From 7aaca810ff70f6d00655892ffd81a973a38edded Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Wed, 25 Feb 2026 03:42:05 +0900 Subject: [PATCH] fix(deps): update dependency hono to v4.11.10 [security] (#4331) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- package.json | 2 +- pnpm-lock.yaml | 70 +++++++++++++++++++++----------------------------- 2 files changed, 30 insertions(+), 42 deletions(-) diff --git a/package.json b/package.json index 9757a389..81eb2bff 100644 --- a/package.json +++ b/package.json @@ -107,7 +107,7 @@ "filenamify": "7.0.1", "hanja": "1.1.5", "happy-dom": "20.5.0", - "hono": "4.11.7", + "hono": "4.11.10", "howler": "2.2.4", "html-to-text": "9.0.5", "i18next": "25.8.0", diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml index e73eb771..4d3dd06d 100644 --- a/pnpm-lock.yaml +++ b/pnpm-lock.yaml @@ -65,19 +65,19 @@ importers: version: 2.13.4(electron@40.1.0) '@hono/node-server': specifier: 1.19.9 - version: 1.19.9(hono@4.11.7) + version: 1.19.9(hono@4.11.10) '@hono/node-ws': specifier: 1.3.0 - version: 1.3.0(@hono/node-server@1.19.9(hono@4.11.7))(bufferutil@4.1.0)(hono@4.11.7)(utf-8-validate@6.0.6) + version: 1.3.0(@hono/node-server@1.19.9(hono@4.11.10))(bufferutil@4.1.0)(hono@4.11.10)(utf-8-validate@6.0.6) '@hono/swagger-ui': specifier: 0.5.3 - version: 0.5.3(hono@4.11.7) + version: 0.5.3(hono@4.11.10) '@hono/zod-openapi': specifier: 1.2.1 - version: 1.2.1(hono@4.11.7)(zod@4.3.6) + version: 1.2.1(hono@4.11.10)(zod@4.3.6) '@hono/zod-validator': specifier: 0.7.6 - version: 0.7.6(hono@4.11.7)(zod@4.3.6) + version: 0.7.6(hono@4.11.10)(zod@4.3.6) '@indic-transliteration/sanscript': specifier: 1.3.3 version: 1.3.3 @@ -169,8 +169,8 @@ importers: specifier: 20.5.0 version: 20.5.0(bufferutil@4.1.0)(utf-8-validate@6.0.6) hono: - specifier: 4.11.7 - version: 4.11.7 + specifier: 4.11.10 + version: 4.11.10 howler: specifier: 2.2.4 version: 2.2.4 @@ -1309,9 +1309,6 @@ packages: '@types/node@24.10.9': resolution: {integrity: sha512-ne4A0IpG3+2ETuREInjPNhUGis1SFjv1d5asp8MzEAGtOZeTeHVDOYqOgqfhvseqg/iXty2hjBf1zAOb7RNiNw==} - '@types/node@25.1.0': - resolution: {integrity: sha512-t7frlewr6+cbx+9Ohpl0NOTKXZNV9xHRmNOvql47BFJKcEG1CxtxlPEEe+gR9uhVWM4DwhnvTF110mIL4yP9RA==} - '@types/node@25.2.0': resolution: {integrity: sha512-DZ8VwRFUNzuqJ5khrvwMXHmvPe+zGayJhr2CDNiKB1WBE1ST8Djl00D0IC4vvNmHMdj6DlbYRIaFE7WHjlDl5w==} @@ -1837,10 +1834,6 @@ packages: resolution: {integrity: sha512-PVBMzvv6CtX1cubaDXfxYscIdbOAHPuY/E2vnfJIzOACX+xIW4NRKRlNsZVI2p5KxGsXyUp7tVHfvQlqZ4yx/w==} engines: {node: ^20.19.0 || >=22.12.0} - chownr@2.0.0: - resolution: {integrity: sha512-bIomtDF5KGpdogkLd9VspvFzk9KfpyyGlS8YFVZl7TGPBHL5snIOnxeshwVgPteQ9b4Eydl+pVbIyE1DcvCWgQ==} - engines: {node: '>=10'} - chownr@3.0.0: resolution: {integrity: sha512-+IxzY9BZOQd/XuYPRmrvEVjF/nqj5kgT4kEq7VofrDoM1MxoRjEWkrCC3EtLi59TVawxTAn+orJwFQcrqEN1+g==} engines: {node: '>=18'} @@ -2712,16 +2705,16 @@ packages: glob@11.1.0: resolution: {integrity: sha512-vuNwKSaKiqm7g0THUBu2x7ckSs3XJLXE+2ssL7/MfTGPLLcrJQ/4Uq1CjPTtO5cCIiRxqvN6Twy1qOwhL0Xjcw==} engines: {node: 20 || >=22} + deprecated: Old versions of glob are not supported, and contain widely publicized security vulnerabilities, which have been fixed in the current version. Please update. Support for old versions may be purchased (at exorbitant rates) by contacting i@izs.me hasBin: true glob@13.0.0: resolution: {integrity: sha512-tvZgpqk6fz4BaNZ66ZsRaZnbHvP/jG3uKJvAZOwEVUL4RTA5nJeeLYfyN9/VA8NX/V3IBG+hkeuGpKjvELkVhA==} engines: {node: 20 || >=22} - hasBin: true glob@7.2.3: resolution: {integrity: sha512-nFR0zLpU2YCaRxwoCJvL6UvCH2JFyFVIvwTLsIf21AuHlMskA1hhTdk+LlYJtOlYt9v6dvszD2BGRqBL+iQK9Q==} - deprecated: Glob versions prior to v9 are no longer supported + deprecated: Old versions of glob are not supported, and contain widely publicized security vulnerabilities, which have been fixed in the current version. Please update. Support for old versions may be purchased (at exorbitant rates) by contacting i@izs.me global-agent@3.0.0: resolution: {integrity: sha512-PT6XReJ+D07JvGoxQMkT6qji/jVNfX/h364XHZOWeRzy64sSFr+xJ5OX7LI3b4MPQzdL4H8Y8M0xzPpsVMwA8Q==} @@ -2793,8 +2786,8 @@ packages: resolution: {integrity: sha512-F/1DnUGPopORZi0ni+CvrCgHQ5FyEAHRLSApuYWMmrbSwoN2Mn/7k+Gl38gJnR7yyDZk6WLXwiGod1JOWNDKGw==} hasBin: true - hono@4.11.7: - resolution: {integrity: sha512-l7qMiNee7t82bH3SeyUCt9UF15EVmaBvsppY2zQtrbIhl/yzBTny+YUxsVjSjQ6gaqaeVtZmGocom8TzBlA4Yw==} + hono@4.11.10: + resolution: {integrity: sha512-kyWP5PAiMooEvGrA9jcD3IXF7ATu8+o7B3KCbPXid5se52NPqnOpM/r9qeW2heMnOekF4kqR1fXJqCYeCLKrZg==} engines: {node: '>=16.9.0'} hosted-git-info@4.1.0: @@ -4308,6 +4301,7 @@ packages: tar@7.5.7: resolution: {integrity: sha512-fov56fJiRuThVFXD6o6/Q354S7pnWMJIVlDBYijsTNx6jKSE4pvrDTs6lUnmGvNyfJwFQQwWy3owKz1ucIhveQ==} engines: {node: '>=18'} + deprecated: Old versions of tar are not supported, and contain widely publicized security vulnerabilities, which have been fixed in the current version. Please update. Support for old versions may be purchased (at exorbitant rates) by contacting i@izs.me temp-file@3.4.0: resolution: {integrity: sha512-C5tjlC/HCtVUOi3KWVokd4vHVViOmGjtLwIh4MuzPo/nMYTV/p1urt3RnMz2IWXDdKEGJH3k5+KPxtqRsUYGtg==} @@ -5188,34 +5182,34 @@ snapshots: dependencies: tldts-experimental: 7.0.19 - '@hono/node-server@1.19.9(hono@4.11.7)': + '@hono/node-server@1.19.9(hono@4.11.10)': dependencies: - hono: 4.11.7 + hono: 4.11.10 - '@hono/node-ws@1.3.0(@hono/node-server@1.19.9(hono@4.11.7))(bufferutil@4.1.0)(hono@4.11.7)(utf-8-validate@6.0.6)': + '@hono/node-ws@1.3.0(@hono/node-server@1.19.9(hono@4.11.10))(bufferutil@4.1.0)(hono@4.11.10)(utf-8-validate@6.0.6)': dependencies: - '@hono/node-server': 1.19.9(hono@4.11.7) - hono: 4.11.7 + '@hono/node-server': 1.19.9(hono@4.11.10) + hono: 4.11.10 ws: 8.19.0(bufferutil@4.1.0)(utf-8-validate@6.0.6) transitivePeerDependencies: - bufferutil - utf-8-validate - '@hono/swagger-ui@0.5.3(hono@4.11.7)': + '@hono/swagger-ui@0.5.3(hono@4.11.10)': dependencies: - hono: 4.11.7 + hono: 4.11.10 - '@hono/zod-openapi@1.2.1(hono@4.11.7)(zod@4.3.6)': + '@hono/zod-openapi@1.2.1(hono@4.11.10)(zod@4.3.6)': dependencies: '@asteasolutions/zod-to-openapi': 8.4.0(zod@4.3.6) - '@hono/zod-validator': 0.7.6(hono@4.11.7)(zod@4.3.6) - hono: 4.11.7 + '@hono/zod-validator': 0.7.6(hono@4.11.10)(zod@4.3.6) + hono: 4.11.10 openapi3-ts: 4.5.0 zod: 4.3.6 - '@hono/zod-validator@0.7.6(hono@4.11.7)(zod@4.3.6)': + '@hono/zod-validator@0.7.6(hono@4.11.10)(zod@4.3.6)': dependencies: - hono: 4.11.7 + hono: 4.11.10 zod: 4.3.6 '@humanfs/core@0.19.1': {} @@ -5727,7 +5721,7 @@ snapshots: dependencies: '@types/http-cache-semantics': 4.2.0 '@types/keyv': 3.1.4 - '@types/node': 25.1.0 + '@types/node': 25.2.0 '@types/responselike': 1.0.3 '@types/debug@4.1.12': @@ -5758,7 +5752,7 @@ snapshots: '@types/keyv@3.1.4': dependencies: - '@types/node': 25.1.0 + '@types/node': 25.2.0 '@types/ms@2.1.0': {} @@ -5768,10 +5762,6 @@ snapshots: dependencies: undici-types: 7.16.0 - '@types/node@25.1.0': - dependencies: - undici-types: 7.16.0 - '@types/node@25.2.0': dependencies: undici-types: 7.16.0 @@ -5784,7 +5774,7 @@ snapshots: '@types/responselike@1.0.3': dependencies: - '@types/node': 25.1.0 + '@types/node': 25.2.0 '@types/semver@7.7.1': {} @@ -5801,7 +5791,7 @@ snapshots: '@types/yauzl@2.10.3': dependencies: - '@types/node': 25.1.0 + '@types/node': 25.2.0 optional: true '@typescript-eslint/eslint-plugin@8.54.0(@typescript-eslint/parser@8.54.0(eslint@9.39.2(jiti@2.6.1))(typescript@5.9.3))(eslint@9.39.2(jiti@2.6.1))(typescript@5.9.3)': @@ -6372,8 +6362,6 @@ snapshots: chinese-conv@4.0.0: {} - chownr@2.0.0: {} - chownr@3.0.0: {} chromium-pickle-js@0.2.0: {} @@ -7562,7 +7550,7 @@ snapshots: he@1.2.0: {} - hono@4.11.7: {} + hono@4.11.10: {} hosted-git-info@4.1.0: dependencies: