From 8310a6272c086785f33a1aa0ccec736e7fa9d2c5 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sun, 29 Jun 2025 11:32:58 +0000
Subject: [PATCH] fix: package.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-SOCKETIOPARSER-3091012
- https://snyk.io/vuln/SNYK-JS-QS-3153490
- https://snyk.io/vuln/SNYK-JS-SOCKETIOPARSER-1056752
- https://snyk.io/vuln/npm:sshpk:20180409
- https://snyk.io/vuln/SNYK-JS-JSONSCHEMA-1920922
- https://snyk.io/vuln/SNYK-JS-COOKIE-8163060
- https://snyk.io/vuln/SNYK-JS-REDIS-1255645
---
 package.json | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/package.json b/package.json
index 84bb1bc4..72d2d9f0 100644
--- a/package.json
+++ b/package.json
@@ -142,7 +142,7 @@
     "promised-io": "~0.3.3",
     "read-chunk": "^1.0.1",
     "redis": "^2.6.3",
-    "request": "^2.67.0",
+    "request": "^2.88.2",
     "reveal-asq-adapter": "ASQ-USI/reveal-asq-adapter#feat-new-canvas-api",
     "rimraf": "^2.3.4",
     "serve-favicon": "^2.2.0",
@@ -151,10 +151,10 @@
     "sillyname": "0.0.3",
     "simple-errors": "0.0.4",
     "sinon": "^1.17.4",
-    "socket.io": "^1.7.1",
+    "socket.io": "^4.8.0",
     "socket.io-browserify": "~0.9.6",
-    "socket.io-client": "^1.7.1",
-    "socket.io-redis": "^2.0.0",
+    "socket.io-client": "^2.2.0",
+    "socket.io-redis": "^5.4.0",
     "stylus": "~0.32.1",
     "sugar": "~1.3.8",
     "superagent": "^0.15.7",