From 0958d5897ddf0a10b081b805b6a19014a227df0c Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 8 Jul 2022 01:17:48 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-MOMENT-2944238 --- package-lock.json | 6 +++--- package.json | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/package-lock.json b/package-lock.json index 26b18fa..6a8c350 100644 --- a/package-lock.json +++ b/package-lock.json @@ -5732,9 +5732,9 @@ } }, "moment": { - "version": "2.27.0", - "resolved": "https://registry.npmjs.org/moment/-/moment-2.27.0.tgz", - "integrity": "sha512-al0MUK7cpIcglMv3YF13qSgdAIqxHTO7brRtaz3DlSULbqfazqkc5kEjNrLDOM7fsjshoFIihnU8snrP7zUvhQ==" + "version": "2.29.4", + "resolved": "https://registry.npmjs.org/moment/-/moment-2.29.4.tgz", + "integrity": "sha512-5LC9SOxjSc2HF6vO2CyuTDNivEdoz2IvyJJGj6X8DJ0eFyfszE0QiEd+iXmBvUP3WHxSjFH/vIsA0EN00cgr8w==" }, "moment-timezone": { "version": "0.5.31", diff --git a/package.json b/package.json index 0265bf9..e6620e9 100644 --- a/package.json +++ b/package.json @@ -32,7 +32,7 @@ "express": "^4.17.1", "lodash": "^4.17.20", "method-override": "^3.0.0", - "moment": "^2.27.0", + "moment": "^2.29.4", "moment-timezone": "^0.5.31", "mongoose": "^5.9.21", "reflect-metadata": "^0.1.13",