Add override for esbuild to version 0.28.1 to prevent vulnerabilities.

[marcelopessini]

Add esbuild overrides to prevent vulnerabilities

Summary by CodeRabbit

• Chores
  • Updated dependency constraints to ensure build compatibility and stability.

[changeset-bot]

⚠️ No Changeset found

Latest commit: 31cb021

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

[coderabbitai]

Important

Review skipped

Review was skipped due to path filters

⛔ Files ignored due to path filters (1)

• pnpm-lock.yaml is excluded by !**/pnpm-lock.yaml

CodeRabbit blocks several paths by default. You can override this behavior by explicitly including those paths in the path filters. For example, including **/dist/** will override the default block on the dist directory, by removing the pattern from both the lists.

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: fc99b156-a42a-4d03-8a43-8cd48b75fa00

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Use the checkbox below for a quick retry:

• 🔍 Trigger review

📝 Walkthrough

Walkthrough

A new esbuild version constraint (>=0.28.1) is added to the pnpm.overrides section in package.json. No other configuration, scripts, or dependencies are modified.

Changes

esbuild pnpm override

Layer / File(s)	Summary
Add esbuild override to pnpm.overrides package.json	Adds "esbuild": ">=0.28.1" to pnpm.overrides alongside the existing ws override entry.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~2 minutes

Possibly related PRs

• silverlogic/baseapp-frontend#373: Also modifies the pnpm.overrides section in package.json with esbuild-related and other dependency version override entries.

Suggested reviewers

• matheusysd
• priscilladeroode

Poem

🐇 A hop, a skip, a version bump so neat,
esbuild pinned, the override complete.
No more stale builds to make me frown,
>=0.28.1 keeps the house from burning down.
The rabbit checks the lock and leaps with glee! 🎉

🚥 Pre-merge checks | ✅ 4 | ❌ 1

❌ Failed checks (1 inconclusive)

Check name	Status	Explanation	Resolution
Description check	❓ Inconclusive	The pull request description is minimal and provides only a brief overview without following the repository's description template structure.	Expand the description to match the template structure and provide details about the vulnerabilities being addressed.

✅ Passed checks (4 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title clearly and specifically describes the main change: adding an esbuild override to version 0.28.1 for security purposes.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch hotfix/add-esbuild-overrides-0.28.1-vulnerabilities

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud