Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix dependabot issues #221

Closed
wants to merge 4 commits into from
Closed

Fix dependabot issues #221

wants to merge 4 commits into from

Conversation

wadhawh
Copy link
Collaborator

@wadhawh wadhawh commented Jul 25, 2024

Description of changes:

  • This fixes a handful of dependabot security issues.
  • Some of the security issues come from packages that can't easily be upgraded to newer versions, so instead we'll use overrides to get the specific security fixes.
  • A few of the security issues come from packages that can be upgraded normally within the package.json
  • Fixed axios issue when running ci-test while running git commit, see more on the issue.

Addressed dependabot security issues:
image

Testing

  • npm run ci-test

By submitting this pull request, I confirm that you can use, modify, copy, and redistribute this contribution, under the terms of your choice.

@wadhawh wadhawh closed this Jul 26, 2024
@wadhawh wadhawh deleted the new-dependabot-fixes branch July 26, 2024 06:31
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
Extended team WIP
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@wadhawh @its-aazizi