fix: package.json & package-lock.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-PATHTOREGEXP-8482416

package.json

@@ -4,7 +4,7 @@
   "description": "my first socket.io app",
   "dependencies": {
     "color-convert": "^1.9.3",
-    "express": "^4.17.1",
+    "express": "^4.21.2",
     "socket.io": "^3.0.0"
   }
 }