From c4b16459ebfd12859b074cf280041c246d14f155 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Wed, 17 Apr 2024 02:42:19 +0000
Subject: [PATCH] fix: upgrade express-session from 1.17.3 to 1.18.0

Snyk has created this PR to upgrade express-session from 1.17.3 to 1.18.0.

See this package in npm:
https://www.npmjs.com/package/express-session

See this project in Snyk:
https://app.snyk.io/org/nechry-wj4/project/9d1e8c12-1b60-4886-962d-aed711b5b6ce?utm_source=github&utm_medium=referral&page=upgrade-pr
---
 package-lock.json | 23 ++++++++++++++---------
 package.json      |  2 +-
 2 files changed, 15 insertions(+), 10 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index b01980d..e728d4f 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -16,7 +16,7 @@
                 "ejs": "^3.1.9",
                 "express": "^4.19.2",
                 "express-rate-limit": "^7.2.0",
-                "express-session": "^1.17.3",
+                "express-session": "^1.18.0",
                 "helmet": "^7.1.0",
                 "http-errors": "~2.0.0",
                 "joi": "^17.12.3",
@@ -1035,12 +1035,12 @@
             }
         },
         "node_modules/express-session": {
-            "version": "1.17.3",
-            "resolved": "https://registry.npmjs.org/express-session/-/express-session-1.17.3.tgz",
-            "integrity": "sha512-4+otWXlShYlG1Ma+2Jnn+xgKUZTMJ5QD3YvfilX3AcocOAbIkVylSWEklzALe/+Pu4qV6TYBj5GwOBFfdKqLBw==",
+            "version": "1.18.0",
+            "resolved": "https://registry.npmjs.org/express-session/-/express-session-1.18.0.tgz",
+            "integrity": "sha512-m93QLWr0ju+rOwApSsyso838LQwgfs44QtOP/WBiwtAgPIo/SAh1a5c6nn2BR6mFNZehTpqKDESzP+fRHVbxwQ==",
             "dependencies": {
-                "cookie": "0.4.2",
-                "cookie-signature": "1.0.6",
+                "cookie": "0.6.0",
+                "cookie-signature": "1.0.7",
                 "debug": "2.6.9",
                 "depd": "~2.0.0",
                 "on-headers": "~1.0.2",
@@ -1053,13 +1053,18 @@
             }
         },
         "node_modules/express-session/node_modules/cookie": {
-            "version": "0.4.2",
-            "resolved": "https://registry.npmjs.org/cookie/-/cookie-0.4.2.tgz",
-            "integrity": "sha512-aSWTXFzaKWkvHO1Ny/s+ePFpvKsPnjc551iI41v3ny/ow6tBG5Vd+FuqGNhh1LxOmVzOlGUriIlOaokOvhaStA==",
+            "version": "0.6.0",
+            "resolved": "https://registry.npmjs.org/cookie/-/cookie-0.6.0.tgz",
+            "integrity": "sha512-U71cyTamuh1CRNCfpGY6to28lxvNwPG4Guz/EVjgf3Jmzv0vlDp1atT9eS5dDjMYHucpHbWns6Lwf3BKz6svdw==",
             "engines": {
                 "node": ">= 0.6"
             }
         },
+        "node_modules/express-session/node_modules/cookie-signature": {
+            "version": "1.0.7",
+            "resolved": "https://registry.npmjs.org/cookie-signature/-/cookie-signature-1.0.7.tgz",
+            "integrity": "sha512-NXdYc3dLr47pBkpUCHtKSwIOQXLVn8dZEuywboCOJY/osA0wFSLlSawr3KN8qXJEyX66FcONTH8EIlVuK0yyFA=="
+        },
         "node_modules/express-session/node_modules/debug": {
             "version": "2.6.9",
             "resolved": "https://registry.npmjs.org/debug/-/debug-2.6.9.tgz",
diff --git a/package.json b/package.json
index ef18b0d..3c7c575 100644
--- a/package.json
+++ b/package.json
@@ -20,7 +20,7 @@
         "ejs": "^3.1.9",
         "express": "^4.19.2",
         "express-rate-limit": "^7.2.0",
-        "express-session": "^1.17.3",
+        "express-session": "^1.18.0",
         "helmet": "^7.1.0",
         "http-errors": "~2.0.0",
         "joi": "^17.12.3",