alphagov · BenSurgisonGDS · Aug 24, 2023 · Aug 18, 2023 · Aug 22, 2023 · Aug 24, 2023
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -2,6 +2,10 @@
 
 ## Unreleased
 
+### Fixes
+
+- [#2303: Update high vulnerability node modules](https://github.com/alphagov/govuk-prototype-kit/pull/2303)
+
 ## 13.12.1
 
 ### Fixes

diff --git a/cypress/e2e/plugins/1-available-plugins-tests/install-available-plugin.cypress.js b/cypress/e2e/plugins/1-available-plugins-tests/install-available-plugin.cypress.js
@@ -56,15 +56,16 @@ describe('Management plugins: ', () => {
   after(restoreStarterFiles)
 
   it('CSRF Protection on POST action', () => {
+    // Load the plugins page, so we don't get any network errors when running the test
+    loadPluginsPage()
+    // Now run the test
     const installUrl = `${managePluginsPagePath}/install`
     cy.task('log', `Posting to ${installUrl} without csrf protection`)
     cy.request({
       url: `${managePluginsPagePath}/install`,
       method: 'POST',
       failOnStatusCode: false,
-      body: { package: plugin },
-      retryOnNetworkFailure: true,
-      timeout: 4000
+      body: { package: plugin }
     }).then(response => {
       expect(response.status).to.eq(403)
       expect(response.body).to.have.property('error', 'invalid csrf token')