Skip to content

Update npm dependencies and fix vulnerabilities#33

Open
AnHeuermann wants to merge 4 commits intoOpenModelica:mainfrom
AnHeuermann:update-npm
Open

Update npm dependencies and fix vulnerabilities#33
AnHeuermann wants to merge 4 commits intoOpenModelica:mainfrom
AnHeuermann:update-npm

Conversation

@AnHeuermann
Copy link
Member

@AnHeuermann AnHeuermann commented Mar 11, 2026

Changes

  • Update all packages in root, client and server to latest versions
  • Broaden node engine constraint from "20" to ">=20"
  • Add npm overrides to fix transitive vulnerabilities:
    • diff >=8.0.3 (DoS in mocha dep)
    • serialize-javascript >=7.0.3 (RCE in mocha dep)
    • minimatch >=5.1.9 (vuln in vscode-languageclient dep)
    • brace-expansion >=2.0.2 (vuln in vscode-languageclient dep)

@AnHeuermann @claude
Update npm dependencies and fix vulnerabilities
a02f365 
- Update all packages in root, client and server to latest versions
- Broaden node engine constraint from "20" to ">=20"
- Add npm overrides to fix transitive vulnerabilities:
  - diff >=8.0.3 (DoS in mocha dep)
  - serialize-javascript >=7.0.3 (RCE in mocha dep)
  - minimatch >=5.1.9 (vuln in vscode-languageclient dep)
  - brace-expansion >=2.0.2 (vuln in vscode-languageclient dep)

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
@AnHeuermann AnHeuermann self-assigned this Mar 11, 2026
@AnHeuermann AnHeuermann enabled auto-merge (squash) March 11, 2026 11:53
AnHeuermann and others added 3 commits March 11, 2026 12:59
@AnHeuermann @claude
Fix CI build failures and update web-tree-sitter to v0.26
325505a 
- Add missing @nodelib/fs.walk dependency to server/package.json
- Update WASM source path in esbuild.config.js (renamed to
  web-tree-sitter.wasm in v0.26)
- Update parser.ts for new web-tree-sitter v0.26 API:
  use named imports and Language.load() instead of Parser.Language.load()

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
@AnHeuermann @claude
Fix TS errors from web-tree-sitter v0.26 API changes
ec84240 
- Use named import { Parser } instead of default import across all
  server source files
- Use named import { Language } in parser.ts
- Replace Parser.Language.load() with Language.load()
- Add non-null assertion on parser.parse() which now returns Tree | null

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
@AnHeuermann @claude
Fix web-tree-sitter v0.26 type API changes
c19516d 
Parser sub-types (Tree, SyntaxNode, Point) are now top-level named
exports and SyntaxNode was renamed to Node. Edit() now requires a
constructor call instead of a plain object.

- Import Tree, Point, Edit, Node directly instead of via Parser namespace
- Replace Parser.SyntaxNode with Node across all server source files
- Add non-null assertions on parse() which now returns Tree | null
- Use new Edit({...}) constructor for tree.edit() calls

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@AnHeuermann AnHeuermann

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@AnHeuermann