Skip to content

Commit 2d3f43b

Browse files
prisisprisis
committed
fix(deps): update audit-ci.jsonc and pnpm-lock.yaml for dependency management
- Added new allowlisted vulnerabilities in audit-ci.jsonc for better security handling. - Updated brace-expansion versions in pnpm-lock.yaml to address compatibility issues and enhance stability.
1 parent 80a77f9 commit 2d3f43b

File tree

2 files changed

+15
-18
lines changed

2 files changed

+15
-18
lines changed

audit-ci.jsonc

Lines changed: 4 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -5,6 +5,9 @@
55
"package-manager": "pnpm",
66
"report-type": "important",
77
"allowlist": [
8-
"GHSA-67hx-6x53-jw92|. > babel-plugin-transform-es2015-modules-commonjs"
8+
"GHSA-67hx-6x53-jw92|. > babel-plugin-transform-es2015-modules-commonjs",
9+
// Current a fix is not possible, see https://github.com/istanbuljs/test-exclude/pull/63
10+
"GHSA-v6h2-p8h4-qcjw|@vitest/coverage-v8>test-exclude>minimatch>brace-expansion",
11+
"GHSA-v6h2-p8h4-qcjw|commitizen>glob>minimatch>brace-expansion"
912
]
1013
}

pnpm-lock.yaml

Lines changed: 11 additions & 17 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

0 commit comments

Comments
 (0)