Skip to content

fix: Upgrade brances and ansi-regex #375

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Aug 21, 2025
Merged

fix: Upgrade brances and ansi-regex #375

merged 2 commits into from
Aug 21, 2025

Conversation

athira1693
Copy link
Contributor

This PR updates the following transitive dependencies using the overrides field in package.json:

  • updates braces to 3.0.3, which fixes the vulnerability CVE-2024-4068
  • updates ansi-regex to 5.0.1 which fixes the vulnerability CVE-2021-3807

Resolves: #374

Signed-off-by: Athira Sreekumar athira.sreekumar@ibm.com

Status

READY/IN DEVELOPMENT/HOLD

Commit Message

Commit Message Title

  • When opening this PR, the raiser should set the title of this PR to the first line of their desired commit message, e.g:
feat|fix|docs|style|refactor|perf|test|chore: changed function X
  • The reviewer should ensure that the first commit message field is of this form when performing the squash and merge from this page.

Commit Message Description

# When opening this PR, the raiser should replace this text with the remaining
# lines of their desired commit message, e.g:

Further details of the code going into the commit

Contributes to: #XYZ
Closes: #XYZ

Signed-off-by: Your Name <email@address.com>
  • The reviewer should copy the above text into the extended description field when performing the squash and merge from this page.

Checklist

  • Automated tests exist
  • Documentation exists link
  • Local unit tests performed
  • Sufficient logging/trace
  • Desired commit message set as PR title and commit description set above

Athira Sreekumar added 2 commits August 20, 2025 17:10
fix: Upgraded brances and ansi-regex
2b6dfcd 
Resolves: ibm-messaging#374

Signed-off-by: Athira Sreekumar athira.sreekumar@ibm.com
fix: Upgraded brances and ansi-regex
14268a2 
Resolves: ibm-messaging#374

Signed-off-by: Athira Sreekumar athira.sreekumar@ibm.com
aswinayyolath
aswinayyolath approved these changes Aug 20, 2025
View reviewed changes
Copy link
Contributor

@aswinayyolath aswinayyolath left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@athira1693 athira1693 merged commit b4b5fb6 into ibm-messaging:master Aug 21, 2025
5 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@aswinayyolath aswinayyolath aswinayyolath approved these changes

@Joel-hanson Joel-hanson Awaiting requested review from Joel-hanson

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Fix Security Vulnerabilities
2 participants
@athira1693 @aswinayyolath