From 1321b882f1806d431e59dff14b54aca1452a82f5 Mon Sep 17 00:00:00 2001 From: Lucas Holmquist Date: Thu, 16 Jan 2025 06:35:48 -0500 Subject: [PATCH] fix: backend/package.json & backend/package-lock.json to reduce vulnerabilities (#275) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-MONGOOSE-8623536 Co-authored-by: snyk-bot --- backend/package-lock.json | 8 ++++---- backend/package.json | 2 +- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/backend/package-lock.json b/backend/package-lock.json index 604f963..c8446e0 100644 --- a/backend/package-lock.json +++ b/backend/package-lock.json @@ -12,7 +12,7 @@ "cors": "^2.8.4", "express": "^4.21.2", "log4js": "^6.7.0", - "mongoose": "^8.9.1" + "mongoose": "^8.9.5" }, "devDependencies": { "chai": "^4.4.1", @@ -2938,9 +2938,9 @@ "license": "MIT" }, "node_modules/mongoose": { - "version": "8.9.1", - "resolved": "https://registry.npmjs.org/mongoose/-/mongoose-8.9.1.tgz", - "integrity": "sha512-whM6lWMdeKlUm4d2LSLS/q6cWtTp13lUrL5hy2YTsQdTSN+dsAu8HLdLUQOEgtBE59qp4IqLrjSXCSETbxhkQQ==", + "version": "8.9.5", + "resolved": "https://registry.npmjs.org/mongoose/-/mongoose-8.9.5.tgz", + "integrity": "sha512-SPhOrgBm0nKV3b+IIHGqpUTOmgVL5Z3OO9AwkFEmvOZznXTvplbomstCnPOGAyungtRXE5pJTgKpKcZTdjeESg==", "license": "MIT", "dependencies": { "bson": "^6.10.1", diff --git a/backend/package.json b/backend/package.json index db5e54d..6435882 100644 --- a/backend/package.json +++ b/backend/package.json @@ -17,7 +17,7 @@ "cors": "^2.8.4", "express": "^4.21.2", "log4js": "^6.7.0", - "mongoose": "^8.9.1" + "mongoose": "^8.9.5" }, "devDependencies": { "chai": "^4.4.1",