Skip to content

fix: Upgrade brances and ansi-regex#375

Merged
athira-sreekumar merged 2 commits intoibm-messaging:masterfrom
athira-sreekumar:upgrade-braces
Aug 21, 2025
Merged

fix: Upgrade brances and ansi-regex#375
athira-sreekumar merged 2 commits intoibm-messaging:masterfrom
athira-sreekumar:upgrade-braces

Conversation

@athira-sreekumar
Copy link
Copy Markdown
Contributor

@athira-sreekumar athira-sreekumar commented Aug 20, 2025

This PR updates the following transitive dependencies using the overrides field in package.json:

  • updates braces to 3.0.3, which fixes the vulnerability CVE-2024-4068
  • updates ansi-regex to 5.0.1 which fixes the vulnerability CVE-2021-3807

Resolves: #374

Signed-off-by: Athira Sreekumar athira.sreekumar@ibm.com

Status

READY/IN DEVELOPMENT/HOLD

Commit Message

Commit Message Title

  • When opening this PR, the raiser should set the title of this PR to the first line of their desired commit message, e.g:
feat|fix|docs|style|refactor|perf|test|chore: changed function X
  • The reviewer should ensure that the first commit message field is of this form when performing the squash and merge from this page.

Commit Message Description

# When opening this PR, the raiser should replace this text with the remaining
# lines of their desired commit message, e.g:

Further details of the code going into the commit

Contributes to: #XYZ
Closes: #XYZ

Signed-off-by: Your Name <email@address.com>
  • The reviewer should copy the above text into the extended description field when performing the squash and merge from this page.

Checklist

  • Automated tests exist
  • Documentation exists link
  • Local unit tests performed
  • Sufficient logging/trace
  • Desired commit message set as PR title and commit description set above

Athira Sreekumar added 2 commits August 20, 2025 17:10
fix: Upgraded brances and ansi-regex
2b6dfcd 
Resolves: ibm-messaging#374

Signed-off-by: Athira Sreekumar athira.sreekumar@ibm.com
fix: Upgraded brances and ansi-regex
14268a2 
Resolves: ibm-messaging#374

Signed-off-by: Athira Sreekumar athira.sreekumar@ibm.com
aswinayyolath
aswinayyolath approved these changes Aug 20, 2025
View reviewed changes
Copy link
Copy Markdown
Contributor

@aswinayyolath aswinayyolath left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@athira-sreekumar athira-sreekumar merged commit b4b5fb6 into ibm-messaging:master Aug 21, 2025
5 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@aswinayyolath aswinayyolath aswinayyolath approved these changes

@Joel-hanson Joel-hanson Awaiting requested review from Joel-hanson

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Fix Security Vulnerabilities

2 participants

@athira-sreekumar @aswinayyolath