Commit b56f830
authored
fix(security): update OSS dependencies to remediate 3 high-severity CVEs (#737)
- tar 0.4.44 -> 0.4.45 (CVE-2026-33055: PAX size header skip)
- aws-lc-rs 1.16.1 -> 1.16.2 / aws-lc-sys 0.38.0 -> 0.39.1
(BDSA-2026-5232: name constraints bypass in certificate validation)
- Pygments 2.19.2 -> 2.20.0
(BDSA-2026-5113 / CVE-2026-4539: catastrophic regex backtracking)1 parent dd8dd8a commit b56f830
2 files changed
+16
-16
lines changedSome generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.
0 commit comments