From 8dcba710443d2f70fe4a8b6e53a32e3d5d6022a4 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Mon, 30 Jun 2025 10:34:20 +0000 Subject: [PATCH] fix: packages/deep-microservice-subscription/package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-IP-6240864 - https://snyk.io/vuln/SNYK-JS-SEMVER-3247795 - https://snyk.io/vuln/SNYK-JS-PATHTOREGEXP-7925106 - https://snyk.io/vuln/SNYK-JS-PATHTOREGEXP-8482416 - https://snyk.io/vuln/SNYK-JS-IP-7148531 - https://snyk.io/vuln/SNYK-JS-TAR-6476909 - https://snyk.io/vuln/SNYK-JS-INFLIGHT-6095116 - https://snyk.io/vuln/SNYK-JS-BODYPARSER-7926860 - https://snyk.io/vuln/SNYK-JS-HTTPCACHESEMANTICS-3248783 - https://snyk.io/vuln/SNYK-JS-COOKIE-8163060 - https://snyk.io/vuln/SNYK-JS-EXPRESS-6474509 - https://snyk.io/vuln/SNYK-JS-BRACEEXPANSION-9789073 - https://snyk.io/vuln/SNYK-JS-EXPRESS-7926867 - https://snyk.io/vuln/SNYK-JS-SEND-7926862 - https://snyk.io/vuln/SNYK-JS-SERVESTATIC-7926865 --- packages/deep-microservice-subscription/package.json | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/packages/deep-microservice-subscription/package.json b/packages/deep-microservice-subscription/package.json index dec312db9..236cd963a 100644 --- a/packages/deep-microservice-subscription/package.json +++ b/packages/deep-microservice-subscription/package.json @@ -21,17 +21,17 @@ "devDependencies": { "c8": "^7.11.3", "chai": "^4.3.4", - "mocha": "^9.1.3", + "mocha": "^11.0.1", "sinon": "^12.0.1" }, "dependencies": { - "@apollo/gateway": "^0.38.2", + "@apollo/gateway": "^2.2.0", "@graphql-tools/schema": "^8.3.1", "@thinkdeep/get-public-ip": "^1.0.0", "@thinkdeep/graphql-kafka-subscriptions": "^0.4.1", "@thinkdeep/model": "file:../model", - "apollo-server": "3.8.0", - "apollo-server-express": "^3.5.0", + "apollo-server": "3.13.0", + "apollo-server-express": "^3.13.0", "cors": "^2.8.5", "express": "^4.17.1", "express-jwt": "^6.1.0",