Skip to content

fix(security): patch open Dependabot advisories (CYPACK-1174)#1187

Closed
cyrusagent wants to merge 1 commit into
mainfrom
cypack-1174
Closed

fix(security): patch open Dependabot advisories (CYPACK-1174)#1187
cyrusagent wants to merge 1 commit into
mainfrom
cypack-1174

Conversation

@cyrusagent
Copy link
Copy Markdown
Contributor

@cyrusagent cyrusagent commented May 6, 2026

Summary

Closes the two currently-open Dependabot advisories on the repo:

  • @anthropic-ai/sdk <0.91.1 (GHSA-p7fg-763f-g4gf, moderate) — insecure default file permissions in BetaLocalFilesystemMemoryTool. Fixed by bumping the direct dep in cyrus-claude-runner to ^0.94.0 and adding a root pnpm.overrides entry of >=0.91.1 so the transitive copy bundled inside @anthropic-ai/claude-agent-sdk (which still pins @anthropic-ai/sdk@^0.81.0) is also forced onto the patched version. Also bumps @anthropic-ai/claude-agent-sdk from 0.2.1230.2.129 everywhere.
  • ip-address <=10.1.0 (GHSA-v2v4-37r5-5v8g, moderate) — XSS in Address6 HTML-emitting methods. Pulled in transitively via cyrus-config-updater > @modelcontextprotocol/sdk > express-rate-limit > ip-address. Fixed by bumping @modelcontextprotocol/sdk to ^1.29.0 in cyrus-config-updater (and updating the matching root override) and adding an ip-address: >=10.1.1 override as belt-and-braces.

The @anthropic-ai/sdk 0.91.x release added a required stop_details: BetaRefusalStopDetails | null field to BetaMessage. Updated the locally-constructed assistant messages in codex-runner, cursor-runner, and gemini-runner to set stop_details: null.

pnpm audit reports No known vulnerabilities found.

Per CLAUDE.md's dependency security policy: prefer direct-dep bumps in the owning package.json, fall back to root pnpm.overrides only when a direct bump can't reach the vulnerable transitive (the SDK case requires both, since @anthropic-ai/claude-agent-sdk still pins @anthropic-ai/sdk@^0.81.0).

Supersedes

This PR supersedes:

Closes CYPACK-1174.

Test plan

  • pnpm install succeeds with new lockfile
  • pnpm audit reports zero advisories
  • pnpm build (all packages + apps) green
  • pnpm typecheck green
  • pnpm test:packages:run green (one pre-existing flake in packages/claude-runner/test/debug-logging.test.ts when DEBUG_CLAUDE_AGENT_SDK env var leaks from parent shell; passes when env var is unset — unrelated to this change)
  • ./scripts/extract-claude-tools.sh shows the same 33 tools already in availableTools; no config changes needed

@cyrusagent
fix(security): patch open Dependabot advisories (CYPACK-1174)
94df7f4 
- Bump @anthropic-ai/claude-agent-sdk 0.2.123 -> 0.2.129 across all
  consuming packages
- Bump @anthropic-ai/sdk ^0.91.0 -> ^0.94.0 in cyrus-claude-runner and
  add a root pnpm.overrides entry of >=0.91.1 to also pin the transitive
  copy bundled inside @anthropic-ai/claude-agent-sdk (still pinned to
  ^0.81.0). Resolves GHSA-p7fg-763f-g4gf (insecure default file
  permissions in BetaLocalFilesystemMemoryTool).
- Bump @modelcontextprotocol/sdk ^1.25.2 -> ^1.29.0 in
  cyrus-config-updater and bump the existing root override accordingly;
  add ip-address >=10.1.1 override to resolve GHSA-v2v4-37r5-5v8g (XSS
  in Address6 HTML-emitting methods).
- Add stop_details: null to locally constructed assistant BetaMessages
  in codex-runner, cursor-runner, and gemini-runner to satisfy the new
  required field added in @anthropic-ai/sdk 0.91.x.

pnpm audit reports zero advisories.
This was referenced May 6, 2026
Closed
Closed
@cyrusagent
Copy link
Copy Markdown
Contributor Author

cyrusagent commented May 8, 2026

Closing in favor of #1192, which addresses the same two Dependabot advisories (GHSA-p7fg-763f-g4gf and GHSA-v2v4-37r5-5v8g) under CYPACK-1182.

@cyrusagent cyrusagent closed this May 8, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@cyrusagent