funkemunky/actions
1
0
Fork 0
mirror of https://github.com/gradle/actions.git synced 2026-06-17 17:10:38 +00:00
Code Issues Packages Projects Releases Wiki Activity

Remove redundant security overrides

Browse Source 
The shell-quote, fast-xml-parser, fast-xml-builder and eslint>brace-expansion
overrides added in #980 are no-ops: npm's natural resolution already lands on
the same patched versions, so they upgrade nothing. The vulnerabilities were
actually resolved by regenerating the lockfile. Verified `npm audit` still
reports 0 vulnerabilities after removal.

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
This commit is contained in:
Daz DeBoer
2026-06-09 18:21:15 -07:00
parent 5e2ebd065d
commit d8631e959e
1 changed files with 1 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files
sources/package.json
+1 -7
View File
@@ -73,12 +73,6 @@
"@azure/logger": "1.1.4",
"@octokit/request": "8.4.1",
"@octokit/request-error": "5.1.1",
"@octokit/plugin-paginate-rest": "9.2.2",
"shell-quote": "1.8.4",
"fast-xml-parser": "5.8.0",
"fast-xml-builder": "1.2.0",
"eslint": {
"brace-expansion": "5.0.6"
}
"@octokit/plugin-paginate-rest": "9.2.2"
}
}