From db51839169fc8bbe0c477f5a197850e0f4376b87 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Peter=20Scha=CC=88fer?= <101886095+PeterSchafer@users.noreply.github.com> Date: Wed, 13 May 2026 16:58:55 +0200 Subject: [PATCH 1/2] chore: set SCA threshold to high --- .circleci/config.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/.circleci/config.yml b/.circleci/config.yml index 45876967a2..8f34d4c9e3 100644 --- a/.circleci/config.yml +++ b/.circleci/config.yml @@ -1391,6 +1391,7 @@ jobs: iac-scan: disabled release-branch: main open-source-scan-reachability: true + open-source-scan: high docs-only-check: executor: docker-amd64 From 26708138ce5208bbd058c87bdccf5cd350d1a2c2 Mon Sep 17 00:00:00 2001 From: CatalinSnyk Date: Mon, 18 May 2026 11:29:11 +0300 Subject: [PATCH 2/2] chore: fix CVE-2026-6321 & CVE-2026-6322 --- package-lock.json | 36 +++++++++++++++++++++++++++++++++++- package.json | 2 +- 2 files changed, 36 insertions(+), 2 deletions(-) diff --git a/package-lock.json b/package-lock.json index 7fdf45320f..77d4e8c35a 100644 --- a/package-lock.json +++ b/package-lock.json @@ -36,7 +36,6 @@ "env-paths": "^2.0.0", "glob": "^7.1.7", "global-agent": "^2.1.12", - "jest-json-schema": "^6.1.0", "json-stream-stringify": "^3.1.1", "lodash.assign": "^4.2.0", "lodash.camelcase": "^4.3.0", @@ -120,6 +119,7 @@ "express": "^4.17.1", "fs-extra": "^9.1.0", "jest": "29.7.0", + "jest-json-schema": "^6.1.0", "jest-junit": "^16.0.0", "jsonparse": "^1.3.1", "lodash": "^4.18.1", @@ -6532,6 +6532,7 @@ "version": "8.18.0", "resolved": "https://registry.npmjs.org/ajv/-/ajv-8.18.0.tgz", "integrity": "sha512-PlXPeEWMXMZ7sPYOHqmDyCJzcfNrUr3fGNKtezX14ykXOEIvyK81d+qydx89KY5O71FKMPaQ2vBfBFI5NHR63A==", + "dev": true, "dependencies": { "fast-deep-equal": "^3.1.3", "fast-uri": "^3.0.1", @@ -6558,6 +6559,7 @@ }, "node_modules/ajv-formats": { "version": "2.1.1", + "dev": true, "license": "MIT", "dependencies": { "ajv": "^8.0.0" @@ -9380,6 +9382,7 @@ }, "node_modules/diff-sequences": { "version": "27.4.0", + "dev": true, "license": "MIT", "engines": { "node": "^10.13.0 || ^12.13.0 || ^14.15.0 || >=15.0.0" @@ -10841,6 +10844,7 @@ }, "node_modules/fast-deep-equal": { "version": "3.1.3", + "dev": true, "license": "MIT" }, "node_modules/fast-fifo": { @@ -10890,6 +10894,7 @@ }, "node_modules/fast-uri": { "version": "3.0.6", + "dev": true, "funding": [ { "type": "github", @@ -13536,6 +13541,7 @@ }, "node_modules/jest-diff": { "version": "27.4.6", + "dev": true, "license": "MIT", "dependencies": { "chalk": "^4.0.0", @@ -13549,6 +13555,7 @@ }, "node_modules/jest-diff/node_modules/ansi-styles": { "version": "4.3.0", + "dev": true, "license": "MIT", "dependencies": { "color-convert": "^2.0.1" @@ -13562,6 +13569,7 @@ }, "node_modules/jest-diff/node_modules/chalk": { "version": "4.1.2", + "dev": true, "license": "MIT", "dependencies": { "ansi-styles": "^4.1.0", @@ -13576,6 +13584,7 @@ }, "node_modules/jest-diff/node_modules/color-convert": { "version": "2.0.1", + "dev": true, "license": "MIT", "dependencies": { "color-name": "~1.1.4" @@ -13586,10 +13595,12 @@ }, "node_modules/jest-diff/node_modules/color-name": { "version": "1.1.4", + "dev": true, "license": "MIT" }, "node_modules/jest-diff/node_modules/has-flag": { "version": "4.0.0", + "dev": true, "license": "MIT", "engines": { "node": ">=8" @@ -13597,6 +13608,7 @@ }, "node_modules/jest-diff/node_modules/supports-color": { "version": "7.2.0", + "dev": true, "license": "MIT", "dependencies": { "has-flag": "^4.0.0" @@ -13750,6 +13762,7 @@ }, "node_modules/jest-get-type": { "version": "27.4.0", + "dev": true, "license": "MIT", "engines": { "node": "^10.13.0 || ^12.13.0 || ^14.15.0 || >=15.0.0" @@ -13817,6 +13830,9 @@ }, "node_modules/jest-json-schema": { "version": "6.1.0", + "resolved": "https://registry.npmjs.org/jest-json-schema/-/jest-json-schema-6.1.0.tgz", + "integrity": "sha512-LMHuLmKjr/4X+H8v1xF5TEwfYEkzwGeWJ0epYQVQhlVTDDR5FWCdSO8vmsecb5cLf9NeWAqMKn3qhJvP9um0AA==", + "dev": true, "license": "Apache-2.0", "dependencies": { "ajv": "^8.8.2", @@ -13830,6 +13846,7 @@ }, "node_modules/jest-json-schema/node_modules/ansi-styles": { "version": "4.3.0", + "dev": true, "license": "MIT", "dependencies": { "color-convert": "^2.0.1" @@ -13843,6 +13860,7 @@ }, "node_modules/jest-json-schema/node_modules/chalk": { "version": "4.1.2", + "dev": true, "license": "MIT", "dependencies": { "ansi-styles": "^4.1.0", @@ -13857,6 +13875,7 @@ }, "node_modules/jest-json-schema/node_modules/color-convert": { "version": "2.0.1", + "dev": true, "license": "MIT", "dependencies": { "color-name": "~1.1.4" @@ -13867,10 +13886,12 @@ }, "node_modules/jest-json-schema/node_modules/color-name": { "version": "1.1.4", + "dev": true, "license": "MIT" }, "node_modules/jest-json-schema/node_modules/has-flag": { "version": "4.0.0", + "dev": true, "license": "MIT", "engines": { "node": ">=8" @@ -13878,6 +13899,7 @@ }, "node_modules/jest-json-schema/node_modules/supports-color": { "version": "7.2.0", + "dev": true, "license": "MIT", "dependencies": { "has-flag": "^4.0.0" @@ -13962,6 +13984,7 @@ }, "node_modules/jest-matcher-utils": { "version": "27.4.6", + "dev": true, "license": "MIT", "dependencies": { "chalk": "^4.0.0", @@ -13975,6 +13998,7 @@ }, "node_modules/jest-matcher-utils/node_modules/ansi-styles": { "version": "4.3.0", + "dev": true, "license": "MIT", "dependencies": { "color-convert": "^2.0.1" @@ -13988,6 +14012,7 @@ }, "node_modules/jest-matcher-utils/node_modules/chalk": { "version": "4.1.2", + "dev": true, "license": "MIT", "dependencies": { "ansi-styles": "^4.1.0", @@ -14002,6 +14027,7 @@ }, "node_modules/jest-matcher-utils/node_modules/color-convert": { "version": "2.0.1", + "dev": true, "license": "MIT", "dependencies": { "color-name": "~1.1.4" @@ -14012,10 +14038,12 @@ }, "node_modules/jest-matcher-utils/node_modules/color-name": { "version": "1.1.4", + "dev": true, "license": "MIT" }, "node_modules/jest-matcher-utils/node_modules/has-flag": { "version": "4.0.0", + "dev": true, "license": "MIT", "engines": { "node": ">=8" @@ -14023,6 +14051,7 @@ }, "node_modules/jest-matcher-utils/node_modules/supports-color": { "version": "7.2.0", + "dev": true, "license": "MIT", "dependencies": { "has-flag": "^4.0.0" @@ -15087,6 +15116,7 @@ }, "node_modules/json-schema-traverse": { "version": "1.0.0", + "dev": true, "license": "MIT" }, "node_modules/json-stable-stringify-without-jsonify": { @@ -17859,6 +17889,7 @@ }, "node_modules/pretty-format": { "version": "27.4.6", + "dev": true, "license": "MIT", "dependencies": { "ansi-regex": "^5.0.1", @@ -17871,6 +17902,7 @@ }, "node_modules/pretty-format/node_modules/ansi-styles": { "version": "5.2.0", + "dev": true, "license": "MIT", "engines": { "node": ">=10" @@ -18307,6 +18339,7 @@ }, "node_modules/react-is": { "version": "17.0.2", + "dev": true, "license": "MIT" }, "node_modules/react-reconciler": { @@ -18824,6 +18857,7 @@ }, "node_modules/require-from-string": { "version": "2.0.2", + "dev": true, "license": "MIT", "engines": { "node": ">=0.10.0" diff --git a/package.json b/package.json index 6120f657c3..3472e9ef99 100644 --- a/package.json +++ b/package.json @@ -84,7 +84,6 @@ "env-paths": "^2.0.0", "glob": "^7.1.7", "global-agent": "^2.1.12", - "jest-json-schema": "^6.1.0", "json-stream-stringify": "^3.1.1", "lodash.assign": "^4.2.0", "lodash.camelcase": "^4.3.0", @@ -165,6 +164,7 @@ "express": "^4.17.1", "fs-extra": "^9.1.0", "jest": "29.7.0", + "jest-json-schema": "^6.1.0", "jest-junit": "^16.0.0", "jsonparse": "^1.3.1", "lodash": "^4.18.1",