From d8f6c3440ec7e5563b0af78014c268c879f850d1 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sat, 24 Jan 2026 12:04:43 +0000 Subject: [PATCH] fix: package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-DIFF-14917201 - https://snyk.io/vuln/SNYK-JS-LODASH-15053838 - https://snyk.io/vuln/SNYK-JS-JSYAML-13961110 --- package.json | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/package.json b/package.json index 23795fb4736..ad87c487dbc 100644 --- a/package.json +++ b/package.json @@ -17,7 +17,7 @@ "dependencies": { "adm-zip": "0.4.7", "body-parser": "1.9.0", - "cfenv": "^1.0.4", + "cfenv": "^1.2.5", "consolidate": "0.14.5", "dustjs-helpers": "1.5.0", "dustjs-linkedin": "2.5.0", @@ -31,7 +31,7 @@ "hbs": "^4.0.4", "humanize-ms": "1.0.1", "jquery": "^2.2.4", - "lodash": "4.17.4", + "lodash": "4.17.23", "marked": "0.3.5", "method-override": "latest", "moment": "2.15.1", @@ -44,7 +44,7 @@ "optional": "^0.1.3", "st": "0.2.4", "stream-buffers": "^3.0.1", - "tap": "^11.1.3", + "tap": "^18.0.0", "typeorm": "^0.2.24", "validator": "^13.5.2" },