safe-wallet-web
safe-wallet-web copied to clipboard
safe-global
[Snyk] Upgrade msw from 2.7.3 to 2.11.5
Snyk has created this PR to upgrade msw from 2.7.3 to 2.11.5.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
-
The recommended version is 24 versions ahead of your current version.
-
The recommended version was released 23 days ago.
[!IMPORTANT]
- Check the changes in this PR to ensure they won't cause issues with your project.
- This PR was automatically created by Snyk using the credentials of a real user.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information:
[!NOTE] Upgrade msw dependency from 2.7.3 to 2.11.5.
Written by Cursor Bugbot for commit 6e667603a53aa9ca5ad9ecfb3a90375d45f3b880. This will update automatically on new commits. Configure here.
![github-actions[bot] avatar](https://avatars.githubusercontent.com/in/15368?v=4 "Published by a pub.dev verified publisher"){kind=small}
💡 Codex Review
https://github.com/safe-global/safe-wallet-monorepo/blob/6e667603a53aa9ca5ad9ecfb3a90375d45f3b880/yarn.lock#L1-L20
This change rewrites yarn.lock from ~37k lines to ~960 lines (the header now shows __metadata.version: 6) and removes entries for most workspace dependencies—there is no lock entry for core packages like react at all. As a result, yarn install will either fail or resolve arbitrary latest versions, eliminating deterministic installs for the entire monorepo. The upgrade should only adjust the msw resolution; please regenerate the lock with the repository’s Yarn configuration so that unrelated dependency pins are preserved.
ℹ️ About Codex in GitHub
Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you
- Open a pull request for review
- Mark a draft as ready
- Comment "@codex review".
If Codex has suggestions, it will comment; otherwise it will react with 👍.
Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".
![chatgpt-codex-connector[bot] avatar](https://avatars.githubusercontent.com/in/1144995?v=4 "Published by a pub.dev verified publisher"){kind=small}
Review the following changes in direct dependencies. Learn more about Socket for GitHub.
| Diff | Package | Supply Chain Security |
Vulnerability | Quality | Maintenance | License |
|---|---|---|---|---|---|---|
 | msw@2.7.3 ⏵ 2.11.6 |  +1 |  | | -1 | |
![socket-security[bot] avatar](https://avatars.githubusercontent.com/in/156372?v=4 "Published by a pub.dev verified publisher"){kind=small}
