Fix vulnerability in the js-yaml dependency

This patch is generated automatically using `npm audit fix`, and partially fixes GHSA-h67p-54hq-rp68.
2026-06-24 08:55:48 +02:00 · 2026-06-23 20:51:20 +02:00 · 2026-06-23 20:51:20 +02:00 · 7a9abfb2dc
commit 7a9abfb2dc
parent 048331b09a
1 changed files with 13 additions and 3 deletions
--- a/package-lock.json
+++ b/package-lock.json
@ -4635,10 +4635,20 @@
      "license": "Python-2.0"
    },
    "node_modules/cosmiconfig/node_modules/js-yaml": {
-      "version": "4.1.1",
-      "resolved": "https://registry.npmjs.org/js-yaml/-/js-yaml-4.1.1.tgz",
-      "integrity": "sha512-qQKT4zQxXl8lLwBtHMWwaTcGfFOZviOJet3Oy/xmGk2gZH677CJM9EvtfdSkgWcATZhj/55JZ0rmy3myCT5lsA==",
+      "version": "4.2.0",
+      "resolved": "https://registry.npmjs.org/js-yaml/-/js-yaml-4.2.0.tgz",
+      "integrity": "sha512-ePWsvanv0DWuDRsW8dnt+R4jQ31SCRCQ7hhNcPXZPsoBZiemuZNYGf7adZdqX2D86j6rvKp3RpCxVTSb8WQlOw==",
      "dev": true,
+      "funding": [
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/puzrin"
+        },
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/nodeca"
+        }
+      ],
      "license": "MIT",
      "dependencies": {
        "argparse": "^2.0.1"