From 8acec6d41ab558d221a525f4781d202a42243991 Mon Sep 17 00:00:00 2001
From: Christopher Garratt <chris.garratt@cgi.com>
Date: Thu, 26 Feb 2026 10:32:50 +0000
Subject: [PATCH 1/5] Updating text for pay by date more than 3 years in future

---
 .../fines-mac-payment-terms-form.component.html                 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/app/flows/fines/fines-mac/fines-mac-payment-terms/fines-mac-payment-terms-form/fines-mac-payment-terms-form.component.html b/src/app/flows/fines/fines-mac/fines-mac-payment-terms/fines-mac-payment-terms-form/fines-mac-payment-terms-form.component.html
index 1cc41a1efa..577146e5cd 100644
--- a/src/app/flows/fines/fines-mac/fines-mac-payment-terms/fines-mac-payment-terms-form/fines-mac-payment-terms-form.component.html
+++ b/src/app/flows/fines/fines-mac/fines-mac-payment-terms/fines-mac-payment-terms-form/fines-mac-payment-terms-form.component.html
@@ -424,6 +424,6 @@ <h1 class="govuk-heading-l">Payment terms</h1>
 <ng-template #dateInFutureTemplate let-fieldName>
   <opal-lib-moj-ticket-panel sectionClasses="moj-ticket-panel__content--orange" [alert]="true">
     <strong>{{ fieldName }} is more than 3 years in the future</strong>
-    <p>You can continue with date in the past or change</p>
+    <p>You can continue with this date or change</p>
   </opal-lib-moj-ticket-panel>
 </ng-template>

From 15056180f23b83bc879da45ba930933a976cf30d Mon Sep 17 00:00:00 2001
From: Christopher Garratt <chris.garratt@cgi.com>
Date: Thu, 26 Feb 2026 13:41:19 +0000
Subject: [PATCH 2/5] (update):  known issues

---
 yarn-audit-known-issues | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/yarn-audit-known-issues b/yarn-audit-known-issues
index 24ad605ac5..a6d93b70c4 100644
--- a/yarn-audit-known-issues
+++ b/yarn-audit-known-issues
@@ -1,3 +1,5 @@
+{"value":"@angular/ssr","children":{"ID":1113509,"Issue":"Angular SSR is vulnerable to SSRF and Header Injection via request handling pipeline","URL":"https://github.com/advisories/GHSA-x288-3778-4hhx","Severity":"critical","Vulnerable Versions":">=21.0.0-next.0 <21.1.5","Tree Versions":["21.1.4"],"Dependents":["opal-frontend@workspace:."]}}
+{"value":"@angular/ssr","children":{"ID":1113513,"Issue":"Angular SSR has an Open Redirect via X-Forwarded-Prefix","URL":"https://github.com/advisories/GHSA-xh43-g2fq-wjrj","Severity":"moderate","Vulnerable Versions":">=21.0.0-next.0 <21.1.5","Tree Versions":["21.1.4"],"Dependents":["opal-frontend@workspace:."]}}
 {"value":"ajv","children":{"ID":1113429,"Issue":"ajv has ReDoS when using `$data` option","URL":"https://github.com/advisories/GHSA-2g4f-4pwh-qvx6","Severity":"moderate","Vulnerable Versions":">=7.0.0-alpha.0 <8.18.0","Tree Versions":["8.17.1"],"Dependents":["schema-utils@npm:4.3.3"]}}
 {"value":"minimatch","children":{"ID":1113459,"Issue":"minimatch has a ReDoS via repeated wildcards with non-matching literal in pattern","URL":"https://github.com/advisories/GHSA-3ppc-4f35-3m26","Severity":"high","Vulnerable Versions":"<3.1.3","Tree Versions":["3.1.2"],"Dependents":["find-cypress-specs@npm:1.47.2"]}}
 {"value":"minimatch","children":{"ID":1113465,"Issue":"minimatch has a ReDoS via repeated wildcards with non-matching literal in pattern","URL":"https://github.com/advisories/GHSA-3ppc-4f35-3m26","Severity":"high","Vulnerable Versions":">=9.0.0 <9.0.6","Tree Versions":["9.0.5"],"Dependents":["mocha@npm:11.7.5"]}}

From 230cdcfa5182ea1c80d65b8d61d85a8228745ea5 Mon Sep 17 00:00:00 2001
From: Nipa1410 <nipa.patel@hmcts.net>
Date: Wed, 1 Apr 2026 14:12:04 +0100
Subject: [PATCH 3/5] Verify updated future pay-by-date warning message  in MAC
 payment terms

---
 .../FinesMacPaymentTerms/FinesMacPaymentTerms.cy.ts              | 1 +
 1 file changed, 1 insertion(+)

diff --git a/cypress/component/manualAccountCreation/FinesMacPaymentTerms/FinesMacPaymentTerms.cy.ts b/cypress/component/manualAccountCreation/FinesMacPaymentTerms/FinesMacPaymentTerms.cy.ts
index af401aa975..3ad03ebc6e 100644
--- a/cypress/component/manualAccountCreation/FinesMacPaymentTerms/FinesMacPaymentTerms.cy.ts
+++ b/cypress/component/manualAccountCreation/FinesMacPaymentTerms/FinesMacPaymentTerms.cy.ts
@@ -696,6 +696,7 @@ describe('FinesMacPaymentTermsComponent', () => {
         '@JIRA-STORY:PO-429',
         '@JIRA-STORY:PO-592',
         '@JIRA-STORY:PO-545',
+        '@JIRA-STORY:PO-2983',
         '@JIRA-KEY:POT-4295',
       ),
     },

From 61db0226aef954ac81cb19e7ce2240ab00dca51b Mon Sep 17 00:00:00 2001
From: Nipa1410 <nipa.patel@hmcts.net>
Date: Wed, 1 Apr 2026 15:16:11 +0100
Subject: [PATCH 4/5] verify future pay-by-date updated message  in MAC payment
 terms

---
 .../FinesMacPaymentTerms/FinesMacPaymentTerms.cy.ts           | 4 +++-
 .../constants/fines_mac_payment_terms_errors.ts               | 1 +
 2 files changed, 4 insertions(+), 1 deletion(-)

diff --git a/cypress/component/manualAccountCreation/FinesMacPaymentTerms/FinesMacPaymentTerms.cy.ts b/cypress/component/manualAccountCreation/FinesMacPaymentTerms/FinesMacPaymentTerms.cy.ts
index 3ad03ebc6e..98a90c968b 100644
--- a/cypress/component/manualAccountCreation/FinesMacPaymentTerms/FinesMacPaymentTerms.cy.ts
+++ b/cypress/component/manualAccountCreation/FinesMacPaymentTerms/FinesMacPaymentTerms.cy.ts
@@ -707,7 +707,9 @@ describe('FinesMacPaymentTermsComponent', () => {
 
           finesMacState.paymentTerms.formData.fm_payment_terms_payment_terms = 'payInFull';
           finesMacState.paymentTerms.formData.fm_payment_terms_pay_by_date = '01/01/2033';
-          cy.get(DOM_ELEMENTS.mojTicketPanel).should('contain', ERROR_MESSAGES.dateInFuture);
+          cy.get(DOM_ELEMENTS.mojTicketPanel)
+            .should('contain', ERROR_MESSAGES.dateInFuture)
+            .and('contain', ERROR_MESSAGES.dateInFutureMessage);
         });
       });
     },
diff --git a/cypress/component/manualAccountCreation/FinesMacPaymentTerms/constants/fines_mac_payment_terms_errors.ts b/cypress/component/manualAccountCreation/FinesMacPaymentTerms/constants/fines_mac_payment_terms_errors.ts
index f9fe1ea887..70571d768a 100644
--- a/cypress/component/manualAccountCreation/FinesMacPaymentTerms/constants/fines_mac_payment_terms_errors.ts
+++ b/cypress/component/manualAccountCreation/FinesMacPaymentTerms/constants/fines_mac_payment_terms_errors.ts
@@ -1,6 +1,7 @@
 export const ERROR_MESSAGES = {
   dateInPast: 'Pay by date is in the past',
   dateInFuture: 'Pay by date is more than 3 years in the future',
+  dateInFutureMessage: 'You can continue with this date or change',
   startDateInPast: 'Start date is in the past',
   startDateInFuture: 'Start date is more than 3 years in the future',
   paymentTerms: 'Select payment terms',

From 4d6fc12ca9bcc12ca92af7bfc80d696c21b579bb Mon Sep 17 00:00:00 2001
From: Nipa1410 <nipa.patel@hmcts.net>
Date: Wed, 1 Apr 2026 15:26:28 +0100
Subject: [PATCH 5/5] yarn audit known

---
 yarn-audit-known-issues | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/yarn-audit-known-issues b/yarn-audit-known-issues
index dc3e20655b..485768801c 100644
--- a/yarn-audit-known-issues
+++ b/yarn-audit-known-issues
@@ -1,6 +1,7 @@
 {"value":"@angular/ssr","children":{"ID":1113509,"Issue":"Angular SSR is vulnerable to SSRF and Header Injection via request handling pipeline","URL":"https://github.com/advisories/GHSA-x288-3778-4hhx","Severity":"critical","Vulnerable Versions":">=21.0.0-next.0 <21.1.5","Tree Versions":["21.1.4"],"Dependents":["opal-frontend@workspace:."]}}
 {"value":"@angular/ssr","children":{"ID":1113513,"Issue":"Angular SSR has an Open Redirect via X-Forwarded-Prefix","URL":"https://github.com/advisories/GHSA-xh43-g2fq-wjrj","Severity":"moderate","Vulnerable Versions":">=21.0.0-next.0 <21.1.5","Tree Versions":["21.1.4"],"Dependents":["opal-frontend@workspace:."]}}
-{"value":"ajv","children":{"ID":1113429,"Issue":"ajv has ReDoS when using `$data` option","URL":"https://github.com/advisories/GHSA-2g4f-4pwh-qvx6","Severity":"moderate","Vulnerable Versions":">=7.0.0-alpha.0 <8.18.0","Tree Versions":["8.17.1"],"Dependents":["schema-utils@npm:4.3.3"]}}
+{"value":"@angular/ssr","children":{"ID":1115534,"Issue":"Protocol-Relative URL Injection via Single Backslash Bypass in Angular SSR","URL":"https://github.com/advisories/GHSA-vfx2-hv2g-xj5f","Severity":"moderate","Vulnerable Versions":">=21.0.0-next.0 <21.2.3","Tree Versions":["21.1.4"],"Dependents":["opal-frontend@workspace:."]}}
+{"value":"ajv","children":{"ID":1113715,"Issue":"ajv has ReDoS when using `$data` option","URL":"https://github.com/advisories/GHSA-2g4f-4pwh-qvx6","Severity":"moderate","Vulnerable Versions":">=7.0.0-alpha.0 <8.18.0","Tree Versions":["8.17.1"],"Dependents":["schema-utils@npm:4.3.3"]}}
 {"value":"minimatch","children":{"ID":1113459,"Issue":"minimatch has a ReDoS via repeated wildcards with non-matching literal in pattern","URL":"https://github.com/advisories/GHSA-3ppc-4f35-3m26","Severity":"high","Vulnerable Versions":"<3.1.3","Tree Versions":["3.1.2"],"Dependents":["find-cypress-specs@npm:1.47.2"]}}
 {"value":"minimatch","children":{"ID":1113465,"Issue":"minimatch has a ReDoS via repeated wildcards with non-matching literal in pattern","URL":"https://github.com/advisories/GHSA-3ppc-4f35-3m26","Severity":"high","Vulnerable Versions":">=9.0.0 <9.0.6","Tree Versions":["9.0.5"],"Dependents":["mocha@npm:11.7.5"]}}
 {"value":"minimatch","children":{"ID":1113538,"Issue":"minimatch has ReDoS: matchOne() combinatorial backtracking via multiple non-adjacent GLOBSTAR segments","URL":"https://github.com/advisories/GHSA-7r86-cg39-jmmj","Severity":"high","Vulnerable Versions":"<3.1.3","Tree Versions":["3.1.2"],"Dependents":["find-cypress-specs@npm:1.47.2"]}}