From 898456b7e0ece877d888caf3cd521489d4b71dd4 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 9 Oct 2025 09:06:55 +0000
Subject: [PATCH 1/2] fix: api/Dockerfile to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-DEBIAN12-ZLIB-6008963
- https://snyk.io/vuln/SNYK-DEBIAN12-TAR-1560620
- https://snyk.io/vuln/SNYK-DEBIAN12-GLIBC-1547196
- https://snyk.io/vuln/SNYK-DEBIAN12-GLIBC-1547196
- https://snyk.io/vuln/SNYK-DEBIAN12-SQLITE3-11191064
---
 api/Dockerfile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/api/Dockerfile b/api/Dockerfile
index 79a4892768..d3e2e0b97d 100644
--- a/api/Dockerfile
+++ b/api/Dockerfile
@@ -1,5 +1,5 @@
 # base image
-FROM python:3.12-slim-bookworm AS base
+FROM python:3.14.0-slim-bookworm AS base
 
 WORKDIR /app/api
 

From a1ed03bc4f81dbc6b84d259f3bac858eae99ad3c Mon Sep 17 00:00:00 2001
From: "snyk-io[bot]" <141718529+snyk-io[bot]@users.noreply.github.com>
Date: Mon, 15 Dec 2025 03:23:45 +0000
Subject: [PATCH 2/2] fix: web/package.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-NEXT-14400636
- https://snyk.io/vuln/SNYK-JS-NEXT-14400644
---
 web/package.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/web/package.json b/web/package.json
index cf49429659..6888a1c497 100644
--- a/web/package.json
+++ b/web/package.json
@@ -102,7 +102,7 @@
     "mime": "^4.0.4",
     "mitt": "^3.0.1",
     "negotiator": "^1.0.0",
-    "next": "15.5.0",
+    "next": "15.5.9",
     "next-pwa": "^5.6.0",
     "next-themes": "^0.4.3",
     "pinyin-pro": "^3.25.0",