Skip to content

[main] Fix npm audit#8195

Open
nextcloud-command wants to merge 1 commit intomainfrom
automated/noid/main-fix-npm-audit
Open

[main] Fix npm audit#8195
nextcloud-command wants to merge 1 commit intomainfrom
automated/noid/main-fix-npm-audit

Conversation

@nextcloud-command
Copy link
Collaborator

@nextcloud-command nextcloud-command commented Jan 25, 2026
edited
Loading

Audit report

This audit fix resolves 1 of the total 35 vulnerabilities found in your project.

Updated dependencies

Fixed vulnerabilities

markdown-it #

  • markdown-it is has a Regular Expression Denial of Service (ReDoS)
  • Severity: moderate (CVSS 5.3)
  • Reference: GHSA-38c4-r59v-3vqw
  • Affected versions: 13.0.0 - 14.1.0
  • Package usage:
    • node_modules/markdown-it

@nextcloud-command nextcloud-command added 3. to review dependencies Pull requests that update a dependency file labels Jan 25, 2026
@nextcloud-command nextcloud-command added dependencies Pull requests that update a dependency file 3. to review labels Jan 25, 2026
@codecov
Copy link

codecov bot commented Jan 25, 2026

Codecov Report

✅ All modified and coverable lines are covered by tests.

📢 Thoughts on this report? Let us know!

@max-nextcloud max-nextcloud force-pushed the automated/noid/main-fix-npm-audit branch 2 times, most recently from 821ba3c to c87b23a Compare January 31, 2026 09:52
@nextcloud-command nextcloud-command force-pushed the automated/noid/main-fix-npm-audit branch from c87b23a to 043d1da Compare February 1, 2026 04:08
@max-nextcloud max-nextcloud mentioned this pull request Feb 1, 2026
Open
1 task
@nextcloud-command nextcloud-command force-pushed the automated/noid/main-fix-npm-audit branch from 043d1da to 8b39cb7 Compare February 8, 2026 04:16
@mejo- mejo- force-pushed the automated/noid/main-fix-npm-audit branch from 8b39cb7 to f0575a7 Compare February 11, 2026 19:32
@nextcloud-command nextcloud-command force-pushed the automated/noid/main-fix-npm-audit branch from f0575a7 to add7c34 Compare February 15, 2026 03:49
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@max-nextcloud max-nextcloud Awaiting requested review from max-nextcloud max-nextcloud is a code owner

@mejo- mejo- Awaiting requested review from mejo- mejo- is a code owner

@silverkszlo silverkszlo Awaiting requested review from silverkszlo silverkszlo is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

3. to review dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@nextcloud-command