fix: update vulnerable dependencies (brace-expansion, yaml) #27

New issue

Closed

opened 2026-03-30 00:45:06 +00:00 by maximus · 1 comment

maximus commented 2026-03-30 00:45:06 +00:00

Owner

Copy link

Vulnerabilities detected by defenseur-simpl

The following MEDIUM severity vulnerabilities were flagged:

Package	Severity
brace-expansion	MEDIUM
yaml	MEDIUM

Action

Update or replace affected dependencies to resolve these vulnerabilities.

---

Source: defenseur-simpl security scan

## Vulnerabilities detected by defenseur-simpl The following MEDIUM severity vulnerabilities were flagged: | Package | Severity | |---|---| | **brace-expansion** | MEDIUM | | **yaml** | MEDIUM | ## Action Update or replace affected dependencies to resolve these vulnerabilities. --- _Source: defenseur-simpl security scan_

maximus referenced this issue 2026-03-30 00:58:02 +00:00

fix: update vulnerable dependencies (picomatch, node-forge, tar, undici, brace-expansion, yaml) #26

maximus commented 2026-03-30 00:58:05 +00:00

Author

Owner

Copy link

Fusionné dans #26 — npm audit fix résout les deux issues en une seule commande.

Fusionné dans #26 — `npm audit fix` résout les deux issues en une seule commande.

maximus closed this issue 2026-03-30 00:58:05 +00:00

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

issue-61-refresh-button-toolbar

issue-65-widget-sync-refresh

issue-60-fix-duplicate-inbox

fix/simpl-liste-32-widget-subtask-toggle

issue-29-widget-expand-perf

issue-25-edit-delete-subtasks

fix/simpl-liste-26-vulnerable-deps

fix/simpl-liste-23-widget-task-count

fix/simpl-liste-21-save-button-navigation

fix/simpl-liste-19-widget-add-button

fix/simpl-liste-11-widget-scroll

fix/simpl-liste-12-subtasks-completed-last

v1.6.1

v1.6.0

v1.5.2

v1.5.1

v1.5.0

v1.4.0

v1.3.0

v1.2.5

v1.2.4

v1.2.3

v1.2.2

v1.2.1

v1.2.0

v1.1.0

v1.0.1

v1.0.0

Labels

Clear labels   

source:analyste

Créée par le Super-Analyste

  

source:defenseur

Créée par l Escouade Défenseur

  

source:human

Créée par un humain

  

source:medic

Créée par le Medic (auto-détection)

  

status:approved

PR approuvée, prête à merger

  

status:blocked

Bloquée (question, dépendance, clarification)

  

status:in-progress

Un agent (Medic/Dev) travaille dessus

  

status:needs-fix

Reviewer demande des corrections

  

status:ready

Analysée et documentée, prête à prendre

  

status:review

PR créée, en attente du Reviewer

  

status:triage

Nouvelle issue, pas encore analysée

  

type:bug

Correction de bug → Medic

  

type:feature

Nouvelle fonctionnalité → Dev

  

type:infra

Config, CI/CD, déploiement → Dev

  

type:refactor

Refactoring / amélioration technique → Dev

  

type:schema

Modèle de données / migrations → Dev

  

type:security

Issue de sécurité → Medic ou Dev

No labels

source:analyste

source:defenseur

source:human

source:medic

status:approved

status:blocked

status:in-progress

status:needs-fix

status:ready

status:review

status:triage

type:bug

type:feature

type:infra

type:refactor

type:schema

type:security

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: maximus/simpl-liste#27

No description provided.