From 28108c58929f43ebe15b6ea1af9c6d926ca79b69 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 2 Jul 2024 22:32:47 +0000
Subject: [PATCH] fix: 02-Calling-an-API/package.json &
 02-Calling-an-API/package-lock.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-ASYNC-7414156
---
 02-Calling-an-API/package-lock.json | 74 ++++++++++++-----------------
 02-Calling-an-API/package.json      |  2 +-
 2 files changed, 32 insertions(+), 44 deletions(-)

diff --git a/02-Calling-an-API/package-lock.json b/02-Calling-an-API/package-lock.json
index d8f9355..0bd6aaf 100644
--- a/02-Calling-an-API/package-lock.json
+++ b/02-Calling-an-API/package-lock.json
@@ -245,11 +245,6 @@
       "integrity": "sha1-WWZ/QfrdTyDMvCu5a41Pf3jsA2c=",
       "dev": true
     },
-    "async": {
-      "version": "1.5.2",
-      "resolved": "https://registry.npmjs.org/async/-/async-1.5.2.tgz",
-      "integrity": "sha1-7GphrlZIDAw8skHJVhjiCJL5Zyo="
-    },
     "async-each": {
       "version": "1.0.1",
       "resolved": "https://registry.npmjs.org/async-each/-/async-each-1.0.1.tgz",
@@ -1164,20 +1159,18 @@
       }
     },
     "express-jwt": {
-      "version": "5.3.1",
-      "resolved": "https://registry.npmjs.org/express-jwt/-/express-jwt-5.3.1.tgz",
-      "integrity": "sha512-1C9RNq0wMp/JvsH/qZMlg3SIPvKu14YkZ4YYv7gJQ1Vq+Dv8LH9tLKenS5vMNth45gTlEUGx+ycp9IHIlaHP/g==",
+      "version": "7.0.0",
+      "resolved": "https://registry.npmjs.org/express-jwt/-/express-jwt-7.0.0.tgz",
+      "integrity": "sha512-qHe/PVssz8Rv/Rq+DKWSb7PHTwwlZVsTI4YNANYoESTZbT8qzeJKME1Cv/D8q23JfuuAn6SirmaaEhEUFP3xPA==",
       "requires": {
-        "async": "^1.5.0",
-        "express-unless": "^0.3.0",
-        "jsonwebtoken": "^8.1.0",
-        "lodash.set": "^4.0.0"
+        "express-unless": "^1.0.0",
+        "jsonwebtoken": "^8.1.0"
       }
     },
     "express-unless": {
-      "version": "0.3.1",
-      "resolved": "https://registry.npmjs.org/express-unless/-/express-unless-0.3.1.tgz",
-      "integrity": "sha1-JVfBRudb65A+LSR/m1ugFFJpbiA="
+      "version": "1.0.0",
+      "resolved": "https://registry.npmjs.org/express-unless/-/express-unless-1.0.0.tgz",
+      "integrity": "sha512-zXSSClWBPfcSYjg0hcQNompkFN/MxQQ53eyrzm9BYgik2ut2I7PxAf2foVqBRMYCwWaZx/aWodi+uk76npdSAw=="
     },
     "extend": {
       "version": "3.0.2",
@@ -1883,24 +1876,24 @@
           "dev": true,
           "optional": true
         },
-        "string-width": {
-          "version": "1.0.2",
+        "string_decoder": {
+          "version": "1.1.1",
           "bundled": true,
           "dev": true,
           "optional": true,
           "requires": {
-            "code-point-at": "^1.0.0",
-            "is-fullwidth-code-point": "^1.0.0",
-            "strip-ansi": "^3.0.0"
+            "safe-buffer": "~5.1.0"
           }
         },
-        "string_decoder": {
-          "version": "1.1.1",
+        "string-width": {
+          "version": "1.0.2",
           "bundled": true,
           "dev": true,
           "optional": true,
           "requires": {
-            "safe-buffer": "~5.1.0"
+            "code-point-at": "^1.0.0",
+            "is-fullwidth-code-point": "^1.0.0",
+            "strip-ansi": "^3.0.0"
           }
         },
         "strip-ansi": {
@@ -2714,17 +2707,17 @@
       "dev": true,
       "requires": {
         "chokidar": "^2.0.4",
-        "colors": "^1.3.3",
+        "colors": "latest",
         "connect": "^3.6.6",
-        "cors": "^2.8.5",
+        "cors": "latest",
         "event-stream": "3.3.4",
         "faye-websocket": "0.11.x",
         "http-auth": "3.1.x",
         "morgan": "^1.9.1",
-        "object-assign": "^4.1.1",
-        "opn": "^5.4.0",
-        "proxy-middleware": "^0.15.0",
-        "send": "^0.16.2",
+        "object-assign": "latest",
+        "opn": "latest",
+        "proxy-middleware": "latest",
+        "send": "latest",
         "serve-index": "^1.9.1"
       },
       "dependencies": {
@@ -2824,11 +2817,6 @@
       "resolved": "https://registry.npmjs.org/lodash.once/-/lodash.once-4.1.1.tgz",
       "integrity": "sha1-DdOXEhPHxW34gJd9UEyI+0cal6w="
     },
-    "lodash.set": {
-      "version": "4.3.2",
-      "resolved": "https://registry.npmjs.org/lodash.set/-/lodash.set-4.3.2.tgz",
-      "integrity": "sha1-2HV7HagH3eJIFrDWqEvqGnYjCyM="
-    },
     "lowercase-keys": {
       "version": "1.0.1",
       "resolved": "https://registry.npmjs.org/lowercase-keys/-/lowercase-keys-1.0.1.tgz",
@@ -4087,6 +4075,15 @@
         "duplexer": "~0.1.1"
       }
     },
+    "string_decoder": {
+      "version": "1.1.1",
+      "resolved": "https://registry.npmjs.org/string_decoder/-/string_decoder-1.1.1.tgz",
+      "integrity": "sha512-n/ShnvDi6FHbbVfviro+WojiFzv+s8MPMHBczVePfUpDJLwoLT0ht1l4YwBCbi8pJAveEEdnkHyPyTP/mzRfwg==",
+      "dev": true,
+      "requires": {
+        "safe-buffer": "~5.1.0"
+      }
+    },
     "string-width": {
       "version": "2.1.1",
       "resolved": "https://registry.npmjs.org/string-width/-/string-width-2.1.1.tgz",
@@ -4107,15 +4104,6 @@
         "function-bind": "^1.0.2"
       }
     },
-    "string_decoder": {
-      "version": "1.1.1",
-      "resolved": "https://registry.npmjs.org/string_decoder/-/string_decoder-1.1.1.tgz",
-      "integrity": "sha512-n/ShnvDi6FHbbVfviro+WojiFzv+s8MPMHBczVePfUpDJLwoLT0ht1l4YwBCbi8pJAveEEdnkHyPyTP/mzRfwg==",
-      "dev": true,
-      "requires": {
-        "safe-buffer": "~5.1.0"
-      }
-    },
     "strip-ansi": {
       "version": "4.0.0",
       "resolved": "https://registry.npmjs.org/strip-ansi/-/strip-ansi-4.0.0.tgz",
diff --git a/02-Calling-an-API/package.json b/02-Calling-an-API/package.json
index 8c7d9bb..67a9686 100644
--- a/02-Calling-an-API/package.json
+++ b/02-Calling-an-API/package.json
@@ -5,7 +5,7 @@
   "main": "server.js",
   "dependencies": {
     "express": "^4.17.1",
-    "express-jwt": "^5.3.1",
+    "express-jwt": "^7.0.0",
     "helmet": "^3.21.0",
     "jwks-rsa": "^1.6.0",
     "morgan": "^1.9.1",