New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
fix: upgrade superagent to resolve potential CVE #9494
Conversation
Nice. Want to go ahead and remove the ignore rule in .snyk? That'd let us catch if a future change re-introduces the vulnerability.
|
Oh lol this was never merged #9470 Closing in favor of this one. |
Thanks for noticing @crenshaw-dev ! |
Signed-off-by: Alexander Matyushentsev <AMatyushentsev@gmail.com>
56a8b25
to
cdeae5d
Compare
Ops, had to re-add |
Codecov Report
@@ Coverage Diff @@
## master #9494 +/- ##
=======================================
Coverage 45.71% 45.71%
=======================================
Files 221 221
Lines 26289 26289
=======================================
Hits 12019 12019
Misses 12610 12610
Partials 1660 1660 Continue to review full report at Codecov.
|
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM!
Signed-off-by: Alexander Matyushentsev <AMatyushentsev@gmail.com>
Cherry-picked onto release-2.4 to simplify cherry-pick of #11743 |
Signed-off-by: Alexander Matyushentsev AMatyushentsev@gmail.com
PR upgrades superagent to resolve https://security.snyk.io/vuln/SNYK-JS-FORMIDABLE-2838956
Additionally removes no longer required
superagent-promise
and@types/superagent
packages