fix(security): address 8 dependency vulnerabilities #5

vish288 · 2025-12-15T00:51:46Z

Fix high severity glob command injection (GHSA-5j98-mcp5-4vw2)
Fix moderate vite, js-yaml, git-client vulnerabilities
Fix low severity eslint/plugin-kit, tmp, vite issues
Update rimraf, vitest, eslint, typescript, babel packages
Add pnpm overrides for transitive dependency fixes

Closes security audit with 0 known vulnerabilities

- Fix high severity glob command injection (GHSA-5j98-mcp5-4vw2) - Fix moderate vite, js-yaml, git-client vulnerabilities - Fix low severity eslint/plugin-kit, tmp, vite issues - Update rimraf, vitest, eslint, typescript, babel packages - Add pnpm overrides for transitive dependency fixes Closes security audit with 0 known vulnerabilities

github-actions · 2025-12-15T00:55:08Z

🎉 This PR is included in version 1.1.1 🎉

The release is available on:

Your semantic-release bot 📦🚀

vish288 merged commit 8f87467 into main Dec 15, 2025
5 checks passed

github-actions bot added the released label Dec 15, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

fix(security): address 8 dependency vulnerabilities #5

fix(security): address 8 dependency vulnerabilities #5

Uh oh!

vish288 commented Dec 15, 2025

Uh oh!

Uh oh!

github-actions bot commented Dec 15, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

fix(security): address 8 dependency vulnerabilities #5

fix(security): address 8 dependency vulnerabilities #5

Uh oh!

Conversation

vish288 commented Dec 15, 2025

Uh oh!

Uh oh!

github-actions bot commented Dec 15, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants