search

gianpaj / walnut.tv

🔥 Discover trending videos from Reddit and curated YouTube channels – Soon using Next.js. See `dev` branch
https://walnut.tv
12 stars 6 forks source link

Update dependency follow-redirects to 1.14.8 [SECURITY] #123

Closed renovate[bot] closed 2 years ago

renovate[bot] commented 2 years ago

WhiteSource Renovate

This PR contains the following updates:

Package Change
follow-redirects 1.14.7 -> 1.14.8

GitHub Vulnerability Alerts

CVE-2022-0536

Exposure of Sensitive Information to an Unauthorized Actor in NPM follow-redirects prior to 1.14.8.

Configuration

📅 Schedule: "" (UTC).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

This PR has been generated by WhiteSource Renovate. View repository job log here.

ghost commented 2 years ago

Sider has detected 1 warning on analyzing the commit 8482583.

If the errors persist even after retrying, the following actions may resolve them:

If you still have problems, feel free to ask us via chat. 💬

You can turn off such notifications if unnecessary.