[SEC] Audit-Fail - Vulnerability in dependency `js-yaml` (moderate)

### Description

when running bun audit, a vulnerability is found in the dependency` js-yaml` from `@hey-api/openapi-ts › @hey-api/json-schema-ref-parser › js-yaml`

```bun audit v1.3.2 (b131639c)
js-yaml  <4.1.1
  eslint › @eslint/eslintrc › js-yaml
  @hey-api/openapi-ts › @hey-api/json-schema-ref-parser › js-yaml
  moderate: js-yaml has prototype pollution in merge (<<) - https://github.com/advisories/GHSA-mh29-5h37-fv8m

1 vulnerabilities (1 moderate)
```

info: https://github.com/advisories/GHSA-mh29-5h37-fv8m


**Workaround:**

override the depency to >=4.1.1 in `package.json`:

```
  "overrides": {
    "js-yaml": "^4.1.1"
  },
```

### Reproducible example or configuration

not needed

### OpenAPI specification (optional)

_No response_

### System information (optional)

_No response_

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

[SEC] Audit-Fail - Vulnerability in dependency `js-yaml` (moderate) #2995

Description

Reproducible example or configuration

OpenAPI specification (optional)

System information (optional)

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Uh oh!

[SEC] Audit-Fail - Vulnerability in dependency js-yaml (moderate) #2995

Description

Description

Reproducible example or configuration

OpenAPI specification (optional)

System information (optional)

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions

[SEC] Audit-Fail - Vulnerability in dependency `js-yaml` (moderate) #2995