From 01b07dacd0348ce6fea8beeb5348861ca3680b0c Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 2 Feb 2024 05:27:31 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-NODEMAILER-6219989 --- package-lock.json | 14 +++++++------- package.json | 2 +- 2 files changed, 8 insertions(+), 8 deletions(-) diff --git a/package-lock.json b/package-lock.json index d606e7a..40aaa28 100644 --- a/package-lock.json +++ b/package-lock.json @@ -21,7 +21,7 @@ "mustache": "*", "mustache-express": "*", "nedb": "*", - "nodemailer": "*", + "nodemailer": "^6.9.9", "request": "^2.88.0", "serve-favicon": "^2.5.0", "supervisor": "*", @@ -2356,9 +2356,9 @@ } }, "node_modules/nodemailer": { - "version": "6.6.3", - "resolved": "https://registry.npmjs.org/nodemailer/-/nodemailer-6.6.3.tgz", - "integrity": "sha512-faZFufgTMrphYoDjvyVpbpJcYzwyFnbAMmQtj1lVBYAUSm3SOy2fIdd9+Mr4UxPosBa0JRw9bJoIwQn+nswiew==", + "version": "6.9.9", + "resolved": "https://registry.npmjs.org/nodemailer/-/nodemailer-6.9.9.tgz", + "integrity": "sha512-dexTll8zqQoVJEZPwQAKzxxtFn0qTnjdQTchoU6Re9BUUGBJiOy3YMn/0ShTW6J5M0dfQ1NeDeRTTl4oIWgQMA==", "engines": { "node": ">=6.0.0" } @@ -5540,9 +5540,9 @@ } }, "nodemailer": { - "version": "6.6.3", - "resolved": "https://registry.npmjs.org/nodemailer/-/nodemailer-6.6.3.tgz", - "integrity": "sha512-faZFufgTMrphYoDjvyVpbpJcYzwyFnbAMmQtj1lVBYAUSm3SOy2fIdd9+Mr4UxPosBa0JRw9bJoIwQn+nswiew==" + "version": "6.9.9", + "resolved": "https://registry.npmjs.org/nodemailer/-/nodemailer-6.9.9.tgz", + "integrity": "sha512-dexTll8zqQoVJEZPwQAKzxxtFn0qTnjdQTchoU6Re9BUUGBJiOy3YMn/0ShTW6J5M0dfQ1NeDeRTTl4oIWgQMA==" }, "nopt": { "version": "4.0.3", diff --git a/package.json b/package.json index c28be4a..c9177df 100644 --- a/package.json +++ b/package.json @@ -31,7 +31,7 @@ "mustache": "*", "mustache-express": "*", "nedb": "*", - "nodemailer": "*", + "nodemailer": "6.9.9", "request": "^2.88.0", "serve-favicon": "^2.5.0", "supervisor": "*",