Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

fix: update portfinder dependency to 1.0.32 #2059

Merged
merged 2 commits into from
Oct 19, 2022
Merged

Conversation

web-padawan
Copy link
Contributor

What I did

Updated portfinder version to ^1.0.32 to ensure it gets version of async with a vulnerability fix.
See caolan/async#1828 (comment) and http-party/node-portfinder#126 (comment).

Fixes #1934

@changeset-bot
Copy link

changeset-bot bot commented Oct 19, 2022

🦋 Changeset detected

Latest commit: c36893b

The changes in this PR will be included in the next version bump.

This PR includes changesets to release 2 packages
Name Type
@web/dev-server Patch
@web/test-runner Patch

Not sure what this means? Click here to learn what changesets are.

Click here if you're a maintainer who wants to add another changeset to this PR

Copy link
Member

@Westbrook Westbrook left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM!

@web-padawan web-padawan merged commit 04e2fa7 into master Oct 19, 2022
@web-padawan web-padawan deleted the fix/bump-portfinder branch October 19, 2022 19:43
koddsson pushed a commit to koddsson/web that referenced this pull request Mar 23, 2023
koddsson pushed a commit to koddsson/web that referenced this pull request Apr 20, 2023
koddsson pushed a commit to koddsson/web that referenced this pull request Apr 24, 2023
koddsson pushed a commit to koddsson/web that referenced this pull request Jun 7, 2023
koddsson pushed a commit to koddsson/web that referenced this pull request Aug 1, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

async vulnerability (high severity) introduced through portfinder
2 participants