From 8da284e8b79df7a2af841249430e75ba07d4255d Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Wed, 28 Jan 2026 12:59:52 +0000
Subject: [PATCH] fix: package.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-TAR-15032660
- https://snyk.io/vuln/SNYK-JS-LODASH-15053838
---
 package.json | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/package.json b/package.json
index 3f81501..00ce064 100644
--- a/package.json
+++ b/package.json
@@ -50,7 +50,7 @@
     "@nestjs/websockets": "^11.0.9",
     "@socket.io/redis-adapter": "^8.3.0",
     "@types/graphql-fields": "^1.3.9",
-    "bcrypt": "^5.1.1",
+    "bcrypt": "^6.0.0",
     "bull": "^4.16.5",
     "cache-manager": "^6.4.0",
     "cache-manager-redis-store": "^3.0.1",
@@ -68,7 +68,7 @@
     "graphql-type-json": "^0.3.2",
     "handlebars": "^4.7.8",
     "ioredis": "^5.5.0",
-    "lodash": "^4.17.21",
+    "lodash": "^4.17.23",
     "map-series-async": "^0.0.1",
     "mime-types": "^2.1.35",
     "moment": "^2.30.1",