From 1d49b6b3f7a4cc252fd4329de7e504613705f0a7 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 1 Oct 2025 10:02:49 +0000 Subject: [PATCH] [Dependabot]: Bump dotenv from 16.4.7 to 17.2.3 Bumps [dotenv](https://github.com/motdotla/dotenv) from 16.4.7 to 17.2.3. - [Changelog](https://github.com/motdotla/dotenv/blob/master/CHANGELOG.md) - [Commits](https://github.com/motdotla/dotenv/compare/v16.4.7...v17.2.3) --- updated-dependencies: - dependency-name: dotenv dependency-version: 17.2.3 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- package-lock.json | 9 +++++---- package.json | 2 +- 2 files changed, 6 insertions(+), 5 deletions(-) diff --git a/package-lock.json b/package-lock.json index 05740c6..308d00b 100644 --- a/package-lock.json +++ b/package-lock.json @@ -12,7 +12,7 @@ "bcryptjs": "^2.4.3", "compression": "^1.7.4", "cors": "^2.8.5", - "dotenv": "^16.0.0", + "dotenv": "^17.2.3", "express": "^4.17.1", "express-mongo-sanitize": "^2.1.0", "express-rate-limit": "^7.0.2", @@ -2506,9 +2506,10 @@ } }, "node_modules/dotenv": { - "version": "16.4.7", - "resolved": "https://registry.npmjs.org/dotenv/-/dotenv-16.4.7.tgz", - "integrity": "sha512-47qPchRCykZC03FhkYAhrvwU4xDBFIj1QPqaarj6mdM/hgUzfPHcpkHJOn3mJAufFeeAxAzeGsr5X0M4k6fLZQ==", + "version": "17.2.3", + "resolved": "https://registry.npmjs.org/dotenv/-/dotenv-17.2.3.tgz", + "integrity": "sha512-JVUnt+DUIzu87TABbhPmNfVdBDt18BLOWjMUFJMSi/Qqg7NTYtabbvSNJGOJ7afbRuv9D/lngizHtP7QyLQ+9w==", + "license": "BSD-2-Clause", "engines": { "node": ">=12" }, diff --git a/package.json b/package.json index e2fc588..a52aa11 100644 --- a/package.json +++ b/package.json @@ -19,7 +19,7 @@ "bcryptjs": "^2.4.3", "compression": "^1.7.4", "cors": "^2.8.5", - "dotenv": "^16.0.0", + "dotenv": "^17.2.3", "express": "^4.17.1", "express-mongo-sanitize": "^2.1.0", "express-rate-limit": "^7.0.2",