Commit d7cbd13
committed
chore(deps): override protobufjs to 7.5.8 to clear HIGH advisories
The workspace pinned protobufjs@7.5.5 via pnpm-workspace.yaml overrides;
that version carries 4 HIGH advisories (GHSA-66ff-xgx4-vchm, -75px-5xx7-5xc7,
-jvwf-75h9-cwgg, -685m-2w69-288q). 7.5.8 is the earliest patched release in
the 7.x line.
CI's security-dependency-audit job exits non-zero when production dependencies
carry HIGH or higher advisories, which blocks this PR. Bumping the override
clears the audit without changing any application behavior.1 parent 5bf1312 commit d7cbd13
2 files changed
Lines changed: 12 additions & 12 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
59 | 59 | | |
60 | 60 | | |
61 | 61 | | |
62 | | - | |
| 62 | + | |
63 | 63 | | |
64 | 64 | | |
65 | 65 | | |
| |||
0 commit comments