request #47680 js-yaml 3.14.2, 4.1.1 -> 4.2.0

Infos

Artifact ID#47680

Submitted byKevin Traini (ktraini)

Last Modified On2026-06-16 16:11

Submitted on2026-06-16 12:03

Rank49421

Details

Summary *

js-yaml 3.14.2, 4.1.1 -> 4.2.0

Original Submission

Fixes CVE-2026-53550

No impact for Tuleap. It is a dependency of eslint and jest

Changelog: https://github.com/nodeca/js-yaml/blob/f6927192223355b64f2a6e19f3071ccc579ee718/CHANGELOG.md

CategoryDependencies

Reported in versionEmpty

PlatformEmpty

Is an Enhancement or an internal improvement?

[ ] enhancement
[ ] internal improvement

CC listEmpty

Stage

Assigned toKevin Traini (ktraini)

StatusClosed

Close date2026-06-16

Attachments

AttachmentsEmpty

References

Cross references

Show items referenced by request #47680

Referenced by request #47680

Artifact

rel #47138 17.6

Other

gerrit #38089

Follow-ups

Thomas Gerbet (tgerbet)

2026-06-16 16:11

Connected artifacts
- Added Fixed in: rel #47138

Tracker Workflow Manager (forge__tracker_workflow_manager)

2026-06-16 16:10

Closed by @ktraini with git #tuleap/tuleap/986bcb48abf6205de09ec85928a09c76fbf63edf.

Status changed from Under review to Closed
Close date set to 2026-06-16

Kevin Traini (ktraini)

2026-06-16 12:05

See gerrit #38089

Status changed from Under implementation to Under review

Public

Referenced by request #47680

Artifact

Other

Follow-ups