fix: patch Vanta security vulnerabilities in npm dependencies#381
fix: patch Vanta security vulnerabilities in npm dependencies#381Harigithub11 wants to merge 1 commit into
Conversation
- CVE-2026-4800, CVE-2026-2950: lodash-es ^4.17.23 → ^4.18.0 - GHSA-h8r8-wccr-v5f2, CVE-2026-0540, GHSA-cj63-jhhr-wcxv, GHSA-cjmm-f4jc-qw8r: dompurify override ^3.3.2 added
|
No actionable comments were generated in the recent review. 🎉 ℹ️ Recent review info⚙️ Run configurationConfiguration used: Organization UI Review profile: CHILL Plan: Pro Run ID: ⛔ Files ignored due to path filters (1)
📒 Files selected for processing (1)
WalkthroughThe Changes
Estimated code review effort🎯 1 (Trivial) | ⏱️ ~3 minutes Possibly related PRs
Suggested reviewers
Poem
🚥 Pre-merge checks | ✅ 3✅ Passed checks (3 passed)
✏️ Tip: You can configure your own custom pre-merge checks in the settings. ✨ Finishing Touches🧪 Generate unit tests (beta)
Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out. Comment |
|
Cloud Run service deployed: https://pr-fix-vanta-security-vulnerabilities-2-cj6r7x3fpa-uc.a.run.app |
Summary
Test plan
Summary by CodeRabbit