[Snyk] Fix for 3 vulnerabilities

[oratory]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • backend/package.json
  • backend/package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) SNYK-JS-ANSIREGEX-1583908	Yes	Proof of Concept
	646/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.5	Server-side Request Forgery (SSRF) SNYK-JS-REQUEST-3361831	Yes	Proof of Concept
	646/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.5	Prototype Pollution SNYK-JS-TOUGHCOOKIE-5672873	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: mongoosastic

The new version differs by 21 commits.

• f241ef8 bump version
• 3d87f57 skip CI on tags
• c03b67c bump rc version
• 686aa7c publish on tags
• 45bc8c7 split into separate workflows
• 282e66a bump rc version
• 3e19f8b direct publish without an action
• 4aaaf55 add publish workflow
• 0f64d86 add publish workflow
• 5fd44c6 Add .npmignore file (#589)
• 105a782 npm script prepare should be used instead of prepublish (#588)
• c3b2228 Integrate github actions CI (#587)
• 0d616be Update README.md
• 90f9f82 Update documentation (#582)
• 7cd2ada Update the example folder (#581)
• 9dfd8dd Pass an existing esClient (#579)
• eae46e5 Refactor esTruncate method (#580)
• bf686b2 Update dependencies (#578)
• cb7148d update dependencies. add editorconfig setup, tweak eslintrc and pass linter to all files.
• c27947c Migrate to TS and tests to jest (#573)
• b9b6343 Update README.md

See the full diff

Package name: tap

The new version differs by 173 commits.

• 8f2baa7 16.0.0
• 65e599e drop support for node v10
• 84fc6df docs: changelog for v16
• e6acf7b update coveralls documentation to say to install it
• 3c7b3ef document coveralls removal in the cli help output
• 43bf1df undocument synonyms
• 1ff75a4 make coveralls an optional peer dep
• 3f1ae47 Add eslint for linting
• 162c1a8 Support Typescript for --before and --after
• 28d2d03 Fix script on using node-tap with codecov
• 3a0e81c docs: fix broken link
• 1b636b2 Add jsonpath-faster
• c4bdeef fix typo `than` to `that`
• 20fbd40 Update Node.js min version to 10.x in CONTRIBUTING
• 90dda0b update cli doc
• 636ab18 15.2.3
• e609d8f docs: changelog for 15.2
• c182328 [email protected]
• f576a60 docs: setting t.snapshotFile
• d9fa241 [email protected]
• a02f33e update cli doc
• d1500b6 15.2.2
• b784d77 tap-parser@11
• 567384e update cli doc

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS)
🦉 Server-side Request Forgery (SSRF)
🦉 Prototype Pollution