Security Vulnerabilities Patch

Version: 3.0.0 Date: 2026-05-07

Goal: Fix high/medium severity vulnerabilities (Snyk) in file-type, @nestjs/core, path-to-regexp, fast-xml-parser, lodash, basic-ftp, and @tootallnate/once.

Solution: Updated direct dependencies to pull fixed transitive versions, and added npm overrides for pinned transitive deps.

Implementation Details:

• Updated @nestjs/common, @nestjs/core, @nestjs/platform-express to 11.1.17
• Updated @aws-sdk/client-s3 to 3.1023.0 (pulls fast-xml-parser@5.5.8)
• Updated basic-ftp to 5.2.0
• Added overrides: path-to-regexp@^8.4.0, lodash@^4.18.1, @tootallnate/once@^3.0.1

Files Modified:

• package.json - Dependency upgrades + overrides section
• package-lock.json - Lockfile update