fix(cmd-api-server): upgrade socket.io - CVE-2022-21676

Upgrade the version of socket.io to 4.4.1 which contains the patches for the CVE mentioned in the title. Fixes #1914 Signed-off-by: Peter Somogyvari <[email protected]>
hyperledger-cacti · Mar 14, 2022 · 8dab954 · 8dab954
1 parent 618bf47
commit 8dab954
Show file tree

Hide file tree

Showing 2 changed files with 347 additions and 296 deletions.
diff --git a/packages/cactus-cmd-api-server/package.json b/packages/cactus-cmd-api-server/package.json
@@ -83,8 +83,8 @@
     "run-time-error": "1.4.0",
     "rxjs": "7.3.0",
     "semver": "7.3.5",
-    "socket.io": "4.1.3",
-    "socket.io-client": "4.1.3",
+    "socket.io": "4.4.1",
+    "socket.io-client": "4.4.1",
     "typescript-optional": "2.0.1",
     "uuid": "8.3.2"
   },