Skip to content

Bumped qs version for CVE-2025-15284.#428

Merged
amsiglan merged 2 commits intoopensearch-project:2.19from
AWSHurneyt:2.19-cve-2025-15284
Mar 5, 2026
Merged

Bumped qs version for CVE-2025-15284.#428
amsiglan merged 2 commits intoopensearch-project:2.19from
AWSHurneyt:2.19-cve-2025-15284

Conversation

@AWSHurneyt
Copy link
Collaborator

@AWSHurneyt AWSHurneyt commented Mar 4, 2026

Description

Bumped qs version for CVE-2025-15284.

Issues Resolved

[List any issues this PR will resolve]

Check List

  • Commits are signed per the DCO using --signoff

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.
For more information on following Developer Certificate of Origin and signing off your commits, please check here.

@AWSHurneyt
Bumped qs version for CVE-2025-15284.
b0d0ea7 
Signed-off-by: Thomas Hurney <hurneyt@amazon.com>
@AWSHurneyt AWSHurneyt marked this pull request as ready for review March 4, 2026 23:59
@AWSHurneyt
Copy link
Collaborator Author

AWSHurneyt commented Mar 5, 2026

The cypress test workflows will fail as OSD core has bumped to a version of cypress on the 2.19 branch that requires infrastructure changes to the plugin. I'll make those changes in a separate PR since the release team will run the tests using the functional test repo anyway.

Cypress version 10.0.0 no longer supports cypress.json.

@AWSHurneyt
Adjusted dependency version.
7cfde93 
Signed-off-by: Thomas Hurney <hurneyt@amazon.com>
@amsiglan amsiglan merged commit 19fb0ee into opensearch-project:2.19 Mar 5, 2026
5 of 8 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@riysaxen-amzn riysaxen-amzn riysaxen-amzn approved these changes

@amsiglan amsiglan amsiglan approved these changes

@xluo-aws xluo-aws Awaiting requested review from xluo-aws xluo-aws is a code owner

@gaobinlong gaobinlong Awaiting requested review from gaobinlong gaobinlong is a code owner

@Hailong-am Hailong-am Awaiting requested review from Hailong-am Hailong-am is a code owner

@SuZhou-Joe SuZhou-Joe Awaiting requested review from SuZhou-Joe SuZhou-Joe is a code owner

@zhichao-aws zhichao-aws Awaiting requested review from zhichao-aws zhichao-aws is a code owner

@yuye-aws yuye-aws Awaiting requested review from yuye-aws yuye-aws is a code owner

@getsaurabh02 getsaurabh02 Awaiting requested review from getsaurabh02 getsaurabh02 is a code owner

@sbcd90 sbcd90 Awaiting requested review from sbcd90 sbcd90 is a code owner

@praveensameneni praveensameneni Awaiting requested review from praveensameneni praveensameneni is a code owner

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@AWSHurneyt @riysaxen-amzn @amsiglan