From 88593c769dd2c0fb30bb2b04e8be9be1e68070ad Mon Sep 17 00:00:00 2001
From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com>
Date: Wed, 8 Apr 2026 01:44:50 +0000
Subject: [PATCH 1/2] Initial plan


From 5c5fe799b66d231c298352db6553a8cd35046678 Mon Sep 17 00:00:00 2001
From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com>
Date: Wed, 8 Apr 2026 01:49:06 +0000
Subject: [PATCH 2/2] fix: update serialize-javascript to 7.0.3 via npm
 override to resolve GHSA-5c6j-r48x-rmvq

Agent-Logs-Url: https://github.com/github/emergency-pull-request-probot-app/sessions/70ba3aa6-5429-4b16-bdc8-5dade885fc0e

Co-authored-by: lindluni <9400927+lindluni@users.noreply.github.com>
---
 package-lock.json | 30 ++++++++++--------------------
 package.json      |  3 +++
 2 files changed, 13 insertions(+), 20 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index 38dbaa6..3d9df62 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -4739,6 +4739,16 @@
         "node": ">=0.3.1"
       }
     },
+    "node_modules/mocha/node_modules/serialize-javascript": {
+      "version": "7.0.3",
+      "resolved": "https://registry.npmjs.org/serialize-javascript/-/serialize-javascript-7.0.3.tgz",
+      "integrity": "sha512-h+cZ/XXarqDgCjo+YSyQU/ulDEESGGf8AMK9pPNmhNSl/FzPl6L8pMp1leca5z6NuG6tvV/auC8/43tmovowww==",
+      "dev": true,
+      "license": "BSD-3-Clause",
+      "engines": {
+        "node": ">=20.0.0"
+      }
+    },
     "node_modules/module-details-from-path": {
       "version": "1.0.4",
       "resolved": "https://registry.npmjs.org/module-details-from-path/-/module-details-from-path-1.0.4.tgz",
@@ -5952,16 +5962,6 @@
       "integrity": "sha512-tYC1Q1hgyRuHgloV/YXs2w15unPVh8qfu/qCTfhTYamaw7fyhumKa2yGpdSo87vY32rIclj+4fWYQXUMs9EHvg==",
       "license": "MIT"
     },
-    "node_modules/randombytes": {
-      "version": "2.1.0",
-      "resolved": "https://registry.npmjs.org/randombytes/-/randombytes-2.1.0.tgz",
-      "integrity": "sha512-vYl3iOX+4CKUWuxGi9Ukhie6fsqXqS9FE2Zaic4tNFD2N2QQaXOMFbuKK4QmDHC0JO6B1Zp41J0LpT0oR68amQ==",
-      "dev": true,
-      "license": "MIT",
-      "dependencies": {
-        "safe-buffer": "^5.1.0"
-      }
-    },
     "node_modules/range-parser": {
       "version": "1.2.1",
       "resolved": "https://registry.npmjs.org/range-parser/-/range-parser-1.2.1.tgz",
@@ -6351,16 +6351,6 @@
         "node": ">= 0.6"
       }
     },
-    "node_modules/serialize-javascript": {
-      "version": "6.0.2",
-      "resolved": "https://registry.npmjs.org/serialize-javascript/-/serialize-javascript-6.0.2.tgz",
-      "integrity": "sha512-Saa1xPByTTq2gdeFZYLLo+RFE35NHZkAbqZeWNd3BpzppeVisAqpDjcp8dyf6uIvEqJRd46jemmyA4iFIeVk8g==",
-      "dev": true,
-      "license": "BSD-3-Clause",
-      "dependencies": {
-        "randombytes": "^2.1.0"
-      }
-    },
     "node_modules/serve-static": {
       "version": "2.2.0",
       "resolved": "https://registry.npmjs.org/serve-static/-/serve-static-2.2.0.tgz",
diff --git a/package.json b/package.json
index 59158c7..30c0bf4 100644
--- a/package.json
+++ b/package.json
@@ -28,5 +28,8 @@
     "branches": [
       "main"
     ]
+  },
+  "overrides": {
+    "serialize-javascript": "7.0.3"
   }
 }