Skip to content

chore: upgrade graph-cli to 0.98.1 to fix tar vulnerability#162

Merged
grothem merged 3 commits into
mainfrom
chore/deps
Feb 11, 2026
Merged

chore: upgrade graph-cli to 0.98.1 to fix tar vulnerability#162
grothem merged 3 commits into
mainfrom
chore/deps

Conversation

@grothem

@grothem grothem commented Feb 11, 2026

Copy link
Copy Markdown
Contributor

Update @graphprotocol/graph-cli from ^0.80.0 to ^0.98.1 to eliminate the transitive tar@6.1.15 vulnerability (via binary-install-raw). Add required immutable argument to all @entity directives in schemas.

Update @graphprotocol/graph-cli from ^0.80.0 to ^0.98.1 to eliminate
the transitive tar@6.1.15 vulnerability (via binary-install-raw).
Add required `immutable` argument to all @entity directives in schemas.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@grothem

grothem commented Feb 11, 2026

Copy link
Copy Markdown
Contributor Author

closes AAVE-3656

@github-actions

github-actions Bot commented Feb 11, 2026

Copy link
Copy Markdown

Dependency Review

The following issues were found:

  • ❌ 1 vulnerable package(s)
  • ⚠️ 5 packages with OpenSSF Scorecard issues.

View full job summary

@grothem
grothem merged commit 43ab69e into main Feb 11, 2026
4 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants