search

AppiumTestDistribution / appium-device-farm

This is an Appium 2.0 plugin designed to manage and create driver sessions on available devices.
https://devicefarm.org
Other
341 stars 103 forks source link

ci(deps): update dependency http-proxy-middleware to v3.0.3 [security] #1422

Open renovate[bot] opened 1 month ago

renovate[bot] commented 1 month ago

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
http-proxy-middleware 3.0.2 -> 3.0.3 age adoption passing confidence

GitHub Vulnerability Alerts

CVE-2024-21536

Versions of the package http-proxy-middleware before 2.0.7, from 3.0.0 and before 3.0.3 are vulnerable to Denial of Service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. An attacker could kill the Node.js process and crash the server by making requests to certain paths.

Release Notes

chimurai/http-proxy-middleware (http-proxy-middleware) ### [`v3.0.3`](https://redirect.github.com/chimurai/http-proxy-middleware/blob/HEAD/CHANGELOG.md#v303) [Compare Source](https://redirect.github.com/chimurai/http-proxy-middleware/compare/v3.0.2...v3.0.3) - fix(pathFilter): handle errors

Configuration

πŸ“… Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

β™» Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

πŸ”• Ignore: Close this PR and you won't be reminded about this update again.

This PR was generated by Mend Renovate. View the repository job log.

vercel[bot] commented 1 month ago

The latest updates on your projects. Learn more about Vercel for Git β†—οΈŽ

Name Status Preview Comments Updated (UTC)
appium-device-farm-bre4 βœ… Ready (Inspect) Visit Preview πŸ’¬ Add feedback Nov 18, 2024 5:17am