Skip to content

Commit

Permalink
vulnerability fix: Upgrade @babel/traverse #48
Browse files Browse the repository at this point in the history 
Upgrade the transitive dependency vite from v7.21.5 to v7.24.5 to address a vulnerability in the package. Specifically to include this [fix to only evaluate own String/Number/Math methods](https://github.com/babel/babel/releases/tag/v7.23.2). This dependency is used as part of the testing and code linting process.

J=VULN-38488
TEST=auto&compile
  • Loading branch information
@yen-tt
yen-tt authored May 21, 2024
1 parent ef212d5 commit 7be91bf
Show file tree
Hide file tree
Showing 2 changed files with 81 additions and 67 deletions.
146 changes: 80 additions & 66 deletions package-lock.json
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion packages/chat-headless-react/THIRD-PARTY-NOTICES
View file
Original file line number Diff line number Diff line change
Expand Up @@ -67,7 +67,7 @@ The following npm packages may be included in this product:
- @types/[email protected]
- @types/[email protected]
- @types/[email protected]
- @types/[email protected].1
- @types/[email protected].2
- @types/[email protected]

These packages each contain the following license and notice below:
Expand Down

0 comments on commit 7be91bf

Please sign in to comment.