MLE-24230 Second batch of package updates#989
Merged
Conversation
- Bumped json-text-sequence to latest version (1.0.1 to 4.0.2) - Bumped qs from 6.11 to 6.14 - Removed carets to request explicit versions And had Copilot clean up the "overrides" section. Most of these look like they originate from devDependencies - though a lot of them may have been from eslint, which was mistakenly party of dependencies. Will see what Black Duck thinks, but npm is reporting zero vulnerabilities.
rjrudin
requested review from
BillFarber,
anu3990 and
stevebio
as code owners
There was a problem hiding this comment.
Pull Request Overview
This PR updates several package dependencies to their latest versions, removes version range specifiers (carets) for explicit version pinning, and cleans up the overrides section by removing entries that are no longer needed (likely due to the removal of eslint from dependencies).
- Updated
json-text-sequencefrom 1.0.1 to 4.0.2 - Updated
qsfrom 6.11.0 to 6.14.0 - Removed carets from dependency versions for explicit pinning
Reviewed Changes
Copilot reviewed 2 out of 3 changed files in this pull request and generated no comments.
| File | Description |
|---|---|
| package.json | Updated dependency versions, removed carets for explicit versioning, and cleaned up overrides section |
| lib/responder.js | Updated import to use capitalized Parser export from updated json-text-sequence package |
Tip: Customize your code reviews with copilot-instructions.md. Create the file or learn how to get started.
|
Copyright Validation Results ⏭️ Skipped (Excluded) Files
✅ Valid Files
✅ All files have valid copyright headers! |
BillFarber
approved these changes
Oct 15, 2025
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
And had Copilot clean up the "overrides" section. Most of these look like they originate from devDependencies - though a lot of them may have been from eslint, which was mistakenly party of dependencies. Will see what Black Duck thinks, but npm is reporting zero vulnerabilities.