From 60205690624b00ef808cf1d8c1d8c617fbe943b4 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Mon, 17 Oct 2022 09:36:02 +0000
Subject: [PATCH] fix: upgrade multer from 1.4.3 to 1.4.4

Snyk has created this PR to upgrade multer from 1.4.3 to 1.4.4.

See this package in npm:
https://www.npmjs.com/package/multer

See this project in Snyk:
https://app.snyk.io/org/keeganc09/project/83107672-c56c-4651-a5d5-dc0da1016d2a?utm_source=github&utm_medium=referral&page=upgrade-pr
---
 Backend/package-lock.json | 15 ++++++++-------
 Backend/package.json      |  2 +-
 2 files changed, 9 insertions(+), 8 deletions(-)

diff --git a/Backend/package-lock.json b/Backend/package-lock.json
index 03580d9..114b0ba 100644
--- a/Backend/package-lock.json
+++ b/Backend/package-lock.json
@@ -13,7 +13,7 @@
         "dotenv": "^10.0.0",
         "express": "^4.17.1",
         "mongoose": "^6.0.12",
-        "multer": "^1.4.3",
+        "multer": "^1.4.4",
         "nanoid": "^3.1.30"
       }
     },
@@ -636,9 +636,10 @@
       "integrity": "sha1-VgiurfwAvmwpAd9fmGF4jeDVl8g="
     },
     "node_modules/multer": {
-      "version": "1.4.3",
-      "resolved": "https://registry.npmjs.org/multer/-/multer-1.4.3.tgz",
-      "integrity": "sha512-np0YLKncuZoTzufbkM6wEKp68EhWJXcU6fq6QqrSwkckd2LlMgd1UqhUJLj6NS/5sZ8dE8LYDWslsltJznnXlg==",
+      "version": "1.4.4",
+      "resolved": "https://registry.npmjs.org/multer/-/multer-1.4.4.tgz",
+      "integrity": "sha512-2wY2+xD4udX612aMqMcB8Ws2Voq6NIUPEtD1be6m411T4uDH/VtL9i//xvcyFlTVfRdaBsk7hV5tgrGQqhuBiw==",
+      "deprecated": "Multer 1.x is affected by CVE-2022-24434. This is fixed in v1.4.4-lts.1 which drops support for versions of Node.js before 6. Please upgrade to at least Node.js 6 and version 1.4.4-lts.1 of Multer. If you need support for older versions of Node.js, we are open to accepting patches that would fix the CVE on the main 1.x release line, whilst maintaining compatibility with Node.js 0.10.",
       "dependencies": {
         "append-field": "^1.0.0",
         "busboy": "^0.2.11",
@@ -1446,9 +1447,9 @@
       "integrity": "sha1-VgiurfwAvmwpAd9fmGF4jeDVl8g="
     },
     "multer": {
-      "version": "1.4.3",
-      "resolved": "https://registry.npmjs.org/multer/-/multer-1.4.3.tgz",
-      "integrity": "sha512-np0YLKncuZoTzufbkM6wEKp68EhWJXcU6fq6QqrSwkckd2LlMgd1UqhUJLj6NS/5sZ8dE8LYDWslsltJznnXlg==",
+      "version": "1.4.4",
+      "resolved": "https://registry.npmjs.org/multer/-/multer-1.4.4.tgz",
+      "integrity": "sha512-2wY2+xD4udX612aMqMcB8Ws2Voq6NIUPEtD1be6m411T4uDH/VtL9i//xvcyFlTVfRdaBsk7hV5tgrGQqhuBiw==",
       "requires": {
         "append-field": "^1.0.0",
         "busboy": "^0.2.11",
diff --git a/Backend/package.json b/Backend/package.json
index 3972161..219fad0 100644
--- a/Backend/package.json
+++ b/Backend/package.json
@@ -13,7 +13,7 @@
     "dotenv": "^10.0.0",
     "express": "^4.17.1",
     "mongoose": "^6.0.12",
-    "multer": "^1.4.3",
+    "multer": "^1.4.4",
     "nanoid": "^3.1.30"
   }
 }