[Snyk] Fix for 2 vulnerabilities

[dhcrees]

Snyk has created this PR to fix 2 vulnerabilities in the npm dependencies of this project.

Snyk changed the following file(s):

• package.json
• package-lock.json

Vulnerabilities that will be fixed with an upgrade:

	Issue	Score
	Prototype Pollution SNYK-JS-AXIOS-15252993	828
	Allocation of Resources Without Limits or Throttling SNYK-JS-QS-15268416	708

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• Max score is 1000. Note that the real score may have changed since the PR was raised.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Prototype Pollution
🦉 Allocation of Resources Without Limits or Throttling

[dhcrees]

This set of upgrades includes minor updates to axios and body-parser, and a minor update to express that requires attention.

express@4.21.2 → express@4.22.0 (Medium Risk)

This specific version introduces a behavioral change in the extended query parser. While this change was unintentional and reverted in version 4.22.1, it is present in 4.22.0 and could affect how query strings are parsed.

Recommendation: Verify that your application's query parameter handling is not adversely affected by this change, or consider upgrading directly to express@4.22.1 or higher to avoid this issue.

Other Upgrades

• axios@1.10.0 → axios@1.13.5 (Low Risk): This upgrade includes security patches, bug fixes, and performance improvements. No breaking API changes were identified in the release notes for this version range.
• body-parser@1.20.3 → body-parser@1.20.4 (Low Risk): This is a patch release containing dependency updates and documentation changes with no breaking changes.

Notice 🤖: This content was augmented using artificial intelligence. AI-generated content may contain errors and should be reviewed for accuracy before use.