bump browser-sync to v3.0.2 #1

PseudoNinja · 2024-04-25T22:36:10Z

Resolve Cross-Site Request Forgery Vulnerability in browser-sync@2.29.3

axios 0.8.1 - 0.27.2
Severity: moderate
Axios Cross-Site Request Forgery Vulnerability - https://github.com/advisories/GHSA-wf5p-g6vw-rhxx
No fix available
node_modules/axios
localtunnel >=1.9.0
Depends on vulnerable versions of axios
node_modules/localtunnel
browser-sync 2.24.0-rc1 - 3.0.0-alpha.2
Depends on vulnerable versions of localtunnel
node_modules/browser-sync
lite-server *
Depends on vulnerable versions of browser-sync
node_modules/lite-server

bump browser-sync to v3.0.2

73db5fd

PseudoNinja added the security Security Fixes label Apr 25, 2024

PseudoNinja merged commit 5febad3 into main Apr 25, 2024

PseudoNinja deleted the fix/upgrade-lite-server branch April 25, 2024 22:36

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

bump browser-sync to v3.0.2 #1

bump browser-sync to v3.0.2 #1

PseudoNinja commented Apr 25, 2024

bump browser-sync to v3.0.2 #1

bump browser-sync to v3.0.2 #1

Conversation

PseudoNinja commented Apr 25, 2024