From fec3f2fbdec1d52f375ccd67203d0cbd5829aba4 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 17 May 2024 03:10:09 +0000 Subject: [PATCH] fix: upgrade cookie-parser from 1.4.4 to 1.4.6 Snyk has created this PR to upgrade cookie-parser from 1.4.4 to 1.4.6. See this package in npm: https://www.npmjs.com/package/cookie-parser See this project in Snyk: https://app.snyk.io/org/rd-station-open-source/project/8f0afc61-410a-49b6-a74a-f83f3b700860?utm_source=github&utm_medium=referral&page=upgrade-pr --- server/package-lock.json | 15 +++++++++++---- server/package.json | 2 +- 2 files changed, 12 insertions(+), 5 deletions(-) diff --git a/server/package-lock.json b/server/package-lock.json index 12571b8..3dafcbd 100644 --- a/server/package-lock.json +++ b/server/package-lock.json @@ -240,12 +240,19 @@ "integrity": "sha1-5+Ch+e9DtMi6klxcWpboBtFoc7s=" }, "cookie-parser": { - "version": "1.4.4", - "resolved": "https://registry.npmjs.org/cookie-parser/-/cookie-parser-1.4.4.tgz", - "integrity": "sha512-lo13tqF3JEtFO7FyA49CqbhaFkskRJ0u/UAiINgrIXeRCY41c88/zxtrECl8AKH3B0hj9q10+h3Kt8I7KlW4tw==", + "version": "1.4.6", + "resolved": "https://registry.npmjs.org/cookie-parser/-/cookie-parser-1.4.6.tgz", + "integrity": "sha512-z3IzaNjdwUC2olLIB5/ITd0/setiaFMLYiZJle7xg5Fe9KWAceil7xszYfHHBtDFYLSgJduS2Ty0P1uJdPDJeA==", "requires": { - "cookie": "0.3.1", + "cookie": "0.4.1", "cookie-signature": "1.0.6" + }, + "dependencies": { + "cookie": { + "version": "0.4.1", + "resolved": "https://registry.npmjs.org/cookie/-/cookie-0.4.1.tgz", + "integrity": "sha512-ZwrFkGJxUR3EIoXtO+yVE69Eb7KlixbaeAWfBQB9vVsNn/o+Yw69gBWSSDK825hQNdN+wF8zELf3dFNl/kxkUA==" + } } }, "cookie-signature": { diff --git a/server/package.json b/server/package.json index 36e65e3..e05c569 100644 --- a/server/package.json +++ b/server/package.json @@ -6,7 +6,7 @@ "start": "node ./bin/www" }, "dependencies": { - "cookie-parser": "~1.4.4", + "cookie-parser": "~1.4.6", "debug": "~2.6.9", "express": "~4.16.1", "express-http-proxy": "^1.6.0",