chore(soc2): upgrade express and dd-trace to fix vulnerabilities

dinostheo · dinostheo · commit 2016719265d1 · 2024-10-30T11:18:06.000+01:00
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -1,5 +1,8 @@
 # Changelog
 
+## [0.5.9] - 2024-10-30
+- Upgrade to `dd-trace` and `express` to their latest minor version.
+
 ## [0.5.8] - 2024-10-23
 - Redact req, res, context.req and context.res from logs - req and res at root level are added by pinot-http middleware
 
diff --git a/package-lock.json b/package-lock.json
diff --git a/package.json b/package.json
@@ -1,6 +1,6 @@
 {
   "name": "@bufferapp/bufflog",
-  "version": "0.5.8",
+  "version": "0.5.9",
   "description": "logger for all javascript and typescript Buffer services",
   "main": "dist/bufflog.js",
   "scripts": {
@@ -19,11 +19,11 @@
   },
   "homepage": "https://github.com/bufferapp/js-bufflog#readme",
   "devDependencies": {
-    "@types/express": "4.17.13",
+    "@types/express": "4.17.21",
     "@types/node": "18.15.3",
     "@types/pino": "^5.15.5",
-    "dd-trace": "5.22.0",
-    "express": "4.20.0",
+    "dd-trace": "5.24.0",
+    "express": "4.21.1",
     "typescript": "4.9.5"
   },
   "dependencies": {
