From 920eb360058f6a9638a731222f8ab71fa7024585 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 10 Dec 2024 02:46:41 +0000
Subject: [PATCH] fix: package.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-KERBEROS-568900
- https://snyk.io/vuln/SNYK-JS-MONGOOSE-5777721
- https://snyk.io/vuln/SNYK-JS-MONGOOSE-8446504
- https://snyk.io/vuln/SNYK-JS-PATHTOREGEXP-8482416
- https://snyk.io/vuln/SNYK-JS-MQUERY-1089718
- https://snyk.io/vuln/SNYK-JS-QS-3153490
- https://snyk.io/vuln/npm:marked:20180225
- https://snyk.io/vuln/SNYK-JS-INI-1048974
- https://snyk.io/vuln/SNYK-JS-MQUERY-1050858
- https://snyk.io/vuln/SNYK-JS-MONGOOSE-2961688
- https://snyk.io/vuln/SNYK-JS-PATHTOREGEXP-7925106
- https://snyk.io/vuln/npm:marked:20150520
- https://snyk.io/vuln/npm:mongoose:20160116
- https://snyk.io/vuln/SNYK-JS-BODYPARSER-7926860
- https://snyk.io/vuln/SNYK-JS-MONGOOSE-1086688
- https://snyk.io/vuln/SNYK-JS-MPATH-1577289
- https://snyk.io/vuln/SNYK-JS-MONGODB-473855
- https://snyk.io/vuln/npm:fresh:20170908
- https://snyk.io/vuln/npm:marked:20170112
- https://snyk.io/vuln/npm:marked:20170815
- https://snyk.io/vuln/npm:marked:20170907
- https://snyk.io/vuln/npm:negotiator:20160616
- https://snyk.io/vuln/npm:qs:20170213
- https://snyk.io/vuln/SNYK-JS-MARKED-2342073
- https://snyk.io/vuln/SNYK-JS-MARKED-2342082
- https://snyk.io/vuln/SNYK-JS-COOKIE-8163060
- https://snyk.io/vuln/SNYK-JS-MARKED-584281
- https://snyk.io/vuln/SNYK-JS-EXPRESS-6474509
- https://snyk.io/vuln/SNYK-JS-MONGOOSE-472486
- https://snyk.io/vuln/npm:debug:20170905
- https://snyk.io/vuln/SNYK-JS-MARKED-174116
- https://snyk.io/vuln/SNYK-JS-MARKED-451540
- https://snyk.io/vuln/npm:ms:20151024
- https://snyk.io/vuln/SNYK-JS-EXPRESS-7926867
- https://snyk.io/vuln/npm:marked:20170815-1
- https://snyk.io/vuln/npm:mime:20170907
- https://snyk.io/vuln/npm:ms:20170412
- https://snyk.io/vuln/SNYK-JS-SEND-7926862
- https://snyk.io/vuln/SNYK-JS-SERVESTATIC-7926865
---
 package.json | 18 +++++++++---------
 1 file changed, 9 insertions(+), 9 deletions(-)

diff --git a/package.json b/package.json
index 108878acee..61f9ba3c59 100644
--- a/package.json
+++ b/package.json
@@ -13,24 +13,24 @@
     "cleanup": "mongo express-todo --eval 'db.todos.remove({});'"
   },
   "dependencies": {
-    "body-parser": "1.9.0",
-    "cookie-parser": "1.3.3",
+    "body-parser": "1.20.3",
+    "cookie-parser": "1.4.7",
     "ejs": "1.0.0",
     "ejs-locals": "1.0.2",
     "errorhandler": "1.2.0",
-    "express": "4.12.4",
+    "express": "4.21.2",
     "express-fileupload": "0.0.5",
-    "humanize-ms": "1.0.1",
+    "humanize-ms": "1.2.1",
     "jquery": "^2.2.4",
-    "marked": "0.3.5",
+    "marked": "4.0.10",
     "method-override": "latest",
     "moment": "2.15.1",
-    "mongoose": "4.2.4",
+    "mongoose": "8.8.3",
     "morgan": "latest",
-    "ms": "^0.7.1",
-    "npmconf": "0.0.24",
+    "ms": "^2.0.0",
+    "npmconf": "2.1.3",
     "optional": "^0.1.3",
-    "st": "0.2.4",
+    "st": "1.2.1",
     "stream-buffers": "^3.0.1",
     "tap": "^5.7.0"
   },