Skip to content

refactor: Security upgrade @aws-sdk/s3-request-presigner from 3.971.0 to 3.980.0#432

Merged
mtrezza merged 1 commit into
masterfrom
snyk-fix-8f45ffb9ea757ea8103da706708be9e6
Feb 4, 2026
Merged

refactor: Security upgrade @aws-sdk/s3-request-presigner from 3.971.0 to 3.980.0#432
mtrezza merged 1 commit into
masterfrom
snyk-fix-8f45ffb9ea757ea8103da706708be9e6

Conversation

@davimacedo
Copy link
Copy Markdown
Member

@davimacedo davimacedo commented Feb 4, 2026
edited by coderabbitai Bot
Loading

snyk-top-banner

Snyk has created this PR to fix 1 vulnerabilities in the npm dependencies of this project.

Snyk changed the following file(s):

  • package.json
  • package-lock.json

Vulnerabilities that will be fixed with an upgrade:

Issue Score
high severity Uncaught Exception
SNYK-JS-FASTXMLPARSER-15155603		   828  

Important

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • Max score is 1000. Note that the real score may have changed since the PR was raised.
  • This PR was automatically created by Snyk using the credentials of a real user.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Uncaught Exception

Summary by CodeRabbit

  • Chores
    • Updated AWS SDK S3 request presigner dependency to the latest patch version for consistency.

@parse-github-assistant
Copy link
Copy Markdown

parse-github-assistant Bot commented Feb 4, 2026

I will reformat the title to use the proper commit message syntax.

@parse-github-assistant
Copy link
Copy Markdown

parse-github-assistant Bot commented Feb 4, 2026

🚀 Thanks for opening this pull request!

@parse-github-assistant parse-github-assistant Bot changed the title [Snyk] Security upgrade @aws-sdk/s3-request-presigner from 3.971.0 to 3.980.0 refactor: Security upgrade @aws-sdk/s3-request-presigner from 3.971.0 to 3.980.0 Feb 4, 2026
@parseplatformorg
Copy link
Copy Markdown
Contributor

parseplatformorg commented Feb 4, 2026

Snyk checks have passed. No issues have been found so far.

Status Scanner Critical High Medium Low Total (0)
Open Source Security 0 0 0 0 0 issues

💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse.

@coderabbitai
Copy link
Copy Markdown

coderabbitai Bot commented Feb 4, 2026
edited
Loading

📝 Walkthrough

Walkthrough

The pull request bumps the "@aws-sdk/s3-request-presigner" dependency from version 3.971.0 to 3.980.0 in package.json. This is a patch-level version update with no functional changes or modifications to other dependencies or scripts.

Changes

Cohort / File(s) Summary
Dependency Version Update
package.json		 Bumped "@aws-sdk/s3-request-presigner" from 3.971.0 to 3.980.0 to align presigner package version with S3 client version.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~3 minutes

Possibly related PRs

🚥 Pre-merge checks | ✅ 3
✅ Passed checks (3 passed)
Check name Status Explanation
Description Check ✅ Passed Check skipped - CodeRabbit’s high-level summary is enabled.
Title check ✅ Passed The title clearly summarizes the main change: a dependency version bump for @aws-sdk/s3-request-presigner, which directly matches the changeset in package.json.
Docstring Coverage ✅ Passed No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.

✏️ Tip: You can configure your own custom pre-merge checks in the settings.

✨ Finishing touches
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Post copyable unit tests in a comment
  • Commit unit tests in branch snyk-fix-8f45ffb9ea757ea8103da706708be9e6

Important

Action Needed: IP Allowlist Update

If your organization protects your Git platform with IP whitelisting, please add the new CodeRabbit IP address to your allowlist:

  • 136.113.208.247/32 (new)
  • 34.170.211.100/32
  • 35.222.179.152/32

Reviews will stop working after February 8, 2026 if the new IP is not added to your allowlist.

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

Comment @coderabbitai help to get the list of available commands and usage tips.

@codecov
Copy link
Copy Markdown

codecov Bot commented Feb 4, 2026
edited
Loading

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 97.19%. Comparing base (42a978c) to head (6091971).
⚠️ Report is 1 commits behind head on master.

Additional details and impacted files 
@@           Coverage Diff           @@
##           master     #432   +/-   ##
=======================================
  Coverage   97.19%   97.19%           
=======================================
  Files           2        2           
  Lines         214      214           
=======================================
  Hits          208      208           
  Misses          6        6

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

@mtrezza mtrezza merged commit 7582a4d into master Feb 4, 2026
13 checks passed
@mtrezza mtrezza deleted the snyk-fix-8f45ffb9ea757ea8103da706708be9e6 branch February 4, 2026 15:04
@coderabbitai coderabbitai Bot mentioned this pull request Mar 28, 2026
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@coderabbitai coderabbitai[bot] coderabbitai[bot] approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@davimacedo @parseplatformorg @mtrezza @snyk-bot