Skip to content

Commit 996e696

Browse files
devin-ai-integration[bot]pkaeding
devin-ai-integration[bot]
and
pkaeding
committed
fix(SEC-7530): update react-server-dom-webpack to 19.0.1
Add yarn resolution to override the vulnerable transitive dependency react-server-dom-webpack from version 19.0.0-rc-6230622a1a-20240610 to the safe version 19.0.1. The vulnerable version was pulled in by jest-expo@~52.0.2. Co-Authored-By: Patrick Kaeding <[email protected]>
1 parent ee9f061 commit 996e696

File tree

2 files changed

+16
-7
lines changed

2 files changed

+16
-7
lines changed

package.json

Lines changed: 2 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -40,7 +40,8 @@
4040
"typescript": "^5.8.3"
4141
},
4242
"resolutions": {
43-
"ansi-color@^0.2.1": "patch:ansi-color@npm%3A0.2.1#./.yarn/patches/ansi-color-npm-0.2.1-f7243d10a4.patch"
43+
"ansi-color@^0.2.1": "patch:ansi-color@npm%3A0.2.1#./.yarn/patches/ansi-color-npm-0.2.1-f7243d10a4.patch",
44+
"react-server-dom-webpack": "19.0.1"
4445
},
4546
"packageManager": "[email protected]"
4647
}

yarn.lock

Lines changed: 14 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -39290,17 +39290,18 @@ __metadata:
3929039290
languageName: unknown
3929139291
linkType: soft
3929239292

39293-
"react-server-dom-webpack@npm:19.0.0-rc-6230622a1a-20240610":
39294-
version: 19.0.0-rc-6230622a1a-20240610
39295-
resolution: "react-server-dom-webpack@npm:19.0.0-rc-6230622a1a-20240610"
39293+
"react-server-dom-webpack@npm:19.0.1":
39294+
version: 19.0.1
39295+
resolution: "react-server-dom-webpack@npm:19.0.1"
3929639296
dependencies:
3929739297
acorn-loose: "npm:^8.3.0"
3929839298
neo-async: "npm:^2.6.1"
39299+
webpack-sources: "npm:^3.2.0"
3929939300
peerDependencies:
39300-
react: 19.0.0-rc-6230622a1a-20240610
39301-
react-dom: 19.0.0-rc-6230622a1a-20240610
39301+
react: ^19.0.1
39302+
react-dom: ^19.0.1
3930239303
webpack: ^5.59.0
39303-
checksum: 10/66ae78f359bcd09400d39f25341c9f799b33cbdb4c7a1134c07ee34d7d142c240bd0dea83942c9260c3e3be6de0bc2bf0ed1343e4f044eeabcf6e5d3c1172c79
39304+
checksum: 10/bf457509c1201b2bd5080beee6ffa50a2dff70e0ff8130e95bb39d75e51a2bbfad4b72acd732ac4f8dd7f91ec202986b44f68f78a81d1acd266279e1ce63721c
3930439305
languageName: node
3930539306
linkType: hard
3930639307

@@ -46337,6 +46338,13 @@ __metadata:
4633746338
languageName: node
4633846339
linkType: hard
4633946340

46341+
"webpack-sources@npm:^3.2.0":
46342+
version: 3.3.3
46343+
resolution: "webpack-sources@npm:3.3.3"
46344+
checksum: 10/ec5d72607e8068467370abccbfff855c596c098baedbe9d198a557ccf198e8546a322836a6f74241492576adba06100286592993a62b63196832cdb53c8bae91
46345+
languageName: node
46346+
linkType: hard
46347+
4634046348
"webpack-subresource-integrity@npm:5.1.0":
4634146349
version: 5.1.0
4634246350
resolution: "webpack-subresource-integrity@npm:5.1.0"

0 commit comments

Comments
 (0)