From ced8b2167993fbb715448d75353cf6fe5bf292a8 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sun, 25 Jan 2026 11:31:54 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-LODASH-15053838 --- package-lock.json | 9 +++++---- package.json | 2 +- 2 files changed, 6 insertions(+), 5 deletions(-) diff --git a/package-lock.json b/package-lock.json index 21b3eaa..126be98 100644 --- a/package-lock.json +++ b/package-lock.json @@ -17,7 +17,7 @@ "express": "^4.19.2", "helmet": "^7.1.0", "joi": "^17.12.3", - "lodash": "^4.17.21", + "lodash": "^4.17.23", "mongoose": "^8.3.0", "morgan": "^1.10.0", "nodemon": "^3.1.0", @@ -3831,9 +3831,10 @@ } }, "node_modules/lodash": { - "version": "4.17.21", - "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.21.tgz", - "integrity": "sha512-v2kDEe57lecTulaDIuNTPy3Ry4gLGJ6Z1O3vE1krgXZNrsQ+LFTGHVxVjcXPs17LhbZVGedAJv8XZ1tvj5FvSg==" + "version": "4.17.23", + "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.23.tgz", + "integrity": "sha512-LgVTMpQtIopCi79SJeDiP0TfWi5CNEc/L/aRdTh3yIvmZXTnheWpKjSZhnvMl8iXbC1tFg9gdHHDMLoV7CnG+w==", + "license": "MIT" }, "node_modules/logform": { "version": "2.6.0", diff --git a/package.json b/package.json index 83cb16a..dfc9b3f 100644 --- a/package.json +++ b/package.json @@ -25,7 +25,7 @@ "express": "^4.19.2", "helmet": "^7.1.0", "joi": "^17.12.3", - "lodash": "^4.17.21", + "lodash": "^4.17.23", "mongoose": "^8.3.0", "morgan": "^1.10.0", "nodemon": "^3.1.0",