From dc57c7ffb239564f619892a2002f41b00803bf27 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Wed, 3 Dec 2025 03:33:11 +0000
Subject: [PATCH] fix: package.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-VALIDATOR-13653476
- https://snyk.io/vuln/SNYK-JS-NODEFORGE-14114940
- https://snyk.io/vuln/SNYK-JS-NODEFORGE-14125745
- https://snyk.io/vuln/SNYK-JS-EXPRESS-14157151
- https://snyk.io/vuln/SNYK-JS-NODEFORGE-14125097
---
 package.json | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/package.json b/package.json
index 135a042c8..726a4f3c6 100644
--- a/package.json
+++ b/package.json
@@ -132,7 +132,7 @@
     "@dannycoates/express-ws": "^5.0.3",
     "@fluent/bundle": "^0.13.0",
     "@fluent/langneg": "^0.3.0",
-    "@google-cloud/storage": "^5.1.2",
+    "@google-cloud/storage": "^5.19.0",
     "@peculiar/webcrypto": "^1.1.1",
     "@sentry/node": "^5.20.1",
     "aws-sdk": "^2.568.0",
@@ -140,8 +140,8 @@
     "choo": "^7.0.0",
     "cldr-core": "^35.1.0",
     "configstore": "github:dannycoates/configstore#master",
-    "convict": "^5.2.0",
-    "express": "^4.17.1",
+    "convict": "^6.0.0",
+    "express": "^4.22.0",
     "helmet": "^3.23.3",
     "mkdirp": "^0.5.1",
     "mozlog": "^2.2.0",