From 8b7937741330fffbc4d8cf8871a27a457c3cdcbc Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sat, 6 Dec 2025 08:45:27 +0000
Subject: [PATCH] fix: package.json & package-lock.json to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-NODEMAILER-14157156
---
 package-lock.json | 15 ++++++++-------
 package.json      |  2 +-
 2 files changed, 9 insertions(+), 8 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index a98b096..6faf461 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -23,7 +23,7 @@
         "moment": "^2.29.4",
         "mongoose": "^6.8.0",
         "morgan": "^1.10.0",
-        "nodemailer": "^6.9.1",
+        "nodemailer": "^7.0.11",
         "validator": "^13.7.0",
         "xss-clean": "^0.1.1"
       },
@@ -5540,9 +5540,10 @@
       "dev": true
     },
     "node_modules/nodemailer": {
-      "version": "6.9.1",
-      "resolved": "https://registry.npmjs.org/nodemailer/-/nodemailer-6.9.1.tgz",
-      "integrity": "sha512-qHw7dOiU5UKNnQpXktdgQ1d3OFgRAekuvbJLcdG5dnEo/GtcTHRYM7+UfJARdOFU9WUQO8OiIamgWPmiSFHYAA==",
+      "version": "7.0.11",
+      "resolved": "https://registry.npmjs.org/nodemailer/-/nodemailer-7.0.11.tgz",
+      "integrity": "sha512-gnXhNRE0FNhD7wPSCGhdNh46Hs6nm+uTyg+Kq0cZukNQiYdnCsoQjodNP9BQVG9XrcK/v6/MgpAPBUFyzh9pvw==",
+      "license": "MIT-0",
       "engines": {
         "node": ">=6.0.0"
       }
@@ -11275,9 +11276,9 @@
       "dev": true
     },
     "nodemailer": {
-      "version": "6.9.1",
-      "resolved": "https://registry.npmjs.org/nodemailer/-/nodemailer-6.9.1.tgz",
-      "integrity": "sha512-qHw7dOiU5UKNnQpXktdgQ1d3OFgRAekuvbJLcdG5dnEo/GtcTHRYM7+UfJARdOFU9WUQO8OiIamgWPmiSFHYAA=="
+      "version": "7.0.11",
+      "resolved": "https://registry.npmjs.org/nodemailer/-/nodemailer-7.0.11.tgz",
+      "integrity": "sha512-gnXhNRE0FNhD7wPSCGhdNh46Hs6nm+uTyg+Kq0cZukNQiYdnCsoQjodNP9BQVG9XrcK/v6/MgpAPBUFyzh9pvw=="
     },
     "nodemon": {
       "version": "2.0.20",
diff --git a/package.json b/package.json
index 6b79abb..e74ecaa 100644
--- a/package.json
+++ b/package.json
@@ -55,7 +55,7 @@
     "moment": "^2.29.4",
     "mongoose": "^6.8.0",
     "morgan": "^1.10.0",
-    "nodemailer": "^6.9.1",
+    "nodemailer": "^7.0.11",
     "validator": "^13.7.0",
     "xss-clean": "^0.1.1"
   }