From 14858198e13ff8928a74ff6baa1ba532df0a9276 Mon Sep 17 00:00:00 2001
From: Laurin <laurinquast@googlemail.com>
Date: Mon, 30 Mar 2026 13:20:06 +0200
Subject: [PATCH] chore: vulnerable dependencies (#7930)

---
 package.json   |  4 +++-
 pnpm-lock.yaml | 17 +++++++++--------
 2 files changed, 12 insertions(+), 9 deletions(-)

diff --git a/package.json b/package.json
index 5e646236c..049bab3f7 100644
--- a/package.json
+++ b/package.json
@@ -129,6 +129,7 @@
     "overrides.dompurify@3.x.x": "address https://github.com/graphql-hive/console/security/dependabot/536",
     "overrides.ajv@8.x.x": "address https://github.com/graphql-hive/console/security/dependabot/507",
     "overrides.yauzl@2.x.x": "address https://github.com/graphql-hive/console/security/dependabot/542",
+    "overrides.path-to-regexp@0.x.x": "address https://github.com/graphql-hive/console/security/dependabot/619",
     "overrides": {
       "esbuild": "0.25.9",
       "csstype": "3.1.2",
@@ -164,7 +165,8 @@
       "dompurify@3.x.x": "^3.3.2",
       "ajv@8.x.x": "^8.18.0",
       "yauzl@2.x.x": "^3.2.1",
-      "glob@10.x.x": "^10.5.0"
+      "glob@10.x.x": "^10.5.0",
+      "path-to-regexp@0.x.x": "^0.1.13"
     },
     "patchedDependencies": {
       "mjml-core@4.14.0": "patches/mjml-core@4.14.0.patch",
diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml
index fcb7aabc5..d9f47a803 100644
--- a/pnpm-lock.yaml
+++ b/pnpm-lock.yaml
@@ -40,6 +40,7 @@ overrides:
   ajv@8.x.x: ^8.18.0
   yauzl@2.x.x: ^3.2.1
   glob@10.x.x: ^10.5.0
+  path-to-regexp@0.x.x: ^0.1.13
 
 patchedDependencies:
   '@apollo/federation@0.38.1':
@@ -11138,8 +11139,8 @@ packages:
   brace-expansion@1.1.13:
     resolution: {integrity: sha512-9ZLprWS6EENmhEOpjCYW2c8VkmOvckIJZfkr7rBW6dObmfgJ/L1GpSYW5Hpo9lDz4D1+n0Ckz8rU7FwHDQiG/w==}
 
-  brace-expansion@2.0.2:
-    resolution: {integrity: sha512-Jt0vHyM+jmUBqojB7E1NIYadt0vI0Qxjxd2TErW94wDz+E2LAm5vKMXXwg6ZZBTHPuUlDgQHKXvjGBdfcF1ZDQ==}
+  brace-expansion@2.0.3:
+    resolution: {integrity: sha512-MCV/fYJEbqx68aE58kv2cA/kiky1G8vux3OR6/jbS+jIMe/6fJWa0DTzJU7dqijOWYwHi1t29FlfYI9uytqlpA==}
 
   brace-expansion@5.0.5:
     resolution: {integrity: sha512-VZznLgtwhn+Mact9tfiwx64fA9erHH/MCXEUfB/0bX/6Fz6ny5EGTXYltMocqg4xFAQZtnO3DHWWXi8RiuN7cQ==}
@@ -16085,8 +16086,8 @@ packages:
     resolution: {integrity: sha512-3O/iVVsJAPsOnpwWIeD+d6z/7PmqApyQePUtCndjatj/9I5LylHvt5qluFaBT3I5h3r1ejfR056c+FCv+NnNXg==}
     engines: {node: 18 || 20 || >=22}
 
-  path-to-regexp@0.1.12:
-    resolution: {integrity: sha512-RA1GjUVMnvYFxuqovrEqZoxxW5NUZqbwKtYz/Tt7nXerk0LbLblQmrsgdeOxV5SFHf0UDggjS/bSeOZwt1pmEQ==}
+  path-to-regexp@0.1.13:
+    resolution: {integrity: sha512-A/AGNMFN3c8bOlvV9RreMdrv7jsmF9XIfDeCd87+I8RNg6s78BhJxMu69NEMHBSJFxKidViTEdruRwEk/WIKqA==}
 
   path-to-regexp@6.3.0:
     resolution: {integrity: sha512-Yhpw4T9C6hPpgPeA28us07OJeqZ5EzQTkbfwuhsUg0c237RomFoETJgmp2sa3F/41gfLE6G5cqcYwznmeEeOlQ==}
@@ -32257,7 +32258,7 @@ snapshots:
       balanced-match: 1.0.2
       concat-map: 0.0.1
 
-  brace-expansion@2.0.2:
+  brace-expansion@2.0.3:
     dependencies:
       balanced-match: 1.0.2
 
@@ -34185,7 +34186,7 @@ snapshots:
       methods: 1.1.2
       on-finished: 2.4.1
       parseurl: 1.3.3
-      path-to-regexp: 0.1.12
+      path-to-regexp: 0.1.13
       proxy-addr: 2.0.7
       qs: 6.14.2
       range-parser: 1.2.1
@@ -37369,7 +37370,7 @@ snapshots:
 
   minimatch@5.1.9:
     dependencies:
-      brace-expansion: 2.0.2
+      brace-expansion: 2.0.3
 
   minimatch@9.0.8:
     dependencies:
@@ -38478,7 +38479,7 @@ snapshots:
       lru-cache: 11.0.2
       minipass: 7.1.3
 
-  path-to-regexp@0.1.12: {}
+  path-to-regexp@0.1.13: {}
 
   path-to-regexp@6.3.0: {}