From 8b5f8bb3cfba7727a28024c0e75f91cce22a01bf Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 17 Sep 2024 21:13:34 +0000
Subject: [PATCH] fix: package.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://dev.snyk.io/vuln/SNYK-JS-AJV-584908
- https://dev.snyk.io/vuln/SNYK-JS-ANSIREGEX-1583908
- https://dev.snyk.io/vuln/SNYK-JS-ASYNC-2441827
- https://dev.snyk.io/vuln/SNYK-JS-BL-608877
- https://dev.snyk.io/vuln/SNYK-JS-BODYPARSER-7926860
- https://dev.snyk.io/vuln/SNYK-JS-EXPRESS-7926867
- https://dev.snyk.io/vuln/SNYK-JS-HANDLEBARS-1056767
- https://dev.snyk.io/vuln/SNYK-JS-HANDLEBARS-1279029
- https://dev.snyk.io/vuln/SNYK-JS-HANDLEBARS-173692
- https://dev.snyk.io/vuln/SNYK-JS-HANDLEBARS-174183
- https://dev.snyk.io/vuln/SNYK-JS-HANDLEBARS-469063
- https://dev.snyk.io/vuln/SNYK-JS-HANDLEBARS-480388
- https://dev.snyk.io/vuln/SNYK-JS-HANDLEBARS-534478
- https://dev.snyk.io/vuln/SNYK-JS-HANDLEBARS-534988
- https://dev.snyk.io/vuln/SNYK-JS-HANDLEBARS-567742
- https://dev.snyk.io/vuln/SNYK-JS-HIGHLIGHTJS-1045326
- https://dev.snyk.io/vuln/SNYK-JS-HIGHLIGHTJS-1048676
- https://dev.snyk.io/vuln/SNYK-JS-HOSTEDGITINFO-1088355
- https://dev.snyk.io/vuln/SNYK-JS-JSONSCHEMA-1920922
- https://dev.snyk.io/vuln/SNYK-JS-KINDOF-537849
- https://dev.snyk.io/vuln/SNYK-JS-LODASH-1018905
- https://dev.snyk.io/vuln/SNYK-JS-LODASH-1040724
- https://dev.snyk.io/vuln/SNYK-JS-LODASH-450202
- https://dev.snyk.io/vuln/SNYK-JS-LODASH-567746
- https://dev.snyk.io/vuln/SNYK-JS-LODASH-608086
- https://dev.snyk.io/vuln/SNYK-JS-LODASH-6139239
- https://dev.snyk.io/vuln/SNYK-JS-LODASH-73638
- https://dev.snyk.io/vuln/SNYK-JS-LODASH-73639
- https://dev.snyk.io/vuln/SNYK-JS-MINIMIST-2429795
- https://dev.snyk.io/vuln/SNYK-JS-MINIMIST-559764
- https://dev.snyk.io/vuln/SNYK-JS-MIXINDEEP-450212
- https://dev.snyk.io/vuln/SNYK-JS-PATHPARSE-1077067
- https://dev.snyk.io/vuln/SNYK-JS-PATHTOREGEXP-7925106
- https://dev.snyk.io/vuln/SNYK-JS-QS-3153490
- https://dev.snyk.io/vuln/SNYK-JS-SEMVER-3247795
- https://dev.snyk.io/vuln/SNYK-JS-SEND-7926862
- https://dev.snyk.io/vuln/SNYK-JS-SERVESTATIC-7926865
- https://dev.snyk.io/vuln/SNYK-JS-SETVALUE-1540541
- https://dev.snyk.io/vuln/SNYK-JS-SETVALUE-450213
- https://dev.snyk.io/vuln/SNYK-JS-UGLIFYJS-1727251
- https://dev.snyk.io/vuln/SNYK-JS-Y18N-1021887
---
 package.json | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

diff --git a/package.json b/package.json
index 6591e20366..cfe82337be 100644
--- a/package.json
+++ b/package.json
@@ -17,7 +17,7 @@
   "dependencies": {
     "@fastify/multipart": "^7.1.0",
     "adm-zip": "0.4.7",
-    "body-parser": "1.9.0",
+    "body-parser": "1.20.3",
     "cfenv": "^1.0.4",
     "consolidate": "0.14.5",
     "dustjs-helpers": "1.5.0",
@@ -25,18 +25,18 @@
     "ejs": "1.0.0",
     "ejs-locals": "1.0.2",
     "errorhandler": "1.2.0",
-    "express": "4.12.4",
+    "express": "4.21.0",
     "express-fileupload": "0.0.5",
     "express-session": "^1.17.2",
     "file-type": "^8.1.0",
-    "hbs": "^4.0.4",
+    "hbs": "^4.0.5",
     "humanize-ms": "1.0.1",
     "jquery": "^2.2.4",
     "lodash": "4.17.4",
     "marked": "0.3.5",
     "method-override": "latest",
     "moment": "2.15.1",
-    "mongodb": "^3.5.9",
+    "mongodb": "^3.6.6",
     "mongoose": "4.2.4",
     "morgan": "latest",
     "ms": "^0.7.1",
@@ -45,8 +45,8 @@
     "optional": "^0.1.3",
     "st": "0.2.4",
     "stream-buffers": "^3.0.1",
-    "tap": "^11.1.3",
-    "typeorm": "^0.2.24",
+    "tap": "^18.0.0",
+    "typeorm": "^0.3.12",
     "validator": "^13.5.2",
     "utilities": "1.0.0"
   },