From 2a01db57e70c7695333007aa9e9ec556314b74f1 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sat, 19 Oct 2024 05:55:37 +0000 Subject: [PATCH] fix: Server/package.json & Server/package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-COOKIE-8163060 --- Server/package-lock.json | 34 +++++++++++++--------------------- Server/package.json | 2 +- 2 files changed, 14 insertions(+), 22 deletions(-) diff --git a/Server/package-lock.json b/Server/package-lock.json index afdd77c..3bb3a97 100644 --- a/Server/package-lock.json +++ b/Server/package-lock.json @@ -22,7 +22,7 @@ "moment": "^2.30.1", "mongosuper": "^4.5.8", "multer": "^1.4.5-lts.1", - "outers": "^8.5.7" + "outers": "^8.5.9" }, "devDependencies": { "@types/express": "^4.17.17", @@ -921,9 +921,10 @@ } }, "node_modules/cookie": { - "version": "0.6.0", - "resolved": "https://registry.npmjs.org/cookie/-/cookie-0.6.0.tgz", - "integrity": "sha512-U71cyTamuh1CRNCfpGY6to28lxvNwPG4Guz/EVjgf3Jmzv0vlDp1atT9eS5dDjMYHucpHbWns6Lwf3BKz6svdw==", + "version": "0.7.1", + "resolved": "https://registry.npmjs.org/cookie/-/cookie-0.7.1.tgz", + "integrity": "sha512-6DnInpx7SJ2AK3+CTUE/ZM0vWTUboZCegxhC2xiIydHR9jNuTAASBrfEpHhiGOZw/nX51bHt6YQl8jsGo4y/0w==", + "license": "MIT", "engines": { "node": ">= 0.6" } @@ -1290,9 +1291,9 @@ } }, "node_modules/express": { - "version": "4.21.0", - "resolved": "https://registry.npmjs.org/express/-/express-4.21.0.tgz", - "integrity": "sha512-VqcNGcj/Id5ZT1LZ/cfihi3ttTn+NJmkli2eZADigjq29qTlWi/hAQ43t/VLPq8+UX06FCEx3ByOYet6ZFblng==", + "version": "4.21.1", + "resolved": "https://registry.npmjs.org/express/-/express-4.21.1.tgz", + "integrity": "sha512-YSFlK1Ee0/GC8QaO91tHcDxJiE/X4FbpAyQWkxAvG6AXCuR65YzK8ua6D9hvi/TzUfZMpc+BwuM1IPw8fmQBiQ==", "license": "MIT", "dependencies": { "accepts": "~1.3.8", @@ -1300,7 +1301,7 @@ "body-parser": "1.20.3", "content-disposition": "0.5.4", "content-type": "~1.0.4", - "cookie": "0.6.0", + "cookie": "0.7.1", "cookie-signature": "1.0.6", "debug": "2.6.9", "depd": "2.0.0", @@ -1350,15 +1351,6 @@ "ms": "2.0.0" } }, - "node_modules/express/node_modules/encodeurl": { - "version": "2.0.0", - "resolved": "https://registry.npmjs.org/encodeurl/-/encodeurl-2.0.0.tgz", - "integrity": "sha512-Q0n9HRi4m6JuGIV1eFlmvJB7ZEVxu93IrMyiMsGC0lrMJMWzRgx6WGquyfQgZVb31vhGgXnfmPNNXmxnOkRBrg==", - "license": "MIT", - "engines": { - "node": ">= 0.8" - } - }, "node_modules/express/node_modules/ms": { "version": "2.0.0", "resolved": "https://registry.npmjs.org/ms/-/ms-2.0.0.tgz", @@ -2352,13 +2344,13 @@ } }, "node_modules/outers": { - "version": "8.5.7", - "resolved": "https://registry.npmjs.org/outers/-/outers-8.5.7.tgz", - "integrity": "sha512-v8nqAAwVdZhHjzj/8K36HK9RQf+YUo8xWZySi8XBidsB5qFNW4U2M8uOzpAm5YLH6hJJV6ONtCMHkr5YnQNm4Q==", + "version": "8.5.9", + "resolved": "https://registry.npmjs.org/outers/-/outers-8.5.9.tgz", + "integrity": "sha512-50dGkHlMWRF+YRkfIF6c3INTJZdhPhMkZgrPT/GOLafEr9QYR4m/IgLvdd7LcTaImtbkvqB5bBAGzbZiZ/dwew==", "license": "MIT", "dependencies": { "crypto-js": "^4.2.0", - "express": "^4.18.2", + "express": "^4.21.1", "jsonwebtoken": "^9.0.2", "mongosuper": "^4.5.8", "ws": "^8.18.0" diff --git a/Server/package.json b/Server/package.json index 0581028..f234c91 100644 --- a/Server/package.json +++ b/Server/package.json @@ -40,7 +40,7 @@ "moment": "^2.30.1", "mongosuper": "^4.5.8", "multer": "^1.4.5-lts.1", - "outers": "^8.5.7" + "outers": "^8.5.9" }, "devDependencies": { "@types/express": "^4.17.17",