Skip to content

fix: upgrade semver#387

Merged
ladeedanasreen merged 1 commit intoibm-messaging:masterfrom
ladeedanasreen:cve-fix
Feb 16, 2026
Merged

fix: upgrade semver#387
ladeedanasreen merged 1 commit intoibm-messaging:masterfrom
ladeedanasreen:cve-fix

Conversation

@ladeedanasreen
Copy link
Copy Markdown
Contributor

@ladeedanasreen ladeedanasreen commented Feb 16, 2026

This PR updates the semver dependency to version 7.5.2 using the overrides field in package.json to address the security vulnerability CVE-2022-25883
Closes: #386

Signed-off-by: Ladeeda Nasreen P ladeedanasreen@ibm.com

@ladeedanasreen
fix: upgrade semver
f445a27 
Closes: ibm-messaging#386
Signed-off-by: Ladeeda Nasreen P <ladeedanasreen@ibm.com>
athira-sreekumar
athira-sreekumar approved these changes Feb 16, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

@athira-sreekumar athira-sreekumar left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good to me

@ladeedanasreen ladeedanasreen merged commit 9ab4b4e into ibm-messaging:master Feb 16, 2026
4 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@aswinayyolath aswinayyolath Awaiting requested review from aswinayyolath

1 more reviewer

@athira-sreekumar athira-sreekumar athira-sreekumar approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Fix CVE in semver dependency

2 participants

@ladeedanasreen @athira-sreekumar