fix(deps): vuln minor upgrades — 15 packages (minor: 6 · patch: 9) #4477
fix(deps): vuln minor upgrades — 15 packages (minor: 6 · patch: 9) #4477gh-worker-campaigns-3e9aa4[bot] wants to merge 2 commits into
Conversation
This comment has been minimized.
This comment has been minimized.
|
PRApprover will approve and merge this PR, FAQ, #dx-source-code-management 🛠️ PRApproval Status
➡️ Current phase: CI tests failed. Please fix the failing tests to continue. |
Auto-rebase completeBranch is up to date with Auto-Rebase · Add |
abfe83e to
08d4f50
Compare
08d4f50 to
058372b
Compare
Co-authored-by: dd-octo-sts-6354d5[bot] <266798271+dd-octo-sts-6354d5[bot]@users.noreply.github.com>
Co-authored-by: dd-octo-sts-6354d5[bot] <266798271+dd-octo-sts-6354d5[bot]@users.noreply.github.com>
058372b to
2277679
Compare
Auto-rebase failedLockfile regeneration failed during rebase onto Error detailschild workflow execution error (type: engraver.Engraver_AllManagersWorkflow, workflowID: 019f3663-4a1a-73db-bdf8-92e9684a7758_57, runID: 019f3663-834b-7ec5-8a44-3178c482c979, initiatedEventID: 57, startedEventID: 58): custom action(s) failed and produced no changes: [registry.ddbuild.io/images/engraver-custom-action:update-yarn-lockfile] Auto-Rebase · Add |
Summary: Critical-severity security update — 15 packages upgraded (MINOR changes included)
Manifests changed:
.(yarn)✅ Action Required: Please review the changes below. If they look good, approve and merge this PR.
Updates
Security Details
🚨 Critical & High Severity (35 fixed)
_.templateimports key names_.templateimports key namespath-to-regexpReDoS in 0.1.xℹ️ Other Vulnerabilities (26)
_.unsetand_.omit_.unsetand_.omitfunctions_.unsetand_.omit_.unsetand_.omitfunctionsdirparameterdirparameterReview Checklist
Standard review:
Update Mode: all_vulns
🤖 Generated by DataDog Automated Dependency Management System