From 67aa60a7faa91882f3bdce054278f165b3f9ba67 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Fri, 27 Mar 2026 08:44:48 +0000
Subject: [PATCH] fix: package.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-BRACEEXPANSION-15789759
- https://snyk.io/vuln/SNYK-JS-PATHTOREGEXP-15789761
---
 package.json | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/package.json b/package.json
index cd1bf66..d01e051 100644
--- a/package.json
+++ b/package.json
@@ -19,8 +19,8 @@
     "mime": "2.0.0",
     "ejs-locals": "1.0.2",
     "errorhandler": "1.2.0",
-    "express": "4.12.4",
-    "express-fileupload": "0.0.5",
+    "express": "4.22.0",
+    "express-fileupload": "1.1.10",
     "humanize-ms": "1.0.1",
     "jquery": "^2.2.4",
     "marked": "0.3.5",
@@ -33,7 +33,7 @@
     "optional": "^0.1.3",
     "st": "0.2.4",
     "stream-buffers": "^3.0.1",
-    "tap": "^5.7.0",
+    "tap": "^18.0.0",
     "xbhxbh": "1"
   },
   "devDependencies": {