israel-law-mcp/package-lock.json at d730245538cc6132a068d631b211632f9f7642c2

Files

Jeffrey von Rotz de2982ea41 fix(security): update lock file — hono 4.12.3 + SDK 1.27.1 (#4 )

Updated transitive deps to patched versions:
- @modelcontextprotocol/sdk: 1.26.0 -> 1.27.1
  (cross-client data leak via shared transport, affects 1.10.0-1.25.3,
  patched in 1.26.0)
- hono: 4.12.0 -> 4.12.3
  (authentication bypass via IP spoofing, patched in 4.12.3)

No package.json change needed — existing semver ranges already allow
the patched versions.

2026-03-02 21:04:26 +01:00

154 KiB

Raw Blame History

View Raw

154 KiB Raw Blame History

154 KiB

Raw Blame History