update copilot to 25.1.0#8695

vaadin-bot · 2026-03-25T07:02:43Z

No description provided.

github-actions · 2026-03-25T08:03:54Z

🚫 Vulnerabilities:
- Vulnerabilities in: pkg:npm/serialize-javascript@6.0.2 [GHSA-5c6j-r48x-rmvq] (osv-bomber)
  ·
- Vulnerabilities in: pkg:npm/glob@11.1.0 [CVE-2025-64756] (oss-bomber)
  ·
🟠 Known Vulnerabilities:
- Vulnerabilities in: pkg:maven/me.friwi/jcef-api@jcef-ca49ada%2Bcef-135.0.20%2Bge7de5c3%2Bchromium-135.0.7049.85 [CVE-2024-21639, CVE-2024-21640, CVE-2024-9410] (owasp)
  👌 Wait for the update from the jcefmaven community. Meanwhile the swing-kit is supposed to be used with fixed websites and not to browse the internet, we have a check for that, so the only possible attacker would be the same person that created the swing application, aka our customer devs. so this vulnerability is not classified by us as critical issue
  · cpe:2.3:a:chromiumembedded:chromium_embedded_framework::::::::
  · cpe:2.3:a:ada:ada::::::::
📔 No Core License Issues
📔 No License Issues
🟠 Changes in 25.1-SNAPSHOT since V25.1.0-rc2
- 159 packages modified (49 external, 110 vaadin)
- 752 packages same (627 external, 125 vaadin)

update copilot to 25.1.0

77e829b

ZheSun88 approved these changes Mar 25, 2026

View reviewed changes

ZheSun88 enabled auto-merge (squash) March 25, 2026 07:09

update cve list

a4d9aaa

ZheSun88 merged commit b632b11 into 25.1 Mar 25, 2026
4 checks passed

ZheSun88 deleted the update-copilot-25.1.0-1774422160 branch March 25, 2026 08:40

Provide feedback