Bump undici from 5.8.0 to 5.8.2
Created by: dependabot[bot]
Bumps undici from 5.8.0 to 5.8.2.
Release notes
Sourced from undici's releases.
v5.8.2
⚠ ️ Security Release⚠ ️
- CRLF Injection in Nodejs ‘undici’ via Content-Type GHSA-f772-66g8-q5h3 CVE-2022-35948
undici.requestvulnerable to SSRF using absolute URL onpathnameGHSA-8qr4-xgw6-wmr3 CVE-2022-35949What's Changed
- docs: mock different endpoints in a single file by
@ritvik130in nodejs/undici#1589- feat(webidl): better error message for ByteString converter by
@KhafraDevin nodejs/undici#1591New Contributors
@ritvik130made their first contribution in nodejs/undici#1589Full Changelog: https://github.com/nodejs/undici/compare/v5.8.1...v5.8.2
v5.8.1
What's Changed
- Do not decode the body while we are following a redirect by
@mcollinain nodejs/undici#1554- docs: Fix spelling/grammar in "Mocking Request" by
@meyfain nodejs/undici#1555- fix(MockInterceptor): callback options.headers w/ fetch by
@KhafraDevin nodejs/undici#1559- fix(fetch): ByteString checks & conversion in Headers by
@KhafraDevin nodejs/undici#1560- test: update client certificates with ones that expires in 100 years by
@jodevsain nodejs/undici#1566- fix: x-www-form-urlencoded parser keep the BOM by
@cola119in nodejs/undici#1563- fix: prioritise error events over timeouts by
@jodevsain nodejs/undici#1551- fix: add
isErrorLikeby@KhafraDevin nodejs/undici#1570- fix(types): add missing pool stats by
@SkeLLLain nodejs/undici#1573- fix: fetch a long base64 url will crash and nothing happens (close: #1574) by
@ahaoboyin nodejs/undici#1575- fix: follow signal.reason in Request by
@LiviaMedeirosin nodejs/undici#1580- docs: Fix DiagnosticsChannel sidebar link by
@trentmin nodejs/undici#1582- fix: make mock headers case-insensitive by
@cola119in nodejs/undici#1585New Contributors
@meyfamade their first contribution in nodejs/undici#1555@cola119made their first contribution in nodejs/undici#1563@SkeLLLamade their first contribution in nodejs/undici#1573@ahaoboymade their first contribution in nodejs/undici#1575@trentmmade their first contribution in nodejs/undici#1582Full Changelog: https://github.com/nodejs/undici/compare/v5.8.0...v5.8.1
Commits
-
52d1ce5Bumped v5.8.2 -
66165d6Merge pull request from GHSA-f772-66g8-q5h3 -
124f7ebMerge pull request from GHSA-8qr4-xgw6-wmr3 -
aef314cfeat(webidl): better error message for ByteString converter (#1591) -
2f4b3b6docs: mock different endpoints in a single file (#1589) -
e1e16385.8.1 -
c1dd24afix: make mock headers case-insensitive (#1585) -
1822ee6docs: Fix DiagnosticsChannel sidebar link (#1582) -
dd613effix: follow signal.reason in Request (#1580) -
40af2c0fix: fetch a long base64 url will crash and nothing happens (close: #1574) (#... - Additional commits viewable in compare view
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
-
@dependabot rebasewill rebase this PR -
@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it -
@dependabot mergewill merge this PR after your CI passes on it -
@dependabot squash and mergewill squash and merge this PR after your CI passes on it -
@dependabot cancel mergewill cancel a previously requested merge and block automerging -
@dependabot reopenwill reopen this PR if it is closed -
@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually -
@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) -
@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) -
@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)