From 1fac141149571be6551884df071ded766690f9a1 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Sat, 11 Jul 2026 05:31:05 +0000 Subject: [PATCH 1/2] Bump the npm_and_yarn group across 1 directory with 3 updates Bumps the npm_and_yarn group with 3 updates in the / directory: [multer](https://github.com/expressjs/multer), [nodemailer](https://github.com/nodemailer/nodemailer) and [undici](https://github.com/nodejs/undici). Updates `multer` from 2.1.1 to 2.2.0 - [Release notes](https://github.com/expressjs/multer/releases) - [Changelog](https://github.com/expressjs/multer/blob/main/CHANGELOG.md) - [Commits](https://github.com/expressjs/multer/compare/v2.1.1...v2.2.0) Updates `nodemailer` from 8.0.11 to 9.0.1 - [Release notes](https://github.com/nodemailer/nodemailer/releases) - [Changelog](https://github.com/nodemailer/nodemailer/blob/master/CHANGELOG.md) - [Commits](https://github.com/nodemailer/nodemailer/compare/v8.0.11...v9.0.1) Updates `undici` from 7.27.2 to 7.28.0 - [Release notes](https://github.com/nodejs/undici/releases) - [Commits](https://github.com/nodejs/undici/compare/v7.27.2...v7.28.0) --- updated-dependencies: - dependency-name: multer dependency-version: 2.2.0 dependency-type: direct:production - dependency-name: nodemailer dependency-version: 9.0.1 dependency-type: direct:production - dependency-name: undici dependency-version: 7.28.0 dependency-type: indirect ... Signed-off-by: dependabot[bot] --- package-lock.json | 22 +++++++++++----------- package.json | 4 ++-- 2 files changed, 13 insertions(+), 13 deletions(-) diff --git a/package-lock.json b/package-lock.json index 627f267fb6..c73291ebfe 100644 --- a/package-lock.json +++ b/package-lock.json @@ -40,7 +40,7 @@ "module-alias": "^2.3.4", "morgan": "^1.11.0", "ms": "^2.1.3", - "multer": "^2.1.1", + "multer": "^2.2.0", "murmurhash-js": "^1.0.0", "node-2fa": "^2.0.3", "node-unix-socket": "^0.2.7", @@ -96,7 +96,7 @@ "jimp": "^1.6.1", "mailgun.js": "^13.2.0", "node-mailjet": "^6.0.11", - "nodemailer": "^8.0.11" + "nodemailer": "^9.0.1" } }, "node_modules/@borewit/text-codec": { @@ -4681,9 +4681,9 @@ "license": "MIT" }, "node_modules/multer": { - "version": "2.1.1", - "resolved": "https://registry.npmjs.org/multer/-/multer-2.1.1.tgz", - "integrity": "sha512-mo+QTzKlx8R7E5ylSXxWzGoXoZbOsRMpyitcht8By2KHvMbf3tjwosZ/Mu/XYU6UuJ3VZnODIrak5ZrPiPyB6A==", + "version": "2.2.0", + "resolved": "https://registry.npmjs.org/multer/-/multer-2.2.0.tgz", + "integrity": "sha512-6rdyFg2kLrMh9Jee7/BMPuV9lEAd7lLW2YUpF9/YxR7njyoUwwQ0ZPh3TaIY50Sw6vlyD2HW3wGOkTS4P79xrQ==", "license": "MIT", "dependencies": { "append-field": "^1.0.0", @@ -5008,9 +5008,9 @@ } }, "node_modules/nodemailer": { - "version": "8.0.11", - "resolved": "https://registry.npmjs.org/nodemailer/-/nodemailer-8.0.11.tgz", - "integrity": "sha512-nrO/pDAUKl+wXX+lx16tDLbnm0fW6sK/x8mgohaCpg+CdCEl482bD4tCuAZk2DyliruiNTIZxRCoWkDqJEnAiA==", + "version": "9.0.1", + "resolved": "https://registry.npmjs.org/nodemailer/-/nodemailer-9.0.1.tgz", + "integrity": "sha512-Gwv8SQewT616ZM/URn0H54b8PWo/Wum7md3EW2aWy1lO27+WZCX+Xyak3J+NlmHUjDh5ME+uesJUDRbR3Ye8Bw==", "license": "MIT-0", "optional": true, "engines": { @@ -6794,9 +6794,9 @@ } }, "node_modules/undici": { - "version": "7.27.2", - "resolved": "https://registry.npmjs.org/undici/-/undici-7.27.2.tgz", - "integrity": "sha512-uZsKNuzQxDMUY6M3pIMvy5tvlGmtq8XJ2oLAkfRKGNu+1VQAIvLy2xIVG5ATZl5wDXl/tddByAWCizRbOme+TA==", + "version": "7.28.0", + "resolved": "https://registry.npmjs.org/undici/-/undici-7.28.0.tgz", + "integrity": "sha512-cRZYrTDwWznlnRiPjggAGxZXanty6M8RV1ff8Wm4LWXBp7/IG8v5DnOm74DtUBp9OONpK75YlPnIjQqX0dBDtA==", "license": "MIT", "engines": { "node": ">=20.18.1" diff --git a/package.json b/package.json index cfaf821d7c..58c28b752e 100644 --- a/package.json +++ b/package.json @@ -108,7 +108,7 @@ "module-alias": "^2.3.4", "morgan": "^1.11.0", "ms": "^2.1.3", - "multer": "^2.1.1", + "multer": "^2.2.0", "murmurhash-js": "^1.0.0", "node-2fa": "^2.0.3", "node-unix-socket": "^0.2.7", @@ -141,7 +141,7 @@ "jimp": "^1.6.1", "mailgun.js": "^13.2.0", "node-mailjet": "^6.0.11", - "nodemailer": "^8.0.11" + "nodemailer": "^9.0.1" }, "overrides": { "typeorm": { From 3144bb26a4c5e615b041c1ace5037de20154425f Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" Date: Sat, 11 Jul 2026 05:31:44 +0000 Subject: [PATCH 2/2] build(deps): update npm dependencies hash [dependabot skip] --- flake.lock | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/flake.lock b/flake.lock index 250b442898..fdfbfc8297 100644 --- a/flake.lock +++ b/flake.lock @@ -20,11 +20,11 @@ }, "nixpkgs": { "locked": { - "lastModified": 1783638081, - "narHash": "sha256-MEaLaGfLCsfvluxGzYZ4orFt70kA7EQA+uHtw2fNPcE=", + "lastModified": 1783745921, + "narHash": "sha256-2tlZK9Ul4tOQUV1XpAssYJ8yF/r3gsA4rlTGSXP6psI=", "owner": "NixOS", "repo": "nixpkgs", - "rev": "431597148b380c047b36f6bc9beb80702d5875ca", + "rev": "10c27492e27a25587a757b159b34513ce7ca6a4c", "type": "github" }, "original": {