Skip to content

v2.1.2
Compare
Choose a tag to compare
@Klathmon Klathmon released this 09 May 11:25
· 33 commits to master since this release
v2.1.2
075c041
This commit was signed with the committer’s verified signature.
Klathmon Gregory Benner
GPG key ID: 20AAFB5935109E08
Learn about vigilant mode.

Small release.

  • Bump dependencies up to their latest versions
  • Pin a transitive dependency (tunnel-agent) to their latest version to address a possible vulnerability.

Yarn users will get the second fix, however npm users will not (as npm doesn't support the resolutions field in the package.json).

It shouldn't be a problem however as the vulnerable line is never called in this library or any of its dependencies as far as I can tell.

For more information see #60

NOTE! This release has a bug where the publish did not include all files in the package! Please upgrade to v2.1.5 for the fix. See #61 for more information.

Assets 2