Fix yarn audit findings

TucksonDev · TucksonDev · commit cf0c8ee8b70d · 2025-11-12T12:25:00.000Z
diff --git a/audit-ci.jsonc b/audit-ci.jsonc
@@ -41,6 +41,8 @@
         // form-data uses unsafe random function in form-data for choosing boundary (Critical)
         "GHSA-fjxv-7rqg-78g4",
         // tmp allows arbitrary temporary file / directory write via symbolic link `dir` parameter
-        "GHSA-52f5-9888-hmc6"
+        "GHSA-52f5-9888-hmc6",
+        // web3-core-subscriptions has a Prototype Pollution vulnerability
+        "GHSA-hhf6-3xpg-pggx"
     ]
   }
diff --git a/yarn.lock b/yarn.lock
@@ -4025,9 +4025,9 @@ mimic-response@^3.1.0:
   integrity sha512-z0yWI+4FDrrweS8Zmt4Ej5HdJmky15+L2e6Wgn3+iK5fWzb6T3fhNFq2+MeTRb064c6Wr4N/wv0DzQTjNzHNGQ==
 
 min-document@^2.19.0:
-  version "2.19.0"
-  resolved "https://registry.yarnpkg.com/min-document/-/min-document-2.19.0.tgz#7bd282e3f5842ed295bb748cdd9f1ffa2c824685"
-  integrity sha512-9Wy1B3m3f66bPPmU5hdA4DR4PB2OfDU/+GS3yAB7IQozE3tqXaVv2zOjgla7MEGSRv95+ILmOuvhLkOK6wJtCQ==
+  version "2.19.1"
+  resolved "https://registry.yarnpkg.com/min-document/-/min-document-2.19.1.tgz#7083ad4bc8879a6eba6516688e9f5d91d32e2d23"
+  integrity sha512-8lqe85PkqQJzIcs2iD7xW/WSxcncC3/DPVbTOafKNJDIMXwGfwXS350mH4SJslomntN2iYtFBuC0yNO3CEap6g==
   dependencies:
     dom-walk "^0.1.0"
 

Original file line number	Diff line number	Diff line change
`@@ -41,6 +41,8 @@`
`41`	`41`	`// form-data uses unsafe random function in form-data for choosing boundary (Critical)`
`42`	`42`	`"GHSA-fjxv-7rqg-78g4",`
`43`	`43`	// tmp allows arbitrary temporary file / directory write via symbolic link `dir` parameter
`44`		`- "GHSA-52f5-9888-hmc6"`
	`44`	`+ "GHSA-52f5-9888-hmc6",`
	`45`	`+ // web3-core-subscriptions has a Prototype Pollution vulnerability`
	`46`	`+ "GHSA-hhf6-3xpg-pggx"`
`45`	`47`	`]`
`46`	`48`	`}`