From f15d53f3b9e0131885cefdd1c12d9dd5a160ea86 Mon Sep 17 00:00:00 2001
From: murderteeth <89237203+murderteeth@users.noreply.github.com>
Date: Sat, 25 Apr 2026 14:19:01 -0400
Subject: [PATCH] Update
 javascript/ql/lib/change-notes/2026-04-12-vercel-node.md

Co-authored-by: Asger F <asgerf@github.com>
---
 javascript/ql/lib/change-notes/2026-04-12-vercel-node.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/javascript/ql/lib/change-notes/2026-04-12-vercel-node.md b/javascript/ql/lib/change-notes/2026-04-12-vercel-node.md
index b248a4b3c45..39802258b02 100644
--- a/javascript/ql/lib/change-notes/2026-04-12-vercel-node.md
+++ b/javascript/ql/lib/change-notes/2026-04-12-vercel-node.md
@@ -1,4 +1,4 @@
 ---
-category: newFeature
+category: feature
 ---
 * Added support for [`@vercel/node`](https://www.npmjs.com/package/@vercel/node) Vercel serverless functions. Handlers are recognized via the `VercelRequest`/`VercelResponse` TypeScript parameter types, and standard security queries (`js/reflected-xss`, `js/request-forgery`, `js/sql-injection`, `js/command-line-injection`, etc.) now detect vulnerabilities in Vercel API route files.