diff --git a/package.json b/package.json
index ab48188..be6a9c1 100644
--- a/package.json
+++ b/package.json
@@ -34,6 +34,6 @@
     ]
   },
   "dependencies": {
-    "nodemailer": "^7.0.6"
+    "nodemailer": "^7.0.11"
   }
 }
diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml
index e2e35e0..0b65bc5 100644
--- a/pnpm-lock.yaml
+++ b/pnpm-lock.yaml
@@ -9,8 +9,8 @@ importers:
   .:
     dependencies:
       nodemailer:
-        specifier: ^7.0.6
-        version: 7.0.6
+        specifier: ^7.0.11
+        version: 7.0.11
     devDependencies:
       '@eslint/js':
         specifier: ^9.32.0
@@ -3240,6 +3240,7 @@ packages:
   next@15.3.4:
     resolution: {integrity: sha512-mHKd50C+mCjam/gcnwqL1T1vPx/XQNFlXqFIVdgQdVAFY9iIQtY0IfaVflEYzKiqjeA7B0cYYMaCrmAYFjs4rA==}
     engines: {node: ^18.18.0 || ^19.8.0 || >= 20.0.0}
+    deprecated: This version has a security vulnerability. Please upgrade to a patched version. See https://nextjs.org/blog/CVE-2025-66478 for more details.
     hasBin: true
     peerDependencies:
       '@opentelemetry/api': ^1.1.0
@@ -3269,8 +3270,8 @@ packages:
     resolution: {integrity: sha512-Z+iLaBGVaSjbIzQ4pX6XV41HrooLsQ10ZWPUehGmuantvzWoDVBnmsdUcOIDM1t+yPor5pDhVlDESgOMEGxhHA==}
     engines: {node: '>=6.0.0'}
 
-  nodemailer@7.0.6:
-    resolution: {integrity: sha512-F44uVzgwo49xboqbFgBGkRaiMgtoBrBEWCVincJPK9+S9Adkzt/wXCLKbf7dxucmxfTI5gHGB+bEmdyzN6QKjw==}
+  nodemailer@7.0.11:
+    resolution: {integrity: sha512-gnXhNRE0FNhD7wPSCGhdNh46Hs6nm+uTyg+Kq0cZukNQiYdnCsoQjodNP9BQVG9XrcK/v6/MgpAPBUFyzh9pvw==}
     engines: {node: '>=6.0.0'}
 
   npm-run-path@4.0.1:
@@ -7271,7 +7272,7 @@ snapshots:
 
   nodemailer@6.10.1: {}
 
-  nodemailer@7.0.6: {}
+  nodemailer@7.0.11: {}
 
   npm-run-path@4.0.1:
     dependencies: