From b0e7b232a27f1c2d3a2dbd129f66dc88925e6d3b Mon Sep 17 00:00:00 2001 From: "snyk-io[bot]" <141718529+snyk-io[bot]@users.noreply.github.com> Date: Wed, 3 Dec 2025 22:10:17 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-NODEMAILER-14157156 --- package-lock.json | 9 +++++---- package.json | 2 +- 2 files changed, 6 insertions(+), 5 deletions(-) diff --git a/package-lock.json b/package-lock.json index fac3884771..0763a34899 100644 --- a/package-lock.json +++ b/package-lock.json @@ -117,7 +117,7 @@ "next": "^14.2.14", "next-plausible": "^3.12.0", "node-telegram-bot-api": "^0.66.0", - "nodemailer": "^6.9.15", + "nodemailer": "^7.0.11", "nostr-tools": "^2.10.4", "nx": "19.7.2", "openai": "^4.47.1", @@ -36935,9 +36935,10 @@ } }, "node_modules/nodemailer": { - "version": "6.10.0", - "resolved": "https://registry.npmjs.org/nodemailer/-/nodemailer-6.10.0.tgz", - "integrity": "sha512-SQ3wZCExjeSatLE/HBaXS5vqUOQk6GtBdIIKxiFdmm01mOQZX/POJkO3SUX1wDiYcwUOJwT23scFSC9fY2H8IA==", + "version": "7.0.11", + "resolved": "https://registry.npmjs.org/nodemailer/-/nodemailer-7.0.11.tgz", + "integrity": "sha512-gnXhNRE0FNhD7wPSCGhdNh46Hs6nm+uTyg+Kq0cZukNQiYdnCsoQjodNP9BQVG9XrcK/v6/MgpAPBUFyzh9pvw==", + "license": "MIT-0", "engines": { "node": ">=6.0.0" } diff --git a/package.json b/package.json index 8b45b02047..b27aae54de 100644 --- a/package.json +++ b/package.json @@ -140,7 +140,7 @@ "next": "^14.2.14", "next-plausible": "^3.12.0", "node-telegram-bot-api": "^0.66.0", - "nodemailer": "^6.9.15", + "nodemailer": "^7.0.11", "nostr-tools": "^2.10.4", "nx": "19.7.2", "openai": "^4.47.1",