Skip to content
Permalink

Comparing changes

Choose two branches to see what’s changed or to start a new pull request. If you need to, you can also or learn more about diff comparisons.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also . Learn more about diff comparisons here.
base repository: olivesjin/JavaGuide
Failed to load repositories. Confirm that selected base ref is valid, then try again.
Loading
base: main
Choose a base ref
...
head repository: Snailclimb/JavaGuide
Failed to load repositories. Confirm that selected head ref is valid, then try again.
Loading
compare: main
Choose a head ref
Checking mergeability… Don’t worry, you can still create the pull request.
  • 3 commits
  • 4 files changed
  • 2 contributors

Commits on Apr 16, 2026

  1. fix: 修复 Dependabot 安全告警,升级间接依赖版本 

    通过 pnpm overrides 强制升级以下间接依赖:
- vite >=7.3.2 (High: 路径遍历、文件读取、fs.deny 绕过)
- dompurify >=3.3.2 (Medium: XSS、URI 验证绕过)
- lodash-es >=4.18.0 (High: 代码注入、原型污染)
- @xmldom/xmldom >=0.9.9 (High: XML 注入)
- picomatch >=4.0.4 (High: ReDoS、方法注入)
- immutable >=5.1.5 (High: 原型污染)
- markdown-it >=14.1.1 (Medium: ReDoS)
    @Snailclimb
    Snailclimb committed Apr 16, 2026
    Configuration menu
    Copy the full SHA
    dfda90c View commit details
    Browse the repository at this point in the history

  2. Update interview-guide.md

    @Snailclimb
    Snailclimb committed Apr 16, 2026
    Configuration menu
    Copy the full SHA
    33a7c3a View commit details
    Browse the repository at this point in the history

  3. Update mysql-questions-01.md (Snailclimb#2830) 

    布尔类型使用bit更合理,类型介绍里增加了bit类型和binary类型
    @173846635
    173846635 authored Apr 16, 2026
    Configuration menu
    Copy the full SHA
    8b9d7da View commit details
    Browse the repository at this point in the history
Loading