From 720d9c549828ca66898e9893c1d648d095972a89 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 30 Mar 2026 15:51:27 +0000 Subject: [PATCH] Bump the npm_and_yarn group across 3 directories with 2 updates Bumps the npm_and_yarn group with 1 update in the / directory: [nodemailer](https://github.com/nodemailer/nodemailer). Bumps the npm_and_yarn group with 1 update in the /analytics directory: [path-to-regexp](https://github.com/pillarjs/path-to-regexp). Bumps the npm_and_yarn group with 1 update in the /backend directory: [nodemailer](https://github.com/nodemailer/nodemailer). Updates `nodemailer` from 7.0.3 to 8.0.4 - [Release notes](https://github.com/nodemailer/nodemailer/releases) - [Changelog](https://github.com/nodemailer/nodemailer/blob/master/CHANGELOG.md) - [Commits](https://github.com/nodemailer/nodemailer/compare/v7.0.3...v8.0.4) Updates `path-to-regexp` from 0.1.12 to 0.1.13 - [Release notes](https://github.com/pillarjs/path-to-regexp/releases) - [Changelog](https://github.com/pillarjs/path-to-regexp/blob/v.0.1.13/History.md) - [Commits](https://github.com/pillarjs/path-to-regexp/compare/v0.1.12...v.0.1.13) Updates `nodemailer` from 7.0.13 to 8.0.4 - [Release notes](https://github.com/nodemailer/nodemailer/releases) - [Changelog](https://github.com/nodemailer/nodemailer/blob/master/CHANGELOG.md) - [Commits](https://github.com/nodemailer/nodemailer/compare/v7.0.3...v8.0.4) --- updated-dependencies: - dependency-name: nodemailer dependency-version: 8.0.4 dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: path-to-regexp dependency-version: 0.1.13 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: nodemailer dependency-version: 8.0.4 dependency-type: direct:production dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] --- analytics/package-lock.json | 49 ++++++++++++++++++++++++------------- analytics/package.json | 2 +- backend/package.json | 2 +- package-lock.json | 7 +++--- 4 files changed, 38 insertions(+), 22 deletions(-) diff --git a/analytics/package-lock.json b/analytics/package-lock.json index f24b1b3..5c154b3 100644 --- a/analytics/package-lock.json +++ b/analytics/package-lock.json @@ -10,7 +10,7 @@ "dependencies": { "@supabase/supabase-js": "^2.39.0", "dotenv": "^16.3.1", - "express": "^4.18.2" + "express": "^4.22.1" }, "engines": { "node": ">=16.0.0" @@ -347,39 +347,39 @@ } }, "node_modules/express": { - "version": "4.21.2", - "resolved": "https://registry.npmjs.org/express/-/express-4.21.2.tgz", - "integrity": "sha512-28HqgMZAmih1Czt9ny7qr6ek2qddF4FclbMzwhCREB6OFfH+rXAnuNCwo1/wFvrtbgsQDb4kSbX9de9lFbrXnA==", + "version": "4.22.1", + "resolved": "https://registry.npmjs.org/express/-/express-4.22.1.tgz", + "integrity": "sha512-F2X8g9P1X7uCPZMA3MVf9wcTqlyNp7IhH5qPCI0izhaOIYXaW9L535tGA3qmjRzpH+bZczqq7hVKxTR4NWnu+g==", "license": "MIT", "dependencies": { "accepts": "~1.3.8", "array-flatten": "1.1.1", - "body-parser": "1.20.3", - "content-disposition": "0.5.4", + "body-parser": "~1.20.3", + "content-disposition": "~0.5.4", "content-type": "~1.0.4", - "cookie": "0.7.1", - "cookie-signature": "1.0.6", + "cookie": "~0.7.1", + "cookie-signature": "~1.0.6", "debug": "2.6.9", "depd": "2.0.0", "encodeurl": "~2.0.0", "escape-html": "~1.0.3", "etag": "~1.8.1", - "finalhandler": "1.3.1", - "fresh": "0.5.2", - "http-errors": "2.0.0", + "finalhandler": "~1.3.1", + "fresh": "~0.5.2", + "http-errors": "~2.0.0", "merge-descriptors": "1.0.3", "methods": "~1.1.2", - "on-finished": "2.4.1", + "on-finished": "~2.4.1", "parseurl": "~1.3.3", - "path-to-regexp": "0.1.12", + "path-to-regexp": "~0.1.12", "proxy-addr": "~2.0.7", - "qs": "6.13.0", + "qs": "~6.14.0", "range-parser": "~1.2.1", "safe-buffer": "5.2.1", - "send": "0.19.0", - "serve-static": "1.16.2", + "send": "~0.19.0", + "serve-static": "~1.16.2", "setprototypeof": "1.2.0", - "statuses": "2.0.1", + "statuses": "~2.0.1", "type-is": "~1.6.18", "utils-merge": "1.0.1", "vary": "~1.1.2" @@ -392,6 +392,21 @@ "url": "https://opencollective.com/express" } }, + "node_modules/express/node_modules/qs": { + "version": "6.14.2", + "resolved": "https://registry.npmjs.org/qs/-/qs-6.14.2.tgz", + "integrity": "sha512-V/yCWTTF7VJ9hIh18Ugr2zhJMP01MY7c5kh4J870L7imm6/DIzBsNLTXzMwUA3yZ5b/KBqLx8Kp3uRvd7xSe3Q==", + "license": "BSD-3-Clause", + "dependencies": { + "side-channel": "^1.1.0" + }, + "engines": { + "node": ">=0.6" + }, + "funding": { + "url": "https://github.com/sponsors/ljharb" + } + }, "node_modules/finalhandler": { "version": "1.3.1", "resolved": "https://registry.npmjs.org/finalhandler/-/finalhandler-1.3.1.tgz", diff --git a/analytics/package.json b/analytics/package.json index d689a7f..edc8082 100644 --- a/analytics/package.json +++ b/analytics/package.json @@ -9,7 +9,7 @@ }, "dependencies": { "@supabase/supabase-js": "^2.39.0", - "express": "^4.18.2", + "express": "^4.22.1", "dotenv": "^16.3.1" }, "engines": { diff --git a/backend/package.json b/backend/package.json index 1f22341..327cf8e 100644 --- a/backend/package.json +++ b/backend/package.json @@ -38,7 +38,7 @@ "helmet": "^7.1.0", "jsdom": "^23.2.0", "jsonwebtoken": "^9.0.2", - "nodemailer": "^7.0.3", + "nodemailer": "^8.0.4", "pg": "^8.16.2", "uuid": "^9.0.1", "winston": "^3.17.0" diff --git a/package-lock.json b/package-lock.json index c90ec03..d857064 100644 --- a/package-lock.json +++ b/package-lock.json @@ -30,7 +30,7 @@ "helmet": "^7.1.0", "jsdom": "^23.2.0", "jsonwebtoken": "^9.0.2", - "nodemailer": "^7.0.3", + "nodemailer": "^8.0.4", "pg": "^8.16.2", "uuid": "^9.0.1", "winston": "^3.17.0" @@ -4573,7 +4573,6 @@ }, "node_modules/fsevents": { "version": "2.3.3", - "dev": true, "license": "MIT", "optional": true, "os": [ @@ -6283,7 +6282,9 @@ "license": "MIT" }, "node_modules/nodemailer": { - "version": "7.0.3", + "version": "8.0.4", + "resolved": "https://registry.npmjs.org/nodemailer/-/nodemailer-8.0.4.tgz", + "integrity": "sha512-k+jf6N8PfQJ0Fe8ZhJlgqU5qJU44Lpvp2yvidH3vp1lPnVQMgi4yEEMPXg5eJS1gFIJTVq1NHBk7Ia9ARdSBdQ==", "license": "MIT-0", "engines": { "node": ">=6.0.0"