From b9393dcdbe0d57cb64507199e66dbb15c3a24d7a Mon Sep 17 00:00:00 2001 From: OpenHands CVE Fix Bot Date: Thu, 19 Feb 2026 15:04:00 +0000 Subject: [PATCH] Fix CVE-2025-12758: Update validator to 13.15.22 Co-authored-by: openhands --- package-lock.json | 14 ++++++++------ package.json | 1 + 2 files changed, 9 insertions(+), 6 deletions(-) diff --git a/package-lock.json b/package-lock.json index e792a74..a64a9ae 100644 --- a/package-lock.json +++ b/package-lock.json @@ -20,6 +20,7 @@ "mysql": "^2.18.1", "swagger-jsdoc": "^6.1.0", "swagger-ui-express": "^4.2.0", + "validator": "^13.15.22", "winston": "^3.7.2" }, "devDependencies": { @@ -5536,9 +5537,10 @@ } }, "node_modules/validator": { - "version": "13.7.0", - "resolved": "https://registry.npmjs.org/validator/-/validator-13.7.0.tgz", - "integrity": "sha512-nYXQLCBkpJ8X6ltALua9dRrZDHVYxjJ1wgskNt1lH9fzGjs3tgojGSCBjmEPwkWS1y29+DrizMTW19Pr9uB2nw==", + "version": "13.15.26", + "resolved": "https://registry.npmjs.org/validator/-/validator-13.15.26.tgz", + "integrity": "sha512-spH26xU080ydGggxRyR1Yhcbgx+j3y5jbNXk/8L+iRvdIEQ4uTRH2Sgf2dokud6Q4oAtsbNvJ1Ft+9xmm6IZcA==", + "license": "MIT", "engines": { "node": ">= 0.10" } @@ -10084,9 +10086,9 @@ } }, "validator": { - "version": "13.7.0", - "resolved": "https://registry.npmjs.org/validator/-/validator-13.7.0.tgz", - "integrity": "sha512-nYXQLCBkpJ8X6ltALua9dRrZDHVYxjJ1wgskNt1lH9fzGjs3tgojGSCBjmEPwkWS1y29+DrizMTW19Pr9uB2nw==" + "version": "13.15.26", + "resolved": "https://registry.npmjs.org/validator/-/validator-13.15.26.tgz", + "integrity": "sha512-spH26xU080ydGggxRyR1Yhcbgx+j3y5jbNXk/8L+iRvdIEQ4uTRH2Sgf2dokud6Q4oAtsbNvJ1Ft+9xmm6IZcA==" }, "vary": { "version": "1.1.2", diff --git a/package.json b/package.json index a95f768..383025b 100644 --- a/package.json +++ b/package.json @@ -29,6 +29,7 @@ "mysql": "^2.18.1", "swagger-jsdoc": "^6.1.0", "swagger-ui-express": "^4.2.0", + "validator": "^13.15.22", "winston": "^3.7.2" }, "devDependencies": {