From b8b0b4b6abd6d150dbabb91f318edb1394698a71 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 17 Sep 2024 19:21:45 +0000 Subject: [PATCH] fix: package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://dev.snyk.io/vuln/SNYK-JS-AJV-584908 - https://dev.snyk.io/vuln/SNYK-JS-ANSIREGEX-1583908 - https://dev.snyk.io/vuln/SNYK-JS-BL-608877 - https://dev.snyk.io/vuln/SNYK-JS-BODYPARSER-7926860 - https://dev.snyk.io/vuln/SNYK-JS-EXPRESS-7926867 - https://dev.snyk.io/vuln/SNYK-JS-HANDLEBARS-1056767 - https://dev.snyk.io/vuln/SNYK-JS-HANDLEBARS-1279029 - https://dev.snyk.io/vuln/SNYK-JS-HANDLEBARS-173692 - https://dev.snyk.io/vuln/SNYK-JS-HANDLEBARS-174183 - https://dev.snyk.io/vuln/SNYK-JS-HANDLEBARS-469063 - https://dev.snyk.io/vuln/SNYK-JS-HANDLEBARS-480388 - https://dev.snyk.io/vuln/SNYK-JS-HANDLEBARS-534478 - https://dev.snyk.io/vuln/SNYK-JS-HANDLEBARS-534988 - https://dev.snyk.io/vuln/SNYK-JS-HANDLEBARS-567742 - https://dev.snyk.io/vuln/SNYK-JS-HIGHLIGHTJS-1045326 - https://dev.snyk.io/vuln/SNYK-JS-HIGHLIGHTJS-1048676 - https://dev.snyk.io/vuln/SNYK-JS-HOSTEDGITINFO-1088355 - https://dev.snyk.io/vuln/SNYK-JS-JSONSCHEMA-1920922 - https://dev.snyk.io/vuln/SNYK-JS-KINDOF-537849 - https://dev.snyk.io/vuln/SNYK-JS-LODASH-1018905 - https://dev.snyk.io/vuln/SNYK-JS-LODASH-1040724 - https://dev.snyk.io/vuln/SNYK-JS-LODASH-450202 - https://dev.snyk.io/vuln/SNYK-JS-LODASH-567746 - https://dev.snyk.io/vuln/SNYK-JS-LODASH-608086 - https://dev.snyk.io/vuln/SNYK-JS-LODASH-6139239 - https://dev.snyk.io/vuln/SNYK-JS-LODASH-73638 - https://dev.snyk.io/vuln/SNYK-JS-LODASH-73639 - https://dev.snyk.io/vuln/SNYK-JS-MINIMIST-2429795 - https://dev.snyk.io/vuln/SNYK-JS-MINIMIST-559764 - https://dev.snyk.io/vuln/SNYK-JS-MIXINDEEP-450212 - https://dev.snyk.io/vuln/SNYK-JS-PATHPARSE-1077067 - https://dev.snyk.io/vuln/SNYK-JS-QS-3153490 - https://dev.snyk.io/vuln/SNYK-JS-SEMVER-3247795 - https://dev.snyk.io/vuln/SNYK-JS-SEND-7926862 - https://dev.snyk.io/vuln/SNYK-JS-SERVESTATIC-7926865 - https://dev.snyk.io/vuln/SNYK-JS-SETVALUE-1540541 - https://dev.snyk.io/vuln/SNYK-JS-SETVALUE-450213 - https://dev.snyk.io/vuln/SNYK-JS-UGLIFYJS-1727251 - https://dev.snyk.io/vuln/SNYK-JS-Y18N-1021887 --- package.json | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/package.json b/package.json index 9e788453b7..71b65dd072 100644 --- a/package.json +++ b/package.json @@ -15,7 +15,7 @@ }, "dependencies": { "adm-zip": "0.4.11", - "body-parser": "1.9.0", + "body-parser": "1.20.3", "cfenv": "^1.0.4", "consolidate": "0.14.5", "cookie-parser": "1.3.3", @@ -24,7 +24,7 @@ "ejs": "1.0.0", "ejs-locals": "1.0.2", "errorhandler": "1.2.0", - "express": "4.12.4", + "express": "4.21.0", "express-fileupload": "0.0.5", "file-type": "^8.1.0", "humanize-ms": "1.0.1", @@ -33,7 +33,7 @@ "marked": "0.3.5", "method-override": "latest", "moment": "2.15.1", - "mongodb": "^3.5.9", + "mongodb": "^3.6.6", "mongoose": "4.2.4", "morgan": "latest", "ms": "^0.7.1", @@ -42,8 +42,8 @@ "optional": "^0.1.3", "st": "0.2.4", "stream-buffers": "^3.0.1", - "tap": "^11.1.3", - "typeorm": "^0.2.24" + "tap": "^18.0.0", + "typeorm": "^0.3.12" }, "devDependencies": { "browserify": "^13.1.1",