[Snyk] Upgrade marked from 16.4.1 to 16.4.2

[rasulkireev]

Snyk has created this PR to upgrade marked from 16.4.1 to 16.4.2.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 1 version ahead of your current version.

• The recommended version was released 24 days ago.

Release notes

Package name: marked

• 16.4.2 - 2025-11-06
  

  16.4.2 (2025-11-06)

  Bug Fixes

  • Avoid RegExp lookbehind assertions (#3816) (#3817) (c056df0)
• 16.4.1 - 2025-10-17
  

  16.4.1 (2025-10-17)

  Bug Fixes

  • resolve even-numbered backtick precedence issue (#3776) (#3786) (1da8fb5)

from marked GitHub release notes

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[coderabbitai]

Important

Review skipped

Ignore keyword(s) in the title.

Please check the settings in the CodeRabbit UI or the .coderabbit.yaml file in this repository. To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

✨ Finishing touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch snyk-upgrade-eabb3623c458faea5b79b887a39fe8cf

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[greptile-apps]

Greptile Overview

Greptile Summary

This PR upgrades the marked library from 16.4.1 to 16.4.2, a patch release that fixes a RegExp lookbehind assertion compatibility issue. The upgrade improves compatibility with older JavaScript environments.

Key Points:

• Patch version upgrade with no breaking changes
• Bug fix improves RegExp compatibility by avoiding lookbehind assertions
• marked is used in copy_html_controller.js for markdown-to-HTML conversion
• No changes to API or functionality expected
• Automated dependency upgrade via Snyk

Confidence Score: 5/5

• This PR is safe to merge with minimal risk
• This is a patch version upgrade (16.4.1 → 16.4.2) that only contains a bug fix to improve RegExp compatibility. No breaking changes, API modifications, or functionality changes are introduced. The upgrade follows semantic versioning and addresses a compatibility issue that could improve stability across different JavaScript environments.
• No files require special attention

Important Files Changed

File Analysis

Filename	Score	Overview
package.json	5/5	Minor version bump of marked from 16.4.1 to 16.4.2 for bug fix
package-lock.json	5/5	Lockfile updated with new marked version hash and integrity checksum

Sequence Diagram

sequenceDiagram
    participant Dev as Developer
    participant Snyk as Snyk Bot
    participant NPM as NPM Registry
    participant PJ as package.json
    participant PL as package-lock.json

    Dev->>Snyk: Authorize dependency upgrades
    Snyk->>NPM: Check for marked updates
    NPM-->>Snyk: v16.4.2 available (bug fix)
    Snyk->>PJ: Update marked: 16.4.1 → 16.4.2
    Snyk->>PL: Update lockfile with new hash
    Snyk->>Dev: Create PR #127
    Note over PJ,PL: Bug fix: Avoid RegExp lookbehind assertions<br/>for better JavaScript compatibility

Loading

[greptile-apps]

_{1 file reviewed, no comments}

_{Edit Code Review Agent Settings | Greptile}