Skip to content

overrides on-headers dependency #38

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
jobenjada merged 1 commit into from
Oct 7, 2025
Merged

overrides on-headers dependency #38

jobenjada merged 1 commit into from
Oct 7, 2025

Conversation

@pandeymangg
Copy link
Contributor

@pandeymangg pandeymangg commented Oct 7, 2025

fix: overrides the on-headers dependency to resolve the dependabot warning:
https://github.com/formbricks/react-native/security/dependabot/6

@sonarqubecloud
Copy link

sonarqubecloud bot commented Oct 7, 2025

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

@coderabbitai
Copy link

coderabbitai bot commented Oct 7, 2025

Walkthrough

The root package.json adds a new top-level pnpm field with an overrides section. Within pnpm.overrides, the on-headers package is constrained to version ">=1.1.0". No other dependencies, engines, or existing fields are modified. Control flow or runtime code is not affected, as the change is limited to package manager configuration.

Pre-merge checks

✅ Passed checks (3 passed)
Check name Status Explanation
Title Check ✅ Passed The title succinctly describes the primary change of adding an override for the on-headers dependency, directly reflecting the main update in the changeset.
Description Check ✅ Passed The description clearly states that the pull request overrides the on-headers dependency to address a specific Dependabot security warning, directly matching the changeset’s intent.
Docstring Coverage ✅ Passed No functions found in the changes. Docstring coverage check skipped.

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

Comment @coderabbitai help to get the list of available commands and usage tips.

coderabbitai[bot]
coderabbitai bot reviewed Oct 7, 2025
View reviewed changes
Copy link

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 1

📜 Review details

Configuration used: CodeRabbit UI

Review profile: ASSERTIVE

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between e90cc08 and 1ec6086.

⛔ Files ignored due to path filters (1)
  • pnpm-lock.yaml is excluded by !**/pnpm-lock.yaml
📒 Files selected for processing (1)
  • package.json (1 hunks)

@pandeymangg pandeymangg requested a review from Dhruwang October 7, 2025 11:50
Dhruwang
Dhruwang approved these changes Oct 7, 2025
View reviewed changes
Copy link
Member

@Dhruwang Dhruwang left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good ✅

@jobenjada jobenjada added this pull request to the merge queue Oct 7, 2025
Merged via the queue into main with commit 42958bb Oct 7, 2025
9 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@coderabbitai coderabbitai[bot] coderabbitai[bot] left review comments

@Dhruwang Dhruwang Dhruwang approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@pandeymangg @Dhruwang @jobenjada