This is an automated email from the ASF dual-hosted git repository.
yesamer pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/incubator-kie-tools.git
The following commit(s) were added to refs/heads/main by this push:
new d2e1659134a NO-ISSUE:Updating undici to ^6.27.0 to fix cve (#3642)
d2e1659134a is described below
commit d2e1659134a6da9dfcf2d83f3655dfcdf4a62cf9
Author: athirakm94 <[email protected]>
AuthorDate: Thu Jul 9 18:59:14 2026 +0530
NO-ISSUE:Updating undici to ^6.27.0 to fix cve (#3642)
---
pnpm-lock.yaml | 10 +++++-----
pnpm-workspace.yaml | 4 ++--
2 files changed, 7 insertions(+), 7 deletions(-)
diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml
index 377a19afba3..33aeb20bb06 100644
--- a/pnpm-lock.yaml
+++ b/pnpm-lock.yaml
@@ -24,7 +24,7 @@ overrides:
minimatch@^10: 10.2.1
minimatch@^5: 5.1.9
minimatch@^4: 5.1.9
- undici: ^6.24.0
+ undici: ^6.27.0
uuid: ^11.1.1
picomatch@3: 3.0.2
picomatch@4: 4.0.4
@@ -22831,8 +22831,8 @@ packages:
[email protected]:
resolution: {integrity:
sha512-Zz+aZWSj8LE6zoxD+xrjh4VfkIG8Ya6LvYkZqtUQGJPZjYl53ypCaUwWqo7eI0x66KBGeRo+mlBEkMSeSZ38Nw==}
- [email protected]:
- resolution: {integrity:
sha512-lVLNosgqo5EkGqh5XUDhGfsMSoO8K0BAN0TyJLvwNRSl4xWGZlCVYsAIpa/OpA3TvmnM01GWcoKmc3ZWo5wKKA==}
+ [email protected]:
+ resolution: {integrity:
sha512-YmfV3YnEDzXRC5lZ2jWtWWHKGUm1zIt8AhesR1tens+HTNv+YZlN/dp6G727LOvMJ8xjP9Be7Y2Sdr96LDm+pg==}
engines: {node: '>=18.17'}
[email protected]:
@@ -39327,7 +39327,7 @@ snapshots:
mime: 3.0.0
prettier: 2.8.8
tiny-glob: 0.2.9
- undici: 6.24.0
+ undici: 6.27.0
yargs-parser: 21.1.1
[email protected]: {}
@@ -42595,7 +42595,7 @@ snapshots:
[email protected]: {}
- [email protected]: {}
+ [email protected]: {}
[email protected]: {}
diff --git a/pnpm-workspace.yaml b/pnpm-workspace.yaml
index c9149b6649b..51ae96dbbba 100644
--- a/pnpm-workspace.yaml
+++ b/pnpm-workspace.yaml
@@ -26,9 +26,9 @@ overrides:
"minimatch@^10": "10.2.1"
"minimatch@^5": "5.1.9"
"minimatch@^4": "5.1.9"
- # CVE-2026-1526, CVE-2026-2229, CVE-2026-1528, CVE-2026-1527, CVE-2026-1525,
CVE-2026-2203: Fix security vulnerability in undici
+ # CVE-2026-1526, CVE-2026-2229, CVE-2026-1528, CVE-2026-1527, CVE-2026-1525,
CVE-2026-2203, CVE-2026-12151, CVE-2026-9679, CVE-2026-11525, CVE-2026-6733:
Fix security vulnerability in undici
# Waiting for @openapi-contrib/openapi-schema-to-json-schema to release
patched version
- "undici": "^6.24.0"
+ "undici": "^6.27.0"
# CVE-2026-41907: Fix security vulnerability in uuid
# Transitive dependencies ([email protected], [email protected]) still use
[email protected]
"uuid": "^11.1.1"
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]