Daily Autohealing Report — 2026-03-29 (UTC)

## Daily Autohealing Report — 2026-03-29 (UTC)

### Errored PRs
None. All 3 open PRs have passing CI checks:
- [#3032](https://github.com/fro-bot/.github/pull/3032) (renovate/github-actions) — All checks pass
- [#3028](https://github.com/fro-bot/.github/pull/3028) (renovate/pnpm-10.x) — All checks pass
- [#3025](https://github.com/fro-bot/.github/pull/3025) (security/picomatch-4.0.4-override) — All checks pass

### Security
2 open Dependabot alerts for picomatch (already remediated):
- **CVE-2026-33671 (HIGH)**: ReDoS vulnerability via extglob quantifiers
- **CVE-2026-33672 (MEDIUM)**: Method Injection in POSIX Character Classes

PR [#3025](https://github.com/fro-bot/.github/pull/3025) addresses both alerts by adding `picomatch: >=4.0.4` to pnpm overrides. PR is passing all checks and ready for review/merge.

### Health & Maintenance
None.
- All GitHub Actions are pinned to full commit SHAs (local reusable workflow references are internal)
- Dependencies are current (Renovate manages updates)
- Package manager version and lock file are healthy

### Developer Experience
All validation commands pass:
- `pnpm check-types` ✓
- `pnpm lint` ✓
- `pnpm check-format` ✓

### Needs Human Attention
- Review and merge PR [#3025](https://github.com/fro-bot/.github/pull/3025) to resolve the security advisories for picomatch
- Review and merge dependency update PRs [#3032](https://github.com/fro-bot/.github/pull/3032) and [#3028](https://github.com/fro-bot/.github/pull/3028) as appropriate

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Daily Autohealing Report — 2026-03-29 (UTC) #3034