From 57147593b68f4fa72964d4c14c72e3b26be33010 Mon Sep 17 00:00:00 2001 From: Konstantinos Kopanidis Date: Wed, 27 Mar 2024 10:46:38 +0200 Subject: [PATCH] [Snyk] Security upgrade express from 4.18.2 to 4.19.2 (#1001) * fix: libraries/grpc-sdk/package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-EXPRESS-6474509 * chore: yarn.lock --------- Co-authored-by: snyk-bot --- libraries/grpc-sdk/package.json | 2 +- yarn.lock | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/libraries/grpc-sdk/package.json b/libraries/grpc-sdk/package.json index 4c7d66fe5..87332fa46 100644 --- a/libraries/grpc-sdk/package.json +++ b/libraries/grpc-sdk/package.json @@ -21,7 +21,7 @@ "@sesamecare-oss/redlock": "^1.2.0", "abort-controller-x": "^0.4.1", "convict": "^6.2.4", - "express": "^4.18.2", + "express": "^4.19.2", "fast-jwt": "^3.3.2", "fs-extra": "^11.2.0", "ioredis": "^5.3.2", diff --git a/yarn.lock b/yarn.lock index 54c89a7ec..2c0311aa0 100644 --- a/yarn.lock +++ b/yarn.lock @@ -7100,7 +7100,7 @@ express@^4.17.1, express@^4.18.2, express@~4.18.2: utils-merge "1.0.1" vary "~1.1.2" -express@~4.19.2: +express@^4.19.2, express@~4.19.2: version "4.19.2" resolved "https://registry.yarnpkg.com/express/-/express-4.19.2.tgz#e25437827a3aa7f2a827bc8171bbbb664a356465" integrity sha512-5T6nhjsT+EOMzuck8JjBHARTHfMht0POzlA60WV2pMD3gyXw2LZnZ+ueGdNxG+0calOJcWKbpFcuzLZ91YWq9Q==