Skip to content
This repository was archived by the owner on Mar 20, 2024. It is now read-only.

Updating Axios Dependency #8

Closed
BHouwens wants to merge 19 commits into from
Closed

Updating Axios Dependency #8

BHouwens wants to merge 19 commits into from

Conversation

@BHouwens
Copy link
Contributor

@BHouwens BHouwens commented Dec 19, 2023

Description

Updates the module's Axios dependency to resolve the discovered CSRF vulnerability in earlier versions of the package.

Fixes # 2282582 in HackerOne code audit

Type of Change

Please mark the appropriate option by putting an "x" inside the brackets:

  • Bug fix
  • New feature
  • Enhancement or optimization
  • Documentation update
  • Other (please specify)

Checklist

Put an "x" in the boxes that apply. If you're unsure about any of these, don't hesitate to ask. We're here to help!

  • I have tested the changes locally and they work as expected.
  • I have added necessary documentation or updated existing documentation.
  • My code follows the project's coding standards and style guidelines.
  • I have added/updated relevant tests to ensure the changes are properly covered.
  • I have checked for and resolved any merge conflicts.
  • My commits have clear and descriptive messages.

RobinP122 and others added 17 commits December 19, 2023 12:41
@RobinP122 @BHouwens
Improved init funtion
e0ea6a5 
- Only computeHost and passphrase are reqired as configs
- Added specific internal errors for config fields to help with usage
@RobinP122 @BHouwens
initNetwork should be public
ab81c43
@RobinP122 @BHouwens
Simplified initFunctions naming
75ba82c 
- initFromSeed > fromSeed
- initFromMasterKey > fromMasterKey
@RobinP122 @BHouwens
Improved initNew response format
6fc1bd2
@RobinP122 @BHouwens
Added response type for initNew
9095f21
@RobinP122 @BHouwens
changed param order
6baa09b
@RobinP122 @BHouwens
Updated README
6aa7b7d 
- DE and FR version need to be updated.
@RobinP122 @BHouwens
Changed passPhrase to passphrase
16ccf20
@RobinP122 @BHouwens
Added tests
e96b554
@RobinP122 @BHouwens
Incremented major version
ad7c44a 
Major changes in function naming and param order.
Backward compatibilty is affected.
@RobinP122 @BHouwens
Fixed inversed properties for init functions
2e6d736
@RobinP122 @BHouwens
Added verify function for signed messages
be03192
@RobinP122 @BHouwens
Add Opinionated Keypair Storage feature :
e44993e 
- Saves a KeyPairEncrypted array to LocalStorage
Will only work from a browser environement.
@RobinP122 @BHouwens
Removed console.logs
d379af5
@BHouwens
Lint fixes for publish
f422b1f
@BHouwens
Update logo for docs
02e186a
@BHouwens
Updating Axios and Jest config
112e636
@BHouwens BHouwens requested a review from RobinP122 December 19, 2023 12:01
@BHouwens BHouwens closed this Jan 3, 2024
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

@RobinP122 RobinP122 Awaiting requested review from RobinP122

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@BHouwens @RobinP122