From 04f260e5985b2ab261012c7a8fc7956a5f05aece Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sun, 27 Oct 2024 07:08:17 +0000
Subject: [PATCH] fix: upgrade express-session from 1.17.2 to 1.18.0

Snyk has created this PR to upgrade express-session from 1.17.2 to 1.18.0.

See this package in npm:
express-session

See this project in Snyk:
https://app.snyk.io/org/violetina/project/5579f055-60ba-4c39-b47e-5913b187936b?utm_source=github&utm_medium=referral&page=upgrade-pr
---
 package-lock.json | 26 +++++++++++++++++---------
 package.json      |  2 +-
 2 files changed, 18 insertions(+), 10 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index becf4f54..c5d0feea 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -27,7 +27,7 @@
         "connect-redis": "6.0.0",
         "date-fns": "2.28.0",
         "date-fns-tz": "1.3.0",
-        "express-session": "1.17.2",
+        "express-session": "^1.18.0",
         "flat": "5.0.2",
         "fs-extra": "10.0.0",
         "got": "11.8.6",
@@ -9651,12 +9651,13 @@
       }
     },
     "node_modules/express-session": {
-      "version": "1.17.2",
-      "resolved": "https://registry.npmjs.org/express-session/-/express-session-1.17.2.tgz",
-      "integrity": "sha512-mPcYcLA0lvh7D4Oqr5aNJFMtBMKPLl++OKKxkHzZ0U0oDq1rpKBnkR5f5vCHR26VeArlTOEF9td4x5IjICksRQ==",
+      "version": "1.18.0",
+      "resolved": "https://registry.npmjs.org/express-session/-/express-session-1.18.0.tgz",
+      "integrity": "sha512-m93QLWr0ju+rOwApSsyso838LQwgfs44QtOP/WBiwtAgPIo/SAh1a5c6nn2BR6mFNZehTpqKDESzP+fRHVbxwQ==",
+      "license": "MIT",
       "dependencies": {
-        "cookie": "0.4.1",
-        "cookie-signature": "1.0.6",
+        "cookie": "0.6.0",
+        "cookie-signature": "1.0.7",
         "debug": "2.6.9",
         "depd": "~2.0.0",
         "on-headers": "~1.0.2",
@@ -9669,13 +9670,20 @@
       }
     },
     "node_modules/express-session/node_modules/cookie": {
-      "version": "0.4.1",
-      "resolved": "https://registry.npmjs.org/cookie/-/cookie-0.4.1.tgz",
-      "integrity": "sha512-ZwrFkGJxUR3EIoXtO+yVE69Eb7KlixbaeAWfBQB9vVsNn/o+Yw69gBWSSDK825hQNdN+wF8zELf3dFNl/kxkUA==",
+      "version": "0.6.0",
+      "resolved": "https://registry.npmjs.org/cookie/-/cookie-0.6.0.tgz",
+      "integrity": "sha512-U71cyTamuh1CRNCfpGY6to28lxvNwPG4Guz/EVjgf3Jmzv0vlDp1atT9eS5dDjMYHucpHbWns6Lwf3BKz6svdw==",
+      "license": "MIT",
       "engines": {
         "node": ">= 0.6"
       }
     },
+    "node_modules/express-session/node_modules/cookie-signature": {
+      "version": "1.0.7",
+      "resolved": "https://registry.npmjs.org/cookie-signature/-/cookie-signature-1.0.7.tgz",
+      "integrity": "sha512-NXdYc3dLr47pBkpUCHtKSwIOQXLVn8dZEuywboCOJY/osA0wFSLlSawr3KN8qXJEyX66FcONTH8EIlVuK0yyFA==",
+      "license": "MIT"
+    },
     "node_modules/express-session/node_modules/debug": {
       "version": "2.6.9",
       "resolved": "https://registry.npmjs.org/debug/-/debug-2.6.9.tgz",
diff --git a/package.json b/package.json
index 33393c05..42387ac1 100644
--- a/package.json
+++ b/package.json
@@ -54,7 +54,7 @@
     "connect-redis": "6.0.0",
     "date-fns": "2.28.0",
     "date-fns-tz": "1.3.0",
-    "express-session": "1.17.2",
+    "express-session": "1.18.0",
     "flat": "5.0.2",
     "fs-extra": "10.0.0",
     "got": "11.8.6",