^4.17.20",
     "marked": "1.1.1",
     "method-override": "latest",
     "moment": "^2.27.0",