From ca3da5438862070cea0c0c75f55400b20fa22a75 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Mon, 9 Dec 2024 16:18:42 +0000 Subject: [PATCH] fix: package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-XMLHTTPREQUESTSSL-1082936 - https://snyk.io/vuln/npm:ws:20171108 - https://snyk.io/vuln/SNYK-JS-QS-3153490 - https://snyk.io/vuln/SNYK-JS-XMLHTTPREQUESTSSL-1255647 - https://snyk.io/vuln/SNYK-JS-PATHTOREGEXP-8482416 - https://snyk.io/vuln/npm:parsejson:20170908 - https://snyk.io/vuln/npm:ws:20160624 - https://snyk.io/vuln/SNYK-JS-BODYPARSER-7926860 - https://snyk.io/vuln/npm:engine.io-client:20160426 - https://snyk.io/vuln/SNYK-JS-EXPRESS-7926867 - https://snyk.io/vuln/SNYK-JS-EXPRESS-6474509 - https://snyk.io/vuln/SNYK-JS-PATHTOREGEXP-7925106 - https://snyk.io/vuln/SNYK-JS-SEND-7926862 - https://snyk.io/vuln/SNYK-JS-SERVESTATIC-7926865 - https://snyk.io/vuln/SNYK-JS-WS-1296835 - https://snyk.io/vuln/npm:debug:20170905 - https://snyk.io/vuln/npm:ws:20160920 - https://snyk.io/vuln/SNYK-JS-COOKIE-8163060 - https://snyk.io/vuln/npm:ms:20170412 --- package.json | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/package.json b/package.json index 4524827..8293f49 100644 --- a/package.json +++ b/package.json @@ -6,7 +6,7 @@ "dependencies": { "async": "2.6.3", "consolidate": "0.15.1", - "express": "4.16.4", + "express": "4.21.2", "graceful-fs": "4.1.15", "helmet": "3.15.0", "htmlclean": "3.0.8", @@ -21,7 +21,7 @@ "request": "2.88.0", "serve-favicon": "2.5.0", "sift": "7.0.1", - "socket.io-client": "1.4.5", + "socket.io-client": "4.3.0", "when": "3.7.8", "winston": "3.1.0", "write-file-atomic": "2.3.0"