Remove serialize-javascript override when mocha releases a fix

## Context

`mocha@11.7.5` depends on `serialize-javascript@^6.0.2`, which resolves to `6.0.2` — vulnerable to RCE via `RegExp.flags` and `Date.prototype.toISOString()` ([GHSA-5c6j-r48x-rmvq](https://github.com/yahoo/serialize-javascript/security/advisories/GHSA-5c6j-r48x-rmvq)).

Since no patched version of mocha is available, we added an npm override forcing `serialize-javascript@^7.0.3` for mocha.

## Action

Once mocha releases a version that depends on `serialize-javascript@^7.0.3` natively, remove the override from `package.json`.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Remove serialize-javascript override when mocha releases a fix #398

Context

Action

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Remove serialize-javascript override when mocha releases a fix #398

Description

Context

Action

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions