Mike McCready

icon location Munich, Germany

Results 2194 comments of Mike McCready

Vulnerability Issue reported for tough-cookie, latest version of @cypress/request is dependent of [email protected]

- I can see https://github.com/cypress-io/request/pull/32 has now been merged, however I don't see a new [`@cypress/request` release](https://github.com/cypress-io/request/releases). At the moment the latest release is [v2.88.11](https://github.com/cypress-io/request/releases/tag/v2.88.11) from Jan 11, 2023. Edit:...

Vulnerability Issue reported for tough-cookie, latest version of @cypress/request is dependent of [email protected]

@nicogominet Can you try `npm audit fix` now? Even a clean install of an earlier version like Cypress `10.0.0` will pick up the latest version of `@cypress/request` now. ```text npx...

Vulnerability Issue reported for tough-cookie, latest version of @cypress/request is dependent of [email protected]

@G-Rath > note that @cypress/request is still vulnerable to https://github.com/advisories/GHSA-p8p7-x288-28g6, it just doesn't show on npm audit because the advisory range doesn't include the new version as vulnerable. Understood. This...

Vulnerability Issue reported for tough-cookie, latest version of @cypress/request is dependent of [email protected]

@Kathuria Is this fixed for you now or were you expecting that Cypress would force an update to the corrected version of `@cypress/request`, which would require bumping the dependency which...

Vulnerability Issue reported for tough-cookie, latest version of @cypress/request is dependent of [email protected]

@nicogominet > I'm using yarn and npm audit fix equivalent did not fix it unfortunately, but a simple yarn upgrade did the trick. Good to hear that you have the...

Vulnerability Issue reported for tough-cookie, latest version of @cypress/request is dependent of [email protected]

@Kathuria > if any alternative way can work until the version is available through cypress patch/release. One alternative is to manually install `@cypress/[email protected]`.

Vulnerability Issue reported for tough-cookie, latest version of @cypress/request is dependent of [email protected]

- The vulnerability reported in https://github.com/cypress-io/request/issues/27 will cause a remaining moderate severity issue "Server-Side Request Forgery in Request" to show up with `npm audit`. This affects Cypress `12` and earlier...

Vulnerability Issue reported for tough-cookie, latest version of @cypress/request is dependent of [email protected]

- ~~Pending PR https://github.com/cypress-io/cypress/pull/27495 is related to this issue.~~ Edit: Superseded by - #27515

WebKit browser blank page on Ubuntu

@nagash77 > @lmiller1990 opened [this PR](https://github.com/cypress-io/cypress-documentation/pull/5375/files) with a suggested workaround until we can address this issue. If other folks are encountering this in the meantime please try the change suggested...

WebKit browser blank page on Ubuntu

This should probably also be documented as a current restriction for Ubuntu in the [Webkit (Experimental)](https://docs.cypress.io/guides/guides/launching-browsers#WebKit-Experimental) documentation. Let's wait first for feedback from @lmiller1990 before taking any actions about the...