From a1a01427183425cc985183e299325dbdea553f02 Mon Sep 17 00:00:00 2001 From: Pawel Zelawski Date: Sat, 20 Dec 2025 20:49:10 +0100 Subject: fix: resolve security vulnerabilities in dependencies - Add glob ^10.5.0 override to fix command injection vulnerability (CVE-2024-XXXXX) - Add brace-expansion ^2.0.2 override to fix ReDoS vulnerability - Upgrade vite to 6.4.1 and other dependencies via npm audit fix - All tests passing, build successful, 0 vulnerabilities remaining --- package.json | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) (limited to 'package.json') diff --git a/package.json b/package.json index 16204c6..576e7c0 100644 --- a/package.json +++ b/package.json @@ -75,6 +75,8 @@ }, "overrides": { "elliptic": "^6.6.1", - "lodash": "^4.17.21" + "lodash": "^4.17.21", + "glob": "^10.5.0", + "brace-expansion": "^2.0.2" } } \ No newline at end of file -- cgit v1.2.3