Skip to content

chore(deps): bump fast-uri from 3.1.0 to 3.1.2 in /docs #19

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
dependabot wants to merge 1 commit into
base: master
Choose a base branch
from

chore(deps): bump fast-uri from 3.1.0 to 3.1.2 in /docs

0ca05ce
Select commit
Loading
Failed to load commit list.
Open

chore(deps): bump fast-uri from 3.1.0 to 3.1.2 in /docs #19

chore(deps): bump fast-uri from 3.1.0 to 3.1.2 in /docs
0ca05ce
Select commit
Loading
Failed to load commit list.
Kusari Inspector / Kusari Inspector succeeded May 9, 2026 in 54s

Security Analysis Passed

No security issues found

Details

Kusari Inspector

Kusari Analysis Results:

Proceed with these changes

✅ No Flagged Issues Detected
All values appear to be within acceptable risk parameters.

Both analyses independently recommend proceeding. The dependency update from fast-uri 3.1.0 to 3.1.2 in docs/package-lock.json directly resolves two High severity vulnerabilities: CVE-2026-6321 (path traversal via percent-encoded dot segments) and CVE-2026-6322 (host confusion via percent-encoded authority delimiters), both carrying CVSS Integrity: High scores. The updated version (3.1.2) is the latest release, carries no known advisories, and uses a permissive BSD-3-Clause license. The code analysis found zero issues, zero exposed secrets, and zero workflow concerns. Merging this PR improves the overall security posture by eliminating two active high-severity vulnerabilities with no introduced risk.

Note

View full detailed analysis result for more information on the output and the checks that were run.

@kusari-inspector rerun - Trigger a re-analysis of this PR
@kusari-inspector feedback [your message] - Send feedback to our AI and team
See Kusari's documentation for setup and configuration.
Commit: 0ca05ce, performed at: 2026-05-09T07:32:53Z

View more details on Kusari Inspector