bump got to 11.8.5 - Githubissues

camunda-community-hub / zeebe-client-node-js

Node.js client library for Zeebe Microservices Orchestration Engine

https://camunda-community-hub.github.io/zeebe-client-node-js/

Apache License 2.0

152 stars 38 forks source link

bump got to 11.8.5 #275

Closed nithinssabu closed 2 years ago

nithinssabu commented 2 years ago

Fixes CVE-2022-33987

Proposed Changes

Bump got to 11.8.5 to fix CVE-2022-33987
Update the import of got
Update the usage of got.post

nithinssabu commented 2 years ago

@jwulf Can you please have a look at this PR?

I'm not sure the change in the usage of got.post is correct.

We are releasing Web Modeler Self-Managed next week and would like to release it without any known vulnerabilities. See this issue on the Web Modeler repository.