From 1aa8d09430c1a7e0c33ee67320bc483d01c6563d Mon Sep 17 00:00:00 2001
From: Amna Kousar <87420456+amnaak@users.noreply.github.com>
Date: Wed, 18 Jan 2023 16:14:47 +0500
Subject: [PATCH] jsonwebtoken package needs to be updated (Remote code
 execution vulnerability found in the JsonWebToken library (CVE-2022-23529))

---
 package.json | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/package.json b/package.json
index ef3f2657b..bed495312 100644
--- a/package.json
+++ b/package.json
@@ -57,7 +57,7 @@
     "install": "^0.13.0",
     "ioredis": "^4.14.0",
     "jscommons": "^4.0.0",
-    "jsonwebtoken": "^8.5.1",
+    "jsonwebtoken": "9.0.0",
     "lodash": "^4.17.4",
     "mime-types": "2.1.35",
     "mongodb": "^4.10.0",
@@ -84,7 +84,7 @@
     "@types/express": "4.17.13",
     "@types/fs-extra": "8.1.2",
     "@types/ioredis": "3.2.24",
-    "@types/jsonwebtoken": "8.5.5",
+    "@types/jsonwebtoken": "9.0.0",
     "@types/lodash": "4.14.176",
     "@types/mime-types": "2.1.1",
     "@types/mocha": "8.2.3",