HARMONY-2253: Address audit failure.

[chris-durbin]

Jira Issue ID

HARMONY-2253

Description

Address audit failure.

Local Test Steps

npm run better-audit

PR Acceptance Checklist

• Acceptance criteria met
• Tests added/updated (if needed) and passing
• Documentation updated (if needed)
• Harmony in a Box tested (if changes made to microservices or new dependencies added)

Summary by CodeRabbit

• Chores
  • Updated XML parsing dependency to version 5.3.4 across multiple internal services.

[coderabbitai]

📝 Walkthrough

Walkthrough

This PR updates the fast-xml-parser dependency version from 4.4.1 to 5.3.4 in the package override sections across seven service packages, with no changes to logic, control flow, or exported declarations.

Changes

Cohort / File(s)	Summary
Fast-xml-parser Dependency Upgrade services/cron-service/package.json, services/harmony/package.json, services/query-cmr/package.json, services/service-runner/package.json, services/work-failer/package.json, services/work-scheduler/package.json, services/work-updater/package.json	Upgraded fast-xml-parser from version 4.4.1 to 5.3.4 in the overrides section of each service's package.json file.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~3 minutes

Suggested labels

hacktoberfest-accepted

Suggested reviewers

• indiejames
• flamingbear
• ygliuvt

Poem

🐰 A parser's leap from four to five,
Through services it comes alive,
XML handled with better grace,
Version bumps in every place! ✨

🚥 Pre-merge checks | ✅ 3

✅ Passed checks (3 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title references HARMONY-2253 and mentions addressing an audit failure, which aligns with the main change of updating fast-xml-parser dependencies across multiple services.
Description check	✅ Passed	The description includes the Jira issue ID, a brief description, local test steps, and the PR acceptance checklist matching the required template structure.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch harmony-2253

Important

Action Needed: IP Allowlist Update

If your organization protects your Git platform with IP whitelisting, please add the new CodeRabbit IP address to your allowlist:

• ✨ 136.113.208.247/32 (new)
• 34.170.211.100/32
• 35.222.179.152/32

Failure to add the new IP will result in interrupted reviews.

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[flamingbear]

Looks good, passes locally also.