From 735b5b53a4cb92a07518c99509d8ac9ea9317d92 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Mon, 29 Apr 2024 22:44:42 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-EJS-6689533 --- package-lock.json | 8 ++++---- package.json | 2 +- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/package-lock.json b/package-lock.json index b54e680..e7c5b5f 100644 --- a/package-lock.json +++ b/package-lock.json @@ -11,7 +11,7 @@ "dependencies": { "cookie-parser": "^1.4.6", "dotenv": "^16.3.1", - "ejs": "^3.1.8", + "ejs": "^3.1.10", "express": "^4.19.2", "express-mysql-session": "^2.1.8", "express-session": "^1.18.0", @@ -324,9 +324,9 @@ "integrity": "sha512-WMwm9LhRUo+WUaRN+vRuETqG89IgZphVSNkdFgeb6sS/E4OrDIN7t48CAewSHXc6C8lefD8KKfr5vY61brQlow==" }, "node_modules/ejs": { - "version": "3.1.9", - "resolved": "https://registry.npmjs.org/ejs/-/ejs-3.1.9.tgz", - "integrity": "sha512-rC+QVNMJWv+MtPgkt0y+0rVEIdbtxVADApW9JXrUVlzHetgcyczP/E7DJmWJ4fJCZF2cPcBk0laWO9ZHMG3DmQ==", + "version": "3.1.10", + "resolved": "https://registry.npmjs.org/ejs/-/ejs-3.1.10.tgz", + "integrity": "sha512-UeJmFfOrAQS8OJWPZ4qtgHyWExa088/MtK5UEyoJGFH67cDEXkZSviOiKRCZ4Xij0zxI3JECgYs3oKx+AizQBA==", "dependencies": { "jake": "^10.8.5" }, diff --git a/package.json b/package.json index 9d998d0..751faf3 100644 --- a/package.json +++ b/package.json @@ -18,7 +18,7 @@ "dependencies": { "cookie-parser": "^1.4.6", "dotenv": "^16.3.1", - "ejs": "^3.1.8", + "ejs": "^3.1.10", "express": "^4.19.2", "express-mysql-session": "^2.1.8", "express-session": "^1.18.0",