From 4bbe2207a55b367a19984aaf7b1641ac12956eb8 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 12 Feb 2026 20:56:34 +0000
Subject: [PATCH] fix: api-server/package.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-AXIOS-15252993
- https://snyk.io/vuln/SNYK-JS-QS-15268416
---
 api-server/package.json | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/api-server/package.json b/api-server/package.json
index 2e6f6519fdd90a..84c11fff0a78ee 100644
--- a/api-server/package.json
+++ b/api-server/package.json
@@ -32,7 +32,7 @@
     "@sentry/node": "7.37.1",
     "@sentry/tracing": "7.37.1",
     "accepts": "1.3.8",
-    "body-parser": "1.20.0",
+    "body-parser": "1.20.4",
     "compression": "1.7.4",
     "connect-mongo": "3.2.0",
     "cookie-parser": "1.4.6",
@@ -65,7 +65,7 @@
     "node-fetch": "^2.6.7",
     "nodemailer-ses-transport": "1.5.1",
     "passport": "0.4.1",
-    "passport-auth0": "1.4.2",
+    "passport-auth0": "1.4.4",
     "passport-local": "1.0.0",
     "passport-mock-strategy": "2.0.0",
     "query-string": "6.14.0",