Skip to content

Commit

Permalink
package udpates (#417)
Browse files Browse the repository at this point in the history 
* package udpates

* request / tough-cookie extension

* typofix

* npm update
  • Loading branch information
@carrolp
carrolp authored Mar 11, 2024
1 parent 797b259 commit 6a57373
Show file tree
Hide file tree
Showing 3 changed files with 209 additions and 187 deletions.
4 changes: 2 additions & 2 deletions audit-ci.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -14,14 +14,14 @@
"GHSA-p8p7-x288-28g6": {
"active": true,
"notes": "The Request package through 2.88.2 for Node.js allows a bypass of SSRF mitigations via an attacker-controller server that does a cross-protocol redirect (HTTP to HTTPS, or HTTPS to HTTP)",
"expiry": "2024-02-30"
"expiry": "2024-06-30"
}
},
{
"GHSA-72xf-g2v4-qvf3": {
"active": true,
"notes": "The Request package (see above) requires tough-cookie at a vulnerable version.",
"expiry": "2024-02-30"
"expiry": "2024-06-30"
}
}
],
Expand Down
Loading

0 comments on commit 6a57373

Please sign in to comment.