From 1cde0696158104df6f677e39a9bef2c518197143 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Mon, 26 Jan 2026 12:21:53 +0000
Subject: [PATCH] fix: package.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-TAR-15038581
- https://snyk.io/vuln/SNYK-JS-TAR-15032660
- https://snyk.io/vuln/SNYK-JS-LODASH-15053838
---
 package.json | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/package.json b/package.json
index 44bd591d3a..7f43e756c5 100644
--- a/package.json
+++ b/package.json
@@ -15,7 +15,7 @@
     "connect-timeout": "^1.7.0",
     "console-stamp": "^0.2.2",
     "csv": "^1.1.0",
-    "elasticsearch": "^15.1.1",
+    "elasticsearch": "^16.7.3",
     "express": "^4.16.1",
     "font-awesome": "^4.7.0",
     "glob": "^7.1.2",
@@ -26,9 +26,9 @@
     "pug": "^2.0.0",
     "redis": "^2.6.2",
     "request": "^2.75.0",
-    "request-promise": "^4.2.2",
+    "request-promise": "^4.2.6",
     "sortablejs": "^1.7.0",
-    "sqlite3": "^4.0.2",
+    "sqlite3": "^5.0.3",
     "stylus": "^0.54.5",
     "unzip": "^0.1.11",
     "vue": "^2.5.16",