Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bumped follow-redirects and WDP to address GHSA-jchw-25xp-jwwc #21527

Merged
merged 1 commit into from
Jan 9, 2024

Conversation

mihaiplesa
Copy link
Collaborator

@mihaiplesa mihaiplesa commented Jan 9, 2024

For brave/brave-browser#35190

Submitter Checklist:

  • I confirm that no security/privacy review is needed and no other type of reviews are needed, or that I have requested them
  • There is a ticket for my issue
  • Used Github auto-closing keywords in the PR description above
  • Wrote a good PR/commit description
  • Squashed any review feedback or "fixup" commits before merge, so that history is a record of what happened in the repo, not your PR
  • Added appropriate labels (QA/Yes or QA/No; release-notes/include or release-notes/exclude; OS/...) to the associated issue
  • Checked the PR locally:
    • npm run test -- brave_browser_tests, npm run test -- brave_unit_tests wiki
    • npm run lint, npm run presubmit wiki, npm run gn_check, npm run tslint
  • Ran git rebase master (if needed)

Reviewer Checklist:

  • A security review is not needed, or a link to one is included in the PR description
  • New files have MPL-2.0 license header
  • Adequate test coverage exists to prevent regressions
  • Major classes, functions and non-trivial code blocks are well-commented
  • Changes in component dependencies are properly reflected in gn
  • Code follows the style guide
  • Test plan is specified in PR before merging

After-merge Checklist:

Test Plan:

@mihaiplesa mihaiplesa requested a review from a team as a code owner January 9, 2024 17:25
@github-actions github-actions bot added the CI/run-audit-deps Check for known npm/cargo vulnerabilities (audit_deps) label Jan 9, 2024
@mihaiplesa mihaiplesa enabled auto-merge (squash) January 9, 2024 17:27
Copy link

Updated dependencies detected. Learn more about Socket for GitHub ↗︎

Packages Version New capabilities Transitives Size Publisher
follow-redirects 1.14.8...1.15.4 None +0/-0 29.4 kB rubenverborgh

@wknapik wknapik disabled auto-merge January 9, 2024 20:54
@wknapik wknapik merged commit 2eb1d11 into 1.62.x Jan 9, 2024
15 checks passed
@wknapik wknapik deleted the GHSA-jchw-25xp-jwwc-1.62.x branch January 9, 2024 20:54
@github-actions github-actions bot added this to the 1.62.x - Beta milestone Jan 9, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
CI/run-audit-deps Check for known npm/cargo vulnerabilities (audit_deps)
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants