fix(rsc): upgrade jsondiffpatch to 0.7.3 (#10088)

jltimm · web-flow · commit fda12faf9580 · 2025-11-09T16:00:34.000-08:00
## Background Versions of jsondiffpatch below 0.7.2 are vulnerable to [CVE-2025-9910](https://www.cve.org/CVERecord?id=CVE-2025-9910). ## Summary Bumped jsondiffpatch from 0.6.0 to 0.7.3.
diff --git a/.changeset/wise-jeans-lay.md b/.changeset/wise-jeans-lay.md
@@ -0,0 +1,5 @@
+---
+'@ai-sdk/rsc': patch
+---
+
+chore(rsc): upgrade jsondiffpatch to 0.7.3
diff --git a/packages/rsc/package.json b/packages/rsc/package.json
@@ -42,7 +42,7 @@
     "ai": "workspace:*",
     "@ai-sdk/provider": "workspace:*",
     "@ai-sdk/provider-utils": "workspace:*",
-    "jsondiffpatch": "0.6.0"
+    "jsondiffpatch": "0.7.3"
   },
   "devDependencies": {
     "@testing-library/jest-dom": "^6.6.3",
diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml

-Original file line number
+Diff line change
@@ @@ -0,0 +1,5 @@ @@
 +---
 +'@ai-sdk/rsc': patch
 +---
++
 +chore(rsc): upgrade jsondiffpatch to 0.7.3