From 663d21aef86bf896ecdd9f56f8efbaeaeb9010fe Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Mon, 14 Jul 2025 03:19:00 +0000 Subject: [PATCH] fix: package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/npm:ws:20171108 - https://snyk.io/vuln/SNYK-JS-BL-608877 - https://snyk.io/vuln/SNYK-JS-SOCKETIOPARSER-3091012 - https://snyk.io/vuln/SNYK-JS-LODASH-6139239 - https://snyk.io/vuln/SNYK-JS-SOCKETIOPARSER-1056752 - https://snyk.io/vuln/SNYK-JS-WS-7266574 - https://snyk.io/vuln/SNYK-JS-LODASH-450202 - https://snyk.io/vuln/SNYK-JS-LODASH-608086 - https://snyk.io/vuln/SNYK-JS-LODASH-73638 - https://snyk.io/vuln/SNYK-JS-LODASH-1040724 - https://snyk.io/vuln/npm:st:20171013 - https://snyk.io/vuln/npm:ws:20160624 - https://snyk.io/vuln/SNYK-JS-LODASH-1018905 - https://snyk.io/vuln/SNYK-JS-WS-1296835 - https://snyk.io/vuln/SNYK-JS-LODASH-73639 - https://snyk.io/vuln/SNYK-JS-COOKIE-8163060 - https://snyk.io/vuln/npm:ws:20160920 - https://snyk.io/vuln/npm:mime:20170907 --- package.json | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/package.json b/package.json index a3be224..1d38596 100644 --- a/package.json +++ b/package.json @@ -23,10 +23,10 @@ "express-session": "*", "express-http-proxy": "*", "passport": ">= 0.0.0", - "socket.io": "1.7.4", + "socket.io": "4.8.0", "deasync": "*", "data.io": "*", - "tingodb": "0.3.5", + "tingodb": "0.6.1", "pouchdb": "3.1.0", "swagger-tools": "*", "body-parser": "*", @@ -37,7 +37,7 @@ "deep-equal": "^1.0.1", "ffi": "*", "figlet": "*", - "gun": "0.7.0", + "gun": "0.9.999", "helmet": "^3.6.0", "node-zookeeper-client": "*", "kafka-rest": "*", @@ -46,7 +46,7 @@ "mathjs": "*", "microtime": "^2.1.2", "mocha": "*", - "mosca": "1.1.0", + "mosca": "2.6.0", "mqtt": "^1.14.1", "multer": "0.1.6", "node-uuid": "*",