From 2e2001650160190ef6039e4b794edd6a662ee4d4 Mon Sep 17 00:00:00 2001
From: orbisai0security <mediratta01.pally@gmail.com>
Date: Thu, 11 Jun 2026 00:54:27 +0000
Subject: [PATCH] fix: CVE-2026-46625 security vulnerability

Automated dependency upgrade by OrbisAI Security
---
 package.json | 2 +-
 yarn.lock    | 8 ++++----
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/package.json b/package.json
index 6b82e7614a..a8358afc8a 100644
--- a/package.json
+++ b/package.json
@@ -52,7 +52,7 @@
     "copy-to-clipboard": "^3.3.1",
     "fast-deep-equal": "^3.1.3",
     "fast-shallow-equal": "^1.0.0",
-    "js-cookie": "^3.0.0",
+    "js-cookie": "3.0.7",
     "nano-css": "^5.6.2",
     "react-universal-interface": "^0.6.2",
     "resize-observer-polyfill": "^1.5.1",
diff --git a/yarn.lock b/yarn.lock
index d969f02738..e5b13dd91e 100644
--- a/yarn.lock
+++ b/yarn.lock
@@ -12449,10 +12449,10 @@ jest@26.6.3:
     import-local "^3.0.2"
     jest-cli "^26.6.3"
 
-js-cookie@^3.0.0:
-  version "3.0.1"
-  resolved "https://registry.yarnpkg.com/js-cookie/-/js-cookie-3.0.1.tgz#9e39b4c6c2f56563708d7d31f6f5f21873a92414"
-  integrity sha512-+0rgsUXZu4ncpPxRL+lNEptWMOWl9etvPHc/koSRp6MPwpRYAhmk0dUG00J4bxVV3r9uUzfo24wW0knS07SKSw==
+js-cookie@3.0.7:
+  version "3.0.7"
+  resolved "https://registry.yarnpkg.com/js-cookie/-/js-cookie-3.0.7.tgz#0a53abfc459c8e89c85d7a38eb6cb68714965b8c"
+  integrity sha512-z/wZZgDrkNV1eA0ULjM/F9/50Ya8fbzgKneSpoPsXSGd0KnpdtHfOZWK+GcwLk+EZbS4F9RBhU+K2RgzuDaItw==
 
 js-string-escape@^1.0.1:
   version "1.0.1"