From 35343c18df739697133f46adb6c395a77307b7a9 Mon Sep 17 00:00:00 2001
From: Avi Vahl <avi@dazl.dev>
Date: Mon, 4 May 2026 11:09:56 +0300
Subject: [PATCH] fix: bump @fastify/static to 9.1.3 - upgrade to latest
 release to fix vulnerability - changed semver request to use a caret

---
 package-lock.json | 8 ++++----
 package.json      | 2 +-
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index bba2d714170..915f24965db 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -10,7 +10,7 @@
       "hasInstallScript": true,
       "license": "MIT",
       "dependencies": {
-        "@fastify/static": "9.1.1",
+        "@fastify/static": "^9.1.3",
         "@netlify/ai": "0.4.1",
         "@netlify/api": "14.0.18",
         "@netlify/blobs": "10.7.0",
@@ -1491,9 +1491,9 @@
       }
     },
     "node_modules/@fastify/static": {
-      "version": "9.1.1",
-      "resolved": "https://registry.npmjs.org/@fastify/static/-/static-9.1.1.tgz",
-      "integrity": "sha512-LHxFea3qdwe0Pbbkh/yux7/k6nFNLGTNcbLKVYgmRDB6LdDE/8TFSO7qWZ0IzM/nF6iwR8W03oFlwe4v79R1Ow==",
+      "version": "9.1.3",
+      "resolved": "https://registry.npmjs.org/@fastify/static/-/static-9.1.3.tgz",
+      "integrity": "sha512-aXrYtsiryLhRxRNaxNqsn7FUISeb7rB9q4eHUPIot5aeQBLNahnz1m6thzm7JWC1poSGXS9XrX8DvuMivp2hkQ==",
       "funding": [
         {
           "type": "github",
diff --git a/package.json b/package.json
index 505e5624696..445a541b38a 100644
--- a/package.json
+++ b/package.json
@@ -55,7 +55,7 @@
     "typecheck:watch": "tsc --watch"
   },
   "dependencies": {
-    "@fastify/static": "9.1.1",
+    "@fastify/static": "^9.1.3",
     "@netlify/ai": "0.4.1",
     "@netlify/api": "14.0.18",
     "@netlify/blobs": "10.7.0",