From 7d5c84d9b1fd68c6b677c05f0245f4a64d70ba6b Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 15 Jul 2025 00:36:22 +0000
Subject: [PATCH] fix: spec/package.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-COOKIE-8163060
- https://snyk.io/vuln/SNYK-JS-PATHTOREGEXP-8482416
- https://snyk.io/vuln/SNYK-JS-SERIALIZEJAVASCRIPT-6147607
- https://snyk.io/vuln/SNYK-JS-INFLIGHT-6095116
- https://snyk.io/vuln/SNYK-JS-BRACEEXPANSION-9789073
---
 spec/package.json | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/spec/package.json b/spec/package.json
index 797b4d8bc5e46..9ae97af627aa4 100644
--- a/spec/package.json
+++ b/spec/package.json
@@ -18,7 +18,7 @@
     "@types/split": "^1.0.5",
     "@types/uuid": "^3.4.6",
     "@types/w3c-web-serial": "^1.0.7",
-    "express": "^4.20.0",
+    "express": "^4.21.2",
     "@electron-ci/echo": "file:./fixtures/native-addon/echo",
     "@electron-ci/is-valid-window": "file:./is-valid-window",
     "@electron-ci/uv-dlopen": "file:./fixtures/native-addon/uv-dlopen/",
@@ -37,10 +37,10 @@
     "dirty-chai": "^2.0.1",
     "graceful-fs": "^4.1.15",
     "mkdirp": "^0.5.1",
-    "mocha": "^10.0.0",
+    "mocha": "^11.0.1",
     "mocha-junit-reporter": "^1.18.0",
     "mocha-multi-reporters": "^1.1.7",
-    "pdfjs-dist": "^4.2.67",
+    "pdfjs-dist": "^4.4.168",
     "ps-list": "^7.0.0",
     "q": "^1.5.1",
     "send": "^0.19.0",