Skip to content

Bump nodemon from version 2.x to 3.1.11 in test-suite #406

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
MartinWheelerMT merged 1 commit into from
Jan 8, 2026
Merged

Bump nodemon from version 2.x to 3.1.11 in test-suite #406

MartinWheelerMT merged 1 commit into from
Jan 8, 2026

Conversation

@MartinWheelerMT
Copy link
Collaborator

@MartinWheelerMT MartinWheelerMT commented Jan 8, 2026
edited
Loading

What

  • Version of 2 of nodemon contains high vulnerabilities. This updates to using the latest version and updates package.json and package-lock.json accordingly.

Why

nodemon 2.x introduces a vulnerability through it's transitive dependencies. This updates to the latest version of nodemon 3.x which will address this.

Type of change

Please delete options that are not relevant.

  • Internal change (non-breaking change with no effect on the functionality affecting end users)

Checklist:

  • I have performed a self-review of my code
  • I have made corresponding changes to the documentation where required
  • My changes generate no new warnings
  • I have added tests that prove my fix is effective or that my feature works
  • New and existing unit tests pass locally with my changes
  • I have updated the Changelog with details of my change in the UNRELEASED section if this change affects end users.

@MartinWheelerMT
Bump nodemon from version 2.x to 3.1.11 in test-suite
b755bb2 
* Version of 2 of `nodemon` contains high vulnerabilities. This updates to using the latest version and updates `package.json` and `package-lock.json` according.
@MartinWheelerMT MartinWheelerMT requested a review from a team as a code owner January 8, 2026 16:16
@MartinWheelerMT MartinWheelerMT enabled auto-merge (squash) January 8, 2026 16:16
@github-actions
Copy link

github-actions bot commented Jan 8, 2026

Images built and published to ECR using a Build Id of PR-272-ea21641

@MartinWheelerMT MartinWheelerMT merged commit f3d77e0 into main Jan 8, 2026
8 checks passed
@MartinWheelerMT MartinWheelerMT deleted the address-nodemon-vulnerability branch January 8, 2026 16:22
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Jonopono123 Jonopono123 Jonopono123 approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@MartinWheelerMT @Jonopono123