From fce6d9201595881ec8edbdfcde58ce71f7fa444f Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Fri, 14 Nov 2025 17:36:09 +0000
Subject: [PATCH] fix: package.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-JSYAML-13961110
---
 package.json | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/package.json b/package.json
index 4ae3aa055..ec14c3276 100644
--- a/package.json
+++ b/package.json
@@ -70,7 +70,7 @@
     "connect-mongo": "^1.3.2",
     "connect-pg-simple": "^3.1.0",
     "cross-env": "^2.0.1",
-    "css-loader": "^0.25.0",
+    "css-loader": "^1.0.0",
     "es6-promise": "^3.1.2",
     "express": "^4.13.4",
     "express-flash": "0.0.2",
@@ -89,7 +89,7 @@
     "pg-hstore": "^2.3.2",
     "postcss-cssnext": "^2.9.0",
     "postcss-import": "^9.0.0",
-    "postcss-loader": "^1.2.1",
+    "postcss-loader": "^4.0.0",
     "postcss-reporter": "^3.0.0",
     "react": "^15.4.1",
     "react-dom": "^15.4.1",