Bump handlebars from 4.7.8 to 4.7.9

[brooke-hamilton]

Description

Bump the transitive dependency handlebars from 4.7.8 to 4.7.9. This adds a pnpm override in hack/bicep-types-radius/src/autorest.bicep/package.json to force resolution of handlebars to >=4.7.9.

Type of change

• This pull request is a minor refactor, code cleanup, test improvement, or other maintenance task and does not change the functionality of Radius (issue link optional).

Contributor checklist

Please verify that the PR meets the following requirements, where applicable:

• An overview of proposed schema changes is included in a linked GitHub issue.
  • Yes
  • Not applicable
• A design document PR is created in the design-notes repository, if new APIs are being introduced.
  • Yes
  • Not applicable
• The design document has been reviewed and approved by Radius maintainers/approvers.
  • Yes
  • Not applicable
• A PR for the samples repository is created, if existing samples are affected by the changes in this PR.
  • Yes
  • Not applicable
• A PR for the documentation repository is created, if the changes in this PR affect the documentation or any user facing updates are made.
  • Yes
  • Not applicable

[radius-functional-tests]

Radius functional test overview

🔍 Go to test action run

Click here to see the test run details

Name	Value
Repository	radius-project/radius
Commit ref	442e245
Unique ID	func59119947d8
Image tag	pr-func59119947d8

• gotestsum 1.13.0
• KinD: v0.29.0
• Dapr: 1.14.4
• Azure KeyVault CSI driver: 1.4.2
• Azure Workload identity webhook: 1.3.0
• Bicep recipe location ghcr.io/radius-project/dev/test/testrecipes/test-bicep-recipes/<name>:pr-func59119947d8
• Terraform recipe location http://tf-module-server.radius-test-tf-module-server.svc.cluster.local/<name>.zip (in cluster)
• applications-rp test image location: ghcr.io/radius-project/dev/applications-rp:pr-func59119947d8
• dynamic-rp test image location: ghcr.io/radius-project/dev/dynamic-rp:pr-func59119947d8
• controller test image location: ghcr.io/radius-project/dev/controller:pr-func59119947d8
• ucp test image location: ghcr.io/radius-project/dev/ucpd:pr-func59119947d8
• deployment-engine test image location: ghcr.io/radius-project/deployment-engine:latest

Test Status

⌛ Building Radius and pushing container images for functional tests...
✅ Container images build succeeded
⌛ Publishing Bicep Recipes for functional tests...
✅ Recipe publishing succeeded
⌛ Starting ucp-cloud functional tests...
✅ ucp-cloud functional tests succeeded
✅ corerp-cloud functional tests succeeded

[Copilot]

Pull request overview

Updates the hack/bicep-types-radius/src/autorest.bicep Node workspace to ensure the transitive dependency handlebars resolves to a patched version, addressing a critical vulnerability.

Changes:

• Add a pnpm override to force handlebars to >=4.7.9.
• Update the pnpm lockfile to reflect handlebars@4.7.9 resolution.

Reviewed changes

Copilot reviewed 1 out of 2 changed files in this pull request and generated 2 comments.

File	Description
hack/bicep-types-radius/src/autorest.bicep/package.json	Adds pnpm.overrides to force handlebars to a patched version.
hack/bicep-types-radius/src/autorest.bicep/pnpm-lock.yaml	Records the override and updates the resolved handlebars version to 4.7.9.

Files not reviewed (1)

• hack/bicep-types-radius/src/autorest.bicep/pnpm-lock.yaml: Language not supported

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 51.22%. Comparing base (de4ac2d) to head (442e245).

Additional details and impacted files

@@            Coverage Diff             @@
##             main   #11534      +/-   ##
==========================================
- Coverage   51.23%   51.22%   -0.01%     
==========================================
  Files         699      699              
  Lines       44050    44050              
==========================================
- Hits        22567    22564       -3     
  Misses      19328    19328              
- Partials     2155     2158       +3     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[github-actions]

Unit Tests

    2 files  ±0    415 suites  ±0   6m 43s ⏱️ +8s
4 862 tests ±0  4 860 ✅ ±0  2 💤 ±0  0 ❌ ±0 
5 764 runs  ±0  5 762 ✅ ±0  2 💤 ±0  0 ❌ ±0 

Results for commit 442e245. ± Comparison against base commit de4ac2d.