From 313c7fd96825a05dfae15621ec140e57fa9f4743 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Wed, 1 Apr 2026 16:23:06 +0000
Subject: [PATCH] fix: package.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-LODASH-15869625
- https://snyk.io/vuln/SNYK-JS-LODASH-15869619
---
 package.json | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/package.json b/package.json
index 0b96cf879c8..8c0c9f32550 100644
--- a/package.json
+++ b/package.json
@@ -34,14 +34,14 @@
     "marked": "0.3.17",
     "method-override": "latest",
     "moment": "2.19.3",
-    "mongoose": "4.11.14",
+    "mongoose": "5.7.3",
     "morgan": "latest",
     "ms": "^2.0.0",
     "npmconf": "2.1.3",
     "optional": "^0.1.3",
     "st": "1.2.2",
     "stream-buffers": "^3.0.1",
-    "tap": "^11.1.3",
+    "tap": "^18.0.0",
     "adm-zip": "0.4.11",
     "file-type": "^8.1.0",
     "snyk": "^1.90.0"