From 71bd7d45179d60c3f18552b835007a6679769737 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 27 Nov 2025 12:02:34 +0000
Subject: [PATCH] fix: package.json & yarn.lock to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-NODEFORGE-14114940
---
 package.json | 2 +-
 yarn.lock    | 8 ++++----
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/package.json b/package.json
index d645c62..b44dc29 100644
--- a/package.json
+++ b/package.json
@@ -57,7 +57,7 @@
     "mongoose": "^4.0.8",
     "mongoose-times": "^0.1.0",
     "monitr": "1.0.0",
-    "node-forge": "^0.7.1",
+    "node-forge": "^1.3.2",
     "nodemon": "^1.9.1",
     "pbf": "^3.0.2",
     "pg": "^7.4.0",
diff --git a/yarn.lock b/yarn.lock
index 28572c5..1b2bfb7 100644
--- a/yarn.lock
+++ b/yarn.lock
@@ -4163,10 +4163,10 @@ nib@~1.1.2:
   dependencies:
     stylus "0.54.5"
 
-node-forge@^0.7.1:
-  version "0.7.1"
-  resolved "https://registry.yarnpkg.com/node-forge/-/node-forge-0.7.1.tgz#9da611ea08982f4b94206b3beb4cc9665f20c300"
-  integrity sha1-naYR6giYL0uUIGs760zJZl8gwwA=
+node-forge@^1.3.2:
+  version "1.3.2"
+  resolved "https://registry.yarnpkg.com/node-forge/-/node-forge-1.3.2.tgz#d0d2659a26eef778bf84d73e7f55c08144ee7750"
+  integrity sha512-6xKiQ+cph9KImrRh0VsjH2d8/GXA4FIMlgU4B757iI1ApvcyA9VlouP0yZJha01V+huImO+kKMU7ih+2+E14fw==
 
 node-pre-gyp@^0.6.36, node-pre-gyp@~0.6.30, node-pre-gyp@~0.6.36, node-pre-gyp@~0.6.38:
   version "0.6.39"