Skip to content

chore(deps): bump js-yaml to address security vulnerability#10950

Closed
cka121 wants to merge 1 commit into
masterfrom
fix/js-yaml-vulnerability
Closed

chore(deps): bump js-yaml to address security vulnerability#10950
cka121 wants to merge 1 commit into
masterfrom
fix/js-yaml-vulnerability

Conversation

@cka121

@cka121 cka121 commented Jul 6, 2026

Copy link
Copy Markdown
Contributor

This Pr is for https://github.com/swagger-api/swagger-ui/security/dependabot/265

Description

Motivation and Context

How Has This Been Tested?

Screenshots (if appropriate):

Checklist

My PR contains...

  • No code changes (src/ is unmodified: changes to documentation, CI, metadata, etc.)
  • Dependency changes (any modification to dependencies in package.json)
  • Bug fixes (non-breaking change which fixes an issue)
  • Improvements (misc. changes to existing features)
  • Features (non-breaking change which adds functionality)

My changes...

  • are breaking changes to a public API (config options, System API, major UI change, etc).
  • are breaking changes to a private API (Redux, component props, utility functions, etc.).
  • are breaking changes to a developer API (npm script behavior changes, new dev system dependencies, etc).
  • are not breaking changes.

Documentation

  • My changes do not require a change to the project documentation.
  • My changes require a change to the project documentation.
  • If yes to above: I have updated the documentation accordingly.

Automated tests

  • My changes can not or do not need to be tested.
  • My changes can and should be tested by unit and/or integration tests.
  • If yes to above: I have added tests to cover my changes.
  • If yes to above: I have taken care to cover edge cases in my tests.
  • All new and existing tests passed.

@robert-hebel-sb

Copy link
Copy Markdown
Contributor

let's either way for a jest to publish a fix or go along with migration to vite + vitest

@cka121

cka121 commented Jul 7, 2026

Copy link
Copy Markdown
Contributor Author

let's either way for a jest to publish a fix or go along with migration to vite + vitest

As discussed this will be handled in this ticket after jest version update.

@cka121 cka121 closed this Jul 7, 2026
@cka121

cka121 commented Jul 7, 2026

Copy link
Copy Markdown
Contributor Author

This will be handled in this ticket after jest version update.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

3 participants