From a694d29671ed0d453e98bb7d53ee2bc0df261070 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 5 Nov 2025 14:50:36 +0000
Subject: [PATCH] Bump on-headers and morgan

Bumps [on-headers](https://github.com/jshttp/on-headers) to 1.1.0 and updates ancestor dependency [morgan](https://github.com/expressjs/morgan). These dependencies need to be updated together.


Updates `on-headers` from 1.0.2 to 1.1.0
- [Release notes](https://github.com/jshttp/on-headers/releases)
- [Changelog](https://github.com/jshttp/on-headers/blob/master/HISTORY.md)
- [Commits](https://github.com/jshttp/on-headers/compare/v1.0.2...v1.1.0)

Updates `morgan` from 1.10.0 to 1.10.1
- [Release notes](https://github.com/expressjs/morgan/releases)
- [Changelog](https://github.com/expressjs/morgan/blob/master/HISTORY.md)
- [Commits](https://github.com/expressjs/morgan/compare/1.10.0...1.10.1)

---
updated-dependencies:
- dependency-name: on-headers
  dependency-version: 1.1.0
  dependency-type: indirect
- dependency-name: morgan
  dependency-version: 1.10.1
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 package-lock.json | 34 +++++++++++++++++-----------------
 package.json      |  2 +-
 2 files changed, 18 insertions(+), 18 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index b3ed3b244..3c0dce665 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -1,12 +1,12 @@
 {
     "name": "cve-services",
-    "version": "2.6.0",
+    "version": "ur-v0.2.0-beta.3",
     "lockfileVersion": 2,
     "requires": true,
     "packages": {
         "": {
             "name": "cve-services",
-            "version": "2.6.0",
+            "version": "ur-v0.2.0-beta.3",
             "license": "(CC0)",
             "dependencies": {
                 "ajv": "^8.6.2",
@@ -30,7 +30,7 @@
                 "mongo-cursor-pagination": "^8.1.3",
                 "mongoose": "^8.8.3",
                 "mongoose-aggregate-paginate-v2": "1.0.6",
-                "morgan": "^1.9.1",
+                "morgan": "^1.10.1",
                 "node-dev": "^7.4.3",
                 "packageurl-js": "^2.0.1",
                 "prompt-sync": "^4.2.0",
@@ -6372,15 +6372,15 @@
             }
         },
         "node_modules/morgan": {
-            "version": "1.10.0",
-            "resolved": "https://registry.npmjs.org/morgan/-/morgan-1.10.0.tgz",
-            "integrity": "sha512-AbegBVI4sh6El+1gNwvD5YIck7nSA36weD7xvIxG4in80j/UoK8AEGaWnnz8v1GxonMCltmlNs5ZKbGvl9b1XQ==",
+            "version": "1.10.1",
+            "resolved": "https://registry.npmjs.org/morgan/-/morgan-1.10.1.tgz",
+            "integrity": "sha512-223dMRJtI/l25dJKWpgij2cMtywuG/WiUKXdvwfbhGKBhy1puASqXwFzmWZ7+K73vUPoR7SS2Qz2cI/g9MKw0A==",
             "dependencies": {
                 "basic-auth": "~2.0.1",
                 "debug": "2.6.9",
                 "depd": "~2.0.0",
                 "on-finished": "~2.3.0",
-                "on-headers": "~1.0.2"
+                "on-headers": "~1.1.0"
             },
             "engines": {
                 "node": ">= 0.8.0"
@@ -7047,9 +7047,9 @@
             }
         },
         "node_modules/on-headers": {
-            "version": "1.0.2",
-            "resolved": "https://registry.npmjs.org/on-headers/-/on-headers-1.0.2.tgz",
-            "integrity": "sha512-pZAE+FJLoyITytdqK0U5s+FIpjN0JP3OzFi/u8Rx+EV5/W+JTWGXG8xFzevE7AjBfDqHv/8vL8qQsIhHnqRkrA==",
+            "version": "1.1.0",
+            "resolved": "https://registry.npmjs.org/on-headers/-/on-headers-1.1.0.tgz",
+            "integrity": "sha512-737ZY3yNnXy37FHkQxPzt4UZ2UWPWiCZWLvFZ4fu5cueciegX0zGPnrlY6bwRg4FdQOe9YU8MkmJwGhoMybl8A==",
             "engines": {
                 "node": ">= 0.8"
             }
@@ -15231,15 +15231,15 @@
             "integrity": "sha512-UuALu+mjhQa1K9lMQvjLL3vm3iALvNw8PQNIh2gp1b+tO5hUa0NC0Wf6/8QrT9PSJVTihXaD8hQVy3J4e0jO0Q=="
         },
         "morgan": {
-            "version": "1.10.0",
-            "resolved": "https://registry.npmjs.org/morgan/-/morgan-1.10.0.tgz",
-            "integrity": "sha512-AbegBVI4sh6El+1gNwvD5YIck7nSA36weD7xvIxG4in80j/UoK8AEGaWnnz8v1GxonMCltmlNs5ZKbGvl9b1XQ==",
+            "version": "1.10.1",
+            "resolved": "https://registry.npmjs.org/morgan/-/morgan-1.10.1.tgz",
+            "integrity": "sha512-223dMRJtI/l25dJKWpgij2cMtywuG/WiUKXdvwfbhGKBhy1puASqXwFzmWZ7+K73vUPoR7SS2Qz2cI/g9MKw0A==",
             "requires": {
                 "basic-auth": "~2.0.1",
                 "debug": "2.6.9",
                 "depd": "~2.0.0",
                 "on-finished": "~2.3.0",
-                "on-headers": "~1.0.2"
+                "on-headers": "~1.1.0"
             },
             "dependencies": {
                 "debug": {
@@ -15756,9 +15756,9 @@
             }
         },
         "on-headers": {
-            "version": "1.0.2",
-            "resolved": "https://registry.npmjs.org/on-headers/-/on-headers-1.0.2.tgz",
-            "integrity": "sha512-pZAE+FJLoyITytdqK0U5s+FIpjN0JP3OzFi/u8Rx+EV5/W+JTWGXG8xFzevE7AjBfDqHv/8vL8qQsIhHnqRkrA=="
+            "version": "1.1.0",
+            "resolved": "https://registry.npmjs.org/on-headers/-/on-headers-1.1.0.tgz",
+            "integrity": "sha512-737ZY3yNnXy37FHkQxPzt4UZ2UWPWiCZWLvFZ4fu5cueciegX0zGPnrlY6bwRg4FdQOe9YU8MkmJwGhoMybl8A=="
         },
         "once": {
             "version": "1.4.0",
diff --git a/package.json b/package.json
index 64f35b9d9..78e2c0557 100644
--- a/package.json
+++ b/package.json
@@ -48,7 +48,7 @@
         "mongo-cursor-pagination": "^8.1.3",
         "mongoose": "^8.8.3",
         "mongoose-aggregate-paginate-v2": "1.0.6",
-        "morgan": "^1.9.1",
+        "morgan": "^1.10.1",
         "node-dev": "^7.4.3",
         "packageurl-js": "^2.0.1",
         "prompt-sync": "^4.2.0",