Skip to content

Commit 345bfd1

Browse files
committed
Resolve GitHub Advanced Security vulnerabilities via yarn resolutions
- Add resolutions for brace-expansion, sha.js, lodash, js-yaml, qs, minimatch, ecstatic, liquidjs, yauzl to force patched versions - Fix stale reference to deleted report in generate-markdown.mjs - yarn audit: 0 vulnerabilities (was 27)
1 parent 099eafe commit 345bfd1

3 files changed

Lines changed: 229 additions & 79 deletions

File tree

package.json

Lines changed: 11 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -31,6 +31,17 @@
3131
"delay": "2500ms",
3232
"ext": "*"
3333
},
34+
"resolutions": {
35+
"brace-expansion": ">=1.1.12",
36+
"sha.js": ">=2.4.12",
37+
"lodash": ">=4.17.23",
38+
"js-yaml": ">=4.1.1",
39+
"qs": ">=6.14.2",
40+
"minimatch": ">=3.1.4",
41+
"ecstatic": ">=4.1.3",
42+
"liquidjs": ">=10.25.0",
43+
"yauzl": ">=3.2.1"
44+
},
3445
"devDependencies": {
3546
"@antora/cli": "^3.1.10",
3647
"@antora/site-generator-default": "^3.1.10",

scripts/generate-markdown.mjs

Lines changed: 1 addition & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -4,8 +4,7 @@
44
* Post-build script: converts every Antora HTML page into a Markdown sibling
55
* so AI agents can fetch clean, low-token content via content negotiation.
66
*
7-
* Uses dom-to-semantic-markdown (d2m) for conversion. See docs/turndown-vs-d2m-comparison-report.md
8-
* for the evaluation that led to this choice.
7+
* Uses dom-to-semantic-markdown (d2m) for conversion (preserves links in tables).
98
*
109
* Usage: node scripts/generate-markdown.mjs [buildDir]
1110
* Default buildDir = build/site

0 commit comments

Comments
 (0)