Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): update #5347

Merged
merged 1 commit into from
Oct 30, 2024
Merged

chore(deps): update #5347

merged 1 commit into from
Oct 30, 2024

Conversation

alexander-akait
Copy link
Member

@alexander-akait alexander-akait commented Oct 30, 2024
edited
Loading

  • This is a bugfix
  • This is a feature
  • This is a code refactor
  • This is a test update
  • This is a docs update
  • This is a metadata update

For Bugs and Features; did you add new tests?

Yes

Motivation / Use-Case

ref: honojs/node-server#209

fixes: #5346
fixes: #5345

Breaking Changes

No

Additional Info

@Hajime-san There is a fix, just use createAdaptorServer instead serve

@alexander-akait alexander-akait merged commit a11d81f into master Oct 30, 2024
51 checks passed
@alexander-akait alexander-akait deleted the chore-des branch October 30, 2024 16:52
@Hajime-san Hajime-san mentioned this pull request Oct 30, 2024
Closed
@Hajime-san
Copy link

Thank you for your quick response!

@gurisko
Copy link

gurisko commented Nov 14, 2024
edited
Loading

@alexander-akait Can we get a patch release with this please?

http-proxy-middleware contains a vulnerability and this PR fixed it:

┌─────────────────────┬────────────────────────────────────────────────────────┐
│ high                │ Denial of service in http-proxy-middleware             │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Package             │ http-proxy-middleware                                  │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Vulnerable versions │ <2.0.7                                                 │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Patched versions    │ >=2.0.7                                                │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ More info           │ https://github.com/advisories/GHSA-c7qv-q95q-8v27      │
└─────────────────────┴────────────────────────────────────────────────────────┘

@alexander-akait
Copy link
Member Author

You can update deps locally, we use ^, so we don't block it

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@hiroppy hiroppy Awaiting requested review from hiroppy hiroppy is a code owner

@snitin315 snitin315 Awaiting requested review from snitin315 snitin315 is a code owner

@anshumanv anshumanv Awaiting requested review from anshumanv anshumanv is a code owner

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@alexander-akait @Hajime-san @gurisko