[Snyk] Security upgrade sequelize from 6.35.1 to 6.37.8

[nicholas-lockhart]

Snyk has created this PR to fix 1 vulnerabilities in the npm dependencies of this project.

Snyk changed the following file(s):

• package.json
• package-lock.json

Vulnerabilities that will be fixed with an upgrade:

	Issue	Score
	SQL Injection SNYK-JS-SEQUELIZE-15456219	828

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• Max score is 1000. Note that the real score may have changed since the PR was raised.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 SQL Injection

---

Note

Medium Risk
Upgrades a core ORM used by the SQL-backed persistence layer, so behavior changes could affect database queries/migrations despite being a minor-version bump.

Overview
Updates the sequelize dependency to ^6.37.8 (from ^6.31.0 / locked 6.35.1) and refreshes package-lock.json accordingly to pull in the new resolved tarball/integrity metadata.

Primary intent is a security remediation for a reported SQL injection vulnerability in Sequelize.

^{Written by Cursor Bugbot for commit 26f0091. This will update automatically on new commits. Configure here.}