From e4a032089c30e2062fca4dffc05c5d5672724ea5 Mon Sep 17 00:00:00 2001
From: Antonis Lilis <antonis.lilis@sentry.io>
Date: Mon, 30 Mar 2026 10:51:26 +0200
Subject: [PATCH] chore(deps): bump brace-expansion to ^5.0.5

Fixes Dependabot alert for zero-step sequence causing process hang.

https://github.com/getsentry/sentry-react-native/security/dependabot/483

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
---
 package.json | 3 ++-
 yarn.lock    | 8 ++++----
 2 files changed, 6 insertions(+), 5 deletions(-)

diff --git a/package.json b/package.json
index 08ff4b77ff..5b74f1913e 100644
--- a/package.json
+++ b/package.json
@@ -127,7 +127,8 @@
     "@expo/cli@npm:55.0.15/picomatch": "^4.0.4",
     "@expo/metro-config@npm:55.0.9/picomatch": "^4.0.4",
     "npm-run-all2@npm:8.0.4/picomatch": "^4.0.4",
-    "tinyglobby@npm:0.2.15/picomatch": "^4.0.4"
+    "tinyglobby@npm:0.2.15/picomatch": "^4.0.4",
+    "minimatch@npm:10.2.4/brace-expansion": "^5.0.5"
   },
   "version": "0.0.0",
   "name": "sentry-react-native",
diff --git a/yarn.lock b/yarn.lock
index 4fa8ddac58..c76929e8d8 100644
--- a/yarn.lock
+++ b/yarn.lock
@@ -14887,12 +14887,12 @@ __metadata:
   languageName: node
   linkType: hard
 
-"brace-expansion@npm:^5.0.2":
-  version: 5.0.4
-  resolution: "brace-expansion@npm:5.0.4"
+"brace-expansion@npm:^5.0.5":
+  version: 5.0.5
+  resolution: "brace-expansion@npm:5.0.5"
   dependencies:
     balanced-match: ^4.0.2
-  checksum: ded86c0f0b138734110d67437fee52c1f97bc19175644788b1d71afec2d87d405cf05424ce428f88ae3abe8e09e13ee55f2675534b38076ef70e1e583ed75686
+  checksum: 4481b7ffa467b34c14e258167dbd8d9485a2d31d03060e8e8b38142dcde32cdc89c8f55b04d3ae7aae9304fa7eac1dfafd602787cf09c019cc45de3bb6950ffc
   languageName: node
   linkType: hard