From 9b2d22a5e842cc34b8ed5fe5b9a66530669bc8d0 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 13 Feb 2026 12:10:52 +0000 Subject: [PATCH 1/4] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-QS-15268416 --- package-lock.json | 9 +++++---- package.json | 2 +- 2 files changed, 6 insertions(+), 5 deletions(-) diff --git a/package-lock.json b/package-lock.json index 2ffd3303c..797460c73 100644 --- a/package-lock.json +++ b/package-lock.json @@ -12,7 +12,7 @@ "@contentstack/cli-utilities": "^1.14.4", "express-validator": "^7.3.1", "js-yaml": "^4.1.1", - "qs": "^6.14.1", + "qs": "^6.14.2", "tmp": "^0.2.5", "validator": "^13.15.26" }, @@ -3488,9 +3488,10 @@ "integrity": "sha512-D+zkORCbA9f1tdWRK0RaCR3GPv50cMxcrz4X8k5LTSUD1Dkw47mKJEZQNunItRTkWwgtaUSo1RVFRIG9ZXiFYg==" }, "node_modules/qs": { - "version": "6.14.1", - "resolved": "https://registry.npmjs.org/qs/-/qs-6.14.1.tgz", - "integrity": "sha512-4EK3+xJl8Ts67nLYNwqw/dsFVnCf+qR7RgXSK9jEEm9unao3njwMDdmsdvoKBKHzxd7tCYz5e5M+SnMjdtXGQQ==", + "version": "6.14.2", + "resolved": "https://registry.npmjs.org/qs/-/qs-6.14.2.tgz", + "integrity": "sha512-V/yCWTTF7VJ9hIh18Ugr2zhJMP01MY7c5kh4J870L7imm6/DIzBsNLTXzMwUA3yZ5b/KBqLx8Kp3uRvd7xSe3Q==", + "license": "BSD-3-Clause", "dependencies": { "side-channel": "^1.1.0" }, diff --git a/package.json b/package.json index 4dc3fe240..3d82466ec 100644 --- a/package.json +++ b/package.json @@ -51,7 +51,7 @@ "@contentstack/cli-utilities": "^1.14.4", "express-validator": "^7.3.1", "js-yaml": "^4.1.1", - "qs": "^6.14.1", + "qs": "^6.14.2", "tmp": "^0.2.5", "validator": "^13.15.26" } From eec75e9aacf90529c4357d8b7dc0badd08929ea2 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sat, 14 Feb 2026 15:12:16 +0000 Subject: [PATCH 2/4] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-QS-15268416 From 317072212386c63606fad7cbb19e31f1c55a4143 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sun, 15 Feb 2026 16:00:15 +0000 Subject: [PATCH 3/4] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-QS-15268416 From 83dfcd8afa4fd0d9e20f9d6c9be765f4a28bc3cf Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 17 Feb 2026 10:41:22 +0000 Subject: [PATCH 4/4] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-QS-15268416