RocketChat · julio-rocketchat · Jun 22, 2026 · Jun 22, 2026 · coderabbitai · Jun 22, 2026
@@ -17,5 +17,8 @@
 		"diff": "^5.1.0",
 		"semver": "^7.5.4",
 		"@xmldom/xmldom": "^0.8.13"
+	},
+	"overrides": {
+		"undici": "6.27.0"
 	}
 }
diff --git a/apps/meteor/package.json b/apps/meteor/package.json
@@ -241,7 +241,7 @@
 		"lodash.debounce": "^4.0.8",
 		"lodash.escape": "^4.0.1",
 		"lodash.get": "^4.4.2",
-		"mailparser": "~3.9.10",
+		"mailparser": "~3.9.11",
 		"marked": "^4.3.0",
 		"mem": "^8.1.1",
 		"meteor-node-stubs": "~1.2.27",
@@ -257,7 +257,7 @@
 		"node-dogstatsd": "^0.0.7",
 		"node-fetch": "2.7.0",
 		"node-rsa": "^1.1.1",
-		"nodemailer": "^8.0.8",
+		"nodemailer": "^9.0.1",
 		"object-path": "^0.11.8",
 		"overlayscrollbars": "~2.11.5",
 		"overlayscrollbars-react": "^0.5.6",

diff --git a/package.json b/package.json
@@ -95,7 +95,8 @@
 		"ws@npm:^8": "^8.20.1",
 		"ws@npm:^8.2.3": "^8.20.1",
 		"ws@npm:^8.18.0": "^8.20.1",
-		"undici@npm:^6.19.5": "^6.24.0",
+		"undici@npm:^6.19.5": "^6.27.0",
+		"undici@npm:^6.23.0": "^6.27.0",
 		"webpack": "~5.104.0",
 		"yaml@npm:^1.10.0": "^1.10.3",
 		"yaml@npm:^2.2.2": "^2.8.3",
@@ -141,7 +142,7 @@
 		"minimatch@npm:^3.1.1": "3.1.5",
 		"minimatch@npm:^9.0.4": "9.0.9",
 		"minimatch@npm:^10.0.0": "10.2.5",
-		"nodemailer@npm:^8.0.8": "8.0.8",
+		"nodemailer@npm:^9.0.1": "9.0.1",
 		"normalize-package-data@npm:2.5.0/semver": "5.7.2",
 		"make-dir@npm:2.1.0/semver": "5.7.2",
 		"utf7/semver": "5.7.2",

diff --git a/yarn.lock b/yarn.lock
@@ -10164,7 +10164,7 @@ __metadata:
     lodash.debounce: "npm:^4.0.8"
     lodash.escape: "npm:^4.0.1"
     lodash.get: "npm:^4.4.2"
-    mailparser: "npm:~3.9.10"
+    mailparser: "npm:~3.9.11"
     marked: "npm:^4.3.0"
     mem: "npm:^8.1.1"
     meteor-node-stubs: "npm:~1.2.27"
@@ -10181,7 +10181,7 @@ __metadata:
     node-dogstatsd: "npm:^0.0.7"
     node-fetch: "npm:2.7.0"
     node-rsa: "npm:^1.1.1"
-    nodemailer: "npm:^8.0.8"
+    nodemailer: "npm:^9.0.1"
     nyc: "npm:^17.1.0"
     object-path: "npm:^0.11.8"
     outdent: "npm:~0.8.0"
@@ -27438,9 +27438,9 @@ __metadata:
   languageName: node
   linkType: hard
 
-"mailparser@npm:~3.9.10":
-  version: 3.9.10
-  resolution: "mailparser@npm:3.9.10"
+"mailparser@npm:~3.9.11":
+  version: 3.9.11
+  resolution: "mailparser@npm:3.9.11"
   dependencies:
     "@zone-eu/mailsplit": "npm:5.4.12"
     encoding-japanese: "npm:2.2.0"
@@ -27449,10 +27449,10 @@ __metadata:
     iconv-lite: "npm:0.7.2"
     libmime: "npm:5.3.8"
     linkify-it: "npm:5.0.1"
-    nodemailer: "npm:9.0.0"
+    nodemailer: "npm:9.0.1"
     punycode.js: "npm:2.3.1"
     tlds: "npm:1.261.0"
-  checksum: 10/427aefc17df534eeac22cb6ab6c87442115fbb000b173eea51e9286e00694c2b2e48e7b2920f8d312c59faf3c1d0babcb06f2e1c2552e207777991d31444649e
+  checksum: 10/b740f0ce62ada65c634ac5879bf9a71562b5656d4d805b0496b2e2f5aed3defa116f6adeba9120f76658da6288511c25e1e232a68e4e426c3ed8e9881e9c45bc
   languageName: node
   linkType: hard
 
@@ -28925,17 +28925,10 @@ __metadata:
   languageName: node
   linkType: hard
 
-"nodemailer@npm:8.0.8":
-  version: 8.0.8
-  resolution: "nodemailer@npm:8.0.8"
-  checksum: 10/b4d2d095355751ab4baa7047c35845a05a42eec734218e69fb36d16e9efaa0804d41741e39bbe0e22dfd416a9be835b09b82df624fd5da2b5d7aa8ca5a449e55
-  languageName: node
-  linkType: hard
-
-"nodemailer@npm:9.0.0":
-  version: 9.0.0
-  resolution: "nodemailer@npm:9.0.0"
-  checksum: 10/c72598e599c13e5c7d1c49e46eb6a448e615ea5abe4ba6a1c7fae1c42941689adecbdcd5b19dd6ff2d36758274832895086b0414cc6031f50a69d9e612895597
+"nodemailer@npm:9.0.1":
+  version: 9.0.1
+  resolution: "nodemailer@npm:9.0.1"
+  checksum: 10/cc7782962def1575102039270ff3356535c614e6db420dda85dffe672e77e66b410198c284a508b3bc8193b9c34c8e7b4cf8c697e0de2cc978c5e02f9c708fed
   languageName: node
   linkType: hard
 
@@ -36226,10 +36219,10 @@ __metadata:
   languageName: node
   linkType: hard
 
-"undici@npm:^6.23.0, undici@npm:^6.24.0":
-  version: 6.25.0
-  resolution: "undici@npm:6.25.0"
-  checksum: 10/a475e45da3e1d1073283bb70531666f09a432eabff2b857bd7063d469a1ee1486192ff61dc0dadbb526673ce1120fee14d66a59b6b17d1e0bd3a4d5f0a52d0a6
+"undici@npm:^6.27.0":
+  version: 6.27.0
+  resolution: "undici@npm:6.27.0"
+  checksum: 10/30c18cdb235edf4dd36f8aa3ace1ffaf44060289a7d62ad44c33180d2d74a224015d25574812f62ce9c625b5beb1b0b766495b650fedf356aca11eed7ce2c816
   languageName: node
   linkType: hard