fix(deps): override minimatch to >=10.2.1 (GHSA-3ppc-4f35-3m26) (#63)

Barazo AppView backend barazo.forum

All minimatch versions <10.2.1 are vulnerable to ReDoS via repeated
wildcards with non-matching literal in pattern. Override forces the
patched version across all transitive dependencies including
typescript-eslint, testcontainers, @atproto/tap, and @sentry/node.

authored by

Guido X Jansen and committed by

GitHub 4 weeks ago fa73ac60 c33161eb

1 changed file

expand all

package.json

··· 71 71 "typescript": "^5.9.3", 72 72 "typescript-eslint": "^8.56.0", 73 73 "vitest": "^4.0.18" 74 + }, 75 + "pnpm": { 76 + "overrides": { 77 + "minimatch": ">=10.2.1" 78 + } 74 79 } 75 80 }