cli-edgeworkers
cli-edgeworkers copied to clipboard
Published
20 hours ago •
akamai
akamai
[Snyk] Upgrade akamai-edgegrid from 3.1.4 to 3.5.1
Snyk has created this PR to upgrade akamai-edgegrid from 3.1.4 to 3.5.1.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
- The recommended version is 10 versions ahead of your current version.
- The recommended version was released a month ago, on 2024-09-10.
The recommended version fixes:
| Severity | Issue | PriorityScore (*) | Exploit Maturity |
|---|---|---|---|
 |
Cross-site Request Forgery (CSRF) SNYK-JS-AXIOS-6032459 |
462/1000 Why? Proof of Concept exploit, CVSS 7.1 |
Proof of Concept |
|
Improper Input Validation SNYK-JS-FOLLOWREDIRECTS-6141137 |
462/1000 Why? Proof of Concept exploit, CVSS 7.1 |
Proof of Concept |
 |
Regular Expression Denial of Service (ReDoS) SNYK-JS-AXIOS-6124857 |
462/1000 Why? Proof of Concept exploit, CVSS 7.1 |
Proof of Concept |
|
Information Exposure SNYK-JS-FOLLOWREDIRECTS-6444610 |
462/1000 Why? Proof of Concept exploit, CVSS 7.1 |
Proof of Concept |
(*) Note that the real score may have changed since the PR was raised.
Release notes
Package name: akamai-edgegrid
-
3.5.1 - 2024-09-10
3.5.1 (Sep 10, 2024)
IMPROVEMENTS:
- Updated various dependencies
-
3.5.0 - 2024-07-02
3.5.0 (Jul 02, 2024)
IMPROVEMENTS:
- Updated various dependencies
BUG FIXES:
max_bodyis deprecated, ignored and replaced with constant value of 131072 bytes
-
3.4.5 - 2024-04-03
3.4.5 (Apr 3, 2024)
BUG FIXES
- Fixed a bug where the
max_bodyparameter was not utilized when generating the authentication header. - Implemented support for the
max_bodyparameter when the configuration is provided as function parameter.
IMPROVEMENTS:
- Updated various dependencies
- Fixed a bug where the
-
3.4.4 - 2023-11-15
3.4.4 (Nov 15, 2023)
IMPROVEMENTS:
- Update various dependencies
-
3.4.3 - 2023-10-23
3.4.3 (Oct 23, 2023)
IMPROVEMENTS:
- Update various dependencies
-
3.4.2 - 2023-09-13
3.4.2 (Sep 12, 2023)
BUG FIXES
- Don't set the default
''(empty) body in the requests
IMPROVEMENTS:
- Update various dependencies
- Don't set the default
-
3.4.1 - 2023-05-09
3.4.1 (May 09, 2023)
IMPROVEMENTS:
- Update various dependencies
-
3.4.0 - 2023-01-26
3.4.0 (Jan 26, 2023)
IMPROVEMENTS:
- Reads 'max_body' (alias 'max-body') field from
.edgercconfig file with default value of131072(PR#1) - Add default Accept header (related to PR#43 and I#33)
- Add README section explaining how to use proxy (related to PR#35 and I#59)
- Add README section explaining how to change request encoding (related to PR#58)
- Update various dependencies
- Reads 'max_body' (alias 'max-body') field from
-
3.3.0 - 2022-11-08
3.3.0 (Nov 08, 2022)
IMPROVEMENTS:
- Update various dependencies
BUG FIXES
- Fix adding
User-Agentheader to the request
-
3.2.0 - 2022-04-26
3.2.0 (Apr 26, 2022)
IMPROVEMENTS:
- Add Typescript declaration file (#71)
- 3.1.4 - 2022-03-24
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information:
🔕 Ignore this dependency or unsubscribe from future upgrade PRs
