From 1d2349635962d9ff07c1fa27b89d23b800392ba9 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 9 Apr 2024 19:03:24 +0000
Subject: [PATCH] fix: package.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-DICER-2311764
- https://snyk.io/vuln/SNYK-JS-JQUERY-565129
- https://snyk.io/vuln/SNYK-JS-JQUERY-567880
- https://snyk.io/vuln/SNYK-JS-TYPEORM-590152
- https://snyk.io/vuln/npm:adm-zip:20180415
- https://snyk.io/vuln/npm:mongoose:20160116
- https://snyk.io/vuln/npm:npmconf:20180512
- https://snyk.io/vuln/npm:st:20171013
---
 package.json | 14 +++++++-------
 1 file changed, 7 insertions(+), 7 deletions(-)

diff --git a/package.json b/package.json
index 23795fb4736..e10ee729509 100644
--- a/package.json
+++ b/package.json
@@ -15,7 +15,7 @@
     "test": "snyk test"
   },
   "dependencies": {
-    "adm-zip": "0.4.7",
+    "adm-zip": "0.4.11",
     "body-parser": "1.9.0",
     "cfenv": "^1.0.4",
     "consolidate": "0.14.5",
@@ -25,27 +25,27 @@
     "ejs-locals": "1.0.2",
     "errorhandler": "1.2.0",
     "express": "4.12.4",
-    "express-fileupload": "0.0.5",
+    "express-fileupload": "1.1.10",
     "express-session": "^1.17.2",
     "file-type": "^8.1.0",
     "hbs": "^4.0.4",
     "humanize-ms": "1.0.1",
-    "jquery": "^2.2.4",
+    "jquery": "^3.5.0",
     "lodash": "4.17.4",
     "marked": "0.3.5",
     "method-override": "latest",
     "moment": "2.15.1",
     "mongodb": "^3.5.9",
-    "mongoose": "4.2.4",
+    "mongoose": "4.3.6",
     "morgan": "latest",
     "ms": "^0.7.1",
     "mysql": "^2.18.1",
-    "npmconf": "0.0.24",
+    "npmconf": "2.1.3",
     "optional": "^0.1.3",
-    "st": "0.2.4",
+    "st": "1.2.2",
     "stream-buffers": "^3.0.1",
     "tap": "^11.1.3",
-    "typeorm": "^0.2.24",
+    "typeorm": "^0.2.25",
     "validator": "^13.5.2"
   },
   "devDependencies": {