Skip to content

Commit

Permalink
package updates (#337)
Browse files Browse the repository at this point in the history
* package updates

* extend audit expiry

* extend audit expiry
  • Loading branch information
carrolp authored Jan 8, 2024
1 parent f719f94 commit 74ed105
Show file tree
Hide file tree
Showing 3 changed files with 79 additions and 79 deletions.
4 changes: 2 additions & 2 deletions audit-ci.json
Original file line number Diff line number Diff line change
Expand Up @@ -14,14 +14,14 @@
"GHSA-p8p7-x288-28g6": {
"active": true,
"notes": "The Request package through 2.88.2 for Node.js allows a bypass of SSRF mitigations via an attacker-controller server that does a cross-protocol redirect (HTTP to HTTPS, or HTTPS to HTTP)",
"expiry": "2023-12-31"
"expiry": "2024-02-30"
}
},
{
"GHSA-72xf-g2v4-qvf3": {
"active": true,
"notes": "The Request package (see above) requires tough-cookie at a vulnerable version.",
"expiry": "2023-12-31"
"expiry": "2024-02-30"
}
} ],
"skip-dev": true
Expand Down
152 changes: 76 additions & 76 deletions package-lock.json

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion package.json
Original file line number Diff line number Diff line change
Expand Up @@ -36,7 +36,7 @@
"license": "Apache-2.0",
"dependencies": {
"@kubernetes/client-node": "^0.16.3",
"@razee/request-util": "^1.0.1",
"@razee/request-util": "^1.0.2",
"bunyan": "^1.8.15",
"clone": "^2.1.2",
"deepmerge": "^4.2.2",
Expand Down

0 comments on commit 74ed105

Please sign in to comment.