Closed depfu[bot] closed 3 months ago
All modified and coverable lines are covered by tests :white_check_mark:
Project coverage is 88.88%. Comparing base (
a19f3d6
) to head (9960e94
).
:umbrella: View full report in Codecov by Sentry.
:loudspeaker: Have feedback on the report? Share it here.
Totals | |
---|---|
Change from base Build 9632885013: | 0.0% |
Covered Lines: | 245 |
Relevant Lines: | 273 |
🚨 Your current dependencies have known security vulnerabilities 🚨
This dependency update fixes known security vulnerabilities. Please see the details below and assess their impact carefully. We recommend to merge and deploy this as soon as possible!
Here is everything you need to know about this update. Please take a good look at what changed and the test results before merging this pull request.
What changed?
↗️ rack (indirect, 3.1.3 → 3.1.6) · Repo · Changelog
Security Advisories 🚨
🚨 Rack ReDoS Vulnerability in HTTP Accept Headers Parsing
Release Notes
3.1.6 (from changelog)
3.1.5 (from changelog)
3.1.4 (from changelog)
Does any of this look wrong? Please let us know.
Commits
See the full diff on Github. The new version differs by 8 commits:
Bump patch version.
Improved handling of invalid `accept` headers. (#2226)
Bump patch version.
Whitespace.
Add changelog for GHSA-cj83-2ww7-mvq7.
Merge pull request from GHSA-cj83-2ww7-mvq7
Bump patch version.
Don't allow authority to match path. (#2220)
Depfu will automatically keep this PR conflict-free, as long as you don't add any commits to this branch yourself. You can also trigger a rebase manually by commenting with
@depfu rebase
.All Depfu comment commands