chore(deps): bump js-yaml from 4.1.0 to 4.1.1

[dependabot]

Bumps js-yaml from 4.1.0 to 4.1.1.

Changelog

Sourced from js-yaml's changelog.

[4.1.1] - 2025-11-12

Security

• Fix prototype pollution issue in yaml merge (<<) operator.

Commits

• cc482e7 4.1.1 released
• 50968b8 dist rebuild
• d092d86 lint fix
• 383665f fix prototype pollution in merge (<<)
• 0d3ca7a README.md: HTTP => HTTPS (#678)
• 49baadd doc: 'empty' style option for !!null
• ba3460e Fix demo link (#618)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Preview	Updated (UTC)
frontend	Ready	Preview	Nov 15, 2025 10:58am

[github-actions]

📦 Next.js Bundle Analysis for @serlo/frontend

This analysis was generated by the Next.js Bundle Analysis action. 🤖

🎉 Global Bundle Size Decreased

Page	Size (compressed)
global	104.69 KB (-3 B)

Details

The global bundle is the javascript bundle that loads alongside every page. It is in its own category because its impact is much higher - an increase to its size means that every page on your website loads slower, and a decrease means every page loads faster.

Any third party scripts you have added directly to your app using the <script> tag are not accounted for in this analysis

If you want further insight into what is behind the changes, give @next/bundle-analyzer a try!

Sixty-nine Pages Changed Size

The following pages changed size from the code in this PR compared to its base branch:

Page	Size (compressed)	First Load
/	83.36 KB (🟡 +624 B)	188.05 KB
/404	40.05 KB (🟡 +617 B)	144.74 KB
/500	40.05 KB (🟡 +616 B)	144.73 KB
/[...slug]	107.65 KB (🟡 +607 B)	212.34 KB
/___batch_license_tool	53.85 KB (🟡 +617 B)	158.54 KB
/___bot_or_not	115.01 KB (🟡 +617 B)	219.69 KB
/___cf_not_found	38.27 KB (🟡 +616 B)	142.96 KB
/___design	143.56 KB (🟡 +614 B)	248.25 KB
/___editor_preview	89.01 KB (🟡 +613 B)	193.7 KB
/___graphql	271.3 KB (🟡 +7 B)	375.99 KB
/___old_comments	97.37 KB (🟡 +614 B)	202.06 KB
/auth/error	63.53 KB (🟡 +1.03 KB)	168.22 KB
/auth/login	88.15 KB (🟡 +906 B)	192.84 KB
/auth/logout	78.84 KB (🟡 +1.03 KB)	183.53 KB
/auth/oauth/consent	53 KB (🟡 +615 B)	157.69 KB
/auth/oauth/login	88.15 KB (🟡 +908 B)	192.84 KB
/auth/oauth/logout	78.84 KB (🟡 +1.02 KB)	183.53 KB
/auth/recovery	72.75 KB (🟡 +738 B)	177.43 KB
/auth/registration	73.71 KB (🟡 +901 B)	178.39 KB
/auth/settings	73.77 KB (🟡 +886 B)	178.46 KB
/auth/verification	73.08 KB (🟡 +920 B)	177.77 KB
/authorization/roles	64.62 KB (🟡 +617 B)	169.31 KB
/backend	40.33 KB (🟡 +616 B)	145.02 KB
/biologie	175.71 KB (🟡 +615 B)	280.4 KB
/chemie	175.71 KB (🟡 +615 B)	280.4 KB
/consent	38.85 KB (🟡 +617 B)	143.53 KB
/content-only/[...slug]	96.58 KB (🟡 +609 B)	201.27 KB
/discussions	93.91 KB (🟡 +614 B)	198.6 KB
/editor	58.26 KB (🟡 +617 B)	162.95 KB
/entity/create/[type]/[taxonomyId]	159.35 KB (🟢 -411 B)	264.04 KB
/entity/license/update/[id]	63.43 KB (🟡 +616 B)	168.12 KB
/entity/repository/add-revision/[...id]	159.01 KB (🟢 -414 B)	263.69 KB
/entity/repository/compare/[entity_id]/[revision_id]	111.57 KB (🟡 +607 B)	216.25 KB
/entity/repository/history/[id]	67.79 KB (🟡 +618 B)	172.48 KB
/entity/taxonomy/update/[id]	67.73 KB (🟡 +616 B)	172.42 KB
/entity/unrevised	45.11 KB (🟡 +616 B)	149.8 KB
/event/history	124.56 KB (🟡 +613 B)	229.25 KB
/event/history/[...slug]	125.55 KB (🟡 +613 B)	230.23 KB
/event/history/user/profile/[username]	127.93 KB (🟡 +613 B)	232.62 KB
/gleichungs-app	162.19 KB (🟡 +613 B)	266.88 KB
/informatik	175.71 KB (🟡 +615 B)	280.4 KB
/jobs/[[...jobId]]	49.63 KB (🟡 +615 B)	154.32 KB
/legal	38.33 KB (🟡 +616 B)	143.02 KB
/lerntipps	175.71 KB (🟡 +617 B)	280.4 KB
/license/detail/[id]	83 KB (🟡 +614 B)	187.69 KB
/mathe	175.71 KB (🟡 +617 B)	280.4 KB
/mathe-aufgaben	39.07 KB (🟡 +615 B)	143.76 KB
/mathe-pruefungen/[region]	89.57 KB (🟢 -842 B)	194.26 KB
/metadata	48.01 KB (🟡 +614 B)	152.7 KB
/nachhaltigkeit	175.72 KB (🟡 +615 B)	280.41 KB
/page/create	159.02 KB (🟢 -414 B)	263.7 KB
/pages	56.24 KB (🟡 +615 B)	160.93 KB
/privacy	38.81 KB (🟡 +617 B)	143.5 KB
/search	40.33 KB (🟡 +615 B)	145.02 KB
/spenden	38.08 KB (🟡 +615 B)	142.77 KB
/subscriptions/manage	107.54 KB (🟡 +615 B)	212.23 KB
/taxonomy/term/[copyOrMove]/batch/[id]	70.1 KB (🟡 +616 B)	174.78 KB
/taxonomy/term/create/[parent_id]/[id]	158.72 KB (🟢 -413 B)	263.41 KB
/taxonomy/term/sort/entities/[id]	89.63 KB (🟡 +618 B)	194.32 KB
/team	46.14 KB (🟡 +615 B)	150.83 KB
/terms	38.35 KB (🟡 +615 B)	143.04 KB
/user/[...userslug]	38.15 KB (🟡 +616 B)	142.84 KB
/user/me	38.14 KB (🟡 +616 B)	142.83 KB
/user/notifications	126.8 KB (🟡 +613 B)	231.49 KB
/user/profile/[username]	192.96 KB (🟢 -846 B)	297.65 KB
/user/settings	135.63 KB (🟢 -838 B)	240.32 KB
/uuid/recycle-bin	79.26 KB (🟡 +617 B)	183.95 KB
/wallet	44.52 KB (🟡 +618 B)	149.21 KB
/willkommen	82.93 KB (🟢 -848 B)	187.62 KB

Details

Only the gzipped size is provided here based on an expert tip.

First Load is the size of the global bundle plus the bundle for the individual page. If a user were to show up to your website and land on a given page, the first load size represents the amount of javascript that user would need to download. If next/link is used, subsequent page loads would only need to download that page's bundle (the number in the "Size" column), since the global bundle has already been downloaded.

Any third party scripts you have added directly to your app using the <script> tag are not accounted for in this analysis

Next to the size is how much the size has increased or decreased compared with the base branch of this PR. If this percentage has increased by 20% or more, there will be a red status indicator applied, indicating that special attention should be given to this.