deps: bump fast-xml-parser to fix CVE-2026-25896 (#1940)

Fixes: CVE-2026-25896 Fixes: HDX-3758
2026-04-21 13:37:15 +00:00 · 2026-03-18 16:01:45 -04:00 · 2026-03-18 16:01:45 -04:00 · de914816f7
commit de914816f7
parent 609ab14d9e
2 changed files with 7 additions and 7 deletions
--- a/package.json
+++ b/package.json
@ -76,7 +76,7 @@
    "brace-expansion": "^2.0.2",
    "diff": "^5.2.2",
    "on-headers": "^1.1.0",
-    "fast-xml-parser": "^4.4.0",
+    "fast-xml-parser": "^4.5.4",
    "systeminformation": "^5.24.0"
  }
 }
--- a/yarn.lock
+++ b/yarn.lock
@ -15018,14 +15018,14 @@ __metadata:
  languageName: node
  linkType: hard

-"fast-xml-parser@npm:^4.4.0":
-  version: 4.5.3
-  resolution: "fast-xml-parser@npm:4.5.3"
+"fast-xml-parser@npm:^4.5.4":
+  version: 4.5.4
+  resolution: "fast-xml-parser@npm:4.5.4"
  dependencies:
-    strnum: "npm:^1.1.1"
+    strnum: "npm:^1.0.5"
  bin:
    fxparser: src/cli/cli.js
-  checksum: 10c0/bf9ccadacfadc95f6e3f0e7882a380a7f219cf0a6f96575149f02cb62bf44c3b7f0daee75b8ff3847bcfd7fbcb201e402c71045936c265cf6d94b141ec4e9327
+  checksum: 10c0/7989148650fc1fce988798b62467f7dee0fd5a7ad049373e00e65fbc68f689c119975d03da32c427f0a1f5aad01de2efbd783a48dcdaf3ca41817a8b161ad3e8
  languageName: node
  linkType: hard

@ -24889,7 +24889,7 @@ __metadata:
  languageName: node
  linkType: hard

-"strnum@npm:^1.1.1":
+"strnum@npm:^1.0.5":
  version: 1.1.2
  resolution: "strnum@npm:1.1.2"
  checksum: 10c0/a0fce2498fa3c64ce64a40dada41beb91cabe3caefa910e467dc0518ef2ebd7e4d10f8c2202a6104f1410254cae245066c0e94e2521fb4061a5cb41831952392