From 394b9936ae502f10c188f1d7054a67a5f5b78baf Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sat, 12 Jul 2025 15:03:11 +0000
Subject: [PATCH] fix: src/package.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-SOCKETIOPARSER-3091012
- https://snyk.io/vuln/SNYK-JS-QS-3153490
- https://snyk.io/vuln/SNYK-JS-SOCKETIOPARSER-1056752
- https://snyk.io/vuln/SNYK-JS-COOKIE-8163060
---
 src/package.json | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/package.json b/src/package.json
index ca86258f5b4..8c198dd09f6 100644
--- a/src/package.json
+++ b/src/package.json
@@ -13,10 +13,10 @@
                      ],
   "dependencies"   : {
                       "etherpad-yajsml"         : "0.0.2",
-                      "request"                 : "2.55.0",
+                      "request"                 : "2.88.2",
                       "etherpad-require-kernel" : "1.0.9",
                       "resolve"                 : "1.1.7",
-                      "socket.io"               : "1.6.0",
+                      "socket.io"               : "4.8.0",
                       "ueberdb2"                : "0.3.0",
                       "express"                 : "4.13.4",
                       "express-session"         : "1.13.0",