mirror of
https://github.com/alibaba/open-code-review.git
synced 2026-07-09 17:28:58 +00:00
fix(vscode): upgrade minimatch to >=9.0.7 for CVE-2026-27903 (#220)
Add yarn resolution for minimatch and refresh yarn.lock to resolve Dependabot alert #11 (ReDoS in minimatch <9.0.7).
This commit is contained in:
parent
034d512b15
commit
52da795902
2 changed files with 811 additions and 848 deletions
|
|
@ -110,6 +110,7 @@
|
|||
"undici": ">=7.28.0",
|
||||
"form-data": ">=4.0.6",
|
||||
"js-yaml": "^4.2.0",
|
||||
"minimatch": "^9.0.7",
|
||||
"@typescript-eslint/typescript-estree/minimatch": "^9.0.7"
|
||||
},
|
||||
"dependencies": {
|
||||
|
|
|
|||
File diff suppressed because it is too large
Load diff
Loading…
Add table
Add a link
Reference in a new issue