Skip to content

chore(deps): consolidated dependency security updates #243

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
tobyhede merged 1 commit into from
Dec 17, 2025
Merged

chore(deps): consolidated dependency security updates #243

tobyhede merged 1 commit into from
Dec 17, 2025

Conversation

@tobyhede
Copy link
Contributor

@tobyhede tobyhede commented Dec 17, 2025
edited
Loading

Summary

Consolidates dependency updates from Dependabot security PRs into a single update:

Related PRs

This consolidates the following Dependabot PRs:

These can be closed after this PR is merged.

@tobyhede
chore(deps): consolidated dependency updates
cbcc55a 
Combines updates from Dependabot PRs #191, #229, and #234:

- express: ^5.2.0 → ^5.2.1 (security fix for CVE-2024-51999)
- next: 15.4.7 → 15.5.7 (security fix for CVE-2025-66478)
- vite: already updated to 6.4.1 in main

This PR consolidates these security patches into a single update.
@tobyhede tobyhede force-pushed the chore/consolidated-dependency-updates branch from cebe43c to cbcc55a Compare December 17, 2025 05:13
CDThomas
CDThomas approved these changes Dec 17, 2025
View reviewed changes
Copy link
Contributor

@CDThomas CDThomas left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The PR description mentions vite, but I don't think that this change touches vite. LGTM otherwise.

@tobyhede
Copy link
Contributor Author

tobyhede commented Dec 17, 2025

@CDThomas Cleaned up. Vite was already updated, I must have missed closing the issue.

@tobyhede tobyhede merged commit 4af5447 into main Dec 17, 2025
1 check passed
@tobyhede tobyhede deleted the chore/consolidated-dependency-updates branch December 17, 2025 05:46
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@CDThomas CDThomas CDThomas approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@tobyhede @CDThomas