fix: package.json & package-lock.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/npm:mongoose:20160116
snyk-labs · jadf970 · May 24, 2021 · May 24, 2021 · May 24, 2021 · May 24, 2021
commit 00bc7b01e6c6f0d133f5d1f84c48efa21800e1a6
diff --git a/package-lock.json b/package-lock.json
diff --git a/package.json b/package.json
@@ -34,7 +34,7 @@
     "method-override": "latest",
     "moment": "2.15.1",
     "mongodb": "^3.5.9",
-    "mongoose": "4.2.4",
+    "mongoose": "4.3.6",
     "morgan": "latest",
     "ms": "^0.7.1",
     "mysql": "^2.18.1",