fix(security): auto audit fix

[sendbird-sdk-deployment]

Security Audit Report

Repository: sendbird/sendbird-task-javascript-sample
Package Manager: npm
Date: 2026-05-25

Summary

	Critical	High	Moderate	Low	Total
Before	0	0	9	0	8
Fixed	0	0	4	0	4
Remaining	0	0	5	0	5

Fixed Vulnerabilities

Package	Severity	Detail
body-parser	moderate	-
express	moderate	-
qs	moderate	qs has a remotely triggerable DoS: qs.stringify crashes with TypeError on null/undefined entries in comma-format arrays when encodeValuesOnly is set
ws	moderate	ws: Uninitialized memory disclosure

Remaining Vulnerabilities (requires manual review)

Package	Severity	Detail
@pmmmwh/react-refresh-webpack-plugin	moderate	-
react-scripts	moderate	-
sockjs	moderate	-
uuid	moderate	uuid: Missing buffer bounds check in v3/v5/v6 when buf is provided
webpack-dev-server	moderate	-

Changed files

package-lock.json

Review checklist

• Verify no breaking changes in updated dependencies
• Confirm CI passes