From 18877559f98caa6993b68f118777fc9a514c26db Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 5 Mar 2024 08:19:25 +0000 Subject: [PATCH] fix: package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-ANSIREGEX-1583908 - https://snyk.io/vuln/SNYK-JS-CRYPTOJS-6028119 - https://snyk.io/vuln/SNYK-JS-ENGINEIO-1056749 - https://snyk.io/vuln/SNYK-JS-EXPRESSJWT-575022 - https://snyk.io/vuln/SNYK-JS-INFLIGHT-6095116 - https://snyk.io/vuln/SNYK-JS-JSONWEBTOKEN-3180022 - https://snyk.io/vuln/SNYK-JS-JSONWEBTOKEN-3180024 - https://snyk.io/vuln/SNYK-JS-JSONWEBTOKEN-3180026 - https://snyk.io/vuln/SNYK-JS-LODASH-1018905 - https://snyk.io/vuln/SNYK-JS-LODASH-1040724 - https://snyk.io/vuln/SNYK-JS-LODASH-450202 - https://snyk.io/vuln/SNYK-JS-LODASH-608086 - https://snyk.io/vuln/SNYK-JS-LODASH-73638 - https://snyk.io/vuln/SNYK-JS-LODASH-73639 - https://snyk.io/vuln/SNYK-JS-SANITIZEHTML-1070780 - https://snyk.io/vuln/SNYK-JS-SANITIZEHTML-1070786 - https://snyk.io/vuln/SNYK-JS-SANITIZEHTML-2957526 - https://snyk.io/vuln/SNYK-JS-SANITIZEHTML-585892 - https://snyk.io/vuln/SNYK-JS-SANITIZEHTML-6256334 - https://snyk.io/vuln/SNYK-JS-UNSETVALUE-2400660 - https://snyk.io/vuln/SNYK-JS-XML2JS-5414874 - https://snyk.io/vuln/npm:debug:20170905 - https://snyk.io/vuln/npm:lodash:20180130 - https://snyk.io/vuln/npm:ms:20170412 - https://snyk.io/vuln/npm:sanitize-html:20141024 - https://snyk.io/vuln/npm:sanitize-html:20160801 - https://snyk.io/vuln/npm:sanitize-html:20161026 --- package.json | 18 +++++++++--------- 1 file changed, 9 insertions(+), 9 deletions(-) diff --git a/package.json b/package.json index dab6985..2ae098d 100644 --- a/package.json +++ b/package.json @@ -98,7 +98,7 @@ }, "dependencies": { "body-parser": "^1.19.0", - "check-dependencies": "^1.1.0", + "check-dependencies": "^2.0.0", "clarinet": "^0.12.4", "colors": "^1.4.0", "compression": "^1.7.4", @@ -110,7 +110,7 @@ "download": "^8.0.0", "errorhandler": "^1.5.1", "express": "^4.17.1", - "express-jwt": "3.0.0", + "express-jwt": "8.0.0", "express-rate-limit": "^5.1.3", "express-robots-txt": "^0.4.1", "express-security.txt": "^2.0.0", @@ -120,9 +120,9 @@ "finale-rest": "^1.1.1", "fs-extra": "^9.0.1", "fuzzball": "^1.3.0", - "glob": "^7.1.6", + "glob": "^9.0.0", "grunt": "^1.2.1", - "grunt-contrib-compress": "^1.6.0", + "grunt-contrib-compress": "^2.0.0", "grunt-replace-json": "^0.1.0", "hashids": "^2.2.1", "helmet": "^4.0.0", @@ -132,7 +132,7 @@ "is-heroku": "^2.0.0", "is-windows": "^1.0.2", "js-yaml": "^3.14.0", - "jsonwebtoken": "5.0.0", + "jsonwebtoken": "9.0.0", "jssha": "^3.1.1", "juicy-chat-bot": "~0.6.0", "marsdb": "^0.6.11", @@ -142,23 +142,23 @@ "notevil": "^1.3.3", "on-finished": "^2.3.0", "otplib": "^12.0.1", - "pdfkit": "^0.11.0", + "pdfkit": "^0.12.2", "portscanner": "^2.2.0", "prom-client": "^12.0.0", "pug": "^3.0.0", "replace": "^1.2.0", "request": "^2.88.2", "sanitize-filename": "^1.6.3", - "sanitize-html": "1.4.2", + "sanitize-html": "2.12.1", "semver": "^7.3.2", "sequelize": "^6.19.1", "sequelize-noupdate-attributes": "^1.0.0", "serve-index": "^1.9.1", - "socket.io": "^2.3.0", + "socket.io": "^3.0.5", "sqlite3": "^5.0.0", "svg-captcha": "^1.4.0", "swagger-ui-express": "^4.1.4", - "typeorm": "0.2.30", + "typeorm": "0.3.18", "unzipper": "0.9.15", "winston": "^3.3.3", "yaml-schema-validator": "^1.2.2",