From f45eef1424d5ef60e898c2a577429714b9738cb9 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sat, 3 Jan 2026 17:21:55 +0000 Subject: [PATCH] fix: src/package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-QS-14724253 --- src/package.json | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/src/package.json b/src/package.json index ca86258f5b4..5359741ee40 100644 --- a/src/package.json +++ b/src/package.json @@ -17,8 +17,8 @@ "etherpad-require-kernel" : "1.0.9", "resolve" : "1.1.7", "socket.io" : "1.6.0", - "ueberdb2" : "0.3.0", - "express" : "4.13.4", + "ueberdb2" : "1.4.14", + "express" : "4.22.0", "express-session" : "1.13.0", "cookie-parser" : "1.3.4", "async" : "0.9.0", @@ -26,9 +26,9 @@ "uglify-js" : "2.6.2", "formidable" : "1.0.17", "log4js" : "0.6.35", - "cheerio" : "0.20.0", + "cheerio" : "0.22.0", "async-stacktrace" : "0.0.2", - "npm" : "4.0.2", + "npm" : "7.0.0", "ejs" : "2.4.1", "graceful-fs" : "4.1.3", "slide" : "1.1.6", @@ -43,7 +43,7 @@ "jsonminify" : "0.4.1", "measured" : "1.1.0", "mocha" : "2.4.5", - "supertest" : "1.2.0" + "supertest" : "7.1.3" }, "bin": { "etherpad-lite": "./node/server.js" }, "devDependencies": {