Skip to content

Commit 4fbe6bc

Browse files
fix(deps): bump vite to ^6.4.3 to fix CVE-2026-53632
Update vite from ^6.4.2 to ^6.4.3 to resolve GHSA-v6wh-96g9-6wx3 (launch-editor NTLMv2 hash disclosure via UNC path handling on Windows). Direct dependency update - no override needed. Co-Authored-By: David Konigsberg <davidakonigsberg@gmail.com>
1 parent 5a2db11 commit 4fbe6bc

3 files changed

Lines changed: 5 additions & 86 deletions

File tree

.github/dependabot-alerts/alert-32.md

Lines changed: 0 additions & 81 deletions
This file was deleted.

package-lock.json

Lines changed: 4 additions & 4 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

package.json

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -32,7 +32,7 @@
3232
"@types/node": "^20.0.0",
3333
"@vercel/ncc": "^0.36.1",
3434
"typescript": "^5.0.4",
35-
"vite": "^6.4.2",
35+
"vite": "^6.4.3",
3636
"vitest": "^4.1.0"
3737
},
3838
"overrides": {

0 commit comments

Comments
 (0)