[Snyk] Upgrade @electron/rebuild from 3.7.0 to 3.7.2

[sestinj]

Snyk has created this PR to upgrade @electron/rebuild from 3.7.0 to 3.7.2.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 2 versions ahead of your current version.

• The recommended version was released 10 months ago.

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Command Injection SNYK-JS-GLOB-14040952	436	Proof of Concept
	Prototype Pollution SNYK-JS-JSYAML-13961110	436	No Known Exploit
	Allocation of Resources Without Limits or Throttling SNYK-JS-UNDICI-14943963	436	No Known Exploit
	Directory Traversal SNYK-JS-VITE-13644406	436	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-BRACEEXPANSION-9789073	436	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-BRACEEXPANSION-9789073	436	Proof of Concept
	Relative Path Traversal SNYK-JS-VITE-12558116	436	Proof of Concept

Release notes

Package name: @electron/rebuild

• 3.7.2 - 2025-04-10
  

  3.7.2 (2025-04-10)

  Bug Fixes

  • runtime error after removing pnpm module (#1181) (2efb86d)
• 3.7.1 - 2024-11-12
  

  3.7.1 (2024-11-12)

  Bug Fixes

  • enforce extraModules to be a set of strings (#888) (6430e74)
• 3.7.0 - 2024-10-08
  

  3.7.0 (2024-10-08)

  Features

  • Change node-gyp to @ electron/node-gyp (#1157) (96b462a). If you're getting ModuleNotFoundError: No module named 'distutils' errors when installing native Node.js addons on macOS Sequoia, this is the version that will fix those errors for you!

from @electron/rebuild GitHub release notes

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.
• Max score is 1000. Note that the real score may have changed since the PR was raised.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs

---

Continue Tasks: ▶️ 2 queued — View all

---

Summary by cubic

Upgrade @electron/rebuild to ^3.7.2 in the VS Code extension. This addresses Snyk advisories and picks up upstream fixes that stabilize native module rebuilds.

^{Written for commit c46991f. Summary will update on new commits.}

[github-actions]

⚠️ PR Title Format

Your PR title doesn't follow the conventional commit format, but this won't block your PR from being merged. We recommend using this format for better project organization.

Expected Format:

<type>[optional scope]: <description>

Examples:

• feat: add changelog generation support
• fix: resolve login redirect issue
• docs: update README with new instructions
• chore: update dependencies

Valid Types:

feat, fix, docs, style, refactor, perf, test, build, ci, chore, revert

This helps with:

• 📝 Automatic changelog generation
• 🚀 Automated semantic versioning
• 📊 Better project history tracking

This is a non-blocking warning - your PR can still be merged without fixing this.

[github-actions]

✅ Review Complete

Code Review Summary

⚠️ Continue API authentication failed. Please check your CONTINUE_API_KEY.

---

[cubic-dev-ai]

No issues found across 1 file