Skip to content

Commit

Permalink
chore(deps): update cookie library
Browse files Browse the repository at this point in the history 
The version 0.6.0 of the `cookie` package has a security flaw
described here (jshttp/cookie#167).

This PR does update the library to the closest fixed version.

Closes remix-run#10077
  • Loading branch information
@KnisterPeter
KnisterPeter committed Nov 7, 2024
1 parent 573764d commit 4c87028
Show file tree
Hide file tree
Showing 3 changed files with 9 additions and 3 deletions.
1 change: 1 addition & 0 deletions contributors.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -371,6 +371,7 @@
- kiyadotdev
- klauspaiva
- klirium
- knisterpeter
- knowler
- konradkalemba
- krolebord
Expand Down
2 changes: 1 addition & 1 deletion packages/remix-server-runtime/package.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -22,7 +22,7 @@
"@remix-run/router": "1.21.0-pre.0",
"@types/cookie": "^0.6.0",
"@web3-storage/multipart-parser": "^1.0.0",
"cookie": "^0.6.0",
"cookie": "^0.7.0",
"set-cookie-parser": "^2.4.8",
"source-map": "^0.7.3",
"turbo-stream": "2.4.0"
Expand Down
9 changes: 7 additions & 2 deletions pnpm-lock.yaml
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

0 comments on commit 4c87028

Please sign in to comment.