[Snyk] Security upgrade express from 4.18.1 to 4.22.0

[bkizer-tenable]

Snyk has created this PR to fix 1 vulnerabilities in the npm dependencies of this project.

Snyk changed the following file(s):

• apps/dockerapp/package.json
• apps/dockerapp/package-lock.json

Vulnerabilities that will be fixed with an upgrade:

	Issue	Score
	Allocation of Resources Without Limits or Throttling SNYK-JS-QS-14724253	828

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• Max score is 1000. Note that the real score may have changed since the PR was raised.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Allocation of Resources Without Limits or Throttling

[bkizer-tenable]

This minor version upgrade introduces a notable, albeit unintentional, breaking change in version 4.22.0 related to the default query parser.

• The extended query parser may cause the req.query object to inherit properties from Object.prototype, which can lead to unexpected behavior or prototype pollution if query parameters have conflicting names. [4, 11]
• This issue was classified as a bug and was reverted in version 4.22.1. [4]

Other changes between 4.18.1 and 4.22.0 include security fixes for open redirects and several deprecations, such as for res.redirect("back"). [1]

Recommendation: It is highly recommended to upgrade to version 4.22.1 or newer to avoid the query parser bug present in 4.22.0.

Source: Express GitHub Releases

Notice 🤖: This content was augmented using artificial intelligence. AI-generated content may contain errors and should be reviewed for accuracy before use.