From 994883ad223b0c4bdf4bdded818aa965aba6db70 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sun, 1 Mar 2026 15:06:36 +0000
Subject: [PATCH] build(deps): bump minimatch in /example-nextjs-consumer

Bumps [minimatch](https://github.com/isaacs/minimatch) from 3.1.2 to 3.1.5.
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](https://github.com/isaacs/minimatch/compare/v3.1.2...v3.1.5)

---
updated-dependencies:
- dependency-name: minimatch
  dependency-version: 3.1.5
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 example-nextjs-consumer/pnpm-lock.yaml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/example-nextjs-consumer/pnpm-lock.yaml b/example-nextjs-consumer/pnpm-lock.yaml
index 05576f2..5cdc17c 100644
--- a/example-nextjs-consumer/pnpm-lock.yaml
+++ b/example-nextjs-consumer/pnpm-lock.yaml
@@ -1161,6 +1161,7 @@ packages:
   next@15.4.7:
     resolution: {integrity: sha512-OcqRugwF7n7mC8OSYjvsZhhG1AYSvulor1EIUsIkbbEbf1qoE5EbH36Swj8WhF4cHqmDgkiam3z1c1W0J1Wifg==}
     engines: {node: ^18.18.0 || ^19.8.0 || >= 20.0.0}
+    deprecated: This version has a security vulnerability. Please upgrade to a patched version. See https://nextjs.org/blog/CVE-2025-66478 for more details.
     hasBin: true
     peerDependencies:
       '@opentelemetry/api': ^1.1.0