From 3fc37e6338bb6c6054739578088ca638f08fceca Mon Sep 17 00:00:00 2001 From: Pawel Zelawski Date: Sat, 18 Apr 2026 16:58:37 +0200 Subject: chore: update digiid-ts to 2.0.3 and fix security vulnerabilities - Bump digiid-ts from 2.0.2 to 2.0.3 (security patch release) - Fix 5 vulnerabilities via npm audit fix: - brace-expansion (moderate): ReDoS / process hang - flatted (high): prototype pollution + unbounded recursion DoS - path-to-regexp (high): ReDoS via route parameters - picomatch (high): ReDoS + method injection - vite (high): path traversal + arbitrary file read via dev server --- package.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) (limited to 'package.json') diff --git a/package.json b/package.json index d3b1213..8452b7a 100644 --- a/package.json +++ b/package.json @@ -48,7 +48,7 @@ "vite": "^6.2.6" }, "dependencies": { - "digiid-ts": "^2.0.2", + "digiid-ts": "^2.0.3", "dotenv": "^16.4.5", "express": "^4.19.2", "qrcode": "^1.5.3", -- cgit v1.2.3