This is an automated email from the ASF dual-hosted git repository.

yesamer pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/incubator-kie-tools.git


The following commit(s) were added to refs/heads/main by this push:
     new d2e1659134a NO-ISSUE:Updating  undici to   ^6.27.0 to fix cve (#3642)
d2e1659134a is described below

commit d2e1659134a6da9dfcf2d83f3655dfcdf4a62cf9
Author: athirakm94 <[email protected]>
AuthorDate: Thu Jul 9 18:59:14 2026 +0530

    NO-ISSUE:Updating  undici to   ^6.27.0 to fix cve (#3642)
---
 pnpm-lock.yaml      | 10 +++++-----
 pnpm-workspace.yaml |  4 ++--
 2 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml
index 377a19afba3..33aeb20bb06 100644
--- a/pnpm-lock.yaml
+++ b/pnpm-lock.yaml
@@ -24,7 +24,7 @@ overrides:
   minimatch@^10: 10.2.1
   minimatch@^5: 5.1.9
   minimatch@^4: 5.1.9
-  undici: ^6.24.0
+  undici: ^6.27.0
   uuid: ^11.1.1
   picomatch@3: 3.0.2
   picomatch@4: 4.0.4
@@ -22831,8 +22831,8 @@ packages:
   [email protected]:
     resolution: {integrity: 
sha512-Zz+aZWSj8LE6zoxD+xrjh4VfkIG8Ya6LvYkZqtUQGJPZjYl53ypCaUwWqo7eI0x66KBGeRo+mlBEkMSeSZ38Nw==}
 
-  [email protected]:
-    resolution: {integrity: 
sha512-lVLNosgqo5EkGqh5XUDhGfsMSoO8K0BAN0TyJLvwNRSl4xWGZlCVYsAIpa/OpA3TvmnM01GWcoKmc3ZWo5wKKA==}
+  [email protected]:
+    resolution: {integrity: 
sha512-YmfV3YnEDzXRC5lZ2jWtWWHKGUm1zIt8AhesR1tens+HTNv+YZlN/dp6G727LOvMJ8xjP9Be7Y2Sdr96LDm+pg==}
     engines: {node: '>=18.17'}
 
   [email protected]:
@@ -39327,7 +39327,7 @@ snapshots:
       mime: 3.0.0
       prettier: 2.8.8
       tiny-glob: 0.2.9
-      undici: 6.24.0
+      undici: 6.27.0
       yargs-parser: 21.1.1
 
   [email protected]: {}
@@ -42595,7 +42595,7 @@ snapshots:
 
   [email protected]: {}
 
-  [email protected]: {}
+  [email protected]: {}
 
   [email protected]: {}
 
diff --git a/pnpm-workspace.yaml b/pnpm-workspace.yaml
index c9149b6649b..51ae96dbbba 100644
--- a/pnpm-workspace.yaml
+++ b/pnpm-workspace.yaml
@@ -26,9 +26,9 @@ overrides:
   "minimatch@^10": "10.2.1"
   "minimatch@^5": "5.1.9"
   "minimatch@^4": "5.1.9"
-  # CVE-2026-1526, CVE-2026-2229, CVE-2026-1528, CVE-2026-1527, CVE-2026-1525, 
CVE-2026-2203: Fix security vulnerability in undici
+  # CVE-2026-1526, CVE-2026-2229, CVE-2026-1528, CVE-2026-1527, CVE-2026-1525, 
CVE-2026-2203, CVE-2026-12151, CVE-2026-9679, CVE-2026-11525, CVE-2026-6733: 
Fix security vulnerability in undici
   # Waiting for @openapi-contrib/openapi-schema-to-json-schema to release 
patched version
-  "undici": "^6.24.0"
+  "undici": "^6.27.0"
   # CVE-2026-41907: Fix security vulnerability in uuid
   # Transitive dependencies ([email protected], [email protected]) still use 
[email protected]
   "uuid": "^11.1.1"


---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Reply via email to