Skip to content

[Snyk] Security upgrade gts from 6.0.2 to 7.0.0#844

Open
snyk-io[bot] wants to merge 43 commits into
mainfrom
snyk-fix-3b051dd61c8aa108d1949dbcad350c5f
Open

[Snyk] Security upgrade gts from 6.0.2 to 7.0.0#844
snyk-io[bot] wants to merge 43 commits into
mainfrom
snyk-fix-3b051dd61c8aa108d1949dbcad350c5f

Conversation

@snyk-io
Copy link
Copy Markdown

@snyk-io snyk-io Bot commented Feb 2, 2026

snyk-top-banner

Snyk has created this PR to fix 1 vulnerabilities in the npm dependencies of this project.

Snyk changed the following file(s):

  • packages/google-cloud-bigquery-dataexchange/package.json

Vulnerabilities that will be fixed with an upgrade:

Issue Score
medium severity Uncontrolled Recursion
SNYK-JS-ESLINT-15102420		   45  

Important

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • Max score is 1000. Note that the real score may have changed since the PR was raised.
  • This PR was automatically created by Snyk using the credentials of a real user.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.

Dargon789 and others added 30 commits June 9, 2025 03:27
@Dargon789
Add .circleci/config.yml
9f387e3
@Dargon789
Merge branch 'main' into circleci-project-setup
a4e38c6
@Dargon789
Merge branch 'googleapis:main' into circleci-project-setup
1d3fdda
@Dargon789
Merge branch 'main' into circleci-project-setup
6a67f0f
@Dargon789
Create google.yml (#1)
dca4dca 
Signed-off-by: AU_gdev_19 <64915515+Dargon789@users.noreply.github.com>
@Dargon789
Merge pull request #2 from Dargon789/circleci-project-setup
a547187 
Circleci project setup
@Dargon789
Merge branch 'googleapis:main' into main
5f35bf4
@Dargon789
Update config.yml (#3)
b2c33d1 
Signed-off-by: AU_gdev_19 <64915515+Dargon789@users.noreply.github.com>
@Dargon789
Merge branch 'googleapis:main' into main
cae191b
@Dargon789
Merge branch 'googleapis:main' into main
da6ab58
@Dargon789
Merge branch 'googleapis:main' into main
7dff2c1
@Dargon789
Merge branch 'googleapis:main' into main
7fa1c7f
@snyk-io @Dargon789
feat: upgrade c8 from 9.1.0 to 10.1.3
0837c22 
Snyk has created this PR to upgrade c8 from 9.1.0 to 10.1.3.

See this package in npm:
c8

See this project in Snyk:
https://app.snyk.io/org/dargon789/project/68a3328a-d2b6-4975-b7db-af96a29fc4ac?utm_source=github-cloud-app&utm_medium=referral&page=upgrade-pr
@snyk-io @Dargon789
feat: upgrade c8 from 9.1.0 to 10.1.3
b37e491 
Snyk has created this PR to upgrade c8 from 9.1.0 to 10.1.3.

See this package in npm:
c8

See this project in Snyk:
https://app.snyk.io/org/dargon789/project/e2757016-0d48-429d-8c99-bffba0039c3a?utm_source=github-cloud-app&utm_medium=referral&page=upgrade-pr
@Dargon789
Merge branch 'googleapis:main' into main
243de53
@Dargon789
Update google.yml (#11)
3c8b463 
Signed-off-by: AU_gdev_19 <64915515+Dargon789@users.noreply.github.com>
@snyk-io
fix: packages/google-cloud-dialogflow-cx/samples/package.json to redu…
1736015 
…ce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-JSYAML-13961110
@Dargon789
Merge branch 'googleapis:main' into main
6bab3de
@Dargon789 @sourcery-ai
Create build-attested-image.yml (#217)
f75fd03 
* Create build-attested-image.yml
CI:
Introduce a build-attested-image workflow that builds and pushes a Docker image to GitHub Container Registry and generates build provenance attestations.
Signed-off-by: Dargon789 <64915515+Dargon789@users.noreply.github.com>

* Update .github/workflows/build-attested-image.yml

Co-authored-by: sourcery-ai[bot] <58596630+sourcery-ai[bot]@users.noreply.github.com>
Signed-off-by: Dargon789 <64915515+Dargon789@users.noreply.github.com>

---------

Signed-off-by: Dargon789 <64915515+Dargon789@users.noreply.github.com>
Co-authored-by: sourcery-ai[bot] <58596630+sourcery-ai[bot]@users.noreply.github.com>
@snyk-io
fix: packages/google-shopping-merchant-products/samples/package.json …
68e0129 
…to reduce vulnerabilities (#214)

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-JSYAML-13961110

Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com>
@snyk-io
fix: packages/google-cloud-kms-inventory/samples/package.json to redu…
6a7b541 
…ce vulnerabilities (#213)

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-JSYAML-13961110

Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com>
@snyk-io
fix: packages/google-cloud-certificatemanager/samples/package.json to…
2670c82 
… reduce vulnerabilities (#212)

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-JSYAML-13961110

Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com>
@snyk-io
fix: packages/google-cloud-workstations/samples/package.json to reduc…
d828800 
…e vulnerabilities (#211)

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-JSYAML-13961110

Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com>
@dependabot @Dargon789
chore(deps): bump the npm_and_yarn group across 1 directory with 2 up…
587af2f 
…dates

Bumps the npm_and_yarn group with 2 updates in the / directory: [brace-expansion](https://github.com/juliangruber/brace-expansion) and [js-yaml](https://github.com/nodeca/js-yaml).


Updates `brace-expansion` from 1.1.11 to 1.1.12
- [Release notes](https://github.com/juliangruber/brace-expansion/releases)
- [Commits](juliangruber/brace-expansion@1.1.11...v1.1.12)

Updates `js-yaml` from 4.1.0 to 4.1.1
- [Changelog](https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md)
- [Commits](nodeca/js-yaml@4.1.0...4.1.1)

---
updated-dependencies:
- dependency-name: brace-expansion
  dependency-version: 1.1.12
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: js-yaml
  dependency-version: 4.1.1
  dependency-type: indirect
  dependency-group: npm_and_yarn
...

Signed-off-by: dependabot[bot] <support@github.com>
@snyk-io @Dargon789
fix: packages/google-cloud-iap/samples/package.json to reduce vulnera…
448eaff 
…bilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-JSYAML-13961110
@Dargon789
Create cargo.yml (#221)
ea678e9 
CI:
Introduce a CircleCI job that runs cargo fmt and cargo test using a Rust Docker image with caching for dependencies and build artifacts.
https://github.com/apps/gemini-code-assist
Highlights
New CircleCI Configuration: A new CircleCI configuration file, .circleci/cargo.yml, has been added to the repository.
Rust Build and Test Workflow: The new configuration defines a build-and-test job specifically for Rust projects, utilizing the cimg/rust:1.88.0 Docker image.
Automated Code Quality Checks: The workflow includes steps to automatically check code formatting using cargo fmt -- --check and run all tests with cargo test.
Dependency Caching: Caching mechanisms for Cargo dependencies are implemented to speed up subsequent CI runs by restoring and saving ~/.cargo and target directories.
Signed-off-by: Dargon789 <64915515+Dargon789@users.noreply.github.com>
@Dargon789
Create ci-foundry.yml (#224)
0f8bcfc 
CI:
Introduce a CircleCI 2.1 configuration file defining a custom Docker executor and a minimal workflow that checks out the repository and runs a placeholder command.
Signed-off-by: Dargon789 <64915515+Dargon789@users.noreply.github.com>
@snyk-io
fix: packages/google-cloud-dataform/samples/package.json to reduce vu…
affd9f0 
…lnerabilities (#209)

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-JSYAML-13961110

Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com>
@snyk-io
fix: packages/google-devtools-cloudbuild/samples/package.json to redu…
f7f6d58 
…ce vulnerabilities (#208)

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-JSYAML-13961110

Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com>
@Dargon789
Create jekyll-gh-pages.yml (#230)
f5313e4 
CI:
Introduce a GitHub Actions workflow that builds the Jekyll site and deploys it to GitHub Pages using preinstalled dependencies.
Signed-off-by: Dargon789 <64915515+Dargon789@users.noreply.github.com>
Dargon789 and others added 13 commits December 10, 2025 22:50
@Dargon789
Update config.yml (#232)
0252061 
CI:
Simplify CircleCI configuration to a single Docker job that checks out the repo and echoes a greeting, orchestrated by a basic workflow.
Signed-off-by: Dargon789 <64915515+Dargon789@users.noreply.github.com>
@snyk-io
fix: packages/google-cloud-workflows-executions/samples/package.json …
bbd9125 
…to reduce vulnerabilities (#207)

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-JSYAML-13961110

Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com>
@snyk-io
fix: packages/google-shopping-merchant-promotions/samples/package.jso…
5de7bf7 
…n to reduce vulnerabilities (#206)

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-JSYAML-13961110

Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com>
@snyk-io
fix: packages/google-shopping-merchant-reviews/samples/package.json t…
634a84d 
…o reduce vulnerabilities (#205)

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-JSYAML-13961110

Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com>
@snyk-io
fix: packages/google-cloud-filestore/samples/package.json to reduce v…
4686bfb 
…ulnerabilities (#203)

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-JSYAML-13961110

Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com>
@snyk-io
fix: packages/google-shopping-merchant-datasources/samples/package.js…
cfe53c2 
…on to reduce vulnerabilities (#228)

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-MOCHA-2863123
- https://snyk.io/vuln/SNYK-JS-INFLIGHT-6095116
- https://snyk.io/vuln/SNYK-JS-SERIALIZEJAVASCRIPT-6147607
- https://snyk.io/vuln/SNYK-JS-NANOID-2332193
- https://snyk.io/vuln/SNYK-JS-JSYAML-13961110
- https://snyk.io/vuln/SNYK-JS-MINIMATCH-3050818
- https://snyk.io/vuln/SNYK-JS-NANOID-8492085

Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com>
@snyk-io
fix: packages/google-cloud-asset/samples/package.json to reduce vulne…
8d3448a 
…rabilities (#36)

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-JSYAML-13961110

Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com>
@snyk-io
fix: packages/google-cloud-apihub/samples/package.json to reduce vuln…
e46b556 
…erabilities (#227)

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-MOCHA-2863123
- https://snyk.io/vuln/SNYK-JS-INFLIGHT-6095116
- https://snyk.io/vuln/SNYK-JS-SERIALIZEJAVASCRIPT-6147607
- https://snyk.io/vuln/SNYK-JS-NANOID-2332193
- https://snyk.io/vuln/SNYK-JS-JSYAML-13961110
- https://snyk.io/vuln/SNYK-JS-MINIMATCH-3050818
- https://snyk.io/vuln/SNYK-JS-NANOID-8492085

Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com>
@snyk-io
fix: packages/google-cloud-devicestreaming/samples/package.json to re…
0ba47f7 
…duce vulnerabilities (#204)

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-JSYAML-13961110

Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com>
@snyk-io
fix: packages/google-cloud-chronicle/samples/package.json to reduce v…
2c494ae 
…ulnerabilities (#202)

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-JSYAML-13961110

Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com>
@Dargon789
Merge pull request #201 from Dargon789/snyk-fix-74f57962911666ad8e8b4…
97fabeb 
…ac96d72ad60

[Snyk] Security upgrade mocha from 8.4.0 to 10.6.0
@snyk-io
fix: packages/google-cloud-osconfig/samples/package.json to reduce vu…
1d9a57c 
…lnerabilities (#200)

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-JSYAML-13961110

Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com>
@snyk-io
fix: packages/google-cloud-bigquery-dataexchange/package.json to redu…
cf95bf7 
…ce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-ESLINT-15102420
@snyk-io
Copy link
Copy Markdown
Author

snyk-io Bot commented Feb 2, 2026

Snyk checks have passed. No issues have been found so far.

Status Scanner Critical High Medium Low Total (0)
Open Source Security 0 0 0 0 0 issues

💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse.

@Dargon789 Dargon789 force-pushed the main branch 2 times, most recently from 4ab95d8 to 90f4395 Compare April 14, 2026 09:39
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@Dargon789