You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This commit was created on GitHub.com and signed with GitHub’s verified signature.
Key Changes
.talismanrc
Added new file checksums for:
upload-api/src/helper/index.ts
upload-api/package-lock.json
api/package-lock.json
Tightens secret scanning and integrity verification for updated files.
README.md
Removed CLI Setup Instructions:
The section describing pnpm installation and npm run setup-repo was deleted.
Documentation now focuses on available scripts and configuration.
api/package.json & api/package-lock.json
Dependency Updates:
Upgraded @contentstack/cli-utilities from ^1.11.1 to ^1.12.0
Indirect upgrades for sub-dependencies, including:
@contentstack/management to ~1.21.4/1.21.6
@contentstack/marketplace-sdk to ^1.2.8
@oclif/core to ^4.3.0
axios to ^1.9.0
dotenv to ^16.5.0
papaparse to ^5.5.3
Added husky (^9.1.7)
Multiple brace-expansion upgrades
Improves security, stability, and compatibility.
upload-api/package-lock.json
Dependency Upgrades:
Multiple upgrades for brace-expansion and related packages to address security advisories.
upload-api/src/helper/index.ts
Refactored Zip Extraction Logic:
Always prepends the main folder name to extracted files unless already present.
Skips writing files/directories that match the Mac OS X resource folder.
Cleans up logic for handling zip files, ensuring robust extraction for various structures.
Impact
Security: Improved dependency management and secret scanning.
Reliability: More robust zip extraction logic, especially for edge cases and Mac OS X files.
Maintainability: Codebase is cleaner, with clearer documentation and logic.
