From 2f08eac1aefbb6fcd7bd0697705060ec45462868 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 22 Jan 2026 11:42:47 +0000
Subject: [PATCH] fix: package.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-LODASH-15053838
- https://snyk.io/vuln/SNYK-JS-DIFF-14917201
---
 package.json | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/package.json b/package.json
index e83f9fef5c2..7aa990d460b 100644
--- a/package.json
+++ b/package.json
@@ -31,7 +31,7 @@
     "hbs": "^4.0.4",
     "humanize-ms": "1.0.1",
     "jquery": "^2.2.4",
-    "lodash": "4.17.4",
+    "lodash": "4.17.23",
     "marked": "0.3.5",
     "method-override": "latest",
     "moment": "2.15.1",
@@ -44,7 +44,7 @@
     "optional": "^0.1.3",
     "st": "0.2.4",
     "stream-buffers": "^3.0.1",
-    "tap": "^11.1.3",
+    "tap": "^18.0.0",
     "typeorm": "^0.2.24",
     "validator": "^13.5.2"
   },