From f16eca844403ec340ae23cd8846b12aa99ea7a36 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 11 Sep 2024 07:57:39 +0000
Subject: [PATCH 1/2] Bump express from 4.19.2 to 4.20.0

Bumps [express](https://github.com/expressjs/express) from 4.19.2 to 4.20.0.
- [Release notes](https://github.com/expressjs/express/releases)
- [Changelog](https://github.com/expressjs/express/blob/master/History.md)
- [Commits](https://github.com/expressjs/express/compare/4.19.2...4.20.0)

---
updated-dependencies:
- dependency-name: express
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 package.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/package.json b/package.json
index 8ff5114f..d37054a1 100644
--- a/package.json
+++ b/package.json
@@ -39,7 +39,7 @@
     "async": "2.6.4",
     "body-parser": "1.20.3",
     "dateformat": "3.0.3",
-    "express": "4.19.2",
+    "express": "4.20.0",
     "iotagent-node-lib": "https://github.com/telefonicaid/iotagent-node-lib.git#master",
     "logops": "2.1.2",
     "mqtt": "4.3.7",

From 753f79ef6a74cd5148b948af394abbbfb5f65aea Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Ferm=C3=ADn=20Gal=C3=A1n=20M=C3=A1rquez?=
 <fgalan@users.noreply.github.com>
Date: Wed, 11 Sep 2024 10:42:54 +0200
Subject: [PATCH 2/2] ADD CNR entry

---
 CHANGES_NEXT_RELEASE | 1 +
 1 file changed, 1 insertion(+)

diff --git a/CHANGES_NEXT_RELEASE b/CHANGES_NEXT_RELEASE
index 2f706259..1a71b875 100644
--- a/CHANGES_NEXT_RELEASE
+++ b/CHANGES_NEXT_RELEASE
@@ -1 +1,2 @@
+Upgrade express from 4.19.2 to 4.20.0 due to a vulnerability
 Upgrade body-parser dep from 1.18.3 to 1.20.3 due to a vulnerability