prostgles-server 4.2.46 → 4.2.47

package/lib/DboBuilder/find.ts

@@ -13,7 +13,11 @@ export const find = async function(this: ViewHandler, filter?: Filter, selectPar
   try {
     await this._log({ command: "find", localParams, data: { filter, selectParams } });
     filter = filter || {};
-    const allowedReturnTypes = Object.keys({ row: 1, statement: 1, value: 1, values: 1, "statement-no-rls": 1, "statement-where": 1 } satisfies Record<Required<SelectParams>["returnType"], 1>);
+    const allowedReturnTypes = Object.keys({ 
+      row: 1, statement: 1, value: 1, values: 1, 
+      "statement-no-rls": 1, "statement-where": 1,
+    } satisfies Record<Required<SelectParams>["returnType"], 1>);
+
     const { returnType } = selectParams || {};
     if (returnType && !allowedReturnTypes.includes(returnType)) {
       throw `returnType (${returnType}) can only be ${allowedReturnTypes.join(" OR ")}`
@@ -23,12 +27,13 @@ export const find = async function(this: ViewHandler, filter?: Filter, selectPar
 
     if (testRule) return [];
     if (selectParams) {
-      const good_params = Object.keys({ 
-        "select": 1, "orderBy": 1, "offset": 1, "limit": 1, "returnType": 1, "groupBy": 1 
+      const validParamNames = Object.keys({ 
+        "select": 1, "orderBy": 1, "offset": 1, "limit": 1, 
+        "returnType": 1, "groupBy": 1, "having": 1
       } satisfies Record<keyof SelectParams, 1>);
       
-      const bad_params = Object.keys(selectParams).filter(k => !good_params.includes(k as any));
-      if (bad_params && bad_params.length) throw "Invalid params: " + bad_params.join(", ") + " \n Expecting: " + good_params.join(", ");
+      const invalidParams = Object.keys(selectParams).filter(k => !validParamNames.includes(k as any));
+      if (invalidParams && invalidParams.length) throw "Invalid params: " + invalidParams.join(", ") + " \n Expecting: " + validParamNames.join(", ");
     }
 
     /* Validate publish */
@@ -38,9 +43,15 @@ export const find = async function(this: ViewHandler, filter?: Filter, selectPar
       const fields = tableRules.select.fields; 
       const maxLimit = tableRules.select.maxLimit;
 
-      if (<any>tableRules.select !== "*" && typeof tableRules.select !== "boolean" && !isObject(tableRules.select)) throw `\nINVALID publish.${this.name}.select\nExpecting any of: "*" | { fields: "*" } | true | false`
-      if (!fields) throw ` invalid ${this.name}.select rule -> fields (required) setting missing.\nExpecting any of: "*" | { col_name: false } | { col1: true, col2: true }`;
-      if (maxLimit && !Number.isInteger(maxLimit)) throw ` invalid publish.${this.name}.select.maxLimit -> expecting integer but got ` + maxLimit;
+      if (<any>tableRules.select !== "*" && typeof tableRules.select !== "boolean" && !isObject(tableRules.select)) {
+        throw `\nInvalid publish.${this.name}.select\nExpecting any of: "*" | { fields: "*" } | true | false`;
+      }
+      if (!fields) {
+        throw ` invalid ${this.name}.select rule -> fields (required) setting missing.\nExpecting any of: "*" | { col_name: false } | { col1: true, col2: true }`;
+      }
+      if (maxLimit && !Number.isInteger(maxLimit)) {
+        throw ` invalid publish.${this.name}.select.maxLimit -> expecting integer but got ` + maxLimit;
+      }
     }
 
     const _selectParams = selectParams ?? {}
@@ -68,7 +79,7 @@ export const find = async function(this: ViewHandler, filter?: Filter, selectPar
         return [];
       } catch (e) {
         console.error(e);
-        throw `INTERNAL ERROR: Publish config is not valid for publish.${this.name}.select `
+        throw `Internal error: publish config is not valid for publish.${this.name}.select `
       }
     }
 

package/lib/DboBuilder/getCondition.ts

@@ -57,7 +57,7 @@ export async function getCondition(
     existsCond = (await Promise.all(existsConfigs.map(async existsConfig => await getExistsCondition.bind(this)(existsConfig, localParams)))).join(" AND ");
   }
 
-  /* Computed field queries */
+  /* Computed field queries ($rowhash) */
   const p = this.getValidatedRules(tableRules, localParams);
   const computedFields = p.allColumns.filter(c => c.type === "computed");
   const computedColConditions: string[] = [];
@@ -85,8 +85,8 @@ export async function getCondition(
   if (select) {
     /* Allow filtering by selected fields/funcs */
     allowedSelect = select.filter(s => {
-      /*  */
       if (["function", "computed", "column"].includes(s.type)) {
+        /*  */
         if (s.type !== "column" || allowed_colnames.includes(s.alias)) {
           return true;
         }
@@ -202,6 +202,10 @@ export async function getCondition(
     ));
 
   if (invalidColumn) {
+    const selItem = select?.find(s => s.alias === invalidColumn);
+    if(selItem?.type === "aggregation"){
+      throw new Error(`Filtering by ${invalidColumn} is not allowed. Aggregations cannot be filtered. Use HAVING clause instead.`);
+    }
     const allowedCols = allowedSelect.map(s => s.type === "column" ? s.getQuery() : s.alias).join(", ");
     const errMessage = `Table: ${this.name} -> disallowed/inexistent columns in filter: ${invalidColumn} \n  Expecting one of: ${allowedCols}`;
     throw errMessage;
@@ -214,8 +218,8 @@ export async function getCondition(
   const q = parseFilterItem({
     filter: f,
     tableAlias,
-    pgp,
-    select: allowedSelect
+    select: allowedSelect,
+    allowedColumnNames: !tableRules? this.column_names.slice(0) : this.parseFieldFilter(tableRules.select?.filterFields ?? tableRules.select?.fields),
   });
 
   let templates: string[] = [q].filter(q => q);

package/lib/Filtering.ts

@@ -3,7 +3,7 @@
 import {
   CompareFilterKeys,
   CompareInFilterKeys,
-  EXISTS_KEYS, FilterDataType,
+  FilterDataType,
   FullFilter,
   GeomFilterKeys, GeomFilter_Funcs,
   JsonbFilterKeys,
@@ -14,14 +14,21 @@ import {
   isObject
 } from "prostgles-types";
 import { SelectItem } from "./DboBuilder/QueryBuilder/QueryBuilder";
+import { pgp } from "./DboBuilder/DboBuilderTypes";
 
 /**
 * Parse a single filter
 * Ensure only single key objects reach this point
 */
-type ParseFilterItemArgs = {  filter: FullFilter<void, void>, select?: SelectItem[], tableAlias?: string, pgp: any };
+type ParseFilterItemArgs = { 
+  filter: FullFilter<void, void>; 
+  select: SelectItem[] | undefined;
+  tableAlias: string | undefined;
+  allowedColumnNames: string[];
+};
+
 export const parseFilterItem = (args: ParseFilterItemArgs): string => {
-  const { filter: _f, select, tableAlias, pgp } = args;
+  const { filter: _f, select, tableAlias, allowedColumnNames } = args;
 
   if(!_f || isEmpty(_f)) return "";
 
@@ -42,7 +49,7 @@ export const parseFilterItem = (args: ParseFilterItemArgs): string => {
       filter: { [fk]: _f[fk] },
       select, 
       tableAlias,
-      pgp,
+      allowedColumnNames,
     }))
     .sort() /*  sorted to ensure duplicate subscription channels are not created due to different condition order */
     .join(" AND ")
@@ -50,17 +57,24 @@ export const parseFilterItem = (args: ParseFilterItemArgs): string => {
 
   const fKey: string = fKeys[0]!;
 
-  /* Exists filter */
-  if(EXISTS_KEYS.find(k => k in _f)){
-    // parseExistsFilter()
-  }
-
   let selItem: SelectItem | undefined;
-  if(select) selItem = select.find(s => fKey === s.alias);
+  if(select) {
+    selItem = select.find(s => fKey === s.alias);
+  }
   let rightF: FilterDataType<any> = (_f as any)[fKey];
 
+  const validateSelectedItemFilter = (selectedItem: SelectItem | undefined) => {
+    const fields = selectedItem?.getFields();
+    if(Array.isArray(fields) && fields.length > 1) {
+      const dissallowedFields = fields.filter(fname => !allowedColumnNames.includes(fname));
+      if(dissallowedFields.length){
+        throw new Error(`Invalid/disallowed columns found in filter: ${dissallowedFields}`)
+      }
+    }
+  }
   const getLeftQ = (selItm: SelectItem) => {
-    if(selItm.type === "function") return selItm.getQuery();
+    validateSelectedItemFilter(selItem);
+    if(selItm.type === "function" || selItm.type === "aggregation") return selItm.getQuery();
     return selItm.getQuery(tableAlias);
   }
 
@@ -81,6 +95,7 @@ export const parseFilterItem = (args: ParseFilterItemArgs): string => {
       selItem = select.find(s => 
         dot_notation_delims.find(delimiter => fKey.startsWith(s.alias + delimiter))
       );
+      validateSelectedItemFilter(selItem);
     }
     if(!selItem) {
       return mErr("Bad filter. Could not match to a column or alias or dot notation: "); 
@@ -135,7 +150,6 @@ export const parseFilterItem = (args: ParseFilterItemArgs): string => {
           nextSep =  undefined;
         }
 
-        // console.log({ currSep, nextSep })
         leftQ += currSep.sep + asValue(remainingStr.slice(currSep.idx + currSep.sep.length, nextIdx));
         currSep = nextSep;
       }
@@ -175,7 +189,7 @@ export const parseFilterItem = (args: ParseFilterItemArgs): string => {
       
       rightF = res;
     } else {
-      console.trace(141, select, selItem, remainingStr)
+      // console.trace(141, select, selItem, remainingStr)
       mErr("Bad filter. Could not find the valid col name or alias or col json path")
     }
 

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "prostgles-server",
-  "version": "4.2.46",
+  "version": "4.2.47",
   "description": "",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",
@@ -35,23 +35,23 @@
   ],
   "homepage": "https://prostgles.com",
   "dependencies": {
-    "@types/express": "^4.17.13",
-    "@types/json-schema": "^7.0.11",
-    "@types/pg": "^8.10.9",
     "bluebird": "^3.7.2",
     "body-parser": "^1.20.2",
-    "check-disk-space": "^3.3.1",
+    "check-disk-space": "^3.4.0",
     "file-type": "^18.5.0",
-    "pg": "^8.11.3",
-    "pg-cursor": "^2.10.3",
-    "pg-promise": "^11.5.4",
+    "pg": "^8.11.5",
+    "pg-cursor": "^2.10.5",
+    "pg-promise": "^11.6.0",
     "prostgles-client": "^4.0.53",
-    "prostgles-types": "^4.0.74"
+    "prostgles-types": "^4.0.75"
   },
   "devDependencies": {
     "@types/bluebird": "^3.5.36",
+    "@types/express": "^4.17.21",
     "@types/file-type": "^10.9.1",
+    "@types/json-schema": "^7.0.15",
     "@types/node": "^18.0.3",
+    "@types/pg": "^8.11.5",
     "@types/pg-cursor": "^2.7.2",
     "@types/sharp": "^0.30.4",
     "@types/socket.io": "^3.0.2",

package/tests/client/package-lock.json

@@ -10,7 +10,7 @@
       "license": "ISC",
       "dependencies": {
         "@types/node": "^20.9.2",
-        "prostgles-client": "^4.0.115",
+        "prostgles-client": "^4.0.117",
         "prostgles-types": "^4.0.51",
         "socket.io-client": "^4.7.5"
       },
@@ -351,11 +351,11 @@
       }
     },
     "node_modules/prostgles-client": {
-      "version": "4.0.115",
-      "resolved": "https://registry.npmjs.org/prostgles-client/-/prostgles-client-4.0.115.tgz",
-      "integrity": "sha512-YMnWOY352K8v++eR8Nb2Ikmi+3U0bxaFbPlsHAa1XmFhGq3UqRponUMcgYLiXjbWrvMRULSVWdYezdMTZU/a/g==",
+      "version": "4.0.117",
+      "resolved": "https://registry.npmjs.org/prostgles-client/-/prostgles-client-4.0.117.tgz",
+      "integrity": "sha512-bhA/o84sWPrlqiYFpitNRqcn1bDgNN5yOuPGSaS805t4Gm6vooKI1K392qlrskK92j6qH7VnPsKxeF4Ul7vn/g==",
       "dependencies": {
-        "prostgles-types": "^4.0.74"
+        "prostgles-types": "^4.0.75"
       },
       "peerDependencies": {
         "react": "^16.8.0 || ^17.0.0 || ^18.0.0",
@@ -371,9 +371,9 @@
       }
     },
     "node_modules/prostgles-types": {
-      "version": "4.0.74",
-      "resolved": "https://registry.npmjs.org/prostgles-types/-/prostgles-types-4.0.74.tgz",
-      "integrity": "sha512-6+MW7q1INIpO3JOkSCDD8oUG3U22VYbSWt2s0j3/0Uog4Dr90EzxX2TE7jV0NXmK+AAs+HHZ9u5olipMv0sHmQ==",
+      "version": "4.0.75",
+      "resolved": "https://registry.npmjs.org/prostgles-types/-/prostgles-types-4.0.75.tgz",
+      "integrity": "sha512-s0v0NbLO2/w9kzsjxlC48ZyMtnUJ/5dhuH5eucAnGv41wwuJ+HjA2zsvVqBiStdEVA6AhwrWefmrO8GTkuiKhA==",
       "dependencies": {
         "json-schema": "^0.4.0"
       }

package/tests/client/package.json

@@ -13,7 +13,7 @@
   "license": "ISC",
   "dependencies": {
     "@types/node": "^20.9.2",
-    "prostgles-client": "^4.0.115",
+    "prostgles-client": "^4.0.117",
     "prostgles-types": "^4.0.51",
     "socket.io-client": "^4.7.5"
   },

package/tests/clientRestApi.spec.ts

@@ -7,36 +7,11 @@ export const clientRestApi = async(db: DBHandlerClient, auth: Auth, log: (...arg
   
   await describe("clientRestApi", async () => {
       
-    const post = async ({ path, noAuth }: { path: string; noAuth?: boolean}, ...params: any[]) => {
-      const headers = new Headers({
-        'Authorization': `Bearer ${Buffer.from(noAuth? "noAuth" : token, "utf-8").toString("base64")}`, 
-        'Accept': 'application/json',
-        'Content-Type': 'application/json'
-      });
-      const res = await fetch(`http://127.0.0.1:3001/api/${path}`, { 
-          method: "POST", 
-          headers,
-          body: !params?.length? undefined : JSON.stringify(params) 
-        });
-      const resBodyJson = await res.text()
-        .then(text => { 
-          try {
-            return JSON.parse(text);
-          } catch {
-            return text;
-          }
-        });
-
-      if(res.status !== 200){
-        return Promise.reject(resBodyJson);
-      }
-      return resBodyJson;
-    }
-    const rest = async ({ tableName, command, noAuth }: { tableName: string; command: string; noAuth?: boolean; }, ...params: any[]) => post({ path: `db/${tableName}/${command}`, noAuth }, ...(params ?? []))
+    const rest = async ({ tableName, command, noAuth }: { tableName: string; command: string; noAuth?: boolean; }, ...params: any[]) => post({ path: `db/${tableName}/${command}`, noAuth, token }, ...(params ?? []))
     const dbRest = (tableName: string, command: string, ...params: any[]) => rest({ tableName, command }, ...(params ?? []))
     const dbRestNoAuth = (tableName: string, command: string, ...params: any[]) => rest({ tableName, command, noAuth: true }, ...(params ?? []));
-    const sqlRest = (query: string, ...params: any[]) => post({ path: `db/sql` }, query, ...(params ?? []))
-    const sqlMethods = (methodName: string, ...params: any[]) => post({ path: `methods/${methodName}` }, ...(params ?? []))
+    const sqlRest = (query: string, ...params: any[]) => post({ path: `db/sql`, token }, query, ...(params ?? []))
+    const sqlMethods = (methodName: string, ...params: any[]) => post({ path: `methods/${methodName}`, token }, ...(params ?? []))
 
     await test("Rest api test", async () => {
       const dataFilter = { id: 123123123, last_updated: Date.now() };
@@ -59,7 +34,7 @@ export const clientRestApi = async(db: DBHandlerClient, auth: Auth, log: (...arg
       const sqlRes = await sqlRest("select 1 as a", {}, { returnType: "rows" });
       assert.deepStrictEqual(sqlRes, [{ a: 1 }]);
 
-      const restTableSchema = await post({ path: "schema" });
+      const restTableSchema = await post({ path: "schema", token });
       assert.deepStrictEqual(tableSchema, restTableSchema.tableSchema);
       await Promise.all(tableSchema.map(async tbl => {
         const cols = await db[tbl.name]?.getColumns?.();
@@ -78,4 +53,30 @@ export const clientRestApi = async(db: DBHandlerClient, auth: Auth, log: (...arg
 
 
   });
+}
+
+const post = async ({ path, noAuth, token }: { path: string; token: string; noAuth?: boolean}, ...params: any[]) => {
+  const headers = new Headers({
+    'Authorization': `Bearer ${Buffer.from(noAuth? "noAuth" : token, "utf-8").toString("base64")}`, 
+    'Accept': 'application/json',
+    'Content-Type': 'application/json'
+  });
+  const res = await fetch(`http://127.0.0.1:3001/api/${path}`, { 
+      method: "POST", 
+      headers,
+      body: !params?.length? undefined : JSON.stringify(params) 
+    });
+  const resBodyJson = await res.text()
+    .then(text => { 
+      try {
+        return JSON.parse(text);
+      } catch {
+        return text;
+      }
+    });
+
+  if(res.status !== 200){
+    return Promise.reject(resBodyJson);
+  }
+  return resBodyJson;
 }

package/tests/isomorphicQueries.spec.ts

@@ -2,7 +2,11 @@ import { strict as assert } from 'assert';
 import * as fs from "fs";
 import { DBOFullyTyped } from "../dist/DBSchemaBuilder";
 import type { DBHandlerClient } from "./client";
-import { test, describe } from "node:test";
+import { 
+  test, 
+  //@ts-ignore
+  describe 
+} from "node:test";
 import { pickKeys } from "prostgles-types";
 
 
@@ -78,12 +82,20 @@ export const isomorphicQueries = async (db: DBOFullyTyped | DBHandlerClient, log
        
       await db.sql("TRUNCATE files CASCADE");
     });
+
+    await test("Having clause", async () => {
+      const res = await db.items.find!({}, { select: { name: 1, c: { $countAll: [] } }, having: { c: 2 } });
+      assert.deepStrictEqual(res, [{
+        c: '2',
+        name: 'a'
+       }]);
+    })
     
     const json = { a: true, arr: "2", arr1: 3, arr2: [1], arrStr: ["1123.string"] }
     await test("merge json", async () => { 
       const inserted = await db.tjson.insert!({ colOneOf: "a", json }, { returning: "*" });
       const res = await db.tjson.update!({ colOneOf: "a" },{ json: { $merge: [{ a: false }] } }, { returning: "*" });
-      assert.deepStrictEqual(res[0].json, { ...json, a: false });
+      assert.deepStrictEqual(res?.[0].json, { ...json, a: false });
     });
 
     await test("json array converted to pg array filter bug", async () => { 
@@ -172,7 +184,7 @@ export const isomorphicQueries = async (db: DBOFullyTyped | DBHandlerClient, log
       
       const newF = await db.files.findOne!({ id: original.id });
 
-      assert.equal(newF.original_name, newFile.name)
+      assert.equal(newF?.original_name, newFile.name)
     });
     
     await test("getColumns definition", async () => {
@@ -528,8 +540,8 @@ export const isomorphicQueries = async (db: DBOFullyTyped | DBHandlerClient, log
     await test("template_string function", async () => {
       const res = await db.various.findOne!({ name: 'abc9' }, { select: { tstr: { $template_string: ["{name} is hehe"] } } });
       const res2 = await db.various.findOne!({ name: 'abc9' }, { select: { tstr: { $template_string: ["is hehe"] } } });
-      assert.equal(res.tstr, "abc9 is hehe")
-      assert.equal(res2.tstr, "is hehe")
+      assert.equal(res?.tstr, "abc9 is hehe")
+      assert.equal(res2?.tstr, "is hehe")
     });
 
     await test("Between filtering", async () => {
@@ -577,8 +589,8 @@ export const isomorphicQueries = async (db: DBOFullyTyped | DBHandlerClient, log
     await test("Function example", async () => {
     
       const f = await db.items4.findOne!({}, { select: { public: 1, p_5: { $left: ["public", 3] } } });
-      assert.equal(f.p_5.length, 3);
-      assert.equal(f.p_5, f.public.substr(0, 3));
+      assert.equal(f?.p_5.length, 3);
+      assert.equal(f?.p_5, f.public.substr(0, 3));
 
       // Nested function
       const fg = await db.items2.findOne!({}, { select: { id: 1, name: 1, items3: { name: "$upper" } } });// { $upper: ["public"] } } });
@@ -816,7 +828,7 @@ export const isomorphicQueries = async (db: DBOFullyTyped | DBHandlerClient, log
         select: {
           "*": 1,
           items2: "*",
-          items2j: db.leftJoin.items2({}, "*")
+          items2j: db.leftJoin?.items2({}, "*")
         }
       });
       
@@ -848,7 +860,7 @@ export const isomorphicQueries = async (db: DBOFullyTyped | DBHandlerClient, log
     /* $rowhash -> Custom column that returms md5(ctid + allowed select columns). Used in joins & CRUD to bypass PKey details */
     await test("$rowhash example", async () => {
       const rowhash = await db.items.findOne!({}, { select: { $rowhash: 1, "*": 1 }});
-      const f = { $rowhash: rowhash.$rowhash };
+      const f = { $rowhash: rowhash?.$rowhash };
       const rowhashView = await db.v_items.findOne!({}, { select: { $rowhash: 1 }});
       const rh1 = await db.items.findOne!({ $rowhash: rowhash?.$rowhash }, { select: { $rowhash: 1 }});
       const rhView = await db.v_items.findOne!({ $rowhash: rowhashView?.$rowhash }, { select: { $rowhash: 1 }});
@@ -1076,7 +1088,7 @@ export const isomorphicQueries = async (db: DBOFullyTyped | DBHandlerClient, log
         {
           select: {
             "*": 1,
-            i0: db.innerJoin.items_multi(
+            i0: db.innerJoin?.items_multi(
               { name: "multi0" }, 
               "*", 
               { path: [{ table: "items", on: [{ items0_id: "id" }] }] }

package/tests/server/package-lock.json

@@ -21,26 +21,26 @@
     },
     "../..": {
       "name": "prostgles-server",
-      "version": "4.2.45",
+      "version": "4.2.46",
       "license": "MIT",
       "dependencies": {
-        "@types/express": "^4.17.13",
-        "@types/json-schema": "^7.0.11",
-        "@types/pg": "^8.10.9",
         "bluebird": "^3.7.2",
         "body-parser": "^1.20.2",
-        "check-disk-space": "^3.3.1",
+        "check-disk-space": "^3.4.0",
         "file-type": "^18.5.0",
-        "pg": "^8.11.3",
-        "pg-cursor": "^2.10.3",
-        "pg-promise": "^11.5.4",
+        "pg": "^8.11.5",
+        "pg-cursor": "^2.10.5",
+        "pg-promise": "^11.6.0",
         "prostgles-client": "^4.0.53",
-        "prostgles-types": "^4.0.74"
+        "prostgles-types": "^4.0.75"
       },
       "devDependencies": {
         "@types/bluebird": "^3.5.36",
+        "@types/express": "^4.17.21",
         "@types/file-type": "^10.9.1",
+        "@types/json-schema": "^7.0.15",
         "@types/node": "^18.0.3",
+        "@types/pg": "^8.11.5",
         "@types/pg-cursor": "^2.7.2",
         "@types/sharp": "^0.30.4",
         "@types/socket.io": "^3.0.2",
@@ -1529,11 +1529,11 @@
       "version": "file:../..",
       "requires": {
         "@types/bluebird": "^3.5.36",
-        "@types/express": "^4.17.13",
+        "@types/express": "^4.17.21",
         "@types/file-type": "^10.9.1",
-        "@types/json-schema": "^7.0.11",
+        "@types/json-schema": "^7.0.15",
         "@types/node": "^18.0.3",
-        "@types/pg": "^8.10.9",
+        "@types/pg": "^8.11.5",
         "@types/pg-cursor": "^2.7.2",
         "@types/sharp": "^0.30.4",
         "@types/socket.io": "^3.0.2",
@@ -1541,14 +1541,14 @@
         "@typescript-eslint/parser": "^5.62.0",
         "bluebird": "^3.7.2",
         "body-parser": "^1.20.2",
-        "check-disk-space": "^3.3.1",
+        "check-disk-space": "^3.4.0",
         "eslint": "^8.51.0",
         "file-type": "^18.5.0",
-        "pg": "^8.11.3",
-        "pg-cursor": "^2.10.3",
-        "pg-promise": "^11.5.4",
+        "pg": "^8.11.5",
+        "pg-cursor": "^2.10.5",
+        "pg-promise": "^11.6.0",
         "prostgles-client": "^4.0.53",
-        "prostgles-types": "^4.0.74",
+        "prostgles-types": "^4.0.75",
         "typescript": "^5.3.3"
       }
     },