fix: package.json & package-lock.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-NODEMAILER-6219989
2025-01-12 02:47:39 +08:00 · 2024-02-02 22:25:03 +00:00 · 2024-02-02 22:25:03 +00:00 · 89c1cfd97b
commit 89c1cfd97b
parent 84ab0c09dc
2 changed files with 31 additions and 9 deletions
--- a/package-lock.json
+++ b/package-lock.json
@ -62,7 +62,7 @@
                "restify-logger": "2.0.1",
                "search-string": "3.1.0",
                "seq-index": "1.1.0",
-                "smtp-server": "3.13.0",
+                "smtp-server": "^3.13.2",
                "speakeasy": "2.0.0",
                "undici": "5.28.2",
                "unix-crypt-td-js": "1.1.4",
@ -9009,22 +9009,23 @@
            }
        },
        "node_modules/smtp-server": {
-            "version": "3.13.0",
-            "resolved": "https://registry.npmjs.org/smtp-server/-/smtp-server-3.13.0.tgz",
-            "integrity": "sha512-thVFqpwrHIJ25rXjXA6RYFUO35el2O+X7WJ006qMVAyFs5Ss6XGPJASg7Fh1QvT28ADIv9hGGXmgR+kaSEikwQ==",
+            "version": "3.13.2",
+            "resolved": "https://registry.npmjs.org/smtp-server/-/smtp-server-3.13.2.tgz",
+            "integrity": "sha512-MWHAmsIlrfffQ75RDruOr5DhOJF8sPeG4iSW8a0euhOjaV107OGaRo30RXmmnmoKxS1mvaL+dtSEKbgev/9YeQ==",
            "dependencies": {
                "base32.js": "0.1.0",
                "ipv6-normalize": "1.0.1",
-                "nodemailer": "6.9.4"
+                "nodemailer": "6.9.9",
+                "punycode": "2.3.1"
            },
            "engines": {
                "node": ">=12.0.0"
            }
        },
        "node_modules/smtp-server/node_modules/nodemailer": {
-            "version": "6.9.4",
-            "resolved": "https://registry.npmjs.org/nodemailer/-/nodemailer-6.9.4.tgz",
-            "integrity": "sha512-CXjQvrQZV4+6X5wP6ZIgdehJamI63MFoYFGGPtHudWym9qaEHDNdPzaj5bfMCvxG1vhAileSWW90q7nL0N36mA==",
+            "version": "6.9.9",
+            "resolved": "https://registry.npmjs.org/nodemailer/-/nodemailer-6.9.9.tgz",
+            "integrity": "sha512-dexTll8zqQoVJEZPwQAKzxxtFn0qTnjdQTchoU6Re9BUUGBJiOy3YMn/0ShTW6J5M0dfQ1NeDeRTTl4oIWgQMA==",
            "engines": {
                "node": ">=6.0.0"
            }
@ -10320,6 +10321,27 @@
            "engines": {
                "node": ">=6.0.0"
            }
+        },
+        "node_modules/zone-mta/node_modules/smtp-server": {
+            "version": "3.13.0",
+            "resolved": "https://registry.npmjs.org/smtp-server/-/smtp-server-3.13.0.tgz",
+            "integrity": "sha512-thVFqpwrHIJ25rXjXA6RYFUO35el2O+X7WJ006qMVAyFs5Ss6XGPJASg7Fh1QvT28ADIv9hGGXmgR+kaSEikwQ==",
+            "dependencies": {
+                "base32.js": "0.1.0",
+                "ipv6-normalize": "1.0.1",
+                "nodemailer": "6.9.4"
+            },
+            "engines": {
+                "node": ">=12.0.0"
+            }
+        },
+        "node_modules/zone-mta/node_modules/smtp-server/node_modules/nodemailer": {
+            "version": "6.9.4",
+            "resolved": "https://registry.npmjs.org/nodemailer/-/nodemailer-6.9.4.tgz",
+            "integrity": "sha512-CXjQvrQZV4+6X5wP6ZIgdehJamI63MFoYFGGPtHudWym9qaEHDNdPzaj5bfMCvxG1vhAileSWW90q7nL0N36mA==",
+            "engines": {
+                "node": ">=6.0.0"
+            }
        }
    }
 }
--- a/package.json
+++ b/package.json
@ -97,7 +97,7 @@
        "restify-logger": "2.0.1",
        "search-string": "3.1.0",
        "seq-index": "1.1.0",
-        "smtp-server": "3.13.0",
+        "smtp-server": "3.13.2",
        "speakeasy": "2.0.0",
        "undici": "5.28.2",
        "unix-crypt-td-js": "1.1.4",