From 0f207bda610d10c2a1e8eed7c577b42d25755fdf Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Fri, 2 Jan 2026 09:07:36 +0000
Subject: [PATCH] fix: package.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-QS-14724253
---
 package.json | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/package.json b/package.json
index f7c83bb..0b242f9 100644
--- a/package.json
+++ b/package.json
@@ -34,18 +34,18 @@
     "axios": "^0.18.0",
     "axios-cache-adapter": "^2.1.1",
     "bcryptjs": "^2.4.3",
-    "body-parser": "^1.18.3",
+    "body-parser": "^1.20.4",
     "btoa": "^1.2.1",
     "compression": "^1.7.3",
     "cors": "^2.8.5",
     "cryptiles": ">=4.1.2",
     "debug": "^4.1.1",
-    "express": "^4.16.4",
+    "express": "^4.22.0",
     "express-rate-limit": "^3.2.0",
     "express-session": "^1.15.6",
     "express-winston": "^3.0.0",
     "hoek": ">=5.0.3",
-    "imdb-api": "^4.0.2",
+    "imdb-api": "^4.2.0",
     "ip": "^1.1.5",
     "is-docker": "^1.1.0",
     "json-to-form-data": "^1.0.0",
@@ -55,7 +55,7 @@
     "multer": "^1.4.0",
     "nat-upnp": "^1.1.1",
     "node-tvdb": "^4.1.0",
-    "npm": "^6.9.0",
+    "npm": "^7.0.0",
     "passport": "^0.4.0",
     "passport-jwt": "^4.0.0",
     "plex-api": "^5.2.1",