From f11caf4aad4377533bf328702d180097d78c00db Mon Sep 17 00:00:00 2001 From: Paolo Tranquilli Date: Mon, 8 Sep 2025 10:53:44 +0200 Subject: [PATCH 1/2] Override `brace-expansion` from `2.0.1` to `2.0.2` --- package-lock.json | 29 ++++++----------------------- package.json | 3 ++- 2 files changed, 8 insertions(+), 24 deletions(-) diff --git a/package-lock.json b/package-lock.json index 4922776857..1e1026d4ce 100644 --- a/package-lock.json +++ b/package-lock.json @@ -46,13 +46,11 @@ "@types/archiver": "^6.0.3", "@types/console-log-level": "^1.4.5", "@types/follow-redirects": "^1.14.4", - "@types/get-folder-size": "^3.0.4", "@types/js-yaml": "^4.0.9", "@types/node": "20.19.9", "@types/node-forge": "^1.3.14", "@types/semver": "^7.7.0", "@types/sinon": "^17.0.4", - "@types/uuid": "^10.0.0", "@typescript-eslint/eslint-plugin": "^8.41.0", "@typescript-eslint/parser": "^8.41.0", "ava": "^6.4.1", @@ -2459,16 +2457,6 @@ "@types/node": "*" } }, - "node_modules/@types/get-folder-size": { - "version": "3.0.4", - "resolved": "https://registry.npmjs.org/@types/get-folder-size/-/get-folder-size-3.0.4.tgz", - "integrity": "sha512-tSf/k7Undx6jKRwpChR9tl+0ZPf0BVwkjBRtJ5qSnz6iWm2ZRYMAS2MktC2u7YaTAFHmxpL/LBxI85M7ioJCSg==", - "dev": true, - "license": "MIT", - "dependencies": { - "@types/node": "*" - } - }, "node_modules/@types/js-yaml": { "version": "4.0.9", "dev": true, @@ -2530,11 +2518,6 @@ "dev": true, "license": "MIT" }, - "node_modules/@types/uuid": { - "version": "10.0.0", - "dev": true, - "license": "MIT" - }, "node_modules/@typescript-eslint/eslint-plugin": { "version": "8.41.0", "resolved": "https://registry.npmjs.org/@typescript-eslint/eslint-plugin/-/eslint-plugin-8.41.0.tgz", @@ -3180,9 +3163,9 @@ } }, "node_modules/@typescript-eslint/typescript-estree/node_modules/brace-expansion": { - "version": "2.0.1", - "resolved": "https://registry.npmjs.org/brace-expansion/-/brace-expansion-2.0.1.tgz", - "integrity": "sha512-XnAIvQ8eM+kC6aULx6wuQiwVsnzsi9d3WxzV3FpWTGA19F621kwdbsAcFKXgKUHZWsy+mY6iL1sHTxWEFCytDA==", + "version": "2.0.2", + "resolved": "https://registry.npmjs.org/brace-expansion/-/brace-expansion-2.0.2.tgz", + "integrity": "sha512-Jt0vHyM+jmUBqojB7E1NIYadt0vI0Qxjxd2TErW94wDz+E2LAm5vKMXXwg6ZZBTHPuUlDgQHKXvjGBdfcF1ZDQ==", "dev": true, "license": "MIT", "dependencies": { @@ -7808,9 +7791,9 @@ } }, "node_modules/readdir-glob/node_modules/brace-expansion": { - "version": "2.0.1", - "resolved": "https://registry.npmjs.org/brace-expansion/-/brace-expansion-2.0.1.tgz", - "integrity": "sha512-XnAIvQ8eM+kC6aULx6wuQiwVsnzsi9d3WxzV3FpWTGA19F621kwdbsAcFKXgKUHZWsy+mY6iL1sHTxWEFCytDA==", + "version": "2.0.2", + "resolved": "https://registry.npmjs.org/brace-expansion/-/brace-expansion-2.0.2.tgz", + "integrity": "sha512-Jt0vHyM+jmUBqojB7E1NIYadt0vI0Qxjxd2TErW94wDz+E2LAm5vKMXXwg6ZZBTHPuUlDgQHKXvjGBdfcF1ZDQ==", "license": "MIT", "dependencies": { "balanced-match": "^1.0.0" diff --git a/package.json b/package.json index 0bd52c5a74..4de4102826 100644 --- a/package.json +++ b/package.json @@ -98,6 +98,7 @@ }, "eslint-plugin-jsx-a11y": { "semver": ">=6.3.1" - } + }, + "brace-expansion@2.0.1": "2.0.2" } } From d42097d387e7ead77b875f72f5229cd1c1b9d0fc Mon Sep 17 00:00:00 2001 From: Paolo Tranquilli Date: Mon, 8 Sep 2025 14:04:45 +0200 Subject: [PATCH 2/2] Build --- lib/analyze-action-post.js | 5 +++-- lib/analyze-action.js | 3 ++- lib/autobuild-action.js | 3 ++- lib/init-action-post.js | 5 +++-- lib/init-action.js | 3 ++- lib/resolve-environment-action.js | 3 ++- lib/start-proxy-action-post.js | 5 +++-- lib/start-proxy-action.js | 3 ++- lib/upload-lib.js | 3 ++- lib/upload-sarif-action-post.js | 5 +++-- lib/upload-sarif-action.js | 3 ++- 11 files changed, 26 insertions(+), 15 deletions(-) diff --git a/lib/analyze-action-post.js b/lib/analyze-action-post.js index fc37690a2b..0e5c259ef3 100644 --- a/lib/analyze-action-post.js +++ b/lib/analyze-action-post.js @@ -26536,7 +26536,8 @@ var require_package = __commonJS({ }, "eslint-plugin-jsx-a11y": { semver: ">=6.3.1" - } + }, + "brace-expansion@2.0.1": "2.0.2" } }; } @@ -77685,7 +77686,7 @@ var require_brace_expansion2 = __commonJS({ var isSequence = isNumericSequence || isAlphaSequence; var isOptions = m.body.indexOf(",") >= 0; if (!isSequence && !isOptions) { - if (m.post.match(/,.*\}/)) { + if (m.post.match(/,(?!,).*\}/)) { str2 = m.pre + "{" + m.body + escClose + m.post; return expand(str2); } diff --git a/lib/analyze-action.js b/lib/analyze-action.js index 4f2a58b910..8c4357aeaa 100644 --- a/lib/analyze-action.js +++ b/lib/analyze-action.js @@ -32385,7 +32385,8 @@ var require_package = __commonJS({ }, "eslint-plugin-jsx-a11y": { semver: ">=6.3.1" - } + }, + "brace-expansion@2.0.1": "2.0.2" } }; } diff --git a/lib/autobuild-action.js b/lib/autobuild-action.js index f0c05343e9..b0066edf54 100644 --- a/lib/autobuild-action.js +++ b/lib/autobuild-action.js @@ -26536,7 +26536,8 @@ var require_package = __commonJS({ }, "eslint-plugin-jsx-a11y": { semver: ">=6.3.1" - } + }, + "brace-expansion@2.0.1": "2.0.2" } }; } diff --git a/lib/init-action-post.js b/lib/init-action-post.js index f51e0c720b..53e4c15222 100644 --- a/lib/init-action-post.js +++ b/lib/init-action-post.js @@ -32385,7 +32385,8 @@ var require_package = __commonJS({ }, "eslint-plugin-jsx-a11y": { semver: ">=6.3.1" - } + }, + "brace-expansion@2.0.1": "2.0.2" } }; } @@ -83534,7 +83535,7 @@ var require_brace_expansion2 = __commonJS({ var isSequence = isNumericSequence || isAlphaSequence; var isOptions = m.body.indexOf(",") >= 0; if (!isSequence && !isOptions) { - if (m.post.match(/,.*\}/)) { + if (m.post.match(/,(?!,).*\}/)) { str2 = m.pre + "{" + m.body + escClose + m.post; return expand(str2); } diff --git a/lib/init-action.js b/lib/init-action.js index 332835638c..69015c2b8c 100644 --- a/lib/init-action.js +++ b/lib/init-action.js @@ -32385,7 +32385,8 @@ var require_package = __commonJS({ }, "eslint-plugin-jsx-a11y": { semver: ">=6.3.1" - } + }, + "brace-expansion@2.0.1": "2.0.2" } }; } diff --git a/lib/resolve-environment-action.js b/lib/resolve-environment-action.js index b90f72831a..016fbacb4c 100644 --- a/lib/resolve-environment-action.js +++ b/lib/resolve-environment-action.js @@ -26536,7 +26536,8 @@ var require_package = __commonJS({ }, "eslint-plugin-jsx-a11y": { semver: ">=6.3.1" - } + }, + "brace-expansion@2.0.1": "2.0.2" } }; } diff --git a/lib/start-proxy-action-post.js b/lib/start-proxy-action-post.js index a3c4b0f578..bd414beaaf 100644 --- a/lib/start-proxy-action-post.js +++ b/lib/start-proxy-action-post.js @@ -26536,7 +26536,8 @@ var require_package = __commonJS({ }, "eslint-plugin-jsx-a11y": { semver: ">=6.3.1" - } + }, + "brace-expansion@2.0.1": "2.0.2" } }; } @@ -76345,7 +76346,7 @@ var require_brace_expansion2 = __commonJS({ var isSequence = isNumericSequence || isAlphaSequence; var isOptions = m.body.indexOf(",") >= 0; if (!isSequence && !isOptions) { - if (m.post.match(/,.*\}/)) { + if (m.post.match(/,(?!,).*\}/)) { str2 = m.pre + "{" + m.body + escClose + m.post; return expand(str2); } diff --git a/lib/start-proxy-action.js b/lib/start-proxy-action.js index 6d5054e33b..ca2d367ded 100644 --- a/lib/start-proxy-action.js +++ b/lib/start-proxy-action.js @@ -45064,7 +45064,8 @@ var require_package = __commonJS({ }, "eslint-plugin-jsx-a11y": { semver: ">=6.3.1" - } + }, + "brace-expansion@2.0.1": "2.0.2" } }; } diff --git a/lib/upload-lib.js b/lib/upload-lib.js index 23024a522b..8c61ce9919 100644 --- a/lib/upload-lib.js +++ b/lib/upload-lib.js @@ -33682,7 +33682,8 @@ var require_package = __commonJS({ }, "eslint-plugin-jsx-a11y": { semver: ">=6.3.1" - } + }, + "brace-expansion@2.0.1": "2.0.2" } }; } diff --git a/lib/upload-sarif-action-post.js b/lib/upload-sarif-action-post.js index 854f1368a5..aac3d98276 100644 --- a/lib/upload-sarif-action-post.js +++ b/lib/upload-sarif-action-post.js @@ -26536,7 +26536,8 @@ var require_package = __commonJS({ }, "eslint-plugin-jsx-a11y": { semver: ">=6.3.1" - } + }, + "brace-expansion@2.0.1": "2.0.2" } }; } @@ -70467,7 +70468,7 @@ var require_brace_expansion = __commonJS({ var isSequence = isNumericSequence || isAlphaSequence; var isOptions = m.body.indexOf(",") >= 0; if (!isSequence && !isOptions) { - if (m.post.match(/,.*\}/)) { + if (m.post.match(/,(?!,).*\}/)) { str2 = m.pre + "{" + m.body + escClose + m.post; return expand(str2); } diff --git a/lib/upload-sarif-action.js b/lib/upload-sarif-action.js index dcb27ac517..965d65c2eb 100644 --- a/lib/upload-sarif-action.js +++ b/lib/upload-sarif-action.js @@ -32385,7 +32385,8 @@ var require_package = __commonJS({ }, "eslint-plugin-jsx-a11y": { semver: ">=6.3.1" - } + }, + "brace-expansion@2.0.1": "2.0.2" } }; }