fix(deps): vuln minor upgrades — 13 packages (minor: 7 · patch: 6) [src/order-mcp]

[gh-worker-campaigns-3e9aa4]

Summary: Critical-severity security update — 15 packages upgraded (MINOR changes included)

Manifests changed:

• src/order-mcp (npm)

---

✅ Action Required: Please review the changes below. If they look good, approve and merge this PR.

---

Updates

Package	From	To	Type	Dep Type	Vulnerabilities Fixed
handlebars	4.7.8	4.7.9	patch	Transitive	2 CRITICAL, 8 HIGH, 3 MEDIUM, 1 LOW
fast-xml-parser	4.4.1	4.5.6	minor	Transitive	2 CRITICAL, 4 HIGH, 3 MEDIUM, 2 LOW
simple-git	3.16.0	3.36.0	minor	Transitive	2 CRITICAL, 2 HIGH
minimatch	3.1.2	3.1.5	patch	Transitive	6 HIGH
basic-ftp	5.2.0	5.3.1	minor	Transitive	4 HIGH
picomatch	2.3.1	2.3.2	patch	Transitive	2 HIGH, 2 MEDIUM
effect	3.12.11	3.21.3	minor	Transitive	2 HIGH
fast-uri	3.0.6	3.1.2	minor	Transitive	2 HIGH
jsonpath-plus	10.2.0	10.4.0	minor	Transitive	2 HIGH
fast-uri	3.1.0	3.1.2	patch	Transitive	2 HIGH
lodash	4.17.21	4.18.1	minor	Transitive	1 HIGH, 3 MEDIUM
path-to-regexp	8.3.0	8.4.2	minor	Transitive	1 HIGH, 1 MEDIUM
hono	4.12.5	4.12.25	patch	Transitive	15 MEDIUM, 1 LOW
hono	4.12.5	4.12.25	patch	Transitive	15 MEDIUM, 1 LOW
yaml	1.10.2	1.10.3	patch	Transitive	2 MEDIUM

---

Security Details

🚨 Critical & High Severity (42 fixed)

Package	CVE	Severity	Summary	Unsafe Version	Fixed In
fast-xml-parser	GHSA-m7jm-9gc2-mpf2	CRITICAL	fast-xml-parser has an entity encoding bypass via regex injection in DOCTYPE entity names	4.4.1	5.3.5
fast-xml-parser	CVE-2026-25896	CRITICAL	fast-xml-parser has an entity encoding bypass via regex injection in DOCTYPE entity names	4.4.1	-
handlebars	GHSA-2w6w-674q-4c4q	CRITICAL	Handlebars.js has JavaScript Injection via AST Type Confusion	4.7.8	4.7.9
handlebars	CVE-2026-33937	CRITICAL	Handlebars.js has JavaScript Injection via AST Type Confusion	4.7.8	-
simple-git	CVE-2026-28292	CRITICAL	simple-git has blockUnsafeOperationsPlugin bypass via case-insensitive protocol.allow config key enables RCE	3.16.0	-
simple-git	GHSA-r275-fr43-pm7q	CRITICAL	simple-git has blockUnsafeOperationsPlugin bypass via case-insensitive protocol.allow config key enables RCE	3.16.0	3.32.3
basic-ftp	GHSA-chqc-8p9q-pq6q	HIGH	basic-ftp has FTP Command Injection via CRLF	5.2.0	5.2.1
basic-ftp	GHSA-6v7q-wjvx-w8wg	HIGH	basic-ftp: Incomplete CRLF Injection Protection Allows Arbitrary FTP Command Execution via Credentials and MKD Commands	5.2.0	5.2.2
basic-ftp	GHSA-rpmf-866q-6p89	HIGH	basic-ftp allows a malicious FTP server to cause client-side denial of service via unbounded multiline control response buffering	5.2.0	5.3.1
basic-ftp	GHSA-rp42-5vxx-qpwr	HIGH	basic-ftp vulnerable to denial of service via unbounded memory consumption in Client.list()	5.2.0	5.3.0
effect	GHSA-38f7-945m-qr2g	HIGH	Effect AsyncLocalStorage context lost/contaminated inside Effect fibers under concurrent load with RPC	3.12.11	3.20.0
effect	CVE-2026-32887	HIGH	Effect Bug: AsyncLocalStorage context lost/contaminated inside Effect fibers under concurrent load with RPC	3.12.11	-
fast-uri	GHSA-v39h-62p7-jpjc	HIGH	fast-uri vulnerable to host confusion via percent-encoded authority delimiters	3.0.6	3.1.2
fast-uri	GHSA-q3j6-qgpj-74h6	HIGH	fast-uri vulnerable to path traversal via percent-encoded dot segments	3.0.6	3.1.1
fast-uri	GHSA-v39h-62p7-jpjc	HIGH	fast-uri vulnerable to host confusion via percent-encoded authority delimiters	3.1.0	3.1.2
fast-uri	GHSA-q3j6-qgpj-74h6	HIGH	fast-uri vulnerable to path traversal via percent-encoded dot segments	3.1.0	3.1.1
fast-xml-parser	CVE-2026-33036	HIGH	fast-xml-parser affected by numeric entity expansion bypassing all entity expansion limits (incomplete fix for CVE-2026-26278)	4.4.1	-
fast-xml-parser	GHSA-jmr7-xgp7-cmfj	HIGH	fast-xml-parser affected by DoS through entity expansion in DOCTYPE (no expansion limit)	4.4.1	4.5.4
fast-xml-parser	CVE-2026-26278	HIGH	fast-xml-parser affected by DoS through entity expansion in DOCTYPE (no expansion limit)	4.4.1	-
fast-xml-parser	GHSA-8gc5-j5rx-235r	HIGH	fast-xml-parser affected by numeric entity expansion bypassing all entity expansion limits (incomplete fix for CVE-2026-26278)	4.4.1	5.5.6
handlebars	GHSA-xjpj-3mr7-gcpf	HIGH	Handlebars.js has JavaScript Injection in CLI Precompiler via Unescaped Names and Options	4.7.8	4.7.9
handlebars	CVE-2026-33939	HIGH	Handlebars.js has Denial of Service via Malformed Decorator Syntax in Template Compilation	4.7.8	-
handlebars	GHSA-9cx6-37pm-9jff	HIGH	Handlebars.js has Denial of Service via Malformed Decorator Syntax in Template Compilation	4.7.8	4.7.9
handlebars	CVE-2026-33938	HIGH	Handlebars.js has JavaScript Injection via AST Type Confusion by tampering @partial-block	4.7.8	-
handlebars	GHSA-xhpv-hc6g-r9c6	HIGH	Handlebars.js has JavaScript Injection via AST Type Confusion when passing an object as dynamic partial	4.7.8	4.7.9
handlebars	CVE-2026-33940	HIGH	Handlebars.js has JavaScript Injection via AST Type Confusion when passing an object as dynamic partial	4.7.8	-
handlebars	GHSA-3mfm-83xf-c92r	HIGH	Handlebars.js has JavaScript Injection via AST Type Confusion by tampering @partial-block	4.7.8	4.7.9
handlebars	CVE-2026-33941	HIGH	Handlebars.js has JavaScript Injection in CLI Precompiler via Unescaped Names and Options	4.7.8	-
jsonpath-plus	CVE-2025-1302	HIGH	-	10.2.0	-
jsonpath-plus	GHSA-hw8r-x6gr-5gjp	HIGH	JSONPath Plus allows Remote Code Execution	10.2.0	10.3.0
lodash	GHSA-r5fr-rjxr-66jc	HIGH	lodash vulnerable to Code Injection via _.template imports key names	4.17.21	4.18.0
minimatch	CVE-2026-26996	HIGH	minimatch has a ReDoS via repeated wildcards with non-matching literal in pattern	3.1.2	-
minimatch	CVE-2026-27904	HIGH	minimatch ReDoS: nested *() extglobs generate catastrophically backtracking regular expressions	3.1.2	-
minimatch	GHSA-7r86-cg39-jmmj	HIGH	minimatch has ReDoS: matchOne() combinatorial backtracking via multiple non-adjacent GLOBSTAR segments	3.1.2	10.2.3
minimatch	CVE-2026-27903	HIGH	minimatch has a ReDoS: matchOne() combinatorial backtracking via multiple non-adjacent GLOBSTAR segments	3.1.2	-
minimatch	GHSA-3ppc-4f35-3m26	HIGH	minimatch has a ReDoS via repeated wildcards with non-matching literal in pattern	3.1.2	10.2.1
minimatch	GHSA-23c5-xmqv-rm74	HIGH	minimatch ReDoS: nested *() extglobs generate catastrophically backtracking regular expressions	3.1.2	10.2.3
path-to-regexp	GHSA-j3q9-mxjg-w52f	HIGH	path-to-regexp vulnerable to Denial of Service via sequential optional groups	8.3.0	8.4.0
picomatch	CVE-2026-33671	HIGH	Picomatch has a ReDoS vulnerability via extglob quantifiers	2.3.1	-
picomatch	GHSA-c2c7-rcm5-vvqj	HIGH	Picomatch has a ReDoS vulnerability via extglob quantifiers	2.3.1	4.0.4
simple-git	GHSA-hffm-xvc3-vprc	HIGH	simple-git is vulnerable to Remote Code Execution	3.16.0	3.36.0
simple-git	GHSA-jcxm-m3jx-f287	HIGH	simple-git Affected by Command Execution via Option-Parsing Bypass	3.16.0	3.32.0

ℹ️ Other Vulnerabilities (49)

Package	CVE	Severity	Summary	Unsafe Version	Fixed In
fast-xml-parser	CVE-2026-33349	MODERATE	fast-xml-parser: Entity Expansion Limits Bypassed When Set to Zero Due to JavaScript Falsy Evaluation	4.4.1	-
fast-xml-parser	GHSA-jp2q-39xq-3w4g	MODERATE	Entity Expansion Limits Bypassed When Set to Zero Due to JavaScript Falsy Evaluation in fast-xml-parser	4.4.1	4.5.5
fast-xml-parser	GHSA-gh4j-gqv2-49f6	MODERATE	fast-xml-parser XMLBuilder: XML Comment and CDATA Injection via Unescaped Delimiters	4.4.1	5.7.0
handlebars	CVE-2026-33916	MODERATE	Handlebars.js has Prototype Pollution Leading to XSS through Partial Template Injection	4.7.8	-
handlebars	GHSA-2qvq-rjwj-gvw9	MODERATE	Handlebars.js has Prototype Pollution Leading to XSS through Partial Template Injection	4.7.8	4.7.9
handlebars	GHSA-7rx3-28cr-v5wh	MODERATE	Handlebars.js has a Prototype Method Access Control Gap via Missing lookupSetter Blocklist Entry	4.7.8	4.7.9
hono	GHSA-458j-xx4x-4375	MODERATE	hono Improperly Handles JSX Attribute Names Allows HTML Injection in hono/jsx SSR	4.12.5	4.12.14
hono	GHSA-69xw-7hcm-h432	MODERATE	hono/jsx has Unvalidated JSX Tag Names that May Allow HTML Injection	4.12.5	4.12.16
hono	GHSA-v8w9-8mx6-g223	MODERATE	Hono vulnerable to Prototype Pollution possible through proto key allowed in parseBody({ dot: true })	4.12.5	4.12.7
hono	GHSA-2gcr-mfcq-wcc3	MODERATE	Hono: app.mount() strips mount prefix using undecoded path, causing incorrect routing for percent-encoded paths	4.12.5	4.12.21
hono	GHSA-xpcf-pg52-r92g	MODERATE	Hono has incorrect IP matching in ipRestriction() for IPv4-mapped IPv6 addresses	4.12.5	4.12.12
hono	GHSA-xf4j-xp2r-rqqx	MODERATE	Hono: Path traversal in toSSG() allows writing files outside the output directory	4.12.5	4.12.12
hono	GHSA-26pp-8wgv-hjvm	MODERATE	Hono missing validation of cookie name on write path in setCookie()	4.12.5	4.12.12
hono	GHSA-qp7p-654g-cw7p	MODERATE	Hono has CSS Declaration Injection via Style Object Values in JSX SSR	4.12.5	4.12.18
hono	GHSA-f577-qrjj-4474	MODERATE	Hono: JWT middleware accepts any Authorization scheme, not only Bearer	4.12.5	4.12.21
hono	GHSA-xrhx-7g5j-rcj5	MODERATE	Hono: IP Restriction bypasses static deny rules for non-canonical IPv6	4.12.5	4.12.21
hono	GHSA-9vqf-7f2p-gf9v	MODERATE	Hono: bodyLimit() can be bypassed for chunked / unknown-length requests	4.12.5	4.12.16
hono	GHSA-p77w-8qqv-26rm	MODERATE	Hono's Cache Middleware ignores Vary: Authorization / Vary: Cookie leading to cross-user cache leakage	4.12.5	4.12.18
hono	GHSA-wmmm-f939-6g9c	MODERATE	Hono: Middleware bypass via repeated slashes in serveStatic	4.12.5	4.12.12
hono	GHSA-3hrh-pfw6-9m5x	MODERATE	Hono: Cookie helper does not sanitize sameSite and priority, allowing Set-Cookie injection	4.12.5	4.12.21
hono	GHSA-r5rp-j6wh-rvv4	MODERATE	Hono: Non-breaking space prefix bypass in cookie name handling in getCookie()	4.12.5	4.12.12
hono	GHSA-wmmm-f939-6g9c	MODERATE	Hono: Middleware bypass via repeated slashes in serveStatic	4.12.5	4.12.12
hono	GHSA-v8w9-8mx6-g223	MODERATE	Hono vulnerable to Prototype Pollution possible through proto key allowed in parseBody({ dot: true })	4.12.5	4.12.7
hono	GHSA-9vqf-7f2p-gf9v	MODERATE	Hono: bodyLimit() can be bypassed for chunked / unknown-length requests	4.12.5	4.12.16
hono	GHSA-xrhx-7g5j-rcj5	MODERATE	Hono: IP Restriction bypasses static deny rules for non-canonical IPv6	4.12.5	4.12.21
hono	GHSA-f577-qrjj-4474	MODERATE	Hono: JWT middleware accepts any Authorization scheme, not only Bearer	4.12.5	4.12.21
hono	GHSA-qp7p-654g-cw7p	MODERATE	Hono has CSS Declaration Injection via Style Object Values in JSX SSR	4.12.5	4.12.18
hono	GHSA-26pp-8wgv-hjvm	MODERATE	Hono missing validation of cookie name on write path in setCookie()	4.12.5	4.12.12
hono	GHSA-xf4j-xp2r-rqqx	MODERATE	Hono: Path traversal in toSSG() allows writing files outside the output directory	4.12.5	4.12.12
hono	GHSA-xpcf-pg52-r92g	MODERATE	Hono has incorrect IP matching in ipRestriction() for IPv4-mapped IPv6 addresses	4.12.5	4.12.12
hono	GHSA-2gcr-mfcq-wcc3	MODERATE	Hono: app.mount() strips mount prefix using undecoded path, causing incorrect routing for percent-encoded paths	4.12.5	4.12.21
hono	GHSA-p77w-8qqv-26rm	MODERATE	Hono's Cache Middleware ignores Vary: Authorization / Vary: Cookie leading to cross-user cache leakage	4.12.5	4.12.18
hono	GHSA-3hrh-pfw6-9m5x	MODERATE	Hono: Cookie helper does not sanitize sameSite and priority, allowing Set-Cookie injection	4.12.5	4.12.21
hono	GHSA-69xw-7hcm-h432	MODERATE	hono/jsx has Unvalidated JSX Tag Names that May Allow HTML Injection	4.12.5	4.12.16
hono	GHSA-458j-xx4x-4375	MODERATE	hono Improperly Handles JSX Attribute Names Allows HTML Injection in hono/jsx SSR	4.12.5	4.12.14
hono	GHSA-r5rp-j6wh-rvv4	MODERATE	Hono: Non-breaking space prefix bypass in cookie name handling in getCookie()	4.12.5	4.12.12
lodash	GHSA-xxjr-mmjv-4gpg	MODERATE	Lodash has Prototype Pollution Vulnerability in _.unset and _.omit functions	4.17.21	4.17.23
lodash	GHSA-f23m-r3pf-42rh	MODERATE	lodash vulnerable to Prototype Pollution via array path bypass in _.unset and _.omit	4.17.21	4.18.0
lodash	CVE-2025-13465	MODERATE	-	4.17.21	-
path-to-regexp	GHSA-27v5-c462-wpq7	MODERATE	path-to-regexp vulnerable to Regular Expression Denial of Service via multiple wildcards	8.3.0	8.4.0
picomatch	CVE-2026-33672	MODERATE	Picomatch: Method Injection in POSIX Character Classes causes incorrect Glob Matching	2.3.1	-
picomatch	GHSA-3v7f-55p6-f55p	MODERATE	Picomatch: Method Injection in POSIX Character Classes causes incorrect Glob Matching	2.3.1	4.0.4
yaml	CVE-2026-33532	MODERATE	yaml is vulnerable to Stack Overflow via deeply nested YAML collections	1.10.2	-
yaml	GHSA-48c2-rrv3-qjmp	MODERATE	yaml is vulnerable to Stack Overflow via deeply nested YAML collections	1.10.2	2.8.3
fast-xml-parser	GHSA-fj3w-jwp8-x2g3	LOW	fast-xml-parser has stack overflow in XMLBuilder with preserveOrder	4.4.1	5.3.8
fast-xml-parser	CVE-2026-27942	LOW	fast-xml-parser has stack overflow in XMLBuilder with preserveOrder	4.4.1	-
handlebars	GHSA-442j-39wm-28r2	LOW	Handlebars.js has a Property Access Validation Bypass in container.lookup	4.7.8	4.7.9
hono	GHSA-hm8q-7f3q-5f36	LOW	Hono has improper validation of NumericDate claims (exp, nbf, iat) in JWT verify()	4.12.5	4.12.18
hono	GHSA-hm8q-7f3q-5f36	LOW	Hono has improper validation of NumericDate claims (exp, nbf, iat) in JWT verify()	4.12.5	4.12.18

---

Review Checklist

Standard review:

• Review changes for compatibility with your code
• Check for breaking changes in release notes
• Run tests locally or wait for CI
• Approve and merge this PR

---

Update Mode: all_vulns

🤖 Generated by DataDog Automated Dependency Management System