Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

fix(security): update cross-fetch to >=3.1.5 #2431

Merged
merged 2 commits into from
Jan 25, 2022
Merged

Conversation

char0n
Copy link
Member

@char0n char0n commented Jan 25, 2022

@char0n char0n self-assigned this Jan 25, 2022
@char0n char0n added cat: security security fix Security fix generated by WhiteSource version: 3.x labels Jan 25, 2022
@char0n
Copy link
Member Author

char0n commented Jan 25, 2022

Regression was introduces into node-fetch in version v2.6.3

@jimmywarting any idea here? I identified the actual commit to: node-fetch/node-fetch@18193c5

Update: I'm on it. I am amending our tests to contain valid URLs only.

@char0n char0n merged commit 275249f into master Jan 25, 2022
swagger-bot pushed a commit that referenced this pull request Jan 25, 2022
## [3.18.3](v3.18.2...v3.18.3) (2022-01-25)

### Bug Fixes

* **security:** update cross-fetch to >=3.1.5 ([#2431](#2431)) ([275249f](275249f))
@swagger-bot
Copy link
Contributor

🎉 This PR is included in version 3.18.3 🎉

The release is available on:

Your semantic-release bot 📦🚀

@char0n char0n deleted the char0n/security-fix-2 branch January 31, 2023 12:44
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants