From 7d70aec6a42f5eb1eb4447b14f2ce433aeb362b5 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sun, 1 Feb 2026 12:13:25 +0000
Subject: [PATCH] fix: ccdaservice/package.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-TAR-15038581
- https://snyk.io/vuln/SNYK-JS-TAR-15032660
- https://snyk.io/vuln/SNYK-JS-TAR-6476909
- https://snyk.io/vuln/SNYK-JS-LODASH-15053838
- https://snyk.io/vuln/SNYK-JS-TAR-15127355
---
 ccdaservice/package.json | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/ccdaservice/package.json b/ccdaservice/package.json
index 2502a367e2f..a73b4710fbc 100644
--- a/ccdaservice/package.json
+++ b/ccdaservice/package.json
@@ -8,8 +8,8 @@
     "license": "GPL-3.0",
     "dependencies": {
         "file": "./oe-blue-button-generate",
-        "libxmljs2": "0.33.0",
-        "lodash": "4.17.21",
+        "libxmljs2": "0.35.0",
+        "lodash": "4.17.23",
         "net": "1.0.2",
         "oe-cqm-service": "6.0.0",
         "oe-schematron-service": "1.1.1",