From e2a3d274d79c6633ab9ec2881f19d4b464284515 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 2 Jul 2024 15:58:53 +0000 Subject: [PATCH] fix: src/package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-ASYNC-7414156 --- src/package.json | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/src/package.json b/src/package.json index ca86258f5b4..7dbe5ca2721 100644 --- a/src/package.json +++ b/src/package.json @@ -13,17 +13,17 @@ ], "dependencies" : { "etherpad-yajsml" : "0.0.2", - "request" : "2.55.0", + "request" : "2.88.2", "etherpad-require-kernel" : "1.0.9", "resolve" : "1.1.7", "socket.io" : "1.6.0", - "ueberdb2" : "0.3.0", + "ueberdb2" : "4.1.35", "express" : "4.13.4", "express-session" : "1.13.0", "cookie-parser" : "1.3.4", "async" : "0.9.0", "clean-css" : "3.4.19", - "uglify-js" : "2.6.2", + "uglify-js" : "2.8.16", "formidable" : "1.0.17", "log4js" : "0.6.35", "cheerio" : "0.20.0", @@ -43,7 +43,7 @@ "jsonminify" : "0.4.1", "measured" : "1.1.0", "mocha" : "2.4.5", - "supertest" : "1.2.0" + "supertest" : "7.0.0" }, "bin": { "etherpad-lite": "./node/server.js" }, "devDependencies": {