update serialize-javascript to 7.0.5 to address CVE-2026-34043

[robandpdx]

PR Checklist

• Addresses an existing open issue: fixes 🚀 Feature: upgrade serialize-javascript dependency to address CVE-2026-34043 #5872
• That issue was marked as status: accepting prs
• Steps in CONTRIBUTING.md were taken

Overview

According to CVE-2026-34043 serialize-javascript < 7.0.5 is vulnerable to CPU Exhaustion Denial of Service via crafted array-like objects. This change upgrades the dependency serialize-javascript to version 7.0.5.

[linux-foundation-easycla]

• ❌ - login: @robandpdx / name: Rob Anderson . The commit (6f50013) is not authorized under a signed CLA. Please click here to be authorized. For further assistance with EasyCLA, please submit a support request ticket.

[github-actions]

👋 Hi @robandpdx, thanks for the pull request! A scan flagged a concern with it. Could you please take a look?

[pr-task-completion] This PR's body is missing [x] checks on the following tasks from the PR template.

• That issue was marked as status: accepting prs

Repositories often provide a set of tasks that pull request authors are expected to complete. Those tasks should be marked as completed with a [x] in the pull request description. Please complete those tasks and mark the checks as [x] completed.

🗺️ This message was posted automatically by OctoGuide: a bot for GitHub repository best practices.