Skip to content

chore(deps): Performed npm audit fix#3279

Closed
thomashohn wants to merge 1 commit intonestjs:masterfrom
thomashohn:chore/fix-security-issues-3278
Closed

chore(deps): Performed npm audit fix#3279
thomashohn wants to merge 1 commit intonestjs:masterfrom
thomashohn:chore/fix-security-issues-3278

Conversation

@thomashohn
Copy link
Copy Markdown

@thomashohn thomashohn commented Mar 9, 2026

PR Checklist

Please check if your PR fulfills the following requirements:

PR Type

Update of dependencies

[ ] Bugfix
[ ] Feature
[ ] Code style update (formatting, local variables)
[ ] Refactoring (no functional changes, no api changes)
[ ] Build related changes
[ ] CI related changes
[x] Other... Please describe: Chore

What is the current behavior?

Bigger attack surface

Issue Number: #3278 3278

What is the new behavior?

Smaller attack surface

Does this PR introduce a breaking change?

[ ] Yes
[x] No

Other information

@kamilmysliwiec
Copy link
Copy Markdown
Member

kamilmysliwiec commented Mar 9, 2026

#3280

@thomashohn
Copy link
Copy Markdown
Author

thomashohn commented Mar 9, 2026

Isn't that a long time to "wait" for security fixes if release date for v12 is Q3?

@kamilmysliwiec
Copy link
Copy Markdown
Member

kamilmysliwiec commented Mar 9, 2026

Your PR only updates the package-lock file which has literally 0 impact on this package's security

@thomashohn
Copy link
Copy Markdown
Author

thomashohn commented Mar 9, 2026

Yes - you are right :-)

@thomashohn
Copy link
Copy Markdown
Author

thomashohn commented Mar 9, 2026
edited
Loading

Will do a PR that then updates the package.json file where necessary if possible

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@thomashohn @kamilmysliwiec