Commit f5dc6a8
build(deps): security dependency bumps (axios, qs, fast-uri, react-router, webpack-dev-server) (#1336)
* build(deps): apply security bumps from dependabot PRs
- axios 1.15.2 -> 1.17.0 (config hardening against prototype-pollution
driven SSRF; transitive of casper-js-sdk and apisauce)
- react-router/react-router-dom 6.30.3 -> 6.30.4
- fast-uri 3.1.0 -> 3.1.2 (GHSA-q3j6-qgpj-74h6, GHSA-v39h-62p7-jpjc)
- qs pinned to ^6.15.2 via overrides, covering the security payload of
the grouped qs/express/body-parser/web-ext bump without taking the
web-ext 8 -> 10 major (requires Node >= 20)
- webpack-dev-server 5.2.3 -> 5.2.4
- @babel/plugin-transform-modules-systemjs 7.29.0 -> 7.29.7
- @protobufjs/utf8 1.1.0 -> 1.1.1
The lockfile is regenerated locally so npm ci stays in sync; the
dependabot-generated lockfiles dropped the casper-wallet-core git
dependency transitives (node-fetch et al.) and broke npm ci, which is
why the e2e jobs failed on every dependabot PR.
Deferred (require Node >= 20 while the project is on Node 18):
serialize-javascript 7.0.5 and web-ext 10.
Co-Authored-By: Claude Fable 5 <noreply@anthropic.com>
* test(e2e): match 'More' button exactly in staking specs
The token-details market data banner renders a "Learn more" link
(cspr.trade) when market data loads, and the substring selector
getByText('More') then resolves to two elements, failing the staking
specs with a strict mode violation.
Co-Authored-By: Claude Fable 5 <noreply@anthropic.com>
---------
Co-authored-by: Claude Fable 5 <noreply@anthropic.com>1 parent 710fc7b commit f5dc6a8
5 files changed
Lines changed: 221 additions & 136 deletions
File tree
- e2e-tests/popup/stakes
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
11 | 11 | | |
12 | 12 | | |
13 | 13 | | |
14 | | - | |
| 14 | + | |
15 | 15 | | |
16 | 16 | | |
17 | 17 | | |
| |||
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
16 | 16 | | |
17 | 17 | | |
18 | 18 | | |
19 | | - | |
| 19 | + | |
20 | 20 | | |
21 | 21 | | |
22 | 22 | | |
| |||
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
11 | 11 | | |
12 | 12 | | |
13 | 13 | | |
14 | | - | |
| 14 | + | |
15 | 15 | | |
16 | 16 | | |
17 | 17 | | |
| |||
0 commit comments