Skip to content

Commit a6deca8

Browse files
waleedlatif1waleedlatif1
committed
fix(deps): exclude vulnerable vitest 4.0.x from @sim/testing peer range
Tighten the v4 arm of the peer range to >=4.1.0 <5.0.0 so the peer requirement cannot be satisfied by the unpatched 4.0.x builds that GHSA-5xrq-8626-4rwp affects.
1 parent 46916e9 commit a6deca8

2 files changed

Lines changed: 2 additions & 2 deletions

File tree

bun.lock

Lines changed: 1 addition & 1 deletion
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

packages/testing/package.json

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -49,7 +49,7 @@
4949
"format:check": "biome format ."
5050
},
5151
"peerDependencies": {
52-
"vitest": "^3.0.0 || ^4.0.0"
52+
"vitest": "^3.0.0 || >=4.1.0 <5.0.0"
5353
},
5454
"devDependencies": {
5555
"@sim/tsconfig": "workspace:*",

0 commit comments

Comments
 (0)