The allowInsecureRedirect is false by default, which may cause issues if your usage relies on insecure redirects. For the former behavior, you can opt in to insecure redirects by setting the option to true, but it is not recommended.
Security fix for Prototype Pollution discovery in #282. This is a minor release, although output from the inspect utility is affected by this change, we felt this change was important enough to be pushed into the next patch.
The allowInsecureRedirect is false by default, which may cause issues if your usage relies on insecure redirects. For the former behavior, you can opt in to insecure redirects by setting the option to true, but it is not recommended.
Security fix for Prototype Pollution discovery in #282. This is a minor release, although output from the inspect utility is affected by this change, we felt this change was important enough to be pushed into the next patch.
Bumps the npm_and_yarn group with 3 updates in the / directory: @babel/traverse, @cypress/request and cypress. Bumps the npm_and_yarn group with 4 updates in the /example directory: @cypress/request, cypress, axios and start-server-and-test.
Updates
@babel/traverse
from 7.13.0 to 7.24.0Release notes
Sourced from
@babel/traverse
's releases.... (truncated)
Changelog
Sourced from
@babel/traverse
's changelog.... (truncated)
Commits
ce59160
v7.24.0bd5abd5
fix: avoidpopContext
on unvisited node paths (#16305)08a057c
UseObject.hasOwn
when available (#16248)a0dd614
v7.23.91200542
fix: Don't throw ingetTypeAnnotation
when using TS+inference (#15383)e428a6d
v7.23.7d292822
fix: Crash when removing withoutProgram
(#16191)d02c1f7
v7.23.6cce807f
Bump debug to ^4.3.1 (#16164)8479012
v7.23.5Updates
@cypress/request
from 2.88.11 to 3.0.1Release notes
Sourced from
@cypress/request
's releases.Changelog
Sourced from
@cypress/request
's changelog.... (truncated)
Commits
ca62f3a
Merge pull request #44 from MikeMcC399/peg/qsfb9f625
fix(deps): peg qs to 6.10.499338c8
chore: updates related to release process (#41)c5bcf21
feat: Add allowInsecureRedirect option0664780
fix(request): update tough-cookie dep30def80
Merge pull request #39 from cypress-io/jordanpowell88/update-pkg-version6b79405
update package versionbfbb95f
Merge pull request #32 from BreakBB/fix-cve-2023-26136a67e132
pin 18.16825485a
revert back to yarn but v 18Updates
cypress
from 12.17.2 to 13.7.0Release notes
Sourced from cypress's releases.
... (truncated)
Commits
5503dd6
chore: release 13.7.0 (#29123)cfb7733
chore: release@cypress/vue2-v2
.1.00b5191b
chore: release@cypress/mount-utils-v4
.1.068a98f3
chore: bump cache to unstick percy (#29121)8253613
misc: use pnpm add for ct dependency scaffolding (#29056)9782dbb
chore: disable Firefox in system test for screenshot timeout bugfix (#29117)7a7a28f
feat: Support shadow DOM recursive selectors inside cypress snapshots sent to...854a649
feat: supported type of vue@2.7+ (#28818)6e81db7
chore(deps): update dependency cypress-example-kitchensink to v2.0.2 (#29058)d55659c
misc: update command message to truncate command info at 100 lines instead of...Updates
tough-cookie
from 2.5.0 to 4.1.3Release notes
Sourced from tough-cookie's releases.
... (truncated)
Commits
4ff4d29
4.1.3 release preparation, update the package and lib/version to 4.1.3. (#284)12d4747
Prevent prototype pollution in cookie memstore (#283)f06b72d
Fix documentation for store.findCookies, missing allowSpecialUseDomain proper...b1a8898
fix: allow set cookies with localhost (#253)ec70796
4.1.1 Patch -- allow special use domains by default (#250)d4ac580
fix: allow special use domains by default (#249)79c2f7d
4.1.0 release to NPM (#245)4fafc17
Prepare tough-cookie 4.1 for publishing (updated GitHub actions, move Dockerf...aa4396d
fix: distinguish between no samesite and samesite=none (#240)b8d7511
Modernize README (#234)Maintainer changes
This version was pushed to npm by awaterma, a new releaser for tough-cookie since your current version.
Updates
@cypress/request
from 2.88.11 to 3.0.1Release notes
Sourced from
@cypress/request
's releases.Changelog
Sourced from
@cypress/request
's changelog.... (truncated)
Commits
ca62f3a
Merge pull request #44 from MikeMcC399/peg/qsfb9f625
fix(deps): peg qs to 6.10.499338c8
chore: updates related to release process (#41)c5bcf21
feat: Add allowInsecureRedirect option0664780
fix(request): update tough-cookie dep30def80
Merge pull request #39 from cypress-io/jordanpowell88/update-pkg-version6b79405
update package versionbfbb95f
Merge pull request #32 from BreakBB/fix-cve-2023-26136a67e132
pin 18.16825485a
revert back to yarn but v 18Updates
cypress
from 12.17.2 to 13.7.0Release notes
Sourced from cypress's releases.
... (truncated)
Commits
5503dd6
chore: release 13.7.0 (#29123)cfb7733
chore: release@cypress/vue2-v2
.1.00b5191b
chore: release@cypress/mount-utils-v4
.1.068a98f3
chore: bump cache to unstick percy (#29121)8253613
misc: use pnpm add for ct dependency scaffolding (#29056)9782dbb
chore: disable Firefox in system test for screenshot timeout bugfix (#29117)7a7a28f
feat: Support shadow DOM recursive selectors inside cypress snapshots sent to...854a649
feat: supported type of vue@2.7+ (#28818)6e81db7
chore(deps): update dependency cypress-example-kitchensink to v2.0.2 (#29058)d55659c
misc: update command message to truncate command info at 100 lines instead of...Updates
tough-cookie
from 2.5.0 to 4.1.3Release notes
Sourced from tough-cookie's releases.
Superseded by #420.