From da27109bc9adf304635c732f61e555ff0daf443f Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sat, 28 Oct 2023 03:06:19 +0000
Subject: [PATCH] fix: package.json & package-lock.json to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-AXIOS-6032459
---
 package-lock.json | 60 ++++++++++++++++-------------------------------
 package.json      |  4 ++--
 2 files changed, 22 insertions(+), 42 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index 28eee96..4188d33 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -25,8 +25,8 @@
         "@fastify/redis": "6.x",
         "@fastify/sensible": "5.x",
         "@fastify/under-pressure": "8.x",
-        "@googlemaps/google-maps-services-js": "3.x",
-        "axios": "1.x",
+        "@googlemaps/google-maps-services-js": "^3.3.40",
+        "axios": "^1.6.0",
         "crypto-random-string": "5.x",
         "dayjs": "1.x",
         "desm": "1.x",
@@ -2147,24 +2147,15 @@
       }
     },
     "node_modules/@googlemaps/google-maps-services-js": {
-      "version": "3.3.27",
-      "resolved": "https://registry.npmjs.org/@googlemaps/google-maps-services-js/-/google-maps-services-js-3.3.27.tgz",
-      "integrity": "sha512-0MDcoqiLMzu4xPExrcm17fx89ZH5RgCg4J3pBokJURCzmF1XAIqNGO5zipcXl5QZOp+zhcrqC3Rl2k7rdd9p/Q==",
+      "version": "3.3.40",
+      "resolved": "https://registry.npmjs.org/@googlemaps/google-maps-services-js/-/google-maps-services-js-3.3.40.tgz",
+      "integrity": "sha512-hLDt3zp3WD1Vc4ZcZF64FxiYnGo9BakGst7891PBJd+9Hifv8IWOlbwIhBedzj8hPk0LEe+DOR2CEP+WwK4Gjg==",
       "dependencies": {
         "@googlemaps/url-signature": "^1.0.4",
         "agentkeepalive": "^4.1.0",
-        "axios": "0.27.2",
-        "query-string": "7.1.3",
-        "retry-axios": "2.6.0"
-      }
-    },
-    "node_modules/@googlemaps/google-maps-services-js/node_modules/axios": {
-      "version": "0.27.2",
-      "resolved": "https://registry.npmjs.org/axios/-/axios-0.27.2.tgz",
-      "integrity": "sha512-t+yRIyySRTp/wua5xEr+z1q60QmLq8ABsS5O9Me1AsE5dfKqgnCFzwiCZZ/cGNd1lq4/7akDWMxdhVlucjmnOQ==",
-      "dependencies": {
-        "follow-redirects": "^1.14.9",
-        "form-data": "^4.0.0"
+        "axios": "^1.5.1",
+        "query-string": "<8.x",
+        "retry-axios": "<3.x"
       }
     },
     "node_modules/@googlemaps/url-signature": {
@@ -2738,9 +2729,9 @@
       }
     },
     "node_modules/axios": {
-      "version": "1.3.4",
-      "resolved": "https://registry.npmjs.org/axios/-/axios-1.3.4.tgz",
-      "integrity": "sha512-toYm+Bsyl6VC5wSkfkbbNB6ROv7KY93PEBBL6xyDczaIHasAiv4wPqQ/c4RjoQzipxRD2W5g21cOqQulZ7rHwQ==",
+      "version": "1.6.0",
+      "resolved": "https://registry.npmjs.org/axios/-/axios-1.6.0.tgz",
+      "integrity": "sha512-EZ1DYihju9pwVB+jg67ogm+Tmqc6JmhamRN6I4Zt8DfZu5lbcQGw3ozH9lFejSJgs/ibaef3A9PMXPLeefFGJg==",
       "dependencies": {
         "follow-redirects": "^1.15.0",
         "form-data": "^4.0.0",
@@ -14730,26 +14721,15 @@
       }
     },
     "@googlemaps/google-maps-services-js": {
-      "version": "3.3.27",
-      "resolved": "https://registry.npmjs.org/@googlemaps/google-maps-services-js/-/google-maps-services-js-3.3.27.tgz",
-      "integrity": "sha512-0MDcoqiLMzu4xPExrcm17fx89ZH5RgCg4J3pBokJURCzmF1XAIqNGO5zipcXl5QZOp+zhcrqC3Rl2k7rdd9p/Q==",
+      "version": "3.3.40",
+      "resolved": "https://registry.npmjs.org/@googlemaps/google-maps-services-js/-/google-maps-services-js-3.3.40.tgz",
+      "integrity": "sha512-hLDt3zp3WD1Vc4ZcZF64FxiYnGo9BakGst7891PBJd+9Hifv8IWOlbwIhBedzj8hPk0LEe+DOR2CEP+WwK4Gjg==",
       "requires": {
         "@googlemaps/url-signature": "^1.0.4",
         "agentkeepalive": "^4.1.0",
-        "axios": "0.27.2",
-        "query-string": "7.1.3",
-        "retry-axios": "2.6.0"
-      },
-      "dependencies": {
-        "axios": {
-          "version": "0.27.2",
-          "resolved": "https://registry.npmjs.org/axios/-/axios-0.27.2.tgz",
-          "integrity": "sha512-t+yRIyySRTp/wua5xEr+z1q60QmLq8ABsS5O9Me1AsE5dfKqgnCFzwiCZZ/cGNd1lq4/7akDWMxdhVlucjmnOQ==",
-          "requires": {
-            "follow-redirects": "^1.14.9",
-            "form-data": "^4.0.0"
-          }
-        }
+        "axios": "^1.5.1",
+        "query-string": "<8.x",
+        "retry-axios": "<3.x"
       }
     },
     "@googlemaps/url-signature": {
@@ -15175,9 +15155,9 @@
       }
     },
     "axios": {
-      "version": "1.3.4",
-      "resolved": "https://registry.npmjs.org/axios/-/axios-1.3.4.tgz",
-      "integrity": "sha512-toYm+Bsyl6VC5wSkfkbbNB6ROv7KY93PEBBL6xyDczaIHasAiv4wPqQ/c4RjoQzipxRD2W5g21cOqQulZ7rHwQ==",
+      "version": "1.6.0",
+      "resolved": "https://registry.npmjs.org/axios/-/axios-1.6.0.tgz",
+      "integrity": "sha512-EZ1DYihju9pwVB+jg67ogm+Tmqc6JmhamRN6I4Zt8DfZu5lbcQGw3ozH9lFejSJgs/ibaef3A9PMXPLeefFGJg==",
       "requires": {
         "follow-redirects": "^1.15.0",
         "form-data": "^4.0.0",
diff --git a/package.json b/package.json
index 27a5ccd..7b9c92d 100644
--- a/package.json
+++ b/package.json
@@ -29,8 +29,8 @@
     "@fastify/redis": "6.x",
     "@fastify/sensible": "5.x",
     "@fastify/under-pressure": "8.x",
-    "@googlemaps/google-maps-services-js": "3.x",
-    "axios": "1.x",
+    "@googlemaps/google-maps-services-js": "3.3.40",
+    "axios": "1.6.0",
     "crypto-random-string": "5.x",
     "dayjs": "1.x",
     "desm": "1.x",