build(deps): bump nodemailer from 7.0.5 to 7.0.6 (#256)

Bumps [nodemailer](https://github.com/nodemailer/nodemailer) from 7.0.5
to 7.0.6.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/nodemailer/nodemailer/releases">nodemailer's
releases</a>.</em></p>
<blockquote>
<h2>v7.0.6</h2>
<h2><a
href="https://github.com/nodemailer/nodemailer/compare/v7.0.5...v7.0.6">7.0.6</a>
(2025-08-27)</h2>
<h3>Bug Fixes</h3>
<ul>
<li><strong>encoder:</strong> avoid silent data loss by properly
flushing trailing base64 (<a
href="https://redirect.github.com/nodemailer/nodemailer/issues/1747">#1747</a>)
(<a
href="https://github.com/nodemailer/nodemailer/commit/01ae76f2cfe991c0c3fe80170f236da60531496b">01ae76f</a>)</li>
<li>handle multiple XOAUTH2 token requests correctly (<a
href="https://redirect.github.com/nodemailer/nodemailer/issues/1754">#1754</a>)
(<a
href="https://github.com/nodemailer/nodemailer/commit/dbe00286351cddf012726a41a96ae613d30a34ee">dbe0028</a>)</li>
<li>ReDoS vulnerability in parseDataURI and _processDataUrl (<a
href="https://redirect.github.com/nodemailer/nodemailer/issues/1755">#1755</a>)
(<a
href="https://github.com/nodemailer/nodemailer/commit/90b3e24d23929ebf9f4e16261049b40ee4055a39">90b3e24</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/nodemailer/nodemailer/blob/master/CHANGELOG.md">nodemailer's
changelog</a>.</em></p>
<blockquote>
<h2><a
href="https://github.com/nodemailer/nodemailer/compare/v7.0.5...v7.0.6">7.0.6</a>
(2025-08-27)</h2>
<h3>Bug Fixes</h3>
<ul>
<li><strong>encoder:</strong> avoid silent data loss by properly
flushing trailing base64 (<a
href="https://redirect.github.com/nodemailer/nodemailer/issues/1747">#1747</a>)
(<a
href="https://github.com/nodemailer/nodemailer/commit/01ae76f2cfe991c0c3fe80170f236da60531496b">01ae76f</a>)</li>
<li>handle multiple XOAUTH2 token requests correctly (<a
href="https://redirect.github.com/nodemailer/nodemailer/issues/1754">#1754</a>)
(<a
href="https://github.com/nodemailer/nodemailer/commit/dbe00286351cddf012726a41a96ae613d30a34ee">dbe0028</a>)</li>
<li>ReDoS vulnerability in parseDataURI and _processDataUrl (<a
href="https://redirect.github.com/nodemailer/nodemailer/issues/1755">#1755</a>)
(<a
href="https://github.com/nodemailer/nodemailer/commit/90b3e24d23929ebf9f4e16261049b40ee4055a39">90b3e24</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/nodemailer/nodemailer/commit/430ca75aa81e80b93d523f0db1b3dbed63834108"><code>430ca75</code></a>
chore(master): release 7.0.6 [skip-ci] (<a
href="https://redirect.github.com/nodemailer/nodemailer/issues/1753">#1753</a>)</li>
<li><a
href="https://github.com/nodemailer/nodemailer/commit/e3e700c4c4d0e777c364086524566d6caeb548ec"><code>e3e700c</code></a>
Bumped deps</li>
<li><a
href="https://github.com/nodemailer/nodemailer/commit/f322c380ae12ec20a0c96c7031d515d22bcab138"><code>f322c38</code></a>
replaced escaped single quotes with unescaped ones</li>
<li><a
href="https://github.com/nodemailer/nodemailer/commit/90b3e24d23929ebf9f4e16261049b40ee4055a39"><code>90b3e24</code></a>
Fix: ReDoS vulnerability in parseDataURI and _processDataUrl (<a
href="https://redirect.github.com/nodemailer/nodemailer/issues/1755">#1755</a>)</li>
<li><a
href="https://github.com/nodemailer/nodemailer/commit/dbe00286351cddf012726a41a96ae613d30a34ee"><code>dbe0028</code></a>
fix: handle multiple XOAUTH2 token requests correctly (<a
href="https://redirect.github.com/nodemailer/nodemailer/issues/1754">#1754</a>)</li>
<li><a
href="https://github.com/nodemailer/nodemailer/commit/01ae76f2cfe991c0c3fe80170f236da60531496b"><code>01ae76f</code></a>
fix(encoder): avoid silent data loss by properly flushing trailing
base64 (<a
href="https://redirect.github.com/nodemailer/nodemailer/issues/1">#1</a>...</li>
<li>See full diff in <a
href="https://github.com/nodemailer/nodemailer/compare/v7.0.5...v7.0.6">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=nodemailer&package-manager=npm_and_yarn&previous-version=7.0.5&new-version=7.0.6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Michael Szotkowski <[email protected]>

Author: dependabot[bot]

package-lock.json

@@ -83,7 +83,7 @@
     "loopback-connector-rest": "^5.0.9",
     "multer": "^2.0.2",
     "node-cron": "^4.2.1",
-    "nodemailer": "^7.0.5",
+    "nodemailer": "^7.0.6",
     "path": "^0.12.7",
     "path-to-regexp": "^8.2.0",
     "pdfkit": "^0.17.2",