[Snyk] Security upgrade jwks-rsa from 1.9.0 to 1.12.1

[dennisMeeQ]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • api/package.json
  • api/package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	718/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 6.5	Information Exposure SNYK-JS-FOLLOWREDIRECTS-6444610	No	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: jwks-rsa

The new version differs by 30 commits.

• 67c277d Release v1.12.1
• 3bbe93f Bump Axios to ^0.21.1 (#208)
• 6fa1db0 Add types for agent options used by ExpressJwtOptions (#206)
• ee90de2 Fix PR link in changelog (#207)
• 26d760b Release 1.12.0 (#204)
• 4446484 Provides an alternative source for keysets (#202)
• 6cfa98f Add functionality to allow directly provided jwt keysets (#191)
• c5b58c5 Setup pull-request and issue templates (#198)
• 5312f44 docs: Fix 'cacheMaxAge' default value in README (#196)
• 8c480f4 Setup pull-request and issue templates (#195)
• b2e7a10 Setup the CODEOWNERS for pull request reviews (#194)
• e6a49c3 1.11.0 Release (#193)
• 273af8f read proxy condifuration from env vars if set (#188)
• 872bc4d fix: do not publish examples to npm (#190)
• f0eab30 Update CHANGELOG.md (#186)
• 3de49e0 Release 1.10.1 (#185)
• 4a3270b fix dependencies for --production flag with npm (#180)
• e810362 fix proxy agent for http (#182)
• 8fb8470 Release v1.10.0 (#178)
• fb7d2a0 getSigningKeys return algorithm (#168)
• df65670 Add sync caching and ratelimintg (#177)
• 00b390b Fixing proxy on Axios (#176)
• 4497167 Update README.md (#175)
• b6d0d6d style: no extra semi (#169)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.