Skip to content

Update vulnerable dependency brace-expansion #3159

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Sep 29, 2025
Merged

Update vulnerable dependency brace-expansion #3159

merged 2 commits into from
Sep 29, 2025

Conversation

oscarsj
Copy link
Contributor

@oscarsj oscarsj commented Sep 26, 2025
edited
Loading

Fixes https://github.com/github/codeql-action/security/dependabot/68

Risk assessment

For internal use only. Please select the risk level of this change:

  • High risk: Changes are not fully under feature flags, have limited visibility and/or cannot be tested outside of production.

Merge / deployment checklist

  • Confirm this change is backwards compatible with existing workflows.
  • Consider adding a changelog entry for this change.
  • Confirm the readme and docs have been updated if necessary.

@oscarsj oscarsj requested a review from a team as a code owner September 26, 2025 10:12
@oscarsj oscarsj requested review from Copilot and removed request for a team September 26, 2025 10:12
Copilot

This comment was marked as outdated.

Sign in to view

@oscarsj oscarsj marked this pull request as draft September 26, 2025 10:17
@oscarsj oscarsj force-pushed the oscarsj/update-brace-expansion-dep branch from d958122 to f19a3e7 Compare September 26, 2025 14:41
@oscarsj oscarsj changed the title Update vulnerable dependencies via npm audit Update vulnerable dependencie brace-expansion Sep 26, 2025
@oscarsj oscarsj marked this pull request as ready for review September 26, 2025 16:34
@oscarsj oscarsj changed the title Update vulnerable dependencie brace-expansion Update vulnerable dependency brace-expansion Sep 26, 2025
@oscarsj oscarsj merged commit f0a08a4 into main Sep 29, 2025
460 checks passed
@oscarsj oscarsj deleted the oscarsj/update-brace-expansion-dep branch September 29, 2025 10:13
@github-actions github-actions bot mentioned this pull request Oct 2, 2025
Merged
8 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

Copilot code review Copilot Copilot left review comments

@mbg mbg mbg approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@oscarsj @mbg