Skip to content

Commit 71cc831

Browse files
polazpolaz
authored
fix(deps): update hono from 4.11.5 to 4.11.7 (#248)
- Fix 4 medium-severity CVEs: CVE-2026-24771 (XSS), CVE-2026-24473 (arbitrary key read), CVE-2026-24472 (cache deception), CVE-2026-24398 (IP spoofing) - Update resolutions pin that blocked Dependabot auto-update Fixes #247
1 parent 9470b50 commit 71cc831

File tree

2 files changed

+5
-5
lines changed

2 files changed

+5
-5
lines changed

package.json

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -4,7 +4,7 @@
44
"resolutions": {
55
"lodash": "4.17.23",
66
"lodash-es": "4.17.23",
7-
"hono": "4.11.5",
7+
"hono": "4.11.7",
88
"diff": "4.0.4",
99
"esbuild": ">=0.25.0"
1010
},

yarn.lock

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -6081,10 +6081,10 @@ __metadata:
60816081
languageName: node
60826082
linkType: hard
60836083

6084-
"hono@npm:4.11.5":
6085-
version: 4.11.5
6086-
resolution: "hono@npm:4.11.5"
6087-
checksum: 10c0/0473f7dde6f4d2e0d6e04cace561715560d7f884d5c7d3d7bc8e4b7f7b5ec7b826cc996ebcc2b343e1c00a95d7436a95a75c91b3b2a8666ba3b4be4b7bdb1982
6084+
"hono@npm:4.11.7":
6085+
version: 4.11.7
6086+
resolution: "hono@npm:4.11.7"
6087+
checksum: 10c0/c7cde1779c9352fc6aacb242af009f280f4d89315cf95135d08df5c680f845fcfb1c3c1a650ec15e1d1c2d0af26fdc87b745bb3c471c5045d88c247a7bd2aae4
60886088
languageName: node
60896089
linkType: hard
60906090

0 commit comments

Comments
 (0)