From af06c915bcdae9931c51e15f4f05637abddac488 Mon Sep 17 00:00:00 2001 From: orbisai0security Date: Sat, 4 Jul 2026 18:37:33 +0000 Subject: [PATCH] fix: CVE-2026-9277 security vulnerability Automated dependency upgrade by OrbisAI Security --- pnpm-lock.yaml | 11 ++++++----- pnpm-workspace.yaml | 1 + 2 files changed, 7 insertions(+), 5 deletions(-) diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml index 24698d4fd9..2d03a7f445 100644 --- a/pnpm-lock.yaml +++ b/pnpm-lock.yaml @@ -23,6 +23,7 @@ overrides: typescript-eslint: 8.58.1 vite: ^6.4.1 esbuild: ^0.27.2 + shell-quote: 1.8.4 importers: @@ -14458,8 +14459,8 @@ packages: resolution: {integrity: sha512-7++dFhtcx3353uBaq8DDR4NuxBetBzC7ZQOhmTQInHEd6bSrXdiEyzCvG07Z44UYdLShWUyXt5M/yhz8ekcb1A==} engines: {node: '>=8'} - shell-quote@1.8.3: - resolution: {integrity: sha512-ObmnIF4hXNg1BqhnHmgbDETF8dLPCggZWBjkQfhZpbszZnYur5DUljTcCHii5LC3J5E0yeO/1LIMyH+UvHQgyw==} + shell-quote@1.8.4: + resolution: {integrity: sha512-VsC6n6vz1ihYYyZZwX7YZSF5l5x36ca17OC+a69h94YqB7X6XLwf+5MOgynYir2SLFUbl8gIYvBo8K8RoNQ6bQ==} engines: {node: '>= 0.4'} sherif-darwin-arm64@1.11.1: @@ -28502,7 +28503,7 @@ snapshots: minimatch: 3.1.5 pidtree: 0.5.0 read-pkg: 5.2.0 - shell-quote: 1.8.3 + shell-quote: 1.8.4 npm-run-path@2.0.2: dependencies: @@ -29463,7 +29464,7 @@ snapshots: react-devtools-core@5.3.2: dependencies: - shell-quote: 1.8.3 + shell-quote: 1.8.4 ws: 7.5.10 transitivePeerDependencies: - bufferutil @@ -30407,7 +30408,7 @@ snapshots: shebang-regex@3.0.0: {} - shell-quote@1.8.3: {} + shell-quote@1.8.4: {} sherif-darwin-arm64@1.11.1: optional: true diff --git a/pnpm-workspace.yaml b/pnpm-workspace.yaml index 4e37d863de..55564df1b2 100644 --- a/pnpm-workspace.yaml +++ b/pnpm-workspace.yaml @@ -43,6 +43,7 @@ overrides: typescript-eslint: '8.58.1' vite: '^6.4.1' esbuild: '^0.27.2' + 'shell-quote': '1.8.4' allowBuilds: # root dependency