fix(security): bump minimatch override to >=10.2.3 #528

Merged

jason.woltje merged 2 commits from fix/minimatch-redos into main

2026-02-27 01:48:39 +00:00

Author	SHA1	Message	Date
Jason Woltje	55abe359f3	fix(security): bump minimatch override to >=10.2.3 (GHSA-7r86, GHSA-23c5) All checks were successful ci/woodpecker/push/orchestrator Pipeline was successful Details ci/woodpecker/push/web Pipeline was successful Details ci/woodpecker/push/api Pipeline was successful Details Two high-severity ReDoS vulnerabilities in minimatch >=10.0.0 <10.2.3 via @typescript-eslint transitive dep. Bumps existing pnpm override from >=10.2.1 to >=10.2.3. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-02-26 19:48:19 -06:00
Jason Woltje	5ed0a859da	ci: enable turborepo remote cache for all Node.js pipelines Some checks failed ci/woodpecker/push/api Pipeline failed Details ci/woodpecker/push/orchestrator Pipeline failed Details ci/woodpecker/push/web Pipeline failed Details Connect to self-hosted turbo cache at turbo.mosaicstack.dev. Convert lint/typecheck/test/build steps to use pnpm turbo with remote cache env vars, removing manual build-shared steps since turbo handles the dependency graph automatically. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-02-26 19:34:11 -06:00