Skip to content

Feature/security audit fixes 40#41

Open
suung wants to merge 1 commit into
mainfrom
feature/security-audit-fixes-40
Open

Feature/security audit fixes 40#41
suung wants to merge 1 commit into
mainfrom
feature/security-audit-fixes-40

Conversation

@suung
Copy link
Copy Markdown
Collaborator

@suung suung commented Sep 4, 2025

Acceptance Criteria

  • npm audit runs clean

@suung
feat: security audit fixes for ticket #40
022ad71 
- Upgrade Vite from 5.4.19 to 7.1.4 to resolve esbuild vulnerabilities
- Upgrade Svelte from 4.x to 5.x for compatibility with vite-plugin-svelte 5.x
- Upgrade Vitest from 1.6.1 to 3.2.4 for Vite 7.x compatibility
- Resolve peer dependency conflicts with --legacy-peer-deps
- All packages build successfully after major version upgrades
- Reduced vulnerabilities from 10 total (3 critical) to 2 moderate (development-only)

Breaking changes:
- Svelte 5.x may require code updates (tested: current code works)
- Vite 7.x configuration changes (tested: builds successfully)
- Vitest 3.x API changes (tested: no issues found)
@suung suung changed the base branch from feature/analyzer-on-database-fixes to fix/database-path September 4, 2025 13:16
@suung suung linked an issue Sep 4, 2025 that may be closed by this pull request
Clarify versioning for built packages build packages in repository #40
Open
1 task
@suung suung changed the base branch from fix/database-path to main September 15, 2025 14:51
@suung suung mentioned this pull request Sep 29, 2025
Closed
4 tasks
@suung suung added the good first issue Good for newcomers label Nov 28, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

good first issue Good for newcomers

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Clarify versioning for built packages build packages in repository

1 participant

@suung