[Snyk] Security upgrade pdfjs-dist from 3.11.174 to 4.4.168

[rubenfiszel]

Snyk has created this PR to fix 1 vulnerabilities in the npm dependencies of this project.

Snyk changed the following file(s):

• frontend/package.json
• frontend/package-lock.json

Vulnerabilities that will be fixed with an upgrade:

	Issue	Score
	Uncontrolled Resource Consumption ('Resource Exhaustion') SNYK-JS-TAR-6476909	646

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• Max score is 1000. Note that the real score may have changed since the PR was raised.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Uncontrolled Resource Consumption ('Resource Exhaustion')

[//]: # 'snyk:metadata:{"customTemplate":{"variablesUsed":[],"fieldsUsed":[]},"dependencies":[{"name":"pdfjs-dist","from":"3.11.174","to":"4.4.168"}],"env":"prod","issuesToFix":[{"exploit_maturity":"Proof of Concept","id":"SNYK-JS-TAR-6476909","priority_score":646,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":107},{"type":"fixability","label":true,"score":214},{"type":"cvssScore","label":"6.5","score":325},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Uncontrolled Resource Consumption ('Resource Exhaustion')"}],"prId":"843bd592-6087-41a3-8dd6-82b39261305f","prPublicId":"843bd592-6087-41a3-8dd6-82b39261305f","packageManager":"npm","priorityScoreList":[646],"projectPublicId":"8784d695-c4bc-4202-8adb-a79ca78a5920","projectUrl":"https://app.snyk.io/org/ruben-UY3pih8GfV37jF5jqveDyN/project/8784d695-c4bc-4202-8adb-a79ca78a5920?utm_source=github&utm_medium=referral&page=fix-pr","prType":"fix","templateFieldSources":{"branchName":"default","commitMessage":"default","description":"default","title":"default"},"templateVariants":["updated-fix-title","priorityScore"],"type":"auto","upgrade":["SNYK-JS-TAR-6476909"],"vulns":["SNYK-JS-TAR-6476909"],"patch":[],"isBreakingChange":true,"remediationStrategy":"vuln"}'

---

🚀	This description was created by Ellipsis for commit ced64e3

Summary:

Upgrade pdfjs-dist to 4.4.168 in frontend/package.json to fix a security vulnerability.

Key points:

• Upgrade pdfjs-dist from 3.11.174 to 4.4.168 in frontend/package.json.
• Update frontend/package-lock.json to reflect the new version.
• Addresses security vulnerability SNYK-JS-TAR-6476909 related to resource exhaustion.

---

Generated with ❤️ by ellipsis.dev

[cloudflare-workers-and-pages]

Deploying windmill with    Cloudflare Pages

Latest commit:	ced64e3
Status:	🚫  Build failed.

View logs

[ellipsis-dev]

👍 Looks good to me! Reviewed everything up to ced64e3 in 8 seconds

More details

• Looked at 14 lines of code in 1 files
• Skipped 1 files when reviewing.
• Skipped posting 1 drafted comments based on config settings.

1. frontend/package.json:129

• Draft comment:
  Ensure that the updated version of pdfjs-dist is consistent with any other references in the codebase, such as import statements or documentation.
• Reason this comment was not posted:
  Confidence changes required: 50%
  The PR updates the version of pdfjs-dist in package.json. I need to ensure that the update is consistent across all relevant files.

Workflow ID: wflow_DUWbiZhHWCyQ42Gn

---

You can customize Ellipsis with 👍 / 👎 feedback, review rules, user-specific overrides, quiet mode, and more.