From e72877be4a5685c88795ef56e7c830c22838d745 Mon Sep 17 00:00:00 2001 From: atishj99 <141334503+cx-atish-jadhav@users.noreply.github.com> Date: Mon, 30 Mar 2026 15:48:50 +0530 Subject: [PATCH 1/3] resolved the CVE-2026-33228 --- package-lock.json | 17 +++++++++-------- package.json | 3 ++- 2 files changed, 11 insertions(+), 9 deletions(-) diff --git a/package-lock.json b/package-lock.json index 09e796c..44cdf3e 100644 --- a/package-lock.json +++ b/package-lock.json @@ -2786,9 +2786,10 @@ } }, "node_modules/flatted": { - "version": "3.2.9", - "resolved": "https://registry.npmjs.org/flatted/-/flatted-3.2.9.tgz", - "integrity": "sha512-36yxDn5H7OFZQla0/jFJmbIKTdZAQHngCedGxiMmpNfEZM0sdEeT+WczLQrjK6D7o2aiyLYDnkw0R3JK0Qv1RQ==" + "version": "3.4.2", + "resolved": "https://registry.npmjs.org/flatted/-/flatted-3.4.2.tgz", + "integrity": "sha512-PjDse7RzhcPkIJwy5t7KPWQSZ9cAbzQXcafsetQoD7sOJRQlGikNbx7yZp2OotDnJyrDcbyRq3Ttb18iYOqkxA==", + "license": "ISC" }, "node_modules/fs-extra": { "version": "8.1.0", @@ -7795,15 +7796,15 @@ "integrity": "sha512-CYcENa+FtcUKLmhhqyctpclsq7QF38pKjZHsGNiSQF5r4FtoKDWabFDl3hzaEQMvT1LHEysw5twgLvpYYb4vbw==", "dev": true, "requires": { - "flatted": "^3.2.9", + "flatted": "^3.4.2", "keyv": "^4.5.3", "rimraf": "^3.0.2" } }, "flatted": { - "version": "3.2.9", - "resolved": "https://registry.npmjs.org/flatted/-/flatted-3.2.9.tgz", - "integrity": "sha512-36yxDn5H7OFZQla0/jFJmbIKTdZAQHngCedGxiMmpNfEZM0sdEeT+WczLQrjK6D7o2aiyLYDnkw0R3JK0Qv1RQ==" + "version": "3.4.2", + "resolved": "https://registry.npmjs.org/flatted/-/flatted-3.4.2.tgz", + "integrity": "sha512-PjDse7RzhcPkIJwy5t7KPWQSZ9cAbzQXcafsetQoD7sOJRQlGikNbx7yZp2OotDnJyrDcbyRq3Ttb18iYOqkxA==" }, "fs-extra": { "version": "8.1.0", @@ -9079,7 +9080,7 @@ "requires": { "date-format": "^4.0.14", "debug": "^4.4.0", - "flatted": "^3.2.7", + "flatted": "^3.4.2", "rfdc": "^1.3.0", "streamroller": "^3.1.5" } diff --git a/package.json b/package.json index 4761717..ae62dbe 100644 --- a/package.json +++ b/package.json @@ -40,7 +40,8 @@ }, "overrides": { "bluebird": "3.7.2", - "debug": "^4.4.0" + "debug": "^4.4.0", + "flatted": "^3.4.2" }, "publishConfig": { "registry": "https://npm.pkg.github.com" From 9e3f066df3b9bfe40215166385f2add9d9417107 Mon Sep 17 00:00:00 2001 From: atishj99 <141334503+cx-atish-jadhav@users.noreply.github.com> Date: Mon, 30 Mar 2026 16:33:22 +0530 Subject: [PATCH 2/3] override flatted version 3.2.9 to 3.4.2 in package-lock.json --- package-lock.json | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/package-lock.json b/package-lock.json index 44cdf3e..d3e7c09 100644 --- a/package-lock.json +++ b/package-lock.json @@ -2777,7 +2777,7 @@ "integrity": "sha512-CYcENa+FtcUKLmhhqyctpclsq7QF38pKjZHsGNiSQF5r4FtoKDWabFDl3hzaEQMvT1LHEysw5twgLvpYYb4vbw==", "dev": true, "dependencies": { - "flatted": "^3.2.9", + "flatted": "^3.4.2", "keyv": "^4.5.3", "rimraf": "^3.0.2" }, @@ -4472,7 +4472,7 @@ "dependencies": { "date-format": "^4.0.14", "debug": "^4.3.4", - "flatted": "^3.2.7", + "flatted": "^3.4.2", "rfdc": "^1.3.0", "streamroller": "^3.1.5" }, From a4661a9f96e32208803bab6bfd432c7df6d7c1fe Mon Sep 17 00:00:00 2001 From: atishj99 <141334503+cx-atish-jadhav@users.noreply.github.com> Date: Mon, 30 Mar 2026 17:24:48 +0530 Subject: [PATCH 3/3] changed 3.2.9 in test package-lock.json --- src/tests/data/package-lock.json | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/src/tests/data/package-lock.json b/src/tests/data/package-lock.json index 2ff3899..5e25ac0 100644 --- a/src/tests/data/package-lock.json +++ b/src/tests/data/package-lock.json @@ -2084,7 +2084,7 @@ "dev": true, "license": "MIT", "dependencies": { - "flatted": "^3.2.9", + "flatted": "^3.4.2", "keyv": "^4.5.3", "rimraf": "^3.0.2" }, @@ -2093,7 +2093,7 @@ } }, "node_modules/flatted": { - "version": "3.2.9", + "version": "3.4.2", "license": "ISC" }, "node_modules/fs-constants": {