This is an automated email from the ASF dual-hosted git repository.
hainenber pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/superset.git
The following commit(s) were added to refs/heads/master by this push:
new 8fd34010776 fix(security): update jspdf to 4.0.0 to address
CVE-2025-68428 (#37553)
8fd34010776 is described below
commit 8fd34010776611e800e12481a3b6b34008142be3
Author: Nancy Chauhan <[email protected]>
AuthorDate: Wed Feb 4 09:29:57 2026 -0500
fix(security): update jspdf to 4.0.0 to address CVE-2025-68428 (#37553)
---
superset-frontend/package-lock.json | 6 +++---
superset-frontend/package.json | 2 +-
2 files changed, 4 insertions(+), 4 deletions(-)
diff --git a/superset-frontend/package-lock.json
b/superset-frontend/package-lock.json
index 399279fb8f7..2e2971ebb80 100644
--- a/superset-frontend/package-lock.json
+++ b/superset-frontend/package-lock.json
@@ -41348,9 +41348,9 @@
}
},
"node_modules/jspdf": {
- "version": "3.0.4",
- "resolved": "https://registry.npmjs.org/jspdf/-/jspdf-3.0.4.tgz";,
- "integrity":
"sha512-dc6oQ8y37rRcHn316s4ngz/nOjayLF/FFxBF4V9zamQKRqXxyiH1zagkCdktdWhtoQId5K20xt1lB90XzkB+hQ==",
+ "version": "4.0.0",
+ "resolved": "https://registry.npmjs.org/jspdf/-/jspdf-4.0.0.tgz";,
+ "integrity":
"sha512-w12U97Z6edKd2tXDn3LzTLg7C7QLJlx0BPfM3ecjK2BckUl9/81vZ+r5gK4/3KQdhAcEZhENUxRhtgYBj75MqQ==",
"license": "MIT",
"dependencies": {
"@babel/runtime": "^7.28.4",
diff --git a/superset-frontend/package.json b/superset-frontend/package.json
index 02f48508f2b..ec95434f0b8 100644
--- a/superset-frontend/package.json
+++ b/superset-frontend/package.json
@@ -388,7 +388,7 @@
"puppeteer": "^22.4.1",
"remark-gfm": "^3.0.1",
"underscore": "^1.13.7",
- "jspdf": "^3.0.2",
+ "jspdf": "^4.0.0",
"nwsapi": "^2.2.13",
"@deck.gl/aggregation-layers": "~9.2.2",
"@deck.gl/core": "~9.2.2",
