From 3257e541dbf6a91488044142c26f4ddeb7e9b692 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Fri, 2 Jan 2026 03:55:20 +0000
Subject: [PATCH] fix: package.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-QS-14724253
---
 package.json | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/package.json b/package.json
index 365c9e8e..c024816d 100644
--- a/package.json
+++ b/package.json
@@ -28,11 +28,11 @@
   "dependencies": {
     "@albertcrowley/winston-pg-native": "github:albertcrowley/winston-pg-native",
     "bcryptjs": "^2.4.3",
-    "body-parser": "^1.19.0",
+    "body-parser": "^1.20.4",
     "cas-authentication": "0.0.8",
     "clone-deep": "^4.0.1",
     "cors": "^2.8.5",
-    "express": "^4.17.1",
+    "express": "^4.22.0",
     "express-session": "^1.17.1",
     "express-winston": "^3.4.0",
     "jsonwebtoken": "^8.5.1",