Skip to content

updated json5 to be later than 2.2.2 and not lower than 2 and updated fast-xml-parser to be 4.5.3 #538

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 7 commits into from
Oct 9, 2025
Merged

updated json5 to be later than 2.2.2 and not lower than 2 and updated fast-xml-parser to be 4.5.3 #538

merged 7 commits into from
Oct 9, 2025
+16 −36

Conversation

rbaconcordium
Copy link
Contributor

@rbaconcordium rbaconcordium commented Oct 8, 2025
edited
Loading

Purpose

updated json5 to be later than 2.2.2 and not lower than 2 and fast-xml-parser to be 4.5.3

Changes

ran yarn up json5 -R
confirmed the vulnerability is no longer highlighted for json5 via the command line npm audit

ran yarn up fast-xml-parser -R
confirmed the vulnerability is no longer highlighted for fast-xml-parser via the command line npm audit

Checklist

  • [ x ] My code follows the style of this project.
  • [ x ] The code compiles without warnings.
  • [ x ] I have performed a self-review of the changes.
  • [ x ] I have documented my code, in particular the intent of the
    hard-to-understand areas.
  • (If necessary) I have updated the CHANGELOG.

@rbaconcordium rbaconcordium changed the base branch from main to COR-1931-nth-check-upgrade October 8, 2025 14:35
@rbaconcordium rbaconcordium requested a review from soerenbf October 8, 2025 14:35
Upgraded fast-xml-parser to be above 4.4.1
c0d814c 
ran yarn up fast-xml-parser to get a higher version
confirmed audit no longer marking this as vulnerable
@rbaconcordium rbaconcordium changed the title updated json5 to be later than 2.2.2 and not lower than 2 updated json5 to be later than 2.2.2 and not lower than 2 and updated fast-xml-parser to be 4.5.3 Oct 8, 2025
Richard B added 2 commits October 8, 2025 16:36
updated http-cache-semantics version
64218e0 
ran yarn up http-cache-semantics -R
updated cross-spawn version
ee56f33 
ran yarn up cross-spawn -R to update
confirmed no more audit alert
Base automatically changed from COR-1931-nth-check-upgrade to main October 9, 2025 08:15
@rbaconcordium rbaconcordium merged commit e33d0d7 into main Oct 9, 2025
11 checks passed
@rbaconcordium rbaconcordium deleted the COR-1931-jason5-upgrade branch October 9, 2025 08:50
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@soerenbf soerenbf soerenbf approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@rbaconcordium @soerenbf