build: add false-positive for CVE-2024-24828 - Githubissues

IBM / openapi-validator

Configurable and extensible validator/linter for OpenAPI documents

Apache License 2.0

493 stars 88 forks source link

build: add false-positive for CVE-2024-24828 #650

Closed padamstx closed 7 months ago

padamstx commented 7 months ago

PR summary

Add false-positive for CVE-2024-24828, and bump our version of babel to address a potential vulnerability.

PR Checklist

General checklist

Please make sure that your PR fulfills the following requirements:

[ ] The commit message follows the Angular Commit Message Guidelines.
[ ] Tests for the changes have been added (for bug fixes / features)
[ ] Docs have been added / updated (for bug fixes / features)
[ ] Dependencies have been updated as needed
[ ] .secrets.baseline updated as needed?

Checklist for adding a new validation rule:

[ ] Added new validation rule definition (packages/ruleset/src/rules/*.js, index.js)
[ ] If necessary, added new validation rule implementation (packages/ruleset/src/functions/*.js, updated index.js)
[ ] Added new rule to default configuration (packages/ruleset/src/ibm-oas.js)
[ ] Added tests for new rule (packages/ruleset/test/*.test.js)
[ ] Added docs for new rule (docs/ibm-cloud-rules.md)

ibm-devx-sdk commented 7 months ago

:tada: This PR is included in version 1.15.4 :tada:

The release is available on npm package (@latest dist-tag)

Your semantic-release bot :package::rocket:

ibm-devx-sdk commented 7 months ago

:tada: This PR is included in version 1.16.4 :tada:

The release is available on npm package (@latest dist-tag)

Your semantic-release bot :package::rocket:

ibm-devx-sdk commented 7 months ago

:tada: This PR is included in version 1.3.2 :tada:

The release is available on npm package (@latest dist-tag)

Your semantic-release bot :package::rocket: