Commit 2328365
committed
chore(DEPS): regenerate package-lock.json
Side effect of dropping the esbuild and tar overrides — npm now
resolves to the latest patch versions within the existing semver
ranges. All bumps are within `^` ranges from package.json (no manifest
changes).
Notable changes:
- esbuild 0.27.3 -> 0.27.7 (no longer pinned by override)
- tar 7.5.13 -> 7.5.15 (no longer pinned by override)
- @yao-pkg/pkg 6.14.1 -> 6.19.0
- express-rate-limit 8.2.1 -> 8.5.1 (also resolves the moderate
ip-address advisory previously reported under it)
- dotenv 17.2.3 -> 17.4.2
- multer 2.0.2 -> 2.1.1
- mysql2 3.16.3 -> 3.22.3
- sequelize 6.37.5 -> 6.37.8
- sinon 21.0.3 -> 21.1.2
- node-gyp 12.2.0 -> 12.3.0
`npm audit` is now clean (0 vulnerabilities, down from 4 on
v2-rc2 baseline). `npm ci` validates against the new lockfile.1 parent 560d2d2 commit 2328365
1 file changed
Lines changed: 728 additions & 1145 deletions
0 commit comments