Skip to content

Commit aa9eb1e

Browse files
antonisclaude
antonis
and
claude
committed
chore(deps): bump ajv to ^8.18.0
Addresses Dependabot alert for ajv prototype pollution vulnerability. Uses yarn resolutions to force ajv >=8.18.0 for most consumers, with parent-scoped resolutions to keep eslint-compatible 6.x versions. https://github.com/getsentry/sentry-react-native/security/dependabot/391 https://github.com/getsentry/sentry-react-native/security/dependabot/390 Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
1 parent 5a14e8e commit aa9eb1e

File tree

2 files changed

+16
-49
lines changed

2 files changed

+16
-49
lines changed

package.json

Lines changed: 7 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -60,6 +60,13 @@
6060
],
6161
"resolutions": {
6262
"appium-chromedriver@npm:5.6.73/@xmldom/xmldom": "0.8.10",
63+
"ajv": "^8.18.0",
64+
"appium@npm:2.4.1/ajv": "^8.18.0",
65+
"@eslint/eslintrc@npm:2.1.4/ajv": "^6.14.0",
66+
"@eslint/eslintrc@npm:3.3.3/ajv": "^6.14.0",
67+
"eslint@npm:8.57.0/ajv": "^6.14.0",
68+
"eslint@npm:8.57.1/ajv": "^6.14.0",
69+
"eslint@npm:9.39.2/ajv": "^6.14.0",
6370
"fast-xml-parser": "^5.3.6",
6471
"form-data": "4.0.4",
6572
"qs": "^6.14.2",

yarn.lock

Lines changed: 9 additions & 49 deletions
Original file line numberDiff line numberDiff line change
@@ -13682,39 +13682,15 @@ __metadata:
1368213682
languageName: node
1368313683
linkType: hard
1368413684

13685-
"ajv@npm:8.12.0":
13686-
version: 8.12.0
13687-
resolution: "ajv@npm:8.12.0"
13685+
"ajv@npm:^8.18.0":
13686+
version: 8.18.0
13687+
resolution: "ajv@npm:8.18.0"
1368813688
dependencies:
13689-
fast-deep-equal: ^3.1.1
13689+
fast-deep-equal: ^3.1.3
13690+
fast-uri: ^3.0.1
1369013691
json-schema-traverse: ^1.0.0
1369113692
require-from-string: ^2.0.2
13692-
uri-js: ^4.2.2
13693-
checksum: 4dc13714e316e67537c8b31bc063f99a1d9d9a497eb4bbd55191ac0dcd5e4985bbb71570352ad6f1e76684fb6d790928f96ba3b2d4fd6e10024be9612fe3f001
13694-
languageName: node
13695-
linkType: hard
13696-
13697-
"ajv@npm:^6.12.4":
13698-
version: 6.12.6
13699-
resolution: "ajv@npm:6.12.6"
13700-
dependencies:
13701-
fast-deep-equal: "npm:^3.1.1"
13702-
fast-json-stable-stringify: "npm:^2.0.0"
13703-
json-schema-traverse: "npm:^0.4.1"
13704-
uri-js: "npm:^4.2.2"
13705-
checksum: 874972efe5c4202ab0a68379481fbd3d1b5d0a7bd6d3cc21d40d3536ebff3352a2a1fabb632d4fd2cc7fe4cbdcd5ed6782084c9bbf7f32a1536d18f9da5007d4
13706-
languageName: node
13707-
linkType: hard
13708-
13709-
"ajv@npm:^8.0.0, ajv@npm:^8.11.0, ajv@npm:^8.6.3":
13710-
version: 8.17.1
13711-
resolution: "ajv@npm:8.17.1"
13712-
dependencies:
13713-
fast-deep-equal: "npm:^3.1.3"
13714-
fast-uri: "npm:^3.0.1"
13715-
json-schema-traverse: "npm:^1.0.0"
13716-
require-from-string: "npm:^2.0.2"
13717-
checksum: 1797bf242cfffbaf3b870d13565bd1716b73f214bb7ada9a497063aada210200da36e3ed40237285f3255acc4feeae91b1fb183625331bad27da95973f7253d9
13693+
checksum: bcdf6c7b040ca488108e2b4e219b31cf9ed478331007d4dd1ed8acc3946dd6b84295817c0f4724207b8dd8589c9966168b2fd4c7f32109d4b8526cdd3743e936
1371813694
languageName: node
1371913695
linkType: hard
1372013696

@@ -20059,7 +20035,7 @@ __metadata:
2005920035
languageName: node
2006020036
linkType: hard
2006120037

20062-
"fast-deep-equal@npm:^3.1.1, fast-deep-equal@npm:^3.1.3":
20038+
"fast-deep-equal@npm:^3.1.3":
2006320039
version: 3.1.3
2006420040
resolution: "fast-deep-equal@npm:3.1.3"
2006520041
checksum: e21a9d8d84f53493b6aa15efc9cfd53dd5b714a1f23f67fb5dc8f574af80df889b3bce25dc081887c6d25457cce704e636395333abad896ccdec03abaf1f3f9d
@@ -20093,7 +20069,7 @@ __metadata:
2009320069
languageName: node
2009420070
linkType: hard
2009520071

20096-
"fast-json-stable-stringify@npm:2.x, fast-json-stable-stringify@npm:^2.0.0, fast-json-stable-stringify@npm:^2.1.0":
20072+
"fast-json-stable-stringify@npm:2.x, fast-json-stable-stringify@npm:^2.1.0":
2009720073
version: 2.1.0
2009820074
resolution: "fast-json-stable-stringify@npm:2.1.0"
2009920075
checksum: b191531e36c607977e5b1c47811158733c34ccb3bfde92c44798929e9b4154884378536d26ad90dfecd32e1ffc09c545d23535ad91b3161a27ddbb8ebe0cbecb
@@ -23755,13 +23731,6 @@ __metadata:
2375523731
languageName: node
2375623732
linkType: hard
2375723733

23758-
"json-schema-traverse@npm:^0.4.1":
23759-
version: 0.4.1
23760-
resolution: "json-schema-traverse@npm:0.4.1"
23761-
checksum: 7486074d3ba247769fda17d5181b345c9fb7d12e0da98b22d1d71a5db9698d8b4bd900a3ec1a4ffdd60846fc2556274a5c894d0c48795f14cb03aeae7b55260b
23762-
languageName: node
23763-
linkType: hard
23764-
2376523734
"json-schema-traverse@npm:^1.0.0":
2376623735
version: 1.0.0
2376723736
resolution: "json-schema-traverse@npm:1.0.0"
@@ -28946,7 +28915,7 @@ __metadata:
2894628915
languageName: node
2894728916
linkType: hard
2894828917

28949-
"punycode@npm:^2.1.0, punycode@npm:^2.1.1":
28918+
"punycode@npm:^2.1.1":
2895028919
version: 2.3.1
2895128920
resolution: "punycode@npm:2.3.1"
2895228921
checksum: bb0a0ceedca4c3c57a9b981b90601579058903c62be23c5e8e843d2c2d4148a3ecf029d5133486fb0e1822b098ba8bba09e89d6b21742d02fa26bda6441a6fb2
@@ -34047,15 +34016,6 @@ __metadata:
3404734016
languageName: node
3404834017
linkType: hard
3404934018

34050-
"uri-js@npm:^4.2.2":
34051-
version: 4.4.1
34052-
resolution: "uri-js@npm:4.4.1"
34053-
dependencies:
34054-
punycode: "npm:^2.1.0"
34055-
checksum: 7167432de6817fe8e9e0c9684f1d2de2bb688c94388f7569f7dbdb1587c9f4ca2a77962f134ec90be0cc4d004c939ff0d05acc9f34a0db39a3c797dada262633
34056-
languageName: node
34057-
linkType: hard
34058-
3405934019
"url-parse@npm:^1.5.3":
3406034020
version: 1.5.10
3406134021
resolution: "url-parse@npm:1.5.10"

0 commit comments

Comments
 (0)