Update serialize-javascript package to fix vulnerability#22217
Open
sanjays-ms wants to merge 20 commits into
Open
Update serialize-javascript package to fix vulnerability#22217sanjays-ms wants to merge 20 commits into
sanjays-ms wants to merge 20 commits into
Conversation
sanjays-ms
force-pushed
the
users/v-sanjayse/serialize-javascript-overrides
branch
from
7815fc4 to
24bcef0
Compare
Contributor
Author
|
/azp run |
|
Azure Pipelines successfully started running 3 pipeline(s). |
sanjays-ms
force-pushed
the
users/v-sanjayse/serialize-javascript-overrides
branch
from
24bcef0 to
b75162f
Compare
Contributor
Author
|
/azp run |
|
Azure Pipelines successfully started running 3 pipeline(s). |
sanjuyadav24
approved these changes
May 29, 2026
Contributor
|
OK for AzureSpringCloudV0 |
sanjays-ms
force-pushed
the
users/v-sanjayse/serialize-javascript-overrides
branch
from
b75162f to
85f0dea
Compare
Contributor
Author
|
/azp run |
|
Azure Pipelines successfully started running 3 pipeline(s). |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Context
AB#2362576
Task Name
ANTV1, AzureSpringCloudV0, BicepDeployV0, GradleV2, GradleV3, GradleV4, MavenV2, MavenV3, MavenV4, PublishCodeCoverageResultsV1
Description
Update / override the serialize-javascript pacakge
This is a dependency as part of the mocha package we use for testing.
Since the package is only for testing no functionality change of any tasks
Mocha latest version doesn't have fix for this so we are adding overrides
Even though couple of tasks have only Test folders update bumped versions to keep versioning as per repository guidelines
To avoid conflicts with other PRs I have moved the version to x.275.3 for the tasks
Risk Assessment (Low / Medium / High)
Low - single package update mostly testing / dev dependency
Change Behind Feature Flag (Yes / No)
No
Tech Design / Approach
NA
Documentation Changes Required (Yes/No)
No
Unit Tests Added or Updated (Yes / No)
No
Additional Testing Performed
Testing only performed as part of CI checks. No manual testing performed
Logging Added/Updated (Yes/No)
NA
Telemetry Added/Updated (Yes/No)
No
Rollback Scenario and Process (Yes/No)
Override task if any failures and fix the task and bump version.
Dependency Impact Assessed and Regression Tested (Yes/No)
Checklist