[Snyk] Fix for 1 vulnerabilities#360
Conversation
The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-BRACEEXPANSION-17706650
|
This upgrade includes a major version bump for eslint-config-expensify: 2.0.75 → 3.0.3 (HIGH RISK)This is a major version upgrade. While a specific changelog is not available, this update corresponds with the broader ESLint ecosystem's migration to a new flat configuration format (
Recommendation: This is a high-effort migration that will require developers to manually update configuration files and potentially fix a large number of new linting errors across the codebase. web-ext: 8.3.0 → 9.2.0 (MEDIUM RISK)This major version upgrade requires a newer Node.js runtime.
Recommendation: Before upgrading, ensure your development and CI/CD environments are running Node.js v22 or later.
|
The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-BRACEEXPANSION-17706650
The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-BRACEEXPANSION-17706650
Snyk has created this PR to fix 1 vulnerabilities in the npm dependencies of this project.
Snyk changed the following file(s):
package.jsonpackage-lock.jsonVulnerabilities that will be fixed with an upgrade:
SNYK-JS-BRACEEXPANSION-17706650
Breaking Change Risk
Important
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.