Open toplenboren opened 1 year ago
Latest commit: c648fb420dec6ac71706d59a7a6f13f53c81e417
The changes in this PR will be included in the next version bump.
Not sure what this means? Click here to learn what changesets are.
Click here if you're a maintainer who wants to add another changeset to this PR
Hello!
We are using
keystone-v5
in our open source condominium management software.We recently encountered a bug, when keystone crashes while processing
multipart
requests. It seems that the issue might be related to the old versions of thedicer
andbusboy
packages.Our issue looks awfully similar to this security flaw: GHSA-wm7h-9275-46v2 and has already been fixed in the apollo-graphql v15.0.0 release.
Considering this, we decided to bump the dependency from
11.0.0
to version15.0.2
.P.S Our project is too big to migrate to v6 fast :-( that's why I decided to patch v5 instead.