From b6201c385cce4502818845a266f63bdd303401e0 Mon Sep 17 00:00:00 2001
From: Carmine DiMascio <cdimascio@gmail.com>
Date: Tue, 15 Oct 2024 20:07:54 -0400
Subject: [PATCH] fix: package.json & package-lock.json to reduce
 vulnerabilities (#993)

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-COOKIE-8163060

Co-authored-by: snyk-bot <snyk-bot@snyk.io>
---
 package-lock.json | 18 ++++++++++--------
 package.json      |  2 +-
 2 files changed, 11 insertions(+), 9 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index 5c80ef5c..ff9a1b6c 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -35,7 +35,7 @@
         "commitizen": "^4.2.5",
         "cookie-parser": "^1.4.6",
         "coveralls": "^3.1.1",
-        "express": "^4.21.0",
+        "express": "^4.21.1",
         "mocha": "^9.2.2",
         "morgan": "^1.10.0",
         "nodemon": "^3.0.1",
@@ -2151,10 +2151,11 @@
       }
     },
     "node_modules/cookie": {
-      "version": "0.6.0",
-      "resolved": "https://registry.npmjs.org/cookie/-/cookie-0.6.0.tgz",
-      "integrity": "sha512-U71cyTamuh1CRNCfpGY6to28lxvNwPG4Guz/EVjgf3Jmzv0vlDp1atT9eS5dDjMYHucpHbWns6Lwf3BKz6svdw==",
+      "version": "0.7.1",
+      "resolved": "https://registry.npmjs.org/cookie/-/cookie-0.7.1.tgz",
+      "integrity": "sha512-6DnInpx7SJ2AK3+CTUE/ZM0vWTUboZCegxhC2xiIydHR9jNuTAASBrfEpHhiGOZw/nX51bHt6YQl8jsGo4y/0w==",
       "dev": true,
+      "license": "MIT",
       "engines": {
         "node": ">= 0.6"
       }
@@ -2575,17 +2576,18 @@
       }
     },
     "node_modules/express": {
-      "version": "4.21.0",
-      "resolved": "https://registry.npmjs.org/express/-/express-4.21.0.tgz",
-      "integrity": "sha512-VqcNGcj/Id5ZT1LZ/cfihi3ttTn+NJmkli2eZADigjq29qTlWi/hAQ43t/VLPq8+UX06FCEx3ByOYet6ZFblng==",
+      "version": "4.21.1",
+      "resolved": "https://registry.npmjs.org/express/-/express-4.21.1.tgz",
+      "integrity": "sha512-YSFlK1Ee0/GC8QaO91tHcDxJiE/X4FbpAyQWkxAvG6AXCuR65YzK8ua6D9hvi/TzUfZMpc+BwuM1IPw8fmQBiQ==",
       "dev": true,
+      "license": "MIT",
       "dependencies": {
         "accepts": "~1.3.8",
         "array-flatten": "1.1.1",
         "body-parser": "1.20.3",
         "content-disposition": "0.5.4",
         "content-type": "~1.0.4",
-        "cookie": "0.6.0",
+        "cookie": "0.7.1",
         "cookie-signature": "1.0.6",
         "debug": "2.6.9",
         "depd": "2.0.0",
diff --git a/package.json b/package.json
index c08d143e..864c7824 100644
--- a/package.json
+++ b/package.json
@@ -59,7 +59,7 @@
     "commitizen": "^4.2.5",
     "cookie-parser": "^1.4.6",
     "coveralls": "^3.1.1",
-    "express": "^4.21.0",
+    "express": "^4.21.1",
     "mocha": "^9.2.2",
     "morgan": "^1.10.0",
     "nodemon": "^3.0.1",