fix(root): resolve high jws vulnerability

[cursor]

Summary

Resolves a high severity vulnerability in jws@4.0.0 (GHSA-869p-cjfg-cm3x).

Advisory: GHSA-869p-cjfg-cm3x

jws@4.0.0 is vulnerable to algorithm confusion attacks that could allow an attacker to forge JWS tokens. The vulnerability is patched in v4.0.1.

Fix Strategy

pnpm override — The vulnerable package is a transitive dependency:

• @google-cloud/storage > google-auth-library > jws
• @google-cloud/storage > google-auth-library > gtoken > jws

Added "jws@>=4.0.0 <4.0.1": "^4.0.1" to pnpm.overrides in the root package.json to force resolution to the patched version.

Validation

• pnpm audit confirms advisory 1111243 is no longer present
• pnpm build:v2 passes successfully

  

[netlify]

✅ Deploy Preview for dashboard-v2-novu-staging canceled.

Name	Link
🔨 Latest commit	11f5e27
🔍 Latest deploy log	https://app.netlify.com/projects/dashboard-v2-novu-staging/deploys/69b65d2e5f5f36000832f924

[github-actions]

Hey there and thank you for opening this pull request! 👋

We require pull request titles to follow specific formatting rules and it looks like your proposed title needs to be adjusted.

Your PR title is: fix(root): resolve high jws vulnerability

Requirements:

1. Follow the Conventional Commits specification
2. As a team member, include Linear ticket ID at the end: fixes TICKET-ID or include it in your branch name

Expected format: feat(scope): Add fancy new feature fixes NOV-123

Details:

PR title must end with 'fixes TICKET-ID' (e.g., 'fixes NOV-123') or include ticket ID in branch name