From 9c5bb25cfeb2a8976f2d74a03658d1273f5fc789 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 2 Jul 2024 22:58:28 +0000
Subject: [PATCH] fix: package.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-ASYNC-7414156
---
 package.json | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/package.json b/package.json
index 5d47f4c2c6..51ec5d6461 100644
--- a/package.json
+++ b/package.json
@@ -12,7 +12,7 @@
   "dependencies": {
     "async": "^1.5.2",
     "bcrypt-nodejs": "^0.0.3",
-    "bitgo": "0.11.64",
+    "bitgo": "38.2.1",
     "body-parser": "^1.14.2",
     "cheerio": "^0.20.0",
     "clockwork": "^0.1.0",
@@ -35,7 +35,7 @@
     "lodash": "^4.1.0",
     "lusca": "^1.3.0",
     "method-override": "^2.3.5",
-    "mongoose": "^4.3.7",
+    "mongoose": "^5.7.3",
     "morgan": "^1.6.1",
     "node-foursquare": "^0.3.0",
     "node-linkedin": "^0.5.3",