Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Cookie dependency needs updating #114

Closed
Nickk4 opened this issue Oct 4, 2024 · 4 comments
Closed

Cookie dependency needs updating #114

Nickk4 opened this issue Oct 4, 2024 · 4 comments
Assignees
@UlisesGascon
Labels
bug

Comments

@Nickk4
Copy link

Nickk4 commented Oct 4, 2024
edited
Loading

The cookie dependency has a security vulnerability: GHSA-pxg6-pf52-xh8x
This is solved in cookie version 0.7.0, which is why this dependency needs updating.
@Nickk4 Nickk4 added the bug label Oct 4, 2024
@jamesread
Copy link

jamesread commented Oct 6, 2024
edited
Loading

cookie < 0.7.0 is affected by GHSA-pxg6-pf52-xh8x

Consider updating #105 to use 0.7.1.

@jamesread jamesread mentioned this issue Oct 6, 2024
Closed
@oFlo193o
Copy link

oFlo193o commented Oct 7, 2024

would be happy if this can be resolved soon.

@SamChatfield SamChatfield mentioned this issue Oct 8, 2024
Merged
@UlisesGascon UlisesGascon self-assigned this Oct 8, 2024
UlisesGascon pushed a commit that referenced this issue Oct 8, 2024
@SamChatfield
deps: cookie@0.7.2 (#116)
ccf1f54 
Resolves issue #114 for GHSA-pxg6-pf52-xh8x.
@UlisesGascon
Copy link
Member

Released https://www.npmjs.com/package/cookie-parser/v/1.4.7 🥳

@jamesread
Copy link

Released https://www.npmjs.com/package/cookie-parser/v/1.4.7 🥳

Thank you!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@UlisesGascon UlisesGascon

Labels
bug
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@jamesread @UlisesGascon @Nickk4 @oFlo193o