From 3adcc90d381a10215721dac614a8f6e5d82b2abd Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Mon, 17 Jul 2023 17:01:06 +0000
Subject: [PATCH] fix: backend/package.json & backend/package-lock.json to
 reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-MONGOOSE-5777721
---
 backend/package-lock.json | 8 ++++----
 backend/package.json      | 2 +-
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/backend/package-lock.json b/backend/package-lock.json
index e4915247..89affcb7 100644
--- a/backend/package-lock.json
+++ b/backend/package-lock.json
@@ -14,7 +14,7 @@
         "cors": "^2.8.5",
         "express": "^4.18.2",
         "express-async-handler": "^1.2.0",
-        "mongoose": "^7.3.1",
+        "mongoose": "^7.3.4",
         "morgan": "^1.10.0"
       },
       "devDependencies": {
@@ -6808,9 +6808,9 @@
       }
     },
     "node_modules/mongoose": {
-      "version": "7.3.1",
-      "resolved": "https://registry.npmjs.org/mongoose/-/mongoose-7.3.1.tgz",
-      "integrity": "sha512-6289bmSIhvR8xMHsYe2/CuzN7wHK+2RHcK7idDdzniCPC5zix5JH0Hc4k3CmXlr/9zQ2250gUQiUWtvDB0vF1Q==",
+      "version": "7.3.4",
+      "resolved": "https://registry.npmjs.org/mongoose/-/mongoose-7.3.4.tgz",
+      "integrity": "sha512-luvv4PKFiFYaHNn5wGIRrMML3Vvoa8lkdhcLE1S/6gY9s9CUOdEu9olbDrkhvnwRQ20j1SrQFO5JEApW0xwL3w==",
       "dependencies": {
         "bson": "^5.3.0",
         "kareem": "2.5.1",
diff --git a/backend/package.json b/backend/package.json
index 2d8936de..670aa410 100644
--- a/backend/package.json
+++ b/backend/package.json
@@ -34,7 +34,7 @@
     "cors": "^2.8.5",
     "express": "^4.18.2",
     "express-async-handler": "^1.2.0",
-    "mongoose": "^7.3.1",
+    "mongoose": "^7.3.4",
     "morgan": "^1.10.0"
   },
   "devDependencies": {