fix: resolve 14 npm security vulnerabilities via npm audit fix

Browse Source

Updated dependencies to patch the following security issues:
- @babel/helpers & @babel/runtime: RegExp complexity vulnerability
- brace-expansion: ReDoS vulnerabilities
- braces: Uncontrolled resource consumption
- cookie: Out of bounds character handling
- cross-spawn: ReDoS vulnerability
- js-yaml: Prototype pollution in merge
- micromatch: ReDoS vulnerability
- nanoid: Predictable results with non-integer values
- next: Multiple critical vulnerabilities (SSRF, cache poisoning, DoS, auth bypass)
- pdfjs-dist: Arbitrary JavaScript execution vulnerability
- tar: DoS vulnerability due to lack of folder count validation

Severity: 1 critical, 3 high, 7 moderate, 3 low

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude <noreply@anthropic.com>

...

This commit is contained in:

Knee Cola

2025-11-16 13:19:52 +01:00

parent 26eff4bd48

commit cc147e8726

1 changed files with 449 additions and 368 deletions

Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL

Download Patch File Download Diff File Expand all files Collapse all files

817

package-lock.json generated

File diff suppressed because it is too large Load Diff