chore: bump vulnerable dependencies

AndrewBastin · AndrewBastin · commit decbb56c9f44 · 2025-04-28T15:11:15.000+05:30
diff --git a/packages/hoppscotch-backend/package.json b/packages/hoppscotch-backend/package.json
@@ -33,7 +33,7 @@
     "@apollo/server": "4.11.0",
     "@nestjs-modules/mailer": "2.0.2",
     "@nestjs/apollo": "12.2.0",
-    "@nestjs/common": "10.4.4",
+    "@nestjs/common": "10.4.16",
     "@nestjs/config": "3.2.3",
     "@nestjs/core": "10.4.4",
     "@nestjs/graphql": "12.2.0",
diff --git a/prod.Dockerfile b/prod.Dockerfile
@@ -23,8 +23,8 @@ RUN go get github.com/golang/glog@v1.2.4
 RUN go get github.com/go-jose/go-jose/v3@v3.0.4
 # Patch to resolve CVE-2025-22869 on crypto
 RUN go get golang.org/x/crypto@v0.35.0
-# Patch to resolve CVE-2025-22870 on net
-RUN go get golang.org/x/net@v0.37.0
+# Patch to resolve CVE-2025-22872 on net
+RUN go get golang.org/x/net@v0.38.0
 
 RUN go mod vendor
 
