From 11cd13e1ffb1f13422670b99247bef9fcf950c07 Mon Sep 17 00:00:00 2001
From: Extra Fu <lmarcotte@inverse.ca>
Date: Tue, 10 Dec 2024 11:14:21 -0500
Subject: [PATCH] fix: t/mock_servers/node_radius/package.json &
 t/mock_servers/node_radius/package-lock.json to reduce vulnerabilities
 (#8427)

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-PATHTOREGEXP-8482416

Co-authored-by: snyk-bot <snyk-bot@snyk.io>
---
 t/mock_servers/node_radius/package-lock.json | 21 ++++++++++++--------
 t/mock_servers/node_radius/package.json      |  2 +-
 2 files changed, 14 insertions(+), 9 deletions(-)

diff --git a/t/mock_servers/node_radius/package-lock.json b/t/mock_servers/node_radius/package-lock.json
index 5c74b3584c4..31e8089145c 100644
--- a/t/mock_servers/node_radius/package-lock.json
+++ b/t/mock_servers/node_radius/package-lock.json
@@ -10,7 +10,7 @@
       "license": "GPL-2.0",
       "dependencies": {
         "dgram": "^1.0.1",
-        "express": "^4.21.1",
+        "express": "^4.21.2",
         "node-persist": "^3.1.0",
         "radius": "^1.1.4"
       }
@@ -207,9 +207,9 @@
       }
     },
     "node_modules/express": {
-      "version": "4.21.1",
-      "resolved": "https://registry.npmjs.org/express/-/express-4.21.1.tgz",
-      "integrity": "sha512-YSFlK1Ee0/GC8QaO91tHcDxJiE/X4FbpAyQWkxAvG6AXCuR65YzK8ua6D9hvi/TzUfZMpc+BwuM1IPw8fmQBiQ==",
+      "version": "4.21.2",
+      "resolved": "https://registry.npmjs.org/express/-/express-4.21.2.tgz",
+      "integrity": "sha512-28HqgMZAmih1Czt9ny7qr6ek2qddF4FclbMzwhCREB6OFfH+rXAnuNCwo1/wFvrtbgsQDb4kSbX9de9lFbrXnA==",
       "license": "MIT",
       "dependencies": {
         "accepts": "~1.3.8",
@@ -231,7 +231,7 @@
         "methods": "~1.1.2",
         "on-finished": "2.4.1",
         "parseurl": "~1.3.3",
-        "path-to-regexp": "0.1.10",
+        "path-to-regexp": "0.1.12",
         "proxy-addr": "~2.0.7",
         "qs": "6.13.0",
         "range-parser": "~1.2.1",
@@ -246,6 +246,10 @@
       },
       "engines": {
         "node": ">= 0.10.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/express"
       }
     },
     "node_modules/express/node_modules/encodeurl": {
@@ -526,9 +530,10 @@
       }
     },
     "node_modules/path-to-regexp": {
-      "version": "0.1.10",
-      "resolved": "https://registry.npmjs.org/path-to-regexp/-/path-to-regexp-0.1.10.tgz",
-      "integrity": "sha512-7lf7qcQidTku0Gu3YDPc8DJ1q7OOucfa/BSsIwjuh56VU7katFvuM8hULfkwB3Fns/rsVF7PwPKVw1sl5KQS9w=="
+      "version": "0.1.12",
+      "resolved": "https://registry.npmjs.org/path-to-regexp/-/path-to-regexp-0.1.12.tgz",
+      "integrity": "sha512-RA1GjUVMnvYFxuqovrEqZoxxW5NUZqbwKtYz/Tt7nXerk0LbLblQmrsgdeOxV5SFHf0UDggjS/bSeOZwt1pmEQ==",
+      "license": "MIT"
     },
     "node_modules/proxy-addr": {
       "version": "2.0.7",
diff --git a/t/mock_servers/node_radius/package.json b/t/mock_servers/node_radius/package.json
index ca8d57bd191..a5d7d732c23 100644
--- a/t/mock_servers/node_radius/package.json
+++ b/t/mock_servers/node_radius/package.json
@@ -10,7 +10,7 @@
   "license": "GPL-2.0",
   "dependencies": {
     "dgram": "^1.0.1",
-    "express": "^4.21.1",
+    "express": "^4.21.2",
     "node-persist": "^3.1.0",
     "radius": "^1.1.4"
   }