From 51482de18b00bce47f87662d5c1c822697ba9faa Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 8 Jul 2022 04:37:00 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-MOMENT-2944238 --- package-lock.json | 6 +++--- package.json | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/package-lock.json b/package-lock.json index 92f25f1927..b020386cc2 100644 --- a/package-lock.json +++ b/package-lock.json @@ -3580,9 +3580,9 @@ } }, "moment": { - "version": "2.19.3", - "resolved": "https://registry.npmjs.org/moment/-/moment-2.19.3.tgz", - "integrity": "sha1-vbmdJw1tf9p4zA+6zoVeJ/59pp8=" + "version": "2.29.4", + "resolved": "https://registry.npmjs.org/moment/-/moment-2.29.4.tgz", + "integrity": "sha512-5LC9SOxjSc2HF6vO2CyuTDNivEdoz2IvyJJGj6X8DJ0eFyfszE0QiEd+iXmBvUP3WHxSjFH/vIsA0EN00cgr8w==" }, "mongodb": { "version": "3.3.2", diff --git a/package.json b/package.json index 13e3f43fdf..e5d0e99816 100644 --- a/package.json +++ b/package.json @@ -37,7 +37,7 @@ "lodash": "4.17.12", "marked": "0.6.2", "method-override": "latest", - "moment": "2.19.3", + "moment": "2.29.4", "mongoose": "5.7.5", "morgan": "latest", "ms": "^2.0.0",