This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
#### Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- package.json
- package-lock.json
#### Vulnerabilities that will be fixed
##### With an upgrade:
Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity
:-------------------------:|-------------------------|:-------------------------|:-------------------------|:-------------------------
 | **768/1000** **Why?** Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 7.5 | Prototype Pollution [SNYK-JS-LODASH-6139239](https://snyk.io/vuln/SNYK-JS-LODASH-6139239) | Yes | Proof of Concept
(*) Note that the real score may have changed since the PR was raised.
Commit messagesPackage name: @nestjs/swagger
The new version differs by 250 commits.
See the full diff
Check the changes in this PR to ensure they won't cause issues with your project.
------------
**Note:** *You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.*
For more information:
🧐 [View latest project report](https://app.snyk.io/org/coronasafe-network/project/9ca839b0-9d29-480f-b4d5-e3035b58530b?utm_source=github&utm_medium=referral&page=fix-pr)
🛠 [Adjust project settings](https://app.snyk.io/org/coronasafe-network/project/9ca839b0-9d29-480f-b4d5-e3035b58530b?utm_source=github&utm_medium=referral&page=fix-pr/settings)
📚 [Read more about Snyk's upgrade and patch logic](https://support.snyk.io/hc/en-us/articles/360003891078-Snyk-patches-to-fix-vulnerabilities)
[//]: # (snyk:metadata:{"prId":"6c29b6cc-9e1c-42df-a36c-10b825e38a53","prPublicId":"6c29b6cc-9e1c-42df-a36c-10b825e38a53","dependencies":[{"name":"@nestjs-modules/mailer","from":"1.4.2","to":"1.9.1"},{"name":"@nestjs/swagger","from":"3.1.0","to":"4.6.0"}],"packageManager":"npm","projectPublicId":"9ca839b0-9d29-480f-b4d5-e3035b58530b","projectUrl":"https://app.snyk.io/org/coronasafe-network/project/9ca839b0-9d29-480f-b4d5-e3035b58530b?utm_source=github&utm_medium=referral&page=fix-pr","type":"auto","patch":[],"vulns":["SNYK-JS-LODASH-6139239"],"upgrade":["SNYK-JS-LODASH-6139239"],"isBreakingChange":true,"env":"prod","prType":"fix","templateVariants":["priorityScore"],"priorityScoreList":[768],"remediationStrategy":"vuln"})
---
**Learn how to fix vulnerabilities with free interactive lessons:**
🦉 [Prototype Pollution](https://learn.snyk.io/lesson/prototype-pollution/?loc=fix-pr)
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
#### Changes included in this PR - Changes to the following files to upgrade the vulnerable dependencies to a fixed version: - package.json - package-lock.json #### Vulnerabilities that will be fixed ##### With an upgrade: Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity :-------------------------:|-------------------------|:-------------------------|:-------------------------|:-------------------------  | **768/1000****Why?** Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 7.5 | Prototype Pollution
[SNYK-JS-LODASH-6139239](https://snyk.io/vuln/SNYK-JS-LODASH-6139239) | Yes | Proof of Concept (*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: @nestjs/swagger
The new version differs by 250 commits.- 4226293 chore(): release v4.6.0
- d9bae0d Merge branch 'qbcbyb-descriptionFromCommentInPlugin'
- b2daad6 feat(): add comments introspection
- 7b96d7f fix(): resolve conflicts
- 5de276c Merge branch 'master' of https://github.com/nestjs/swagger
- 1f5be6b Merge branch 'artemsmirnov-fix-watched-dto-updates'
- ba75282 fix(): resolve conflicts
- e224875 Merge pull request #869 from dsebastien/master
- 1f961d7 Merge pull request #910 from m-shaka/add-ref-to-apiResponse
- 266dc31 Merge branch 'tmtron-912_cli_nullable'
- 9f2028b fix(): align with the rest of codebase
- 766956e Merge branch '912_cli_nullable' of https://github.com/tmtron/swagger into tmtron-912_cli_nullable
- 912c215 Merge branch 'master' of https://github.com/nestjs/swagger
- e96f2a0 fix(): fix windows webpack relative paths issue
- 38ff33a Merge pull request #918 from nestjs/renovate/nestjs-mapped-types-0.x
- fb731c7 fix(deps): update dependency @ nestjs/mapped-types to v0.1.0
- 8585d94 Merge pull request #917 from nestjs/renovate/jest-monorepo
- ff57b4a Merge pull request #916 from tmtron/914_default_jest_config_file_name
- 072e36b chore(deps): update dependency jest to v26.4.1
- 6914b12 feat(@ nestjs/swagger): use default name for jest config
- 0038627 feat(@ nestjs/swagger): CLI plugin no supports nullable
- 037e9c9 Merge pull request #901 from nestjs/renovate/lodash-monorepo
- c417059 chore(deps): update dependency release-it to v13.6.8
- a0b5ec0 feat(api-response): support $ref
See the full diff