Skip to content

chore: bump happy-dom to a patched release#1477

Merged
sorenbs merged 1 commit into
mainfrom
codex/fix-happy-dom-vulnerability
Jul 18, 2026
Merged

chore: bump happy-dom to a patched release#1477
sorenbs merged 1 commit into
mainfrom
codex/fix-happy-dom-vulnerability

Conversation

@sorenbs

@sorenbs sorenbs commented Apr 2, 2026

Copy link
Copy Markdown
Member

Summary

  • bump happy-dom from 20.7.0 to 20.8.9
  • refresh the lockfile for the patched release
  • keep the existing Vitest UI environment intact

Context

happy-dom is a dev dependency only in this repository. It is used by the Vitest ui project as the DOM test environment and is not shipped in the published runtime package.

Closes #1472

@sorenbs
sorenbs enabled auto-merge (squash) April 2, 2026 05:32
@sorenbs

sorenbs commented Jul 18, 2026

Copy link
Copy Markdown
Member Author

@coderabbitai full review

@coderabbitai

coderabbitai Bot commented Jul 18, 2026

Copy link
Copy Markdown
✅ Action performed

Full review finished.

@coderabbitai

coderabbitai Bot commented Jul 18, 2026

Copy link
Copy Markdown

Review Change Stack

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info
⚙️ Run configuration

Configuration used: Organization UI

Review profile: ASSERTIVE

Plan: Pro

Run ID: e3c67b72-945c-46cc-9a45-b8079bfac3a8

📥 Commits

Reviewing files that changed from the base of the PR and between b10686a and dd4c7ed.

⛔ Files ignored due to path filters (1)
  • pnpm-lock.yaml is excluded by !**/pnpm-lock.yaml
📒 Files selected for processing (1)
  • package.json

Summary by CodeRabbit

  • Chores
    • Updated the development environment’s DOM simulation tooling to a newer version.
    • No user-facing functionality or behavior changes.

Walkthrough

Updated the happy-dom development dependency in package.json from version 20.7.0 to 20.8.9. No other package metadata or scripts were changed.

🚥 Pre-merge checks | ✅ 5
✅ Passed checks (5 passed)
Check name Status Explanation
Title check ✅ Passed It clearly states the main change: bumping happy-dom to a patched release.
Description check ✅ Passed It describes the happy-dom bump, lockfile refresh, and unchanged Vitest UI environment.
Linked Issues check ✅ Passed Updating happy-dom to 20.8.9 matches the linked vulnerability-fix objective.
Out of Scope Changes check ✅ Passed The diff shows only the happy-dom dependency bump, with no unrelated changes.
Docstring Coverage ✅ Passed No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
✨ Finishing Touches
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Commit unit tests in branch codex/fix-happy-dom-vulnerability
✨ Simplify code
  • Create PR with simplified code
  • Commit simplified code in branch codex/fix-happy-dom-vulnerability

Comment @coderabbitai help to get the list of available commands.

@sorenbs
sorenbs merged commit 550f51d into main Jul 18, 2026
1 check passed
@sorenbs
sorenbs deleted the codex/fix-happy-dom-vulnerability branch July 18, 2026 13:08
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

Vulnerability in studio project

1 participant