Skip to content

[Snyk] Security upgrade eslint from 4.19.1 to 9.26.0#43

Open
monzerfoda wants to merge 1 commit into
masterfrom
snyk-fix-684f6c29f1ff534872323517e16becea
Open

[Snyk] Security upgrade eslint from 4.19.1 to 9.26.0#43
monzerfoda wants to merge 1 commit into
masterfrom
snyk-fix-684f6c29f1ff534872323517e16becea

Conversation

@monzerfoda
Copy link
Copy Markdown
Owner

@monzerfoda monzerfoda commented Jan 30, 2026

snyk-top-banner

Snyk has created this PR to fix 1 vulnerabilities in the npm dependencies of this project.

Snyk changed the following file(s):

  • packages/scripts/package.json

Vulnerabilities that will be fixed with an upgrade:

Issue Score
medium severity Uncontrolled Recursion
SNYK-JS-ESLINT-15102420		   623  

Important

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • Max score is 1000. Note that the real score may have changed since the PR was raised.
  • This PR was automatically created by Snyk using the credentials of a real user.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.

chatgpt-codex-connector[bot]
chatgpt-codex-connector Bot reviewed Jan 30, 2026
View reviewed changes
Copy link
Copy Markdown

@chatgpt-codex-connector chatgpt-codex-connector Bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: e17df61789

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

  • Open a pull request for review
  • Mark a draft as ready
  • Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

Comment thread packages/scripts/package.json
"chalk": "^2.4.1",
"cross-spawn": "^5.1.0",
"eslint": "^4.19.1",
"eslint": "^9.26.0",
Copy link
Copy Markdown

@chatgpt-codex-connector chatgpt-codex-connector Bot Jan 30, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

P2 Badge Align Node engine with ESLint 9 requirements

This bump pulls in ESLint 9, but packages/scripts/package.json still advertises engines.node >=8 (line 21), so consumers on Node 8–17 will now hit install/runtime failures because ESLint 9 no longer supports those Node versions. That’s a breaking compatibility regression for the package as currently declared; either keep ESLint on a version compatible with Node 8+ or update the engine range to match ESLint’s minimum supported Node version.

Useful? React with 👍 / 👎.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@chatgpt-codex-connector chatgpt-codex-connector[bot] chatgpt-codex-connector[bot] left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@monzerfoda @snyk-bot