[Snyk] Fix for 20 vulnerabilities

[rflihxyz]

Snyk has created this PR to fix 20 vulnerabilities in the npm dependencies of this project.

Snyk changed the following file(s):

• packages/api/package.json

Vulnerabilities that will be fixed with an upgrade:

	Issue	Score
	Server-side Request Forgery (SSRF) SNYK-JS-AXIOS-7361793	761
	Uncaught Exception SNYK-JS-MULTER-10185673	756
	Cross-site Request Forgery (CSRF) SNYK-JS-AXIOS-6032459	676
	Uncaught Exception SNYK-JS-MULTER-10299078	674
	Allocation of Resources Without Limits or Throttling SNYK-JS-AXIOS-12613773	666
	Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHTOREGEXP-7925106	666
	Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHTOREGEXP-8482416	666
	Missing Release of Memory after Effective Lifetime SNYK-JS-MULTER-10185675	649
	Uncaught Exception SNYK-JS-MULTER-10773732	649
	Server-side Request Forgery (SSRF) SNYK-JS-AXIOS-9292519	631
	Asymmetric Resource Consumption (Amplification) SNYK-JS-BODYPARSER-7926860	624
	Prototype Pollution SNYK-JS-AXIOS-6144788	589
	Regular Expression Denial of Service (ReDoS) SNYK-JS-AXIOS-6124857	586
	Arbitrary Code Injection SNYK-JS-NESTJSCOMMON-9538801	561
	Cross-site Scripting (XSS) SNYK-JS-COOKIE-8163060	529
	Server-side Request Forgery (SSRF) SNYK-JS-AXIOS-9403194	524
	Open Redirect SNYK-JS-EXPRESS-6474509	519
	Cross-site Scripting SNYK-JS-EXPRESS-7926867	469
	Cross-site Scripting SNYK-JS-SEND-7926862	319
	Cross-site Scripting SNYK-JS-SERVESTATIC-7926865	319

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• Max score is 1000. Note that the real score may have changed since the PR was raised.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Allocation of Resources Without Limits or Throttling
🦉 Cross-site Request Forgery (CSRF)
🦉 Regular Expression Denial of Service (ReDoS)
🦉 More lessons are available in Snyk Learn

[changeset-bot]

⚠️ No Changeset found

Latest commit: 444ff30

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

[CLAassistant]

Thank you for your submission! We really appreciate it. Like many open source projects, we ask that you sign our Contributor License Agreement before we can accept your contribution.
_{You have signed the CLA already but the status is still pending? Let us recheck it.}

[zeropath-ai]

✅ No security or compliance issues detected. Reviewed everything up to 444ff30.

Security Overview

• 🔎 Scanned files: 1 changed file(s)
• 🔗 Scan Link: https://zeropath.com/app/repositories/cd5cf9f7-c02f-42e4-b297-7e957bfab2a4?scanId=ea19e37e-ab01-49b3-841d-75def3b0f2b2&codeScanTypes=PrScan&tab=issues

Detected Code Changes

Change Type	Relevant files
Bug Fix	► packages/api/package.json     Bump dependency versions: @nestjs/common, @nestjs/platform-express, @nestjs/swagger, axios (update package version ranges)

Reply to this PR with @zeropath-ai followed by a description of what change you want and we'll auto-submit a change to this PR to implement it.