Skip to content

MLE-24230 Second batch of package updates #989

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Oct 15, 2025
Merged

MLE-24230 Second batch of package updates #989

merged 1 commit into from
Oct 15, 2025

Conversation

@rjrudin
Copy link
Contributor

@rjrudin rjrudin commented Oct 15, 2025

  • Bumped json-text-sequence to latest version (1.0.1 to 4.0.2)
  • Bumped qs from 6.11 to 6.14
  • Removed carets to request explicit versions

And had Copilot clean up the "overrides" section. Most of these look like they originate from devDependencies - though a lot of them may have been from eslint, which was mistakenly party of dependencies. Will see what Black Duck thinks, but npm is reporting zero vulnerabilities.

@rjrudin
MLE-24230 Second batch of package updates
cec15fb 
- Bumped json-text-sequence to latest version (1.0.1 to 4.0.2)
- Bumped qs from 6.11 to 6.14
- Removed carets to request explicit versions

And had Copilot clean up the "overrides" section. Most of these look like they originate from devDependencies - though a lot of them may have been from eslint, which was mistakenly party of dependencies. Will see what Black Duck thinks, but npm is reporting zero vulnerabilities.
Copilot AI review requested due to automatic review settings October 15, 2025 17:59
Copilot AI reviewed Oct 15, 2025
View reviewed changes
Copy link

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

This PR updates several package dependencies to their latest versions, removes version range specifiers (carets) for explicit version pinning, and cleans up the overrides section by removing entries that are no longer needed (likely due to the removal of eslint from dependencies).

  • Updated json-text-sequence from 1.0.1 to 4.0.2
  • Updated qs from 6.11.0 to 6.14.0
  • Removed carets from dependency versions for explicit pinning

Reviewed Changes

Copilot reviewed 2 out of 3 changed files in this pull request and generated no comments.

File Description
package.json Updated dependency versions, removed carets for explicit versioning, and cleaned up overrides section
lib/responder.js Updated import to use capitalized Parser export from updated json-text-sequence package

Tip: Customize your code reviews with copilot-instructions.md. Create the file or learn how to get started.

@github-actions
Copy link

github-actions bot commented Oct 15, 2025

Copyright Validation Results
Total: 3 | Passed: 1 | Failed: 0 | Skipped: 2 | at: 2025-10-15 17:59:54 UTC | commit: cec15fb

⏭️ Skipped (Excluded) Files

  • package-lock.json
  • package.json

✅ Valid Files

  • lib/responder.js

✅ All files have valid copyright headers!

@rjrudin rjrudin merged commit 7aeb0ac into develop Oct 15, 2025
3 checks passed
@rjrudin rjrudin deleted the feature/24230-updates-2 branch October 15, 2025 18:58
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@BillFarber BillFarber BillFarber approved these changes

@anu3990 anu3990 Awaiting requested review from anu3990 anu3990 is a code owner

@stevebio stevebio Awaiting requested review from stevebio stevebio is a code owner

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@rjrudin @BillFarber