node-http-proxy chore: upgrade follow-redirects package in order to fix security vulnerability

chore: upgrade follow-redirects package in order to fix security vulnerability

Open GuusDeGraeve opened this issue 1 year ago • 2 comments

trafficstars

Versions of the follow-redirects package prior to version 1.15.4 are vulnerable to improper input validation. This PR upgrades the dependency, without changing the lockfile version.

See CVE-2023-26159

This should fix https://github.com/http-party/node-http-proxy/issues/1657

Feb 23 '24 12:02 GuusDeGraeve

node-http-proxy node-http-proxy copied to clipboard

chore: upgrade follow-redirects package in order to fix security vulnerability

node-http-proxy
node-http-proxy copied to clipboard