Skip to content

Commit fb09c19

Browse files
benoitfclaude
andcommitted
fix: resolve CVE-2026-33532 in yaml
Upgrade yaml to satisfy >=2.8.3 Advisory: GHSA-48c2-rrv3-qjmp Co-authored-by: Claude <noreply@anthropic.com> Signed-off-by: Florent Benoit <fbenoit@redhat.com>
1 parent 5d41379 commit fb09c19

2 files changed

Lines changed: 29 additions & 27 deletions

File tree

package.json

Lines changed: 2 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -68,7 +68,8 @@
6868
"minimatch@<3.1.3": "3.1.5",
6969
"minimatch@>=9.0.0 <9.0.7": "9.0.9",
7070
"picomatch@>=4.0.0 <4.0.4": "4.0.4",
71-
"brace-expansion@<1.1.13": "1.1.13"
71+
"brace-expansion@<1.1.13": "1.1.13",
72+
"yaml@>=2.0.0 <2.8.3": "^2.8.3"
7273
}
7374
}
7475
}

pnpm-lock.yaml

Lines changed: 27 additions & 26 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

0 commit comments

Comments
 (0)