Skip to content

fix: update minimatch to 3.1.3 to address security vulnerabilities#224

Merged
mdjermanovic merged 1 commit intomainfrom
fix/update-minimatch-to-3.1.3-to-address-security-vulnerabilities
Feb 22, 2026
Merged

fix: update minimatch to 3.1.3 to address security vulnerabilities#224
mdjermanovic merged 1 commit intomainfrom
fix/update-minimatch-to-3.1.3-to-address-security-vulnerabilities

Conversation

@lumirlumir
Copy link
Member

@lumirlumir lumirlumir commented Feb 22, 2026
edited
Loading

Prerequisites checklist

AI acknowledgment

  • I did not use AI to generate this PR.
  • (If the above is not checked) I have reviewed the AI-generated content before submitting.

What is the purpose of this pull request?

This PR updates minimatch to 3.1.3 to address security vulnerabilities.

It seems the backported version 3.1.3 was released about 13 hours ago. The following links and images are provided as references for this change:

https://www.npmjs.com/package/minimatch?activeTab=versions

image

https://github.com/isaacs/minimatch/commits/v3.1.3/

image

What changes did you make? (Give an overview)

This PR updates minimatch to 3.1.3 to address security vulnerabilities.

Related Issues

Fixes: #220

Is there anything you'd like reviewers to focus on?

N/A

@eslint-github-bot eslint-github-bot bot added the bug Something isn't working label Feb 22, 2026
@eslint-github-bot eslint-github-bot bot mentioned this pull request Feb 22, 2026
Closed
@eslintbot eslintbot added this to Triage Feb 22, 2026
@github-project-automation github-project-automation bot moved this to Needs Triage in Triage Feb 22, 2026
@lumirlumir lumirlumir marked this pull request as ready for review February 22, 2026 15:09
Copilot AI review requested due to automatic review settings February 22, 2026 15:09
Copilot AI reviewed Feb 22, 2026
View reviewed changes
Copy link

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR updates the minimatch dependency version in @eslint/eslintrc to address the vulnerability reported in issue #220.

Changes:

  • Bump minimatch from ^3.1.2 to ^3.1.3 in package.json.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

@lumirlumir lumirlumir mentioned this pull request Feb 22, 2026
Closed
3 tasks
mdjermanovic
mdjermanovic approved these changes Feb 22, 2026
View reviewed changes
Copy link
Member

@mdjermanovic mdjermanovic left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM, thanks!

@mdjermanovic mdjermanovic merged commit 30339d0 into main Feb 22, 2026
26 checks passed
@mdjermanovic mdjermanovic deleted the fix/update-minimatch-to-3.1.3-to-address-security-vulnerabilities branch February 22, 2026 16:54
@github-project-automation github-project-automation bot moved this from Needs Triage to Complete in Triage Feb 22, 2026
@eslintbot eslintbot mentioned this pull request Feb 22, 2026
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@mdjermanovic mdjermanovic mdjermanovic approved these changes

Assignees

No one assigned

Labels

bug Something isn't working

Projects

Triage
Status: Complete

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

High level vulnerability in minimatch@3.1.2

3 participants

@lumirlumir @mdjermanovic