[Snyk] Upgrade @langchain/textsplitters from 0.0.3 to 0.1.0

[graymalkin77]

Snyk has created this PR to upgrade @langchain/textsplitters from 0.0.3 to 0.1.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 2 versions ahead of your current version.

• The recommended version was released a year ago.

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Deserialization of Untrusted Data SNYK-JS-LANGCHAINCORE-14563113	853	Proof of Concept

Release notes

Package name: @langchain/textsplitters

• 0.1.0 - 2024-09-13
• 0.1.0-rc.0 - 2024-09-07
• 0.0.3 - 2024-06-06

from @langchain/textsplitters GitHub release notes

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.
• Max score is 1000. Note that the real score may have changed since the PR was raised.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[Copilot]

Pull request overview

This PR upgrades the @langchain/textsplitters dependency from version 0.0.3 to 0.1.0 to address a critical deserialization vulnerability (SNYK-JS-LANGCHAINCORE-14563113) with a severity score of 853.

• Updates @langchain/textsplitters dependency to address critical security vulnerability

Files not reviewed (1)

• extensions/confluence/package-lock.json: Language not supported

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[graymalkin77]

✅ Snyk checks have passed. No issues have been found so far.

Status	Scanner	Critical	High	Medium	Low	Total (0)
✅	Open Source Security	0	0	0	0	0 issues
✅	Licenses	0	0	0	0	0 issues

💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse.

[graymalkin77]

Recent versions of LangChain (v0.1.0 and newer) have moved text_splitter functionality into a separate langchain-text-splitters package to improve modularity. This is a breaking change that requires updating import statements. Older, now-deprecated functions have been moved to a langchain-classic package.

Source: LangChain Releases
Recommendation: Update your code to import from the new package. For example:
from langchain_text_splitters import RecursiveCharacterTextSplitter

Notice 🤖: This content was augmented using artificial intelligence. AI-generated content may contain errors and should be reviewed for accuracy before use.