From b3020203db3192e57c78e83b881d0e378948f961 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Mon, 11 Aug 2025 09:17:42 +0000
Subject: [PATCH] fix: upgrade morgan from 1.9.1 to 1.10.1

Snyk has created this PR to upgrade morgan from 1.9.1 to 1.10.1.

See this package in npm:
morgan

See this project in Snyk:
https://app.snyk.io/org/nodegoat-UJHKJiFMYDN3u6i4aKpG6k/project/bf71d655-b34f-45a7-ad9c-f727198199c2?utm_source=github&utm_medium=referral&page=upgrade-pr
---
 packages/services/api/package-lock.json | 25 ++++++++++++++++---------
 packages/services/api/package.json      |  2 +-
 2 files changed, 17 insertions(+), 10 deletions(-)

diff --git a/packages/services/api/package-lock.json b/packages/services/api/package-lock.json
index e56b0be4..d5f162bb 100644
--- a/packages/services/api/package-lock.json
+++ b/packages/services/api/package-lock.json
@@ -285,15 +285,22 @@
       "integrity": "sha512-Yo/7qQU4/EyIS8YDFSeenIvXxZN+ld7YdV9LqFVQJzTLye8unujAWPZ4NWKfFA+RNjh+wvTWKY9Z3E5XM6ZZiQ=="
     },
     "morgan": {
-      "version": "1.9.1",
-      "resolved": "https://registry.npmjs.org/morgan/-/morgan-1.9.1.tgz",
-      "integrity": "sha512-HQStPIV4y3afTiCYVxirakhlCfGkI161c76kKFca7Fk1JusM//Qeo1ej2XaMniiNeaZklMVrh3vTtIzpzwbpmA==",
+      "version": "1.10.1",
+      "resolved": "https://registry.npmjs.org/morgan/-/morgan-1.10.1.tgz",
+      "integrity": "sha512-223dMRJtI/l25dJKWpgij2cMtywuG/WiUKXdvwfbhGKBhy1puASqXwFzmWZ7+K73vUPoR7SS2Qz2cI/g9MKw0A==",
       "requires": {
-        "basic-auth": "~2.0.0",
+        "basic-auth": "~2.0.1",
         "debug": "2.6.9",
-        "depd": "~1.1.2",
+        "depd": "~2.0.0",
         "on-finished": "~2.3.0",
-        "on-headers": "~1.0.1"
+        "on-headers": "~1.1.0"
+      },
+      "dependencies": {
+        "depd": {
+          "version": "2.0.0",
+          "resolved": "https://registry.npmjs.org/depd/-/depd-2.0.0.tgz",
+          "integrity": "sha512-g7nH6P6dyDioJogAAGprGpCtVImJhpPk/roCzdb3fIh61/s/nPsfR6onyMwkCAR/OlC3yBC0lESvUoQEAssIrw=="
+        }
       }
     },
     "mpath": {
@@ -347,9 +354,9 @@
       }
     },
     "on-headers": {
-      "version": "1.0.2",
-      "resolved": "https://registry.npmjs.org/on-headers/-/on-headers-1.0.2.tgz",
-      "integrity": "sha512-pZAE+FJLoyITytdqK0U5s+FIpjN0JP3OzFi/u8Rx+EV5/W+JTWGXG8xFzevE7AjBfDqHv/8vL8qQsIhHnqRkrA=="
+      "version": "1.1.0",
+      "resolved": "https://registry.npmjs.org/on-headers/-/on-headers-1.1.0.tgz",
+      "integrity": "sha512-737ZY3yNnXy37FHkQxPzt4UZ2UWPWiCZWLvFZ4fu5cueciegX0zGPnrlY6bwRg4FdQOe9YU8MkmJwGhoMybl8A=="
     },
     "parseurl": {
       "version": "1.3.3",
diff --git a/packages/services/api/package.json b/packages/services/api/package.json
index 7508f6fb..598c3b8f 100644
--- a/packages/services/api/package.json
+++ b/packages/services/api/package.json
@@ -10,6 +10,6 @@
     "express": "~4.16.0",
     "http-errors": "~1.6.2",
     "mongoose": "^5.7.5",
-    "morgan": "~1.9.0"
+    "morgan": "~1.10.1"
   }
 }