Skip to content

ahoi #42527

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
CosmicJesterX wants to merge 10 commits into
base: main
Choose a base branch
from
Open

ahoi #42527

CosmicJesterX wants to merge 10 commits into from
+60 −72

Conversation

@CosmicJesterX
Copy link

@CosmicJesterX CosmicJesterX commented Jan 23, 2026

Why:

Closes:

What's being changed (if available, include any code snippets, screenshots, or gifs):

Check off the following:

  • A subject matter expert (SME) has reviewed the technical accuracy of the content in this PR. In most cases, the author can be the SME. Open source contributions may require an SME review from GitHub staff.
  • The changes in this PR meet the docs fundamentals that are required for all content.
  • All CI checks are passing and the changes look good in the review environment.

dependabot bot and others added 10 commits October 20, 2025 19:12
@dependabot
Bump playwright and @playwright/test
abd5d78 
Bumps [playwright](https://github.com/microsoft/playwright) to 1.56.1 and updates ancestor dependency [@playwright/test](https://github.com/microsoft/playwright). These dependencies need to be updated together.


Updates `playwright` from 1.55.0 to 1.56.1
- [Release notes](https://github.com/microsoft/playwright/releases)
- [Commits](microsoft/playwright@v1.55.0...v1.56.1)

Updates `@playwright/test` from 1.55.0 to 1.56.1
- [Release notes](https://github.com/microsoft/playwright/releases)
- [Commits](microsoft/playwright@v1.55.0...v1.56.1)

---
updated-dependencies:
- dependency-name: playwright
  dependency-version: 1.56.1
  dependency-type: indirect
- dependency-name: "@playwright/test"
  dependency-version: 1.56.1
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump glob from 11.0.2 to 11.1.0
343e7e0 
Bumps [glob](https://github.com/isaacs/node-glob) from 11.0.2 to 11.1.0.
- [Changelog](https://github.com/isaacs/node-glob/blob/main/changelog.md)
- [Commits](isaacs/node-glob@v11.0.2...v11.1.0)

---
updated-dependencies:
- dependency-name: glob
  dependency-version: 11.1.0
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@CosmicJesterX
Merge pull request #8 from CosmicJesterX/dependabot/npm_and_yarn/glob…
86b6e1e 
…-11.1.0

@dependabot rebase
@CosmicJesterX
Merge branch 'github:main' into main
902d4bd
@CosmicJesterX
Merge pull request #5 from CosmicJesterX/dependabot/npm_and_yarn/mult…
307c6da 
…i-a50d7f32cf

Bump playwright and @playwright/test
@CosmicJesterX
Merge branch 'github:main' into main
8fd6139
Initial plan
88b699f
@CosmicJesterX
Initial plan for security vulnerability fixes
d861312 
Co-authored-by: CosmicJesterX <195653949+CosmicJesterX@users.noreply.github.com>
@CosmicJesterX
Fix security vulnerabilities: upgrade Next.js to 16.0.7 and jws to 3.2.3
1208825 
Co-authored-by: CosmicJesterX <195653949+CosmicJesterX@users.noreply.github.com>
@CosmicJesterX
Merge pull request #14 from CosmicJesterX/copilot/address-security-risks
1068778 
Fix critical security vulnerabilities in Next.js and jws dependencies
Copilot AI review requested due to automatic review settings January 23, 2026 22:16
Copilot AI reviewed Jan 23, 2026
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Copilot wasn't able to review any files in this pull request.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

@github-actions
Copy link
Contributor

github-actions bot commented Jan 23, 2026

Thanks for submitting a PR to the GitHub Docs project!

In order to review and merge PRs most efficiently, we require that all PRs grant maintainer edit access before we review them. For information on how to do this, see the documentation.

@github-actions
Copy link
Contributor

github-actions bot commented Jan 23, 2026

👋 Hey there spelunker. It looks like you've modified some files that we can't accept as contributions:

  • package-lock.json

You'll need to revert all of the files you changed that match that list using GitHub Desktop or git checkout origin/main <file name>. Once you get those files reverted, we can continue with the review process. :octocat:

The complete list of files we can't accept are:

  • .devcontainer/**
  • .github/**
  • data/reusables/rai/**
  • Dockerfile*
  • src/**
  • package*.json
  • content/actions/how-tos/security-for-github-actions/security-hardening-your-deployments/**

We also can't accept contributions to files in the content directory with frontmatter type: rai or contentType: rai.

@github-actions
Copy link
Contributor

github-actions bot commented Jan 23, 2026

How to review these changes 👓

Thank you for your contribution. To review these changes, choose one of the following options:

A Hubber will need to deploy your changes internally to review.

Table of review links

Note: Please update the URL for your staging server or codespace.

This pull request contains code changes, so we will not generate a table of review links.

🤖 This comment is automatically generated.

@github-actions github-actions bot added the triage Do not begin working on this issue until triaged by the team label Jan 23, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

triage Do not begin working on this issue until triaged by the team

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@CosmicJesterX