Update dependency nexmo to v2.7.0 by mend-for-github-com[bot] · Pull Request #25 · nexmo-community/eurovision-voting-system-js

mend-for-github-com · 2025-04-12T18:07:21Z

This PR contains the following updates:

Package	Type	Update	Change
nexmo	dependencies	patch	`2.7.0-beta-1` → `2.7.0`

By merging this PR, the issue #14 will be automatically resolved and closed:

Severity	CVSS Score	Vulnerability
Critical	9.8	CVE-2021-3918
High	7.5	CVE-2025-65945

nexmo/nexmo-node (nexmo)

ADDED: Made apiKey and apiSecret optional when applicationId and privateKey are present in Nexmo constructor.

mend-for-github-com bot added the security fix Security fix generated by Mend label Apr 12, 2025

mend-for-github-com bot force-pushed the whitesource-remediate/nexmo-2.x-lockfile branch from 376c0f4 to f1bf41a Compare May 8, 2025 08:23

mend-for-github-com bot force-pushed the whitesource-remediate/nexmo-2.x-lockfile branch from f1bf41a to d67340d Compare December 4, 2025 15:12

mend-for-github-com bot force-pushed the whitesource-remediate/nexmo-2.x-lockfile branch from d67340d to a635f8d Compare February 12, 2026 14:05

Update dependency nexmo to v2.7.0

b0f5aa1

mend-for-github-com bot force-pushed the whitesource-remediate/nexmo-2.x-lockfile branch from a635f8d to b0f5aa1 Compare February 13, 2026 07:30

Provide feedback