arg
arg copied to clipboard
Published
20 hours ago •
vercel
vercel
Bump tough-cookie from 4.0.0 to 4.1.3
Bumps tough-cookie from 4.0.0 to 4.1.3.
Release notes
Sourced from tough-cookie's releases.
4.1.3
Security fix for Prototype Pollution discovery in #282. This is a minor release, although output from the
inspectutility is affected by this change, we felt this change was important enough to be pushed into the next patch.4.1.2 -- Patch and Bugfix Release
What's Changed
- fix: allow set cookies with localhost by
@colincaseyin salesforce/tough-cookie#253Full Changelog: https://github.com/salesforce/tough-cookie/compare/v4.1.1...v4.1.2
4.1.1
Patch Release
What's Changed
- fix: allow special use domains by default by
@colincaseyin salesforce/tough-cookie#249- 4.1.1 Patch -- allow special use domains by default by
@awatermain salesforce/tough-cookie#250Full Changelog: https://github.com/salesforce/tough-cookie/compare/v4.1.0...v4.1.1
4.1.0
v4.1.0
Minor release, focused mainly on resolving reported issues and some minor feature work.
What's Changed
- Create CHANGELOG.md by
@ShivanKaulin salesforce/tough-cookie#189- Missing param validation issue145 by
@medelibero-sfdcin salesforce/tough-cookie#193- Create SECURITY.md by
@ShivanKaulin salesforce/tough-cookie#201- Create CODE_OF_CONDUCT.md by
@ShivanKaulin salesforce/tough-cookie#200- Fix for issue #195 by
@medelibero-sfdcin salesforce/tough-cookie#202- Add explanation and more special-use domains by
@ShivanKaulin salesforce/tough-cookie#203- Sync of constructor options for serialization by
@medelibero-sfdcin salesforce/tough-cookie#204- Returned null in case of empty cookie value by
@vsin12in salesforce/tough-cookie#196- 132 str trim not a function by
@awatermain salesforce/tough-cookie#209- Fix for issue #153 by
@medelibero-sfdcin salesforce/tough-cookie#210- Fix permuteDomain with trailing dot by
@ruoho-sfdcin salesforce/tough-cookie#216- Issue #213 -- added gh-actions flow for building and testing tough-co… by
@awatermain salesforce/tough-cookie#218- Issue #210 -- Updated workflow to use npm install. by
@awatermain salesforce/tough-cookie#220- @GH-215 -- Tests that document localhost behavior when set as domain. by
@awatermain salesforce/tough-cookie#221- fix: MemoryCookieStore methods should exist on the prototype, not on the class. by
@wjhsfin salesforce/tough-cookie#226- Unit test cases for
allowSpecialUseDomainoption by@colincaseyin salesforce/tough-cookie#225- [Snyk] Upgrade universalify from 0.1.2 to 0.2.0 by
@snyk-botin salesforce/tough-cookie#228- React Native Support by
@colincaseyin salesforce/tough-cookie#227- Adding Updating CODEOWNERS with ECCN as per Export Control Compliance by
@svc-scmin salesforce/tough-cookie#223- fix: domain match routine by
@colincaseyin salesforce/tough-cookie#236- Stop using the internal NodeJS punycode module by
@gboerin salesforce/tough-cookie#238- Initial documentation review by
@mcarey86in salesforce/tough-cookie#234- fix: distinguish between no samesite and samesite=none by
@colincaseyin salesforce/tough-cookie#240- Prepare tough-cookie 4.1 for publishing (updated GitHub actions, move… by
@awatermain salesforce/tough-cookie#242- 4.1.0 release to NPM by
@awatermain salesforce/tough-cookie#245
... (truncated)
Commits
4ff4d294.1.3 release preparation, update the package and lib/version to 4.1.3. (#284)12d4747Prevent prototype pollution in cookie memstore (#283)f06b72dFix documentation for store.findCookies, missing allowSpecialUseDomain proper...b1a8898fix: allow set cookies with localhost (#253)ec707964.1.1 Patch -- allow special use domains by default (#250)d4ac580fix: allow special use domains by default (#249)79c2f7d4.1.0 release to NPM (#245)4fafc17Prepare tough-cookie 4.1 for publishing (updated GitHub actions, move Dockerf...aa4396dfix: distinguish between no samesite and samesite=none (#240)b8d7511Modernize README (#234)- Additional commits viewable in compare view
You can trigger a rebase of this PR by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
-
@dependabot rebasewill rebase this PR -
@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it -
@dependabot mergewill merge this PR after your CI passes on it -
@dependabot squash and mergewill squash and merge this PR after your CI passes on it -
@dependabot cancel mergewill cancel a previously requested merge and block automerging -
@dependabot reopenwill reopen this PR if it is closed -
@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually -
@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) -
@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) -
@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the Security Alerts page.
Note Automatic rebases have been disabled on this pull request as it has been open for over 30 days.
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "Published by a pub.dev verified publisher"){kind=small}