From 3e8638ecbd03259064141f3f07936bc75acd89e8 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 3 Feb 2026 02:48:38 +0000
Subject: [PATCH] fix: packages/email-server/package.json to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-TAR-15127355
- https://snyk.io/vuln/SNYK-JS-NEXT-15104645
---
 packages/email-server/package.json | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/packages/email-server/package.json b/packages/email-server/package.json
index 1620a84c567..f21ced2a334 100644
--- a/packages/email-server/package.json
+++ b/packages/email-server/package.json
@@ -36,7 +36,7 @@
     "async": "^3.2.4",
     "axios": "^0.27.2",
     "bufferutil": "^4.0.7",
-    "canvas": "^2.10.2",
+    "canvas": "^3.0.0",
     "cron": "^2.1.0",
     "dotenv": "^16.0.3",
     "encoding": "^0.1.13",
@@ -51,7 +51,7 @@
     "mjml": "^4.13.0",
     "mjml-react": "^2.0.8",
     "mysql2": "^2.3.3",
-    "next": "^v12.3.2",
+    "next": "^15.5.10",
     "nodemailer": "^6.8.0",
     "nodemailer-postmark-transport": "^5.2.1",
     "octokit": "^2.0.10",