orchestrator 1.9 CVE-2026-33228 and CVE-2026-32141

[lholmquist]

Hey, I just made a Pull Request!

fix: ran yarn up -R flatted

Related to https://redhat.atlassian.net/browse/RHIDP-13183 and https://redhat.atlassian.net/browse/RHIDP-13181

✔️ Checklist

• A changeset describing the change and affected packages. (more info)
• Added or Updated documentation
• Tests for new functionality and regression tests for bug fixes
• Screenshots attached (for UI changes)

[rhdh-qodo-merge]

Code Review by Qodo

No Changes in PR

Qodo reviewed your PR and found no changes in the code

[rhdh-qodo-merge]

Review Summary by Qodo

Fix CVE-2026-33228 and CVE-2026-32141 by upgrading flatted to 3.4.2

🐞 Bug fix

Walkthroughs

Description

• Updates flatted dependency to version 3.4.2 to address CVE-2026-33228 and CVE-2026-32141
• Runs yarn up -R flatted to upgrade the package and its dependents
• Resolves security vulnerabilities in the orchestrator 1.9 release

Diagram

flowchart LR
  A["flatted<br/>dependency"] -- "upgrade to<br/>3.4.2" --> B["Security<br/>vulnerabilities<br/>fixed"]
  B --> C["CVE-2026-33228<br/>CVE-2026-32141<br/>resolved"]

Loading

File Changes

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud