From b9a6b0a54774545dfba6ae810287b0f641c0c9f9 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sat, 14 Feb 2026 15:12:54 +0000
Subject: [PATCH] fix: package.json & package-lock.json to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-QS-15268416
---
 package-lock.json | 8 ++++----
 package.json      | 2 +-
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index d20b653c..4f026faf 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -22,7 +22,7 @@
         "multer": "^2.0.2",
         "ono": "^7.1.3",
         "path-to-regexp": "^8.3.0",
-        "qs": "^6.14.1"
+        "qs": "^6.14.2"
       },
       "devDependencies": {
         "@types/cookie-parser": "^1.4.10",
@@ -5478,9 +5478,9 @@
       }
     },
     "node_modules/qs": {
-      "version": "6.14.1",
-      "resolved": "https://registry.npmjs.org/qs/-/qs-6.14.1.tgz",
-      "integrity": "sha512-4EK3+xJl8Ts67nLYNwqw/dsFVnCf+qR7RgXSK9jEEm9unao3njwMDdmsdvoKBKHzxd7tCYz5e5M+SnMjdtXGQQ==",
+      "version": "6.14.2",
+      "resolved": "https://registry.npmjs.org/qs/-/qs-6.14.2.tgz",
+      "integrity": "sha512-V/yCWTTF7VJ9hIh18Ugr2zhJMP01MY7c5kh4J870L7imm6/DIzBsNLTXzMwUA3yZ5b/KBqLx8Kp3uRvd7xSe3Q==",
       "license": "BSD-3-Clause",
       "dependencies": {
         "side-channel": "^1.1.0"
diff --git a/package.json b/package.json
index 548617ed..28f497e9 100644
--- a/package.json
+++ b/package.json
@@ -49,7 +49,7 @@
     "multer": "^2.0.2",
     "ono": "^7.1.3",
     "path-to-regexp": "^8.3.0",
-    "qs": "^6.14.1"
+    "qs": "^6.14.2"
   },
   "devDependencies": {
     "@types/cookie-parser": "^1.4.10",