From f2ab7700206b30b4eb1f7dc92103735b67e6abfb Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Mon, 10 Nov 2025 10:23:47 +0000
Subject: [PATCH] fix: upgrade mongoose from 8.8.3 to 8.19.1

Snyk has created this PR to upgrade mongoose from 8.8.3 to 8.19.1.

See this package in npm:
mongoose

See this project in Snyk:
https://app.snyk.io/org/angeloreale/project/3e5c0a31-9386-41ad-b576-acd0d3d8f9c0?utm_source=github&utm_medium=referral&page=upgrade-pr
---
 package-lock.json | 58 +++++++++++++++++++++++------------------------
 package.json      |  2 +-
 2 files changed, 30 insertions(+), 30 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index a8465dc..17665cc 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -251,9 +251,9 @@
       }
     },
     "@mongodb-js/saslprep": {
-      "version": "1.1.9",
-      "resolved": "https://registry.npmjs.org/@mongodb-js/saslprep/-/saslprep-1.1.9.tgz",
-      "integrity": "sha512-tVkljjeEaAhCqTzajSdgbQ6gE6f3oneVwa3iXR6csiEwXXOFsiC6Uh9iAjAhXPtqa/XMDHWjjeNH/77m/Yq2dw==",
+      "version": "1.3.2",
+      "resolved": "https://registry.npmjs.org/@mongodb-js/saslprep/-/saslprep-1.3.2.tgz",
+      "integrity": "sha512-QgA5AySqB27cGTXBFmnpifAi7HxoGUeezwo6p9dI03MuDB6Pp33zgclqVb6oVK3j6I9Vesg0+oojW2XxB59SGg==",
       "requires": {
         "sparse-bitfield": "^3.0.3"
       }
@@ -4610,12 +4610,12 @@
       }
     },
     "mongodb-connection-string-url": {
-      "version": "3.0.1",
-      "resolved": "https://registry.npmjs.org/mongodb-connection-string-url/-/mongodb-connection-string-url-3.0.1.tgz",
-      "integrity": "sha512-XqMGwRX0Lgn05TDB4PyG2h2kKO/FfWJyCzYQbIhXUxz7ETt0I/FqHjUeqj37irJ+Dl1ZtU82uYyj14u2XsZKfg==",
+      "version": "3.0.2",
+      "resolved": "https://registry.npmjs.org/mongodb-connection-string-url/-/mongodb-connection-string-url-3.0.2.tgz",
+      "integrity": "sha512-rMO7CGo/9BFwyZABcKAWL8UJwH/Kc2x0g72uhDWzG48URRax5TCIcJ7Rc3RZqffZzO/Gwff/jyKwCU9TN8gehA==",
       "requires": {
         "@types/whatwg-url": "^11.0.2",
-        "whatwg-url": "^13.0.0"
+        "whatwg-url": "^14.1.0 || ^13.0.0"
       }
     },
     "mongodb-core": {
@@ -4628,13 +4628,13 @@
       }
     },
     "mongoose": {
-      "version": "8.8.3",
-      "resolved": "https://registry.npmjs.org/mongoose/-/mongoose-8.8.3.tgz",
-      "integrity": "sha512-/I4n/DcXqXyIiLRfAmUIiTjj3vXfeISke8dt4U4Y8Wfm074Wa6sXnQrXN49NFOFf2mM1kUdOXryoBvkuCnr+Qw==",
+      "version": "8.19.1",
+      "resolved": "https://registry.npmjs.org/mongoose/-/mongoose-8.19.1.tgz",
+      "integrity": "sha512-oB7hGQJn4f8aebqE7mhE54EReb5cxVgpCxQCQj0K/cK3q4J3Tg08nFP6sM52nJ4Hlm8jsDnhVYpqIITZUAhckQ==",
       "requires": {
-        "bson": "^6.7.0",
+        "bson": "^6.10.4",
         "kareem": "2.6.3",
-        "mongodb": "~6.10.0",
+        "mongodb": "~6.20.0",
         "mpath": "0.9.0",
         "mquery": "5.0.0",
         "ms": "2.1.3",
@@ -4642,18 +4642,18 @@
       },
       "dependencies": {
         "bson": {
-          "version": "6.10.1",
-          "resolved": "https://registry.npmjs.org/bson/-/bson-6.10.1.tgz",
-          "integrity": "sha512-P92xmHDQjSKPLHqFxefqMxASNq/aWJMEZugpCjf+AF/pgcUpMMQCg7t7+ewko0/u8AapvF3luf/FoehddEK+sA=="
+          "version": "6.10.4",
+          "resolved": "https://registry.npmjs.org/bson/-/bson-6.10.4.tgz",
+          "integrity": "sha512-WIsKqkSC0ABoBJuT1LEX+2HEvNmNKKgnTAyd0fL8qzK4SH2i9NXg+t08YtdZp/V9IZ33cxe3iV4yM0qg8lMQng=="
         },
         "mongodb": {
-          "version": "6.10.0",
-          "resolved": "https://registry.npmjs.org/mongodb/-/mongodb-6.10.0.tgz",
-          "integrity": "sha512-gP9vduuYWb9ZkDM546M+MP2qKVk5ZG2wPF63OvSRuUbqCR+11ZCAE1mOfllhlAG0wcoJY5yDL/rV3OmYEwXIzg==",
+          "version": "6.20.0",
+          "resolved": "https://registry.npmjs.org/mongodb/-/mongodb-6.20.0.tgz",
+          "integrity": "sha512-Tl6MEIU3K4Rq3TSHd+sZQqRBoGlFsOgNrH5ltAcFBV62Re3Fd+FcaVf8uSEQFOJ51SDowDVttBTONMfoYWrWlQ==",
           "requires": {
-            "@mongodb-js/saslprep": "^1.1.5",
-            "bson": "^6.7.0",
-            "mongodb-connection-string-url": "^3.0.0"
+            "@mongodb-js/saslprep": "^1.3.0",
+            "bson": "^6.10.4",
+            "mongodb-connection-string-url": "^3.0.2"
           }
         },
         "ms": {
@@ -7280,11 +7280,11 @@
       }
     },
     "tr46": {
-      "version": "4.1.1",
-      "resolved": "https://registry.npmjs.org/tr46/-/tr46-4.1.1.tgz",
-      "integrity": "sha512-2lv/66T7e5yNyhAAC4NaKe5nVavzuGJQVVtRYLyQ2OI8tsJ61PMLlelehb0wi2Hx6+hT/OJUWZcw8MjlSRnxvw==",
+      "version": "5.1.1",
+      "resolved": "https://registry.npmjs.org/tr46/-/tr46-5.1.1.tgz",
+      "integrity": "sha512-hdF5ZgjTqgAntKkklYw0R03MG2x/bSzTtkxmIRw/sTNV8YXsCJ1tfLAX23lhxhHJlEf3CRCOCGGWw3vI3GaSPw==",
       "requires": {
-        "punycode": "^2.3.0"
+        "punycode": "^2.3.1"
       }
     },
     "trim-right": {
@@ -7558,11 +7558,11 @@
       "integrity": "sha512-VwddBukDzu71offAQR975unBIGqfKZpM+8ZX6ySk8nYhVoo5CYaZyzt3YBvYtRtO+aoGlqxPg/B87NGVZ/fu6g=="
     },
     "whatwg-url": {
-      "version": "13.0.0",
-      "resolved": "https://registry.npmjs.org/whatwg-url/-/whatwg-url-13.0.0.tgz",
-      "integrity": "sha512-9WWbymnqj57+XEuqADHrCJ2eSXzn8WXIW/YSGaZtb2WKAInQ6CHfaUUcTyyver0p8BDg5StLQq8h1vtZuwmOig==",
+      "version": "14.2.0",
+      "resolved": "https://registry.npmjs.org/whatwg-url/-/whatwg-url-14.2.0.tgz",
+      "integrity": "sha512-De72GdQZzNTUBBChsXueQUnPKDkg/5A5zp7pFDuQAj5UFoENpiACU0wlCvzpAGnTkj++ihpKwKyYewn/XNUbKw==",
       "requires": {
-        "tr46": "^4.1.1",
+        "tr46": "^5.1.0",
         "webidl-conversions": "^7.0.0"
       }
     },
diff --git a/package.json b/package.json
index bc55951..1221d0b 100644
--- a/package.json
+++ b/package.json
@@ -31,7 +31,7 @@
     "express-session": "~1.18.1",
     "helmet": "~3.18.0",
     "method-override": "~3.0.0",
-    "mongoose": "~8.8.3",
+    "mongoose": "~8.19.1",
     "mongoose-paginate-v2": "^1.3.9",
     "morgan": "~1.9.1",
     "nodemailer": "^6.4.6",