Slax - Maintenance - December 2025

_requires [Slax dependabot alerts](https://github.com/revelrylabs/slax/security/dependabot)_ 

## Background
Slax currently has 0 new security vulnerabilities (0 critical, 0 high, 0 moderate, and 0 low). The purpose of this ticket is to address Slax's security vulnerabilities.



Closed last month: 0
Critical: 0
High: 0
Moderate: 0
Low: 0

Open Dependabot pull requests:
[Bump phoenix from 1.8.1 to 1.8.2](https://github.com/revelrylabs/slax/pull/553)
[Bump plug_cowboy from 2.7.4 to 2.7.5](https://github.com/revelrylabs/slax/pull/552)
[Bump phoenix_ecto from 4.6.5 to 4.7.0](https://github.com/revelrylabs/slax/pull/551)
[Bump castore from 1.0.15 to 1.0.16](https://github.com/revelrylabs/slax/pull/550)

### Scenario: Update security vulnerabilities
Given I am an Engineer
- [ ] When I manually address dependency conflicts listed [here](https://github.com/revelrylabs/slax/security/dependabot)
- [ ] Then I test by running locally
- [ ] And I merge to master and test in production

### QA / UAT Note
Remember to add a comment when passing this forward with links to:
- [ ] the review app
- [ ] the pull request itself

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Slax - Maintenance - December 2025 #554

Background

Scenario: Update security vulnerabilities

QA / UAT Note

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Slax - Maintenance - December 2025 #554

Description

Background

Scenario: Update security vulnerabilities

QA / UAT Note

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions