marcel/familienarchiv
1
0
Fork 0
Code Issues 137 Pull Requests 1 Actions Packages Projects Releases Wiki Activity

fix(deps): bump vite 7.3.3 -> 7.3.5 to clear the high-severity audit gate
Some checks failed
CI / Unit & Component Tests (pull_request) Successful in 7m30s
Details
CI / OCR Service Tests (pull_request) Successful in 37s
Details
CI / Backend Unit Tests (pull_request) Failing after 12m40s
Details
CI / fail2ban Regex (pull_request) Successful in 1m46s
Details
CI / Semgrep Security Scan (pull_request) Successful in 35s
Details
CI / Compose Bucket Idempotency (pull_request) Successful in 1m49s
Details
SDD Gate / RTM Check (pull_request) Successful in 31s
Details
SDD Gate / Contract Validate (pull_request) Successful in 41s
Details
SDD Gate / Constitution Impact (pull_request) Successful in 29s
Details
CI / Unit & Component Tests (push) Successful in 7m5s
Details
CI / OCR Service Tests (push) Successful in 48s
Details
CI / Backend Unit Tests (push) Failing after 12m53s
Details
CI / fail2ban Regex (push) Successful in 1m44s
Details
CI / Semgrep Security Scan (push) Successful in 35s
Details
CI / Compose Bucket Idempotency (push) Successful in 1m48s
Details

Browse Source 
vite 7.3.3 carries two high-severity advisories (GHSA-v6wh-96g9-6wx3
NTLMv2 UNC disclosure, GHSA-fx2h-pf6j-xcff server.fs.deny bypass), both
flagged by the CI gate `npm audit --audit-level=high --omit=dev`. 7.3.5
is in-range of the existing `^7.3.3` constraint, so this is a
lockfile-only patch with no package.json change. Gate now exits 0.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
This commit was merged in pull request #852.
This commit is contained in:
Marcel
2026-06-16 09:16:58 +02:00
parent 273a97046a
commit 109202246e
1 changed files with 3 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
frontend/package-lock.json generated
View File

@@ -9515,9 +9515,9 @@
}
},
"node_modules/vite": {
"version": "7.3.3",
"resolved": "https://registry.npmjs.org/vite/-/vite-7.3.3.tgz",
"integrity": "sha512-/4XH147Ui7OGTjg3HbdWe5arnZQSbfuRzdr9Ec7TQi5I7R+ir0Rlc9GIvD4v0XZurELqA035KVXJXpR61xhiTA==",
"version": "7.3.5",
"resolved": "https://registry.npmjs.org/vite/-/vite-7.3.5.tgz",
"integrity": "sha512-KuOaNhcnGFN2zIPGA7wRmzF+lJA1sea7rHq17aiJ++9lzY1WWG6Jpwqwe1KNbRVPIqHmr8GLYx7jbrQcN/7/ww==",
"license": "MIT",
"dependencies": {
"esbuild": "^0.27.0",