From bfcbf6e7594195f78be9822b35abeab3ca5959da Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 4 Nov 2025 09:37:48 +0000
Subject: [PATCH] fix: package.json & package-lock.json to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-TYPEORM-13746469
---
 package-lock.json | 20 ++++++++------------
 package.json      |  2 +-
 2 files changed, 9 insertions(+), 13 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index cdd3ecd..ed73f62 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -52,7 +52,7 @@
         "songlyrics": "^2.4.8",
         "sqlite3": "^5.1.7",
         "stackblur-canvas": "^2.7.0",
-        "typeorm": "^0.3.22",
+        "typeorm": "^0.3.26",
         "undici": "^7.16.0",
         "youtubei.js": "^14.0.0"
       },
@@ -6181,7 +6181,6 @@
       "version": "1.6.0",
       "resolved": "https://registry.npmjs.org/dedent/-/dedent-1.6.0.tgz",
       "integrity": "sha512-F1Z+5UCFpmQUzJa11agbyPVMbpgT/qA3/SKyJ1jyBgm7dUcUEa8v9JwDkerSQXfakBwFljIxhOJqGkjUwZ9FSA==",
-      "dev": true,
       "license": "MIT",
       "peerDependencies": {
         "babel-plugin-macros": "^3.1.0"
@@ -13821,9 +13820,9 @@
       "license": "MIT"
     },
     "node_modules/typeorm": {
-      "version": "0.3.22",
-      "resolved": "https://registry.npmjs.org/typeorm/-/typeorm-0.3.22.tgz",
-      "integrity": "sha512-P/Tsz3UpJ9+K0oryC0twK5PO27zejLYYwMsE8SISfZc1lVHX+ajigiOyWsKbuXpEFMjD9z7UjLzY3+ElVOMMDA==",
+      "version": "0.3.26",
+      "resolved": "https://registry.npmjs.org/typeorm/-/typeorm-0.3.26.tgz",
+      "integrity": "sha512-o2RrBNn3lczx1qv4j+JliVMmtkPSqEGpG0UuZkt9tCfWkoXKu8MZnjvp2GjWPll1SehwemQw6xrbVRhmOglj8Q==",
       "license": "MIT",
       "dependencies": {
         "@sqltools/formatter": "^1.2.5",
@@ -13832,6 +13831,7 @@
         "buffer": "^6.0.3",
         "dayjs": "^1.11.13",
         "debug": "^4.4.0",
+        "dedent": "^1.6.0",
         "dotenv": "^16.4.7",
         "glob": "^10.4.5",
         "sha.js": "^2.4.11",
@@ -13853,9 +13853,8 @@
       },
       "peerDependencies": {
         "@google-cloud/spanner": "^5.18.0 || ^6.0.0 || ^7.0.0",
-        "@sap/hana-client": "^2.12.25",
-        "better-sqlite3": "^8.0.0 || ^9.0.0 || ^10.0.0 || ^11.0.0",
-        "hdb-pool": "^0.1.6",
+        "@sap/hana-client": "^2.14.22",
+        "better-sqlite3": "^8.0.0 || ^9.0.0 || ^10.0.0 || ^11.0.0 || ^12.0.0",
         "ioredis": "^5.0.4",
         "mongodb": "^5.8.0 || ^6.0.0",
         "mssql": "^9.1.1 || ^10.0.1 || ^11.0.1",
@@ -13864,7 +13863,7 @@
         "pg": "^8.5.1",
         "pg-native": "^3.0.0",
         "pg-query-stream": "^4.0.0",
-        "redis": "^3.1.1 || ^4.0.0",
+        "redis": "^3.1.1 || ^4.0.0 || ^5.0.14",
         "reflect-metadata": "^0.1.14 || ^0.2.0",
         "sql.js": "^1.4.0",
         "sqlite3": "^5.0.3",
@@ -13881,9 +13880,6 @@
         "better-sqlite3": {
           "optional": true
         },
-        "hdb-pool": {
-          "optional": true
-        },
         "ioredis": {
           "optional": true
         },
diff --git a/package.json b/package.json
index 5ef54d7..3ab3d4e 100644
--- a/package.json
+++ b/package.json
@@ -93,7 +93,7 @@
     "songlyrics": "^2.4.8",
     "sqlite3": "^5.1.7",
     "stackblur-canvas": "^2.7.0",
-    "typeorm": "^0.3.22",
+    "typeorm": "^0.3.26",
     "undici": "^7.16.0",
     "youtubei.js": "^14.0.0"
   },