Skip to content

Commit 7dd6040

Browse files
diatrczdiatrcz
authored
fix(build): bump version to avoid CVEs (#770)
Bumps js-yaml package to 4.1.1 to avoid CVE-2025-64718 Signed-off-by: Lídia Tarcza <[email protected]>
1 parent e07519e commit 7dd6040

File tree

2 files changed

+22
-7
lines changed

2 files changed

+22
-7
lines changed

package-lock.json

Lines changed: 21 additions & 6 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

packages/validator/package.json

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -35,7 +35,7 @@
3535
"console-table-printer": "^2.12.1",
3636
"find-up": "5.0.0",
3737
"globby": "^11.0.4",
38-
"js-yaml": "^3.14.1",
38+
"js-yaml": "^4.1.1",
3939
"json-dup-key-validator": "^1.0.3",
4040
"lodash": "^4.17.21",
4141
"nimma": "^0.7.0",

0 commit comments

Comments
 (0)