Skip to content

GRAL-5870 fix vulnerabilities#199

Open
siirimangus wants to merge 2 commits intomasterfrom
GRAL-5870
Open

GRAL-5870 fix vulnerabilities#199
siirimangus wants to merge 2 commits intomasterfrom
GRAL-5870

Conversation

@siirimangus
Copy link
Copy Markdown
Contributor

@siirimangus siirimangus commented Apr 20, 2026

Related Tickets & Documents

https://pipedrive.atlassian.net/browse/GRAL-5870

There are several PR-s open by the bot that report some vulnerability is already fixed, but in the PR add a package-lock.json file to the root level.

I approach the PR-s like this:

  • Find the specific example-app where the vulnerability might be and fix it
  • Do not add the package-lock.json file to the root level because it is not needed (there's no package.json file anyway in the root level)

Description

Type of PR?

🚧 Maintenance

@siirimangus siirimangus marked this pull request as ready for review April 20, 2026 10:49
Copilot AI review requested due to automatic review settings April 20, 2026 10:49
Copy link
Copy Markdown

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Updates dependencies in custom-ui-floating-window-demo to address reported vulnerabilities.

Changes:

  • Bump next from ^15.5.14 to ^15.5.15 in the example app.
  • Update package-lock.json to reflect the new Next.js version (and associated transitive updates).

Reviewed changes

Copilot reviewed 1 out of 2 changed files in this pull request and generated 3 comments.

File Description
apps/custom-ui-floating-window-demo/package.json Bumps the app’s next dependency version.
apps/custom-ui-floating-window-demo/package-lock.json Regenerates lockfile entries for the updated dependency set.
Files not reviewed (1)
  • apps/custom-ui-floating-window-demo/package-lock.json: Language not supported

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

Comment thread apps/custom-ui-floating-window-demo/package.json Outdated
Comment thread apps/custom-ui-floating-window-demo/package.json
Comment thread apps/custom-ui-floating-window-demo/package-lock.json Outdated
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants