Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly
Appearance settings

MLE-27299 Bumping minimatch to latest to address CVE#1067

Open
rjrudin wants to merge 1 commit intodevelopmarklogic/node-client-api:developfrom
feature/bdmarklogic/node-client-api:feature/bdCopy head branch name to clipboard
Open

MLE-27299 Bumping minimatch to latest to address CVE#1067
rjrudin wants to merge 1 commit intodevelopmarklogic/node-client-api:developfrom
feature/bdmarklogic/node-client-api:feature/bdCopy head branch name to clipboard

Conversation

@rjrudin
Copy link
Contributor

@rjrudin rjrudin commented Mar 2, 2026

No description provided.

Copilot AI review requested due to automatic review settings March 2, 2026 14:57
@github-actions
Copy link

github-actions bot commented Mar 2, 2026

Copyright Validation Results
Total: 2 | Passed: 0 | Failed: 0 | Skipped: 2 | at: 2026-03-02 14:57:32 UTC | commit: 9dd773f

⏭️ Skipped (Excluded) Files

  • package-lock.json
  • package.json

✅ All files have valid copyright headers!

Copilot AI reviewed Mar 2, 2026
View reviewed changes
Copy link

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR updates the repository’s dependency override for minimatch to a newer patched version to address a reported CVE.

Changes:

  • Bump minimatch override from 10.2.2 to 10.2.4 in package.json.
  • Update package-lock.json to reflect the resolved minimatch@10.2.4 artifact and integrity hash.

Reviewed changes

Copilot reviewed 1 out of 2 changed files in this pull request and generated no comments.

File Description
package.json Updates the overrides pin for minimatch to 10.2.4.
package-lock.json Updates the lockfile resolution for minimatch (and includes some lockfile metadata churn).

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@anu3990 anu3990 Awaiting requested review from anu3990 anu3990 is a code owner

@BillFarber BillFarber Awaiting requested review from BillFarber BillFarber is a code owner

@stevebio stevebio Awaiting requested review from stevebio stevebio is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@rjrudin
Morty Proxy This is a proxified and sanitized view of the page, visit original site.