-
-
Notifications
You must be signed in to change notification settings - Fork 6.3k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
fix(deps): update sirv to 2.0.3 #13057
Conversation
Run & review this pull request in StackBlitz Codeflow. |
url.pathname = encodeURIComponent(newPathname) | ||
url.pathname = encodeURI(newPathname) |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
This part was returning %2Ffoo%2Fbar
when url.pathname
was /foo/bar
. But because lukeed/sirv#149 changed decodeURIComponent
to decodeURI
, this no longer works.
The reason why this part was using encodeURIComponent
is #8979. In that time, we weren't able to use decodeURI
in line 162 because of #8804.
expect(await page.textContent('.unsafe-fetch-8498-2')).toMatch('') | ||
expect(await page.textContent('.unsafe-fetch-8498-2')).toBe('') |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
IIUC This line wasn't testing anything. 😅 .toMatch('')
returns always true.
https://stackblitz.com/edit/vitest-dev-vitest-byvrxk?file=test%2Fbasic.test.ts
/ecosystem-ci run |
📝 Ran ecosystem CI: Open
|
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Looks good to me! But given that this touches code paths that are security sensitive, I think we should merge it once we start the beta for the next minor.
@sapphi-red feel free to merge this PR after resolving the conflicts, and we can try it out during the 4.4 beta. And then we could merge #13059 |
Description
This PR updates sirv from 2.0.2 to 2.0.3.
The update includes two bug fixes (lukeed/sirv#147, lukeed/sirv#149).
lukeed/sirv#149 requires changes in code around the static middleware. This PR also includes that.
Related PRs around that code: #8804 #8979 #9173
Additional context
What is the purpose of this pull request?
Before submitting the PR, please make sure you do the following
fixes #123
).