Skip to content

[Snyk] Upgrade @elastic/highlightjs-esql from 1.2.2 to 1.2.3#3216

Merged
cotti merged 2 commits into
mainfrom
snyk-upgrade-761a7c208d38ce9e3202199178075bde
Apr 30, 2026
Merged

[Snyk] Upgrade @elastic/highlightjs-esql from 1.2.2 to 1.2.3#3216
cotti merged 2 commits into
mainfrom
snyk-upgrade-761a7c208d38ce9e3202199178075bde

Conversation

@nkammah
Copy link
Copy Markdown
Contributor

@nkammah nkammah commented Apr 30, 2026

snyk-top-banner

Snyk has created this PR to upgrade @elastic/highlightjs-esql from 1.2.2 to 1.2.3.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

  • The recommended version is 1 version ahead of your current version.

  • The recommended version was released 22 days ago.

Issues fixed by the recommended upgrade:

Issue Score Exploit Maturity
critical severity Arbitrary Code Injection
SNYK-JS-PROTOBUFJS-16094665		 868 Proof of Concept
critical severity Arbitrary Code Injection
SNYK-JS-PROTOBUFJS-16094665		 868 Proof of Concept

Breaking Change Risk

Merge Risk: Medium

Notice: This assessment is enhanced by AI.

Release notes
Package name: @elastic/highlightjs-esql from @elastic/highlightjs-esql GitHub release notes

Important

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • This PR was automatically created by Snyk using the credentials of a real user.
  • Max score is 1000. Note that the real score may have changed since the PR was raised.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

@snyk-bot
fix: upgrade @elastic/highlightjs-esql from 1.2.2 to 1.2.3
a3fd305 
Snyk has created this PR to upgrade @elastic/highlightjs-esql from 1.2.2 to 1.2.3.

See this package in npm:
@elastic/highlightjs-esql

See this project in Snyk:
https://app.snyk.io/org/docs-wmk/project/69782e43-c85b-4c27-afd1-ad863be7a38a?utm_source=github&utm_medium=referral&page=upgrade-pr
@nkammah
Copy link
Copy Markdown
Contributor Author

nkammah commented Apr 30, 2026

Merge Risk: Medium

This is a patch version upgrade from 1.2.2 to 1.2.3. While patch releases are typically for bug fixes and are not expected to contain breaking changes, no specific release notes or changelog for version 1.2.3 could be located.

Due to the lack of documentation detailing the changes, the risk is assessed as medium out of an abundance of caution.

Source: Package documentation

Notice 🤖: This content was augmented using artificial intelligence. AI-generated content may contain errors and should be reviewed for accuracy before use.

@nkammah nkammah requested a review from a team as a code owner April 30, 2026 11:20
@nkammah nkammah requested a review from reakaleek April 30, 2026 11:20
@cotti cotti added the chore label Apr 30, 2026
@cotti cotti enabled auto-merge (squash) April 30, 2026 13:25
@cotti cotti merged commit f834fcd into main Apr 30, 2026
24 of 25 checks passed
@cotti cotti deleted the snyk-upgrade-761a7c208d38ce9e3202199178075bde branch April 30, 2026 13:37
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@cotti cotti cotti approved these changes

@reakaleek reakaleek Awaiting requested review from reakaleek reakaleek is a code owner automatically assigned from elastic/docs-engineering

Assignees

No one assigned

Labels

chore

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@nkammah @cotti @snyk-bot