Commit cd76014
Bump @babel/plugin-transform-modules-systemjs to 7.29.4 (CVE-2026-44728) (#1985)
Summary:
Pull Request resolved: #1985
Pull Request resolved: #1984
Remediates HIGH-severity advisory GHSA-fv7c-fp4j-7gwp / CVE-2026-44728 in `babel/plugin-transform-modules-systemjs` (affected `>= 7.12.0, <= 7.29.3`; fixed in `7.29.4`).
This is a transitive dependency pulled in via `babel/preset-env`. The existing semver selector `^7.29.0` already permits `7.29.4`, so this is a minimal lockfile-only edit in `xplat/yoga/yarn.lock`: bump `version`, `resolved`, and `integrity` for the single resolved entry. The `dependencies` block and the `registry.yarnpkg.com` host are unchanged, keeping the open-source lockfile consistent and avoiding an internal-registry rewrite.
Reviewed By: javache
Differential Revision: D110064496
fbshipit-source-id: 01d48af2d1123f1538c065b33c28c17b8e802e671 parent 92c7a1c commit cd76014
1 file changed
Lines changed: 3 additions & 3 deletions
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
883 | 883 | | |
884 | 884 | | |
885 | 885 | | |
886 | | - | |
887 | | - | |
888 | | - | |
| 886 | + | |
| 887 | + | |
| 888 | + | |
889 | 889 | | |
890 | 890 | | |
891 | 891 | | |
| |||
0 commit comments