The GHSA-7fh5-64p2-3v2j advisory seems to be in a poor state at the moment. Neither the advisory text nor any of the references contain any description of any security impact, and no CWE category is given either. Readers can't distinguish between this being a security bug or a normal bugfix that has been mistakenly granted security vulnerability status.

My suggestion would be to add this context (maybe @ai as the author of the change can provide this). If context as to why there is security impact cannot be provided, my suggestion would be revert this advisory to "unreviewed" status.