diff --git a/package-lock.json b/package-lock.json
index 5daa4380..3a952731 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -7225,9 +7225,9 @@
       }
     },
     "convict": {
-      "version": "6.2.3",
-      "resolved": "https://registry.npmjs.org/convict/-/convict-6.2.3.tgz",
-      "integrity": "sha512-mTY04Qr7WrqiXifdeUYXr4/+Te4hPFWDvz6J2FVIKCLc2XBhq63VOSSYAKJ+unhZAYOAjmEdNswTOeHt7s++pQ==",
+      "version": "6.2.4",
+      "resolved": "https://registry.npmjs.org/convict/-/convict-6.2.4.tgz",
+      "integrity": "sha512-qN60BAwdMVdofckX7AlohVJ2x9UvjTNoKVXCL2LxFk1l7757EJqf1nySdMkPQer0bt8kQ5lQiyZ9/2NvrFBuwQ==",
       "requires": {
         "lodash.clonedeep": "^4.5.0",
         "yargs-parser": "^20.2.7"
diff --git a/package.json b/package.json
index 4e1c79ec..10dd4ad4 100644
--- a/package.json
+++ b/package.json
@@ -47,7 +47,7 @@
   "dependencies": {
     "@babel/runtime": "^7.18.3",
     "@tribeca/auth-middleware": "^0.1.5",
-    "convict": "^6.2.3",
+    "convict": "^6.2.4",
     "express": "^4.18.1",
     "firebase-admin": "^10.3.0",
     "mongodb": "^3.6.10",