From 9bd82b4486ded7d81233475f9e62bbeb75a5eed8 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 19 Dec 2024 06:54:30 +0000 Subject: [PATCH] fix: services/api/package.json & services/api/package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-PATHTOREGEXP-8482416 --- services/api/package-lock.json | 36 +++++++++++++++++++--------------- services/api/package.json | 2 +- 2 files changed, 21 insertions(+), 17 deletions(-) diff --git a/services/api/package-lock.json b/services/api/package-lock.json index 729afdf3..e77e9b34 100644 --- a/services/api/package-lock.json +++ b/services/api/package-lock.json @@ -14,7 +14,7 @@ "@nestjs/common": "^10.3.9", "@nestjs/core": "^10.3.9", "@nestjs/cqrs": "^10.0.3", - "@nestjs/platform-express": "^10.4.5", + "@nestjs/platform-express": "^10.4.14", "@nestjs/platform-fastify": "^10.4.5", "@nestjs/platform-socket.io": "^10.3.9", "@nestjs/schedule": "^3.0.4", @@ -2367,16 +2367,16 @@ } }, "node_modules/@nestjs/platform-express": { - "version": "10.4.5", - "resolved": "https://registry.npmjs.org/@nestjs/platform-express/-/platform-express-10.4.5.tgz", - "integrity": "sha512-a629r8R8KC4skhdieQ0aIWH5vDBUFntWnWKFyDXQrll6/CllSchfWm87mWF39seaW6bXYtQtAEZY66JrngdrGA==", + "version": "10.4.14", + "resolved": "https://registry.npmjs.org/@nestjs/platform-express/-/platform-express-10.4.14.tgz", + "integrity": "sha512-HSCyAeiYlZqvwX1dv+3svar8F7IyRe+VSCoZU6zFQ81h6sk9sSOQsUU+l7z1nlbR9/QMRvZOaJjhFLrwmLJV1w==", "license": "MIT", "dependencies": { "body-parser": "1.20.3", "cors": "2.8.5", - "express": "4.21.1", + "express": "4.21.2", "multer": "1.4.4-lts.1", - "tslib": "2.7.0" + "tslib": "2.8.1" }, "funding": { "type": "opencollective", @@ -2388,9 +2388,9 @@ } }, "node_modules/@nestjs/platform-express/node_modules/tslib": { - "version": "2.7.0", - "resolved": "https://registry.npmjs.org/tslib/-/tslib-2.7.0.tgz", - "integrity": "sha512-gLXCKdN1/j47AiHiOkJN69hJmcbGTHI0ImLmbYLHykhgeN0jVGola9yVjFgzCUklsZQMW55o+dW7IXv3RCXDzA==", + "version": "2.8.1", + "resolved": "https://registry.npmjs.org/tslib/-/tslib-2.8.1.tgz", + "integrity": "sha512-oJFu94HQb+KVduSUQL7wnpmqnfmLsOA/nAh6b6EH0wCEoK0/mPeXU6c3wKDV83MkOuHPRHtSXKKU99IBazS/2w==", "license": "0BSD" }, "node_modules/@nestjs/platform-fastify": { @@ -5553,9 +5553,9 @@ } }, "node_modules/express": { - "version": "4.21.1", - "resolved": "https://registry.npmjs.org/express/-/express-4.21.1.tgz", - "integrity": "sha512-YSFlK1Ee0/GC8QaO91tHcDxJiE/X4FbpAyQWkxAvG6AXCuR65YzK8ua6D9hvi/TzUfZMpc+BwuM1IPw8fmQBiQ==", + "version": "4.21.2", + "resolved": "https://registry.npmjs.org/express/-/express-4.21.2.tgz", + "integrity": "sha512-28HqgMZAmih1Czt9ny7qr6ek2qddF4FclbMzwhCREB6OFfH+rXAnuNCwo1/wFvrtbgsQDb4kSbX9de9lFbrXnA==", "license": "MIT", "dependencies": { "accepts": "~1.3.8", @@ -5577,7 +5577,7 @@ "methods": "~1.1.2", "on-finished": "2.4.1", "parseurl": "~1.3.3", - "path-to-regexp": "0.1.10", + "path-to-regexp": "0.1.12", "proxy-addr": "~2.0.7", "qs": "6.13.0", "range-parser": "~1.2.1", @@ -5592,6 +5592,10 @@ }, "engines": { "node": ">= 0.10.0" + }, + "funding": { + "type": "opencollective", + "url": "https://opencollective.com/express" } }, "node_modules/express/node_modules/debug": { @@ -5610,9 +5614,9 @@ "license": "MIT" }, "node_modules/express/node_modules/path-to-regexp": { - "version": "0.1.10", - "resolved": "https://registry.npmjs.org/path-to-regexp/-/path-to-regexp-0.1.10.tgz", - "integrity": "sha512-7lf7qcQidTku0Gu3YDPc8DJ1q7OOucfa/BSsIwjuh56VU7katFvuM8hULfkwB3Fns/rsVF7PwPKVw1sl5KQS9w==", + "version": "0.1.12", + "resolved": "https://registry.npmjs.org/path-to-regexp/-/path-to-regexp-0.1.12.tgz", + "integrity": "sha512-RA1GjUVMnvYFxuqovrEqZoxxW5NUZqbwKtYz/Tt7nXerk0LbLblQmrsgdeOxV5SFHf0UDggjS/bSeOZwt1pmEQ==", "license": "MIT" }, "node_modules/external-editor": { diff --git a/services/api/package.json b/services/api/package.json index f503a11f..5bec0102 100644 --- a/services/api/package.json +++ b/services/api/package.json @@ -28,7 +28,7 @@ "@nestjs/common": "^10.3.9", "@nestjs/core": "^10.3.9", "@nestjs/cqrs": "^10.0.3", - "@nestjs/platform-express": "^10.4.5", + "@nestjs/platform-express": "^10.4.14", "@nestjs/platform-fastify": "^10.4.5", "@nestjs/platform-socket.io": "^10.3.9", "@nestjs/schedule": "^3.0.4",