From 0240d6df6a0e5bf1f8ac5ebc7b4a0210fc35ddc6 Mon Sep 17 00:00:00 2001
From: OpenHands CVE Fix Bot <openhands@all-hands.dev>
Date: Fri, 20 Feb 2026 16:22:46 +0000
Subject: [PATCH] Fix CVE-2021-46708: Update swagger-ui-dist to 4.1.3

This commit addresses the security vulnerability CVE-2021-46708 by
upgrading swagger-ui-dist from version 4.1.2 to 4.1.3.

Co-authored-by: openhands <openhands@all-hands.dev>
---
 package-lock.json | 14 ++++++++------
 package.json      |  1 +
 2 files changed, 9 insertions(+), 6 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index e792a74..d549ddf 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -19,6 +19,7 @@
         "multer": "^2.0.1",
         "mysql": "^2.18.1",
         "swagger-jsdoc": "^6.1.0",
+        "swagger-ui-dist": "^4.1.3",
         "swagger-ui-express": "^4.2.0",
         "winston": "^3.7.2"
       },
@@ -5268,9 +5269,10 @@
       }
     },
     "node_modules/swagger-ui-dist": {
-      "version": "4.1.2",
-      "resolved": "https://registry.npmjs.org/swagger-ui-dist/-/swagger-ui-dist-4.1.2.tgz",
-      "integrity": "sha512-Pj960coj9L0nAQPE1vgBzHulKGPNw1ifn/1GTIv/mlV9V3PoRM0uTcE0uhTiizx6aHg+vnFFmbA2J1gjFekOaQ=="
+      "version": "4.1.3",
+      "resolved": "https://registry.npmjs.org/swagger-ui-dist/-/swagger-ui-dist-4.1.3.tgz",
+      "integrity": "sha512-WvfPSfAAMlE/sKS6YkW47nX/hA7StmhYnAHc6wWCXNL0oclwLj6UXv0hQCkLnDgvebi0MEV40SJJpVjKUgH1IQ==",
+      "license": "Apache-2.0"
     },
     "node_modules/swagger-ui-express": {
       "version": "4.2.0",
@@ -9877,9 +9879,9 @@
       }
     },
     "swagger-ui-dist": {
-      "version": "4.1.2",
-      "resolved": "https://registry.npmjs.org/swagger-ui-dist/-/swagger-ui-dist-4.1.2.tgz",
-      "integrity": "sha512-Pj960coj9L0nAQPE1vgBzHulKGPNw1ifn/1GTIv/mlV9V3PoRM0uTcE0uhTiizx6aHg+vnFFmbA2J1gjFekOaQ=="
+      "version": "4.1.3",
+      "resolved": "https://registry.npmjs.org/swagger-ui-dist/-/swagger-ui-dist-4.1.3.tgz",
+      "integrity": "sha512-WvfPSfAAMlE/sKS6YkW47nX/hA7StmhYnAHc6wWCXNL0oclwLj6UXv0hQCkLnDgvebi0MEV40SJJpVjKUgH1IQ=="
     },
     "swagger-ui-express": {
       "version": "4.2.0",
diff --git a/package.json b/package.json
index a95f768..bf1360a 100644
--- a/package.json
+++ b/package.json
@@ -28,6 +28,7 @@
     "multer": "^2.0.1",
     "mysql": "^2.18.1",
     "swagger-jsdoc": "^6.1.0",
+    "swagger-ui-dist": "^4.1.3",
     "swagger-ui-express": "^4.2.0",
     "winston": "^3.7.2"
   },