Skip to content

"qs" updatef from "^6.12.3" to "^6.14.2"#77

Open
gustawdaniel wants to merge 2 commits intodefunctzombie:masterfrom
gustawdaniel:master
Open

"qs" updatef from "^6.12.3" to "^6.14.2"#77
gustawdaniel wants to merge 2 commits intodefunctzombie:masterfrom
gustawdaniel:master

Conversation

@gustawdaniel
Copy link

@gustawdaniel gustawdaniel commented Feb 12, 2026
edited
Loading

Latest non-vulnerable version: 6.14.2
npm

https://security.snyk.io/package/npm/qs

ljharb
ljharb requested changes Feb 13, 2026
View reviewed changes
Copy link
Collaborator

@ljharb ljharb left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

There's no need for this - the fixed versions are in-range. That's what semver ranges are for - just update your lockfiles.

package.json
"license": "MIT",
"engines": {
"node": ">= 0.4"
"node": ">= 0.6"
Copy link
Collaborator

@ljharb ljharb Feb 13, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

this would be a breaking change.

Copy link
Author

@gustawdaniel gustawdaniel Feb 13, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

unfortunately without this change I seen failing tests after mentioned update

Copy link
Collaborator

@ljharb ljharb Feb 14, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

which tests? probably best to push it up first and let them fail, so we can all see the issue.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@ljharb ljharb ljharb requested changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@gustawdaniel @ljharb