otel-web-session-recorde vulnerability in dep @babel/runtime -- "Babel has inefficient RegExp complexity in generated code with .replace when transpiling named capturing groups"

[duhseekoh]

https://nvd.nist.gov/vuln/detail/CVE-2025-27789

Hi, the otel-web-session-recorder is affected by the preceding vuln. Can this project be updated to the latest non-affected version of babel?

[ggaleazzi-cmg]

Hi hyperdxio team,
Just checking in — do we have an estimated date for when the Babel update can be merged? This will help us plan mitigation timelines for the CVE-2025-27789 issue.
Thanks in advance!

[ggaleazzi-cmg]

@wrn14897 Could you help us reviewing the PR ?

[ggaleazzi-cmg]

Any updates on this ?