From 94205ad612ff65cd5723b1c147f6bb3be9d33f0f Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sat, 19 Jul 2025 17:29:58 +0000
Subject: [PATCH] fix: package.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-ONHEADERS-10773729
---
 package.json | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/package.json b/package.json
index c1fd5da7..851ddf23 100644
--- a/package.json
+++ b/package.json
@@ -22,7 +22,7 @@
     "email-addresses": "2.0.2",
     "express": "4.14.0",
     "express-domain-middleware": "0.1.0",
-    "express-session": "1.14.1",
+    "express-session": "1.18.2",
     "extend": "3.0.0",
     "fs-extra": "0.30.0",
     "hash_file": "0.1.1",
@@ -36,7 +36,7 @@
     "mongoconfig": "1.1.0",
     "mongodb": "2.2.10",
     "mongoose": "4.6.0",
-    "morgan": "1.7.0",
+    "morgan": "1.10.1",
     "node-uuid": "1.4.7",
     "om-email-invitation": "0.0.4",
     "om-invitation": "0.0.2",