Enabling this setting performs a check that the "origin" header, automatically passed by all modern browsers, matches the URL sent by each Request.
This experimental "origin" check is executed only for pages rendered on demand, and only for the requests POST, PATCH, DELETEandPUTwith one of the followingcontent-type` headers: 'application/x-www-form-urlencoded', 'multipart/form-data', 'text/plain'.
It the "origin" header doesn't match the pathname of the request, Astro will return a 403 status code and won't render the page.
Enabling this setting performs a check that the "origin" header, automatically passed by all modern browsers, matches the URL sent by each Request.
This experimental "origin" check is executed only for pages rendered on demand, and only for the requests POST, PATCH, DELETEandPUTwith one of the followingcontent-type` headers: 'application/x-www-form-urlencoded', 'multipart/form-data', 'text/plain'.
It the "origin" header doesn't match the pathname of the request, Astro will return a 403 status code and won't render the page.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
- `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
- `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency
- `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
Bumps the astro group with 4 updates: @astrojs/vercel, astro, @astrojs/markdown-remark and @astrojs/mdx.
Updates
@astrojs/vercel
from 7.5.1 to 7.5.3Release notes
Sourced from
@astrojs/vercel
's releases.Changelog
Sourced from
@astrojs/vercel
's changelog.Commits
3ff6b40
[ci] release (#10757)c704c44
[ci] formatc75eded
fix(vercel): Fix srcset generation not working on Vercel (#10756)8ca8943
[ci] release (#10656)6599b93
[ci] formata9a3694
fix: update vercel node support status (#10611)daef0e3
chore: remove console.log from test (#10653)Updates
astro
from 4.5.14 to 4.6.1Release notes
Sourced from astro's releases.
... (truncated)
Changelog
Sourced from astro's changelog.
... (truncated)
Commits
3ff6b40
[ci] release (#10757)17c2bb1
Fix typo in error message for IncorrectStrategyForI18n (#10768)ed2f4aa
Performance improvement in createAstro function (#10765)ae12a7e
[ci] format742866c
Limit imports in flight forgetCollection
(#10708)789ce23
[docs] config reference link fix (#10758)c6d59b6
fix(i18n): fallback SSR (#10755)66bc104
[ci] release (#10739)d51951c
fix(cli): call path.replace only if it is a function (#10745)f1bc3de
Update utils.ts: Optimize and simplify code (#10749)Updates
@astrojs/markdown-remark
from 5.0.0 to 5.1.0Release notes
Sourced from
@astrojs/markdown-remark
's releases.Changelog
Sourced from
@astrojs/markdown-remark
's changelog.Commits
66bc104
[ci] release (#10739)c3008fd
[ci] formatccafa8d
Adds dataLanguage property to the replacement <pre> element. (#10538)Updates
@astrojs/mdx
from 2.2.3 to 2.3.0Release notes
Sourced from
@astrojs/mdx
's releases.Changelog
Sourced from
@astrojs/mdx
's changelog.Commits
66bc104
[ci] release (#10739)683d51a
feat: upgrade the minimum Node.js maintainance LTS version (#10689)e2a780a
[ci] release (#10674)db7f9c8
Remove unnecessaryrecmaInjectImportMetaEnv
plugin for MDX (#10673)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show