chore: update minimatch to fix security vulnerabilities

danieltruong · danieltruong · commit ea396bc4bdfd · 2026-02-27T22:47:45.000Z
Updates minimatch from 10.2.2 to 10.2.4 to address: - CVE-2026-27903 - CVE-2026-27904
diff --git a/package.json b/package.json
@@ -81,7 +81,7 @@
     "fast-xml-parser": "^5.3.6",
     "tar": "^7.5.8",
     "db-migrate-mongodb/mongodb": "^3.7.4",
-    "minimatch": "^10.2.2",
+    "minimatch": "^10.2.3",
     "qs": "^6.14.1"
   }
 }
diff --git a/yarn.lock b/yarn.lock
@@ -6374,12 +6374,12 @@ __metadata:
   languageName: node
   linkType: hard
 
-"minimatch@npm:^10.2.2":
-  version: 10.2.2
-  resolution: "minimatch@npm:10.2.2"
+"minimatch@npm:^10.2.3":
+  version: 10.2.4
+  resolution: "minimatch@npm:10.2.4"
   dependencies:
     brace-expansion: "npm:^5.0.2"
-  checksum: 10c0/098831f2f542cb802e1f249c809008a016e1fef6b3a9eda9cf9ecb2b3d7979083951bd47c0c82fcf34330bd3b36638a493d4fa8e24cce58caf5b481de0f4e238
+  checksum: 10c0/35f3dfb7b99b51efd46afd378486889f590e7efb10e0f6a10ba6800428cf65c9a8dedb74427d0570b318d749b543dc4e85f06d46d2858bc8cac7e1eb49a95945
   languageName: node
   linkType: hard
 
