Update package-lock.json using `npm audit fix` as security update by PeterDaveHello · Pull Request #981 · ChatGPTBox-dev/chatGPTBox

PeterDaveHello · 2026-06-16T16:37:13Z

Dependency vulnerability change summary:

From 12 vulnerabilities (5 low, 2 moderate, 5 high) to 8 vulnerabilities (4 low, 1 moderate, 3 high)

The remaining advisories require npm audit fix --force, which may apply breaking changes to dependencies.

Dependency vulnerability change summary: From 12 vulnerabilities (5 low, 2 moderate, 5 high) to 8 vulnerabilities (4 low, 1 moderate, 3 high) The remaining advisories require `npm audit fix --force`, which may apply breaking changes to dependencies.

qodo-code-review · 2026-06-16T16:37:21Z

Code Review by Qodo

No Changes in PR

Qodo reviewed your PR and found no changes in the code

coderabbitai · 2026-06-16T16:37:23Z

Important

Review skipped

Review was skipped due to path filters

⛔ Files ignored due to path filters (1)

package-lock.json is excluded by !**/package-lock.json

CodeRabbit blocks several paths by default. You can override this behavior by explicitly including those paths in the path filters. For example, including **/dist/** will override the default block on the dist directory, by removing the pattern from both the lists.

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: ffeaa190-2a25-4339-8d53-1ee37bcb7923

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Use the checkbox below for a quick retry:

🔍 Trigger review

✨ Finishing Touches

🧪 Generate unit tests (beta)

Create PR with unit tests

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

gemini-code-assist

Code Review

This pull request updates package-lock.json to upgrade several dependencies, including various @babel packages to version 7.29.7, esbuild and its platform-specific packages to 0.25.12, esbuild-loader to 4.5.0 (with its internal esbuild upgraded to 0.28.1), browserify-sign to 4.2.6, js-yaml to 4.2.0, and ws to 7.5.11. It also replaces @ampproject/remapping with @jridgewell/remapping and removes source-list-map. No review comments were provided, and I have no additional feedback to offer.

Important

The consumer version of Gemini Code Assist on GitHub is being sunset. Starting June 18, 2026, new organization installations will be blocked, and all code review activity will officially cease on July 17, 2026.
For more details on the timeline and next steps, please review the Help Documentation.

gemini-code-assist Bot reviewed Jun 16, 2026

View reviewed changes

PeterDaveHello merged commit f98101b into ChatGPTBox-dev:master Jun 16, 2026
3 checks passed

PeterDaveHello deleted the npm-audit-fix-update-lockfile branch June 16, 2026 17:45

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Update package-lock.json using `npm audit fix` as security update#981

Update package-lock.json using `npm audit fix` as security update#981
PeterDaveHello merged 1 commit into
ChatGPTBox-dev:masterfrom
PeterDaveHello:npm-audit-fix-update-lockfile

PeterDaveHello commented Jun 16, 2026

Uh oh!

qodo-code-review Bot commented Jun 16, 2026

Uh oh!

coderabbitai Bot commented Jun 16, 2026

Review skipped

Uh oh!

gemini-code-assist Bot left a comment

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Conversation

PeterDaveHello commented Jun 16, 2026

Uh oh!

qodo-code-review Bot commented Jun 16, 2026

Code Review by Qodo

No Changes in PR

Uh oh!

coderabbitai Bot commented Jun 16, 2026

Review skipped

Uh oh!

gemini-code-assist Bot left a comment

Choose a reason for hiding this comment

Code Review

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant