From 1c5f8ad261764c4e5dfe713039a71030e0f4e0d6 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Sat, 13 Jul 2024 17:04:13 +0000 Subject: [PATCH] Bump express from 4.16.0 to 4.19.2 in /part2/VulnerableAppTwo Bumps [express](https://github.com/expressjs/express) from 4.16.0 to 4.19.2. - [Release notes](https://github.com/expressjs/express/releases) - [Changelog](https://github.com/expressjs/express/blob/master/History.md) - [Commits](https://github.com/expressjs/express/compare/4.16.0...4.19.2) --- updated-dependencies: - dependency-name: express dependency-type: direct:production ... Signed-off-by: dependabot[bot] --- part2/VulnerableAppTwo/package.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/part2/VulnerableAppTwo/package.json b/part2/VulnerableAppTwo/package.json index e035a27..2ee9baa 100644 --- a/part2/VulnerableAppTwo/package.json +++ b/part2/VulnerableAppTwo/package.json @@ -7,7 +7,7 @@ "start": "node index.js" }, "dependencies": { - "express": "4.16.0", // Known to have vulnerabilities in this version + "express": "4.19.2", // Known to have vulnerabilities in this version "lodash": "4.17.21", // Vulnerable version "marked": "0.3.6", // Vulnerable version "mongoose": "5.0.16", // Known vulnerabilities in this version