npx @buildinternet/releases get rel_xQVQLl7bK636sgZRn_bTM
Bump hono devDependency floor to ^4.12.7 to pick up an upstream security fix. (#8255) by @renovate
hono
^4.12.7
Updated dependencies [fdac10e, 4e3cb0a, aa32bbc]:
fdac10e
4e3cb0a
aa32bbc
Fetched April 8, 2026
Hono dependency bumped to ^4.12.25 to resolve CVE-2026-54290, a CORS middleware vulnerability that reflected any origin with credentials.
Patch Changes - Updated dependencies \[ ]: - @clerk/shared@4.20.0 - @clerk/backend@3.8.2
Patch Changes - Updated dependencies \[ , , [ ](https://github.com/clerk/javascript/commit/ed2
Clerk · JavaScript SDKClerk · JavaScript SDK
