Skip to content

Bump the uuid test fixture version to 100.0.0#1279

Merged
rzhao271 merged 3 commits into
mainfrom
copilot/upgrade-test-uuid-package
Jun 1, 2026
Merged

Bump the uuid test fixture version to 100.0.0#1279
rzhao271 merged 3 commits into
mainfrom
copilot/upgrade-test-uuid-package

Conversation

Copilot AI commented Jun 1, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

The test fixture under src/test/fixtures/uuid was using a real-looking uuid package/version, which can be misidentified by dependency scanners as an actual vulnerable dependency. This updates the fixture to a clearly non-real version and aligns the fixture assertions with that change.

  • Fixture manifest

    • Updated src/test/fixtures/uuid/package.json to use version: "100.0.0".

  • Fixture-based test expectations

    • Adjusted the ManifestProcessor tests in src/test/package.test.ts that intentionally read and assert the fixture version.

  • Result

    • Keeps the fixture semantics unchanged while reducing false-positive Dependabot alerts triggered by the test data.
{
  "name": "uuid",
  "publisher": "joaomoreno",
  "version": "100.0.0",
  "engines": { "vscode": "*" }
}
Original prompt

There seems to be test uuid package under src/test/fixtures. Upgrade its version to 100.0.0 to avoid being identified as false positive dependabot alert.

Created from VS Code.

Copilot AI changed the title [WIP] Update test uuid package version to 100.0.0 Bump the uuid test fixture version to 100.0.0 Jun 1, 2026
Copilot AI requested a review from rzhao271 June 1, 2026 18:45
@rzhao271 rzhao271 added this to the 1.124.0 milestone Jun 1, 2026
@rzhao271 rzhao271 marked this pull request as ready for review June 1, 2026 18:49
@rzhao271 rzhao271 enabled auto-merge (squash) June 1, 2026 18:49
@rzhao271 rzhao271 merged commit df1a68e into main Jun 1, 2026
5 checks passed
@rzhao271 rzhao271 deleted the copilot/upgrade-test-uuid-package branch June 1, 2026 18:50
adrianstephens pushed a commit to adrianstephens/vscode-vsce that referenced this pull request Jun 3, 2026
@adrianstephens
Bump the uuid test fixture version to 100.0.0 (microsoft#1279)
e206d6e 
* Initial plan

* test: bump uuid fixture version

* chore: remove temporary validation logs

---------

Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@sandy081 sandy081 sandy081 approved these changes
+1 more reviewer
@rzhao271 rzhao271 rzhao271 approved these changes
Reviewers whose approvals may not affect merge requirements

Assignees

@rzhao271 rzhao271

Copilot code review Copilot

Labels

None yet

Projects

None yet

Milestone

1.124.0

Development

Successfully merging this pull request may close these issues.

3 participants

@rzhao271 @sandy081