Skip to content

Commit e62a284

Browse files
heanlancursoragent
andauthored
Add minimum release age for npm deps, downgrade recent packages (#1262)
Add a 7-day minimumReleaseAge policy for all npm package updates in the Renovate configuration to reduce exposure to recent high-profile supply chain attacks on popular NPM packages. Downgrade the following packages in the lock file, as their latest versions were published less than 72 hours ago and do not yet meet the new policy requirement: - typescript-eslint: v8.61.0 -> v8.60.1 - @types/node: v24.13.2 -> v24.13.1 - @vitest/eslint-plugin: v1.6.20 -> v1.6.19 Signed-off-by: Anlan He <anlan.he@broadcom.com> Co-authored-by: Cursor <cursoragent@cursor.com>
1 parent d3ecf69 commit e62a284

2 files changed

Lines changed: 80 additions & 77 deletions

File tree

.github/renovate.json5

Lines changed: 3 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -30,6 +30,9 @@
3030
{
3131
matchManagers: ["npm"],
3232
addLabels: ["javascript"],
33+
// Require a 7-day stabilization period before updating npm packages,
34+
// to reduce exposure to recent high-profile supply chain attacks on popular NPM packages
35+
minimumReleaseAge: "7 days",
3336
},
3437

3538
// Automerge npm non-major updates

client/web/antrea-ui/yarn.lock

Lines changed: 77 additions & 77 deletions
Original file line numberDiff line numberDiff line change
@@ -1377,11 +1377,11 @@ __metadata:
13771377
linkType: hard
13781378

13791379
"@types/node@npm:24":
1380-
version: 24.13.2
1381-
resolution: "@types/node@npm:24.13.2"
1380+
version: 24.13.1
1381+
resolution: "@types/node@npm:24.13.1"
13821382
dependencies:
13831383
undici-types: "npm:~7.18.0"
1384-
checksum: 10c0/d7d48a88a4feb0a6aac3cbfaf9ef3b12752b4b09447f88dd0b4c77c03b281e3d4330fe6982a99aedcd63fc16c7540a0c248b91eb2abb0b3edd884d7fe684e9ea
1384+
checksum: 10c0/ef58425ed71c7fefa95f30d370eeb0390f24c9337d66fa6617b5a14b53e2e831aa6a13e95d978d9057237bf257062b8fa60f773380abed1607183fe7065bc26b
13851385
languageName: node
13861386
linkType: hard
13871387

@@ -1426,39 +1426,39 @@ __metadata:
14261426
languageName: node
14271427
linkType: hard
14281428

1429-
"@typescript-eslint/eslint-plugin@npm:8.61.0":
1430-
version: 8.61.0
1431-
resolution: "@typescript-eslint/eslint-plugin@npm:8.61.0"
1429+
"@typescript-eslint/eslint-plugin@npm:8.60.1":
1430+
version: 8.60.1
1431+
resolution: "@typescript-eslint/eslint-plugin@npm:8.60.1"
14321432
dependencies:
14331433
"@eslint-community/regexpp": "npm:^4.12.2"
1434-
"@typescript-eslint/scope-manager": "npm:8.61.0"
1435-
"@typescript-eslint/type-utils": "npm:8.61.0"
1436-
"@typescript-eslint/utils": "npm:8.61.0"
1437-
"@typescript-eslint/visitor-keys": "npm:8.61.0"
1434+
"@typescript-eslint/scope-manager": "npm:8.60.1"
1435+
"@typescript-eslint/type-utils": "npm:8.60.1"
1436+
"@typescript-eslint/utils": "npm:8.60.1"
1437+
"@typescript-eslint/visitor-keys": "npm:8.60.1"
14381438
ignore: "npm:^7.0.5"
14391439
natural-compare: "npm:^1.4.0"
14401440
ts-api-utils: "npm:^2.5.0"
14411441
peerDependencies:
1442-
"@typescript-eslint/parser": ^8.61.0
1442+
"@typescript-eslint/parser": ^8.60.1
14431443
eslint: ^8.57.0 || ^9.0.0 || ^10.0.0
14441444
typescript: ">=4.8.4 <6.1.0"
1445-
checksum: 10c0/1141253e18424a9a21d253dcf28e166894b6b914f2138b3e016144e451385f8e23f0f02028c7bd2d21c81953c52e478657aa9e5888cd0bdffdb8d68aab736878
1445+
checksum: 10c0/de9f9ab9801970c8c96f342b94661e993e8a66f90a36fc4501a7238585712900a2f1f5c7c805adb1214f98b478a072f0aa590e22dd4ed36231dcabde3f6c7b2f
14461446
languageName: node
14471447
linkType: hard
14481448

1449-
"@typescript-eslint/parser@npm:8.61.0":
1450-
version: 8.61.0
1451-
resolution: "@typescript-eslint/parser@npm:8.61.0"
1449+
"@typescript-eslint/parser@npm:8.60.1":
1450+
version: 8.60.1
1451+
resolution: "@typescript-eslint/parser@npm:8.60.1"
14521452
dependencies:
1453-
"@typescript-eslint/scope-manager": "npm:8.61.0"
1454-
"@typescript-eslint/types": "npm:8.61.0"
1455-
"@typescript-eslint/typescript-estree": "npm:8.61.0"
1456-
"@typescript-eslint/visitor-keys": "npm:8.61.0"
1453+
"@typescript-eslint/scope-manager": "npm:8.60.1"
1454+
"@typescript-eslint/types": "npm:8.60.1"
1455+
"@typescript-eslint/typescript-estree": "npm:8.60.1"
1456+
"@typescript-eslint/visitor-keys": "npm:8.60.1"
14571457
debug: "npm:^4.4.3"
14581458
peerDependencies:
14591459
eslint: ^8.57.0 || ^9.0.0 || ^10.0.0
14601460
typescript: ">=4.8.4 <6.1.0"
1461-
checksum: 10c0/39b122ab20a3b5fbd4e66874f60917b37c49f32eb987531797561d2f96b443e81546f1c9d03d44d37dede89098276e5d8d0f05c1e5f9e1b998f8cf6c24e8e5e7
1461+
checksum: 10c0/8bc9ecccac411cda8f6bc38fce2427639071a41f44594b047b40a4a50fd40959797acd373b87ab40e4f4b49e9069d42e1480d91e100800d5fb5e6ec6e4afba71
14621462
languageName: node
14631463
linkType: hard
14641464

@@ -1475,16 +1475,16 @@ __metadata:
14751475
languageName: node
14761476
linkType: hard
14771477

1478-
"@typescript-eslint/project-service@npm:8.61.0":
1479-
version: 8.61.0
1480-
resolution: "@typescript-eslint/project-service@npm:8.61.0"
1478+
"@typescript-eslint/project-service@npm:8.60.1":
1479+
version: 8.60.1
1480+
resolution: "@typescript-eslint/project-service@npm:8.60.1"
14811481
dependencies:
1482-
"@typescript-eslint/tsconfig-utils": "npm:^8.61.0"
1483-
"@typescript-eslint/types": "npm:^8.61.0"
1482+
"@typescript-eslint/tsconfig-utils": "npm:^8.60.1"
1483+
"@typescript-eslint/types": "npm:^8.60.1"
14841484
debug: "npm:^4.4.3"
14851485
peerDependencies:
14861486
typescript: ">=4.8.4 <6.1.0"
1487-
checksum: 10c0/8ff86b93bfcf103a42e8e996e11c46ded83da07d3a0bc8bd9ec4d536116d7f6253a404786510ab13847e69d6e185b17d15d7140075c26966e9b4f85c03296f21
1487+
checksum: 10c0/f5a61b7f2c90d07b9f89b8d0e4bb5b9a62ab1fc08060b1f6e04793a0ff9bcaa4160afe7662d8027faa7a509cec1354f9178e2e598cae7a66c55a038c70fa0274
14881488
languageName: node
14891489
linkType: hard
14901490

@@ -1498,13 +1498,13 @@ __metadata:
14981498
languageName: node
14991499
linkType: hard
15001500

1501-
"@typescript-eslint/scope-manager@npm:8.61.0":
1502-
version: 8.61.0
1503-
resolution: "@typescript-eslint/scope-manager@npm:8.61.0"
1501+
"@typescript-eslint/scope-manager@npm:8.60.1":
1502+
version: 8.60.1
1503+
resolution: "@typescript-eslint/scope-manager@npm:8.60.1"
15041504
dependencies:
1505-
"@typescript-eslint/types": "npm:8.61.0"
1506-
"@typescript-eslint/visitor-keys": "npm:8.61.0"
1507-
checksum: 10c0/76cdf1c181ebbc706ddc8b2366e8ebfda529c13d82ff10c0797c96c0b38dd82f6471b24995f58ac267194a753b23d77452d925dd615b1e651922ddbe6e451c6b
1505+
"@typescript-eslint/types": "npm:8.60.1"
1506+
"@typescript-eslint/visitor-keys": "npm:8.60.1"
1507+
checksum: 10c0/d9ead95aca27614ccfc160e5487480fc7c0de2e2e07716c5e2a56168f21adfa5124f33f579e7ff0c12896c61b59eb8ce50875c810fec2532a777ead0b103bccd
15081508
languageName: node
15091509
linkType: hard
15101510

@@ -1517,28 +1517,28 @@ __metadata:
15171517
languageName: node
15181518
linkType: hard
15191519

1520-
"@typescript-eslint/tsconfig-utils@npm:8.61.0, @typescript-eslint/tsconfig-utils@npm:^8.61.0":
1521-
version: 8.61.0
1522-
resolution: "@typescript-eslint/tsconfig-utils@npm:8.61.0"
1520+
"@typescript-eslint/tsconfig-utils@npm:8.60.1, @typescript-eslint/tsconfig-utils@npm:^8.60.1":
1521+
version: 8.60.1
1522+
resolution: "@typescript-eslint/tsconfig-utils@npm:8.60.1"
15231523
peerDependencies:
15241524
typescript: ">=4.8.4 <6.1.0"
1525-
checksum: 10c0/b498675f14ef90a5730de7c58388eb2522085a56c3fcad42ad9f89320b96221eafb5b4f9650375f29092025153d03533e3f23ea8f45ce3bc95a57593059edef3
1525+
checksum: 10c0/231d6c6ef0b305d5b007ce89af11c5871c14a5e3be43d1c131100f60053783169c1ce3133af767b8874bce6cc20ece1d2501c2ef315f467ecdc04e8acdd0dc9c
15261526
languageName: node
15271527
linkType: hard
15281528

1529-
"@typescript-eslint/type-utils@npm:8.61.0":
1530-
version: 8.61.0
1531-
resolution: "@typescript-eslint/type-utils@npm:8.61.0"
1529+
"@typescript-eslint/type-utils@npm:8.60.1":
1530+
version: 8.60.1
1531+
resolution: "@typescript-eslint/type-utils@npm:8.60.1"
15321532
dependencies:
1533-
"@typescript-eslint/types": "npm:8.61.0"
1534-
"@typescript-eslint/typescript-estree": "npm:8.61.0"
1535-
"@typescript-eslint/utils": "npm:8.61.0"
1533+
"@typescript-eslint/types": "npm:8.60.1"
1534+
"@typescript-eslint/typescript-estree": "npm:8.60.1"
1535+
"@typescript-eslint/utils": "npm:8.60.1"
15361536
debug: "npm:^4.4.3"
15371537
ts-api-utils: "npm:^2.5.0"
15381538
peerDependencies:
15391539
eslint: ^8.57.0 || ^9.0.0 || ^10.0.0
15401540
typescript: ">=4.8.4 <6.1.0"
1541-
checksum: 10c0/6347f451301ca7089500fe6eb3b98e5efd769e56ffda07eb735130fd209b9053c02e952b6fda7a15acf7851fb63f11fc50166ba8bd90513480732c599644b36b
1541+
checksum: 10c0/916d354fd22a2296abe0c618f89574ba6ed363b841bcbcbb662a53deaccd9bc644f253e7134d12f506d75cb574bbbc3e4113f253045b404e8a17962004e42f1d
15421542
languageName: node
15431543
linkType: hard
15441544

@@ -1549,10 +1549,10 @@ __metadata:
15491549
languageName: node
15501550
linkType: hard
15511551

1552-
"@typescript-eslint/types@npm:8.61.0, @typescript-eslint/types@npm:^8.61.0":
1553-
version: 8.61.0
1554-
resolution: "@typescript-eslint/types@npm:8.61.0"
1555-
checksum: 10c0/c19407d66fb5ad26e2670cd272bee91d150087d917752422257759e17920220af27cd54593205e9726367a440a237bf8d27ed805cae0b282a79172161f007207
1552+
"@typescript-eslint/types@npm:8.60.1, @typescript-eslint/types@npm:^8.60.1":
1553+
version: 8.60.1
1554+
resolution: "@typescript-eslint/types@npm:8.60.1"
1555+
checksum: 10c0/44308007e090ae1ac9cfdc5c2089cf1a82601298f69dd4835f62549e3d36886d41ecb1f84b490603382657481ca4e2ff23de49b97ad09d199dc65ce6c2e00b22
15561556
languageName: node
15571557
linkType: hard
15581558

@@ -1575,37 +1575,37 @@ __metadata:
15751575
languageName: node
15761576
linkType: hard
15771577

1578-
"@typescript-eslint/typescript-estree@npm:8.61.0":
1579-
version: 8.61.0
1580-
resolution: "@typescript-eslint/typescript-estree@npm:8.61.0"
1578+
"@typescript-eslint/typescript-estree@npm:8.60.1":
1579+
version: 8.60.1
1580+
resolution: "@typescript-eslint/typescript-estree@npm:8.60.1"
15811581
dependencies:
1582-
"@typescript-eslint/project-service": "npm:8.61.0"
1583-
"@typescript-eslint/tsconfig-utils": "npm:8.61.0"
1584-
"@typescript-eslint/types": "npm:8.61.0"
1585-
"@typescript-eslint/visitor-keys": "npm:8.61.0"
1582+
"@typescript-eslint/project-service": "npm:8.60.1"
1583+
"@typescript-eslint/tsconfig-utils": "npm:8.60.1"
1584+
"@typescript-eslint/types": "npm:8.60.1"
1585+
"@typescript-eslint/visitor-keys": "npm:8.60.1"
15861586
debug: "npm:^4.4.3"
15871587
minimatch: "npm:^10.2.2"
15881588
semver: "npm:^7.7.3"
15891589
tinyglobby: "npm:^0.2.15"
15901590
ts-api-utils: "npm:^2.5.0"
15911591
peerDependencies:
15921592
typescript: ">=4.8.4 <6.1.0"
1593-
checksum: 10c0/460819feeca826bfd895f821a5008c3eaa79b9495259641976fdc6ec319a7e9587bc28603437ea3d9a10c3b28037f1dea883cbe8d2858616dd33847e8db2179e
1593+
checksum: 10c0/76274d3974fd56675df71b010a2b6799a886537625228f89150fcb4563597eb619be4a22937cacacb0bb20b66c11b03e04f913fb6b44790ce63a7d070f27d3aa
15941594
languageName: node
15951595
linkType: hard
15961596

1597-
"@typescript-eslint/utils@npm:8.61.0":
1598-
version: 8.61.0
1599-
resolution: "@typescript-eslint/utils@npm:8.61.0"
1597+
"@typescript-eslint/utils@npm:8.60.1":
1598+
version: 8.60.1
1599+
resolution: "@typescript-eslint/utils@npm:8.60.1"
16001600
dependencies:
16011601
"@eslint-community/eslint-utils": "npm:^4.9.1"
1602-
"@typescript-eslint/scope-manager": "npm:8.61.0"
1603-
"@typescript-eslint/types": "npm:8.61.0"
1604-
"@typescript-eslint/typescript-estree": "npm:8.61.0"
1602+
"@typescript-eslint/scope-manager": "npm:8.60.1"
1603+
"@typescript-eslint/types": "npm:8.60.1"
1604+
"@typescript-eslint/typescript-estree": "npm:8.60.1"
16051605
peerDependencies:
16061606
eslint: ^8.57.0 || ^9.0.0 || ^10.0.0
16071607
typescript: ">=4.8.4 <6.1.0"
1608-
checksum: 10c0/f7b2241fc4defd40107243642e26697193707be12af1552c60bc414e71df1285c9cdff429f913b30ed08ae87a7e6e13388eaf05c1be5fb8310f6a63a6c4f7f73
1608+
checksum: 10c0/24777b47e23f930df5e0a0858e2979dbc44597d52e7ad237d2d764a433ac214ac00c0f7d0245ce9a54eb31900d261e305dc8a77d31efbb73bd7523c0ab075299
16091609
languageName: node
16101610
linkType: hard
16111611

@@ -1634,13 +1634,13 @@ __metadata:
16341634
languageName: node
16351635
linkType: hard
16361636

1637-
"@typescript-eslint/visitor-keys@npm:8.61.0":
1638-
version: 8.61.0
1639-
resolution: "@typescript-eslint/visitor-keys@npm:8.61.0"
1637+
"@typescript-eslint/visitor-keys@npm:8.60.1":
1638+
version: 8.60.1
1639+
resolution: "@typescript-eslint/visitor-keys@npm:8.60.1"
16401640
dependencies:
1641-
"@typescript-eslint/types": "npm:8.61.0"
1641+
"@typescript-eslint/types": "npm:8.60.1"
16421642
eslint-visitor-keys: "npm:^5.0.0"
1643-
checksum: 10c0/5b656aed426a92dfc9a481f0bf535ceb47321303f476f32ba979f73423c739b51d7a5ad76c81d7be9df0a9beb361f4a11ff530dd86d59f41b89bb5f09af7be9f
1643+
checksum: 10c0/d9831624c0dde1655a83f3e10b85fe3655ec015fd57cac9295bf3ad302ef30736eb58417b1d9a5c8639a8b05b665f9acc6bcc34f9def386846ae8d6833a5e3ce
16441644
languageName: node
16451645
linkType: hard
16461646

@@ -1663,8 +1663,8 @@ __metadata:
16631663
linkType: hard
16641664

16651665
"@vitest/eslint-plugin@npm:^1.0.1":
1666-
version: 1.6.20
1667-
resolution: "@vitest/eslint-plugin@npm:1.6.20"
1666+
version: 1.6.19
1667+
resolution: "@vitest/eslint-plugin@npm:1.6.19"
16681668
dependencies:
16691669
"@typescript-eslint/scope-manager": "npm:^8.58.0"
16701670
"@typescript-eslint/utils": "npm:^8.58.0"
@@ -1680,7 +1680,7 @@ __metadata:
16801680
optional: true
16811681
vitest:
16821682
optional: true
1683-
checksum: 10c0/9c1b3697fec30304aea3c28efe0077b74f6b9423d0bed51c63e11ef7287a13cf3d3a4ce0a6ba853a91781da80820bd9b43cbf02766b6abe4ae054c93046ee36e
1683+
checksum: 10c0/e7a016f2009ddc329c94c261a86ae2ef01401ee78f82794b945fa0cf38bc5e8446d8054c1c438ed223fdbbece7aa946550b718226accea952394113511c6f698
16841684
languageName: node
16851685
linkType: hard
16861686

@@ -6107,17 +6107,17 @@ __metadata:
61076107
linkType: hard
61086108

61096109
"typescript-eslint@npm:^8.36.0":
6110-
version: 8.61.0
6111-
resolution: "typescript-eslint@npm:8.61.0"
6110+
version: 8.60.1
6111+
resolution: "typescript-eslint@npm:8.60.1"
61126112
dependencies:
6113-
"@typescript-eslint/eslint-plugin": "npm:8.61.0"
6114-
"@typescript-eslint/parser": "npm:8.61.0"
6115-
"@typescript-eslint/typescript-estree": "npm:8.61.0"
6116-
"@typescript-eslint/utils": "npm:8.61.0"
6113+
"@typescript-eslint/eslint-plugin": "npm:8.60.1"
6114+
"@typescript-eslint/parser": "npm:8.60.1"
6115+
"@typescript-eslint/typescript-estree": "npm:8.60.1"
6116+
"@typescript-eslint/utils": "npm:8.60.1"
61176117
peerDependencies:
61186118
eslint: ^8.57.0 || ^9.0.0 || ^10.0.0
61196119
typescript: ">=4.8.4 <6.1.0"
6120-
checksum: 10c0/172ba723c7ea07e5b22541ca3e8eb1b5e0b837e21278a915a293a2d5e7cac7ce9f0ad73cd61a3cdec98a511c76586eb3865d1581f2acc0b691e007703d4764b2
6120+
checksum: 10c0/75a42e14b4a7446dd9ad992422135f696e0af58d7c0f64ff2d9f157f1df7bac6a089fa7a35454d2393eadd329e602c0002c07043bbcf4906f7007e45e783b54e
61216121
languageName: node
61226122
linkType: hard
61236123

0 commit comments

Comments
 (0)