From 71dda2b3c4e47a21c79888169bdb8b9edf2a7fcc Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 7 Mar 2023 23:51:08 +0000 Subject: [PATCH] fix: upgrade express-validator from 6.6.1 to 6.14.3 Snyk has created this PR to upgrade express-validator from 6.6.1 to 6.14.3. See this package in npm: https://www.npmjs.com/package/express-validator See this project in Snyk: https://app.snyk.io/org/testing-14b/project/a4d79f89-6439-4f23-870d-425f2570f564?utm_source=github&utm_medium=referral&page=upgrade-pr --- package-lock.json | 23 +++++++++++++++-------- package.json | 2 +- 2 files changed, 16 insertions(+), 9 deletions(-) diff --git a/package-lock.json b/package-lock.json index e202315b5..89a24ccdf 100644 --- a/package-lock.json +++ b/package-lock.json @@ -2459,12 +2459,19 @@ } }, "express-validator": { - "version": "6.6.1", - "resolved": "https://registry.npmjs.org/express-validator/-/express-validator-6.6.1.tgz", - "integrity": "sha512-+MrZKJ3eGYXkNF9p9Zf7MS7NkPJFg9MDYATU5c80Cf4F62JdLBIjWxy6481tRC0y1NnC9cgOw8FuN364bWaGhA==", + "version": "6.14.3", + "resolved": "https://registry.npmjs.org/express-validator/-/express-validator-6.14.3.tgz", + "integrity": "sha512-c4b9NMdhskfcLbH/FchsSfCt4Vb14gKzcotG9zLS+VoOJDox57aGhCL+kmAu7cl+ytaSed+HD5jdJhel8DQsdg==", "requires": { - "lodash": "^4.17.19", - "validator": "^13.1.1" + "lodash": "^4.17.21", + "validator": "^13.7.0" + }, + "dependencies": { + "lodash": { + "version": "4.17.21", + "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.21.tgz", + "integrity": "sha512-v2kDEe57lecTulaDIuNTPy3Ry4gLGJ6Z1O3vE1krgXZNrsQ+LFTGHVxVjcXPs17LhbZVGedAJv8XZ1tvj5FvSg==" + } } }, "extend": { @@ -5947,9 +5954,9 @@ } }, "validator": { - "version": "13.1.17", - "resolved": "https://registry.npmjs.org/validator/-/validator-13.1.17.tgz", - "integrity": "sha512-zL5QBoemJ3jYFb2/j38y7ljhwYGXVLUp8H6W1nVxadnAOvUOytec+L7BHh1oBQ82/TzWXHd+GSaxUWp4lROkLg==" + "version": "13.9.0", + "resolved": "https://registry.npmjs.org/validator/-/validator-13.9.0.tgz", + "integrity": "sha512-B+dGG8U3fdtM0/aNK4/X8CXq/EcxU2WPrPEkJGslb47qyHsxmbggTWK0yEA4qnYVNF+nxNlN88o14hIcPmSIEA==" }, "vary": { "version": "1.1.2", diff --git a/package.json b/package.json index 52081d0f7..a10e0cc88 100644 --- a/package.json +++ b/package.json @@ -34,7 +34,7 @@ "dotenv": "^5.0.1", "express": "^4.15.4", "express-jsonschema": "^1.1.6", - "express-validator": "^6.6.1", + "express-validator": "^6.14.3", "helmet": "^3.21.2", "jsonschema": "<1.3.0", "mongoose": "^5.5.14",