[Snyk] Upgrade undici from 6.21.0 to 7.6.0 #40
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Snyk has created this PR to upgrade undici from 6.21.0 to 7.6.0. See this package in npm: undici See this project in Snyk: https://app.snyk.io/org/hashim21223445/project/bb6b95e6-5838-4860-8da6-6559f56d95f9?utm_source=github-cloud-app&utm_medium=referral&page=upgrade-pr
|
Review changes with |
Contributor
Author
|
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Snyk has created this PR to upgrade undici from 6.21.0 to 7.6.0.
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version is 23 versions ahead of your current version.
The recommended version was released 22 days ago.
Issues fixed by the recommended upgrade:
SNYK-JS-VITE-9653016
SNYK-JS-UNDICI-8641354
SNYK-JS-UNDICI-8641354
SNYK-JS-VITE-9512410
SNYK-JS-BABELHELPERS-9397697
SNYK-JS-VITE-9576207
SNYK-JS-VITE-9685035
SNYK-JS-SOLIDJS-8743940
SNYK-JS-VITE-8648411
Release notes
Package name: undici
-
7.6.0 - 2025-03-27
- Update WPT by @ github-actions in #4067
- lib: limit string split length by @ gurgunday in #4098
- docs/PULL_REQUEST_TEMPLATE: deep-link to certificate of origin by @ alxndrsn in #4102
- cache: fix typo by @ alxndrsn in #4101
- disable header de-duplication in test servers by @ alxndrsn in #4110
- CacheRevalidationHandler: add missing header to comment by @ alxndrsn in #4111
- Fix typo in Agent.md by @ Exifers in #4115
- build(deps-dev): bump @ matteo.collina/tspl from 0.1.1 to 0.2.0 by @ dependabot in #4119
- fix 4105 by @ KhafraDev in #4117
- Update WPT by @ github-actions in #4100
- cache: ensure vary & revalidation headers are case-insensitive by @ alxndrsn in #4112
- @ alxndrsn made their first contribution in #4102
- @ Exifers made their first contribution in #4115
-
7.5.0 - 2025-03-12
- feat(docs): button to switch dark and light mode by @ shivarm in #4044
- feat: add mock call history to access request configuration in test by @ blephy in #4029
- fix: Fix retry-handler.js when retry-after header is a Date by @ fgiova in #4084
- Update Cache Tests by @ github-actions in #4027
- Allow disabling autoSelectFamily in an Agent by @ hitsthings in #4070
- Removed clients with unrecoverable errors from the Pool by @ mcollina in #4088
- @ blephy made their first contribution in #4029
- @ fgiova made their first contribution in #4084
- @ hitsthings made their first contribution in #4070
-
7.4.0 - 2025-02-28
- fix: apply byte offset on Buffer.from by @ ronag in #4019
- fix: fetch body fallback random number generation by @ Uzlopak in #4023
- Add release instructions by @ mcollina in #4022
- Update Cache Tests by @ github-actions in #4020
- Update WPT by @ github-actions in #4011
- docs: document about global dispatcher and errors (#3987) by @ zuozp8 in #4014
- docs: fix incorrect method signature of
- feat(docs): copy to clipboard button by @ shivarm in #4037
- don't check AbortSignal maxListeners on some node versions by @ KhafraDev in #4045
- feat: mark
- test: fix windows wpt by @ metcoder95 in #4050
- fix: do not throw unhandled exception when data is undefined in interceptor.reply by @ frederikprijck in #4036
- fix: handle missing vary header values by @ gurgunday in #4031
- Update WPT by @ github-actions in #4028
- Update WPT by @ github-actions in #4062
- fix: fix EnvHttpProxyAgent for the Node.js bundle by @ joyeecheung in #4064
- @ zuozp8 made their first contribution in #4014
- @ tmair made their first contribution in #4030
- @ shivarm made their first contribution in #4037
- @ frederikprijck made their first contribution in #4036
- @ joyeecheung made their first contribution in #4064
-
7.3.0 - 2025-01-22
- fix: sqlite null ref by @ ronag in #4016
- fix: sqlite remove unnecessary parameter by @ ronag in #4017
- feat: sqlite add set and minor cleanup by @ ronag in #4018
-
7.2.3 - 2025-01-16
⚠️ Security Release ⚠️
- Fix typo in update cache tests action by @ flakey5 in #4008
-
7.2.2 - 2025-01-15
- Update WPT by @ github-actions in #3991
- fix: dual-stack retries infinite loop by @ luddd3 in #4001
- build(deps): bump codecov/codecov-action from 5.0.7 to 5.1.2 by @ dependabot in #3980
- build(deps): bump github/codeql-action from 3.27.0 to 3.28.1 by @ dependabot in #4003
- tests: Update Cache Tests by @ github-actions in #3965
- ReadableStreamFrom pull until cannot on empty enqueu by @ KhafraDev in #4002
- Resolve circular dependency by @ mcollina in #4006
-
7.2.1 - 2025-01-09
-
7.2.0 - 2024-12-18
-
7.1.1 - 2024-12-16
-
7.1.0 - 2024-12-03
-
7.0.0 - 2024-11-27
-
7.0.0-alpha.10 - 2024-11-27
-
7.0.0-alpha.9 - 2024-11-27
-
7.0.0-alpha.8 - 2024-11-27
-
7.0.0-alpha.7 - 2024-11-25
-
7.0.0-alpha.6 - 2024-11-20
-
7.0.0-alpha.5 - 2024-11-19
-
7.0.0-alpha.4 - 2024-11-15
-
7.0.0-alpha.3 - 2024-10-24
-
7.0.0-alpha.2 - 2024-10-09
-
7.0.0-alpha.1 - 2024-09-03
-
6.21.2 - 2025-03-13
- fix(types): add missing DNS interceptor by @ slagiewka in #4024
- [v6.x] fix wpts on windows by @ mcollina in #4093
- Removed clients with unrecoverable errors from the Pool #4088
- @ slagiewka made their first contribution in #4024
-
6.21.1 - 2025-01-16
⚠️ Security Release ⚠️
- fix(#3736): back-port 183f8e9 to v6.x by @ ggoodman in #3855
- fix(#3817): send servername for SNI on TLS (#3821) [backport] by @ metcoder95 in #3864
- fix: sending formdata bodies with http2 (#3863) [backport] by @ metcoder95 in #3866
- [Backport v6.x] fix: Fixed the issue that there is no running request when http2 goaway by @ github-actions in #3877
- types: [backport] Update return type of RetryCallback (#3851) by @ metcoder95 in #3876
-
6.21.0 - 2024-11-13
from undici GitHub release notesWhat's Changed
New Contributors
Full Changelog: v7.5.0...v7.6.0
What's Changed
New Contributors
Full Changelog: v7.4.0...v7.5.0
What's Changed
onResponseErrorby @ tmair in #4030EnvHttpProxyAgentas stable by @ aduh95 in #4049New Contributors
Full Changelog: v7.3.0...v7.4.0
What's Changed
Full Changelog: v7.2.3...v7.3.0
Fixes CVE CVE-2025-22150 GHSA-c76h-2ccp-4975 (embargoed until 22-01-2025).
What's Changed
Full Changelog: v7.2.2...v7.2.3
What's Changed
Full Changelog: v7.2.1...v7.2.2
What's Changed
New Contributors
Full Changelog: v6.21.1...v6.21.2
Fixes CVE CVE-2025-22150 GHSA-c76h-2ccp-4975 (embargoed until 22-01-2025).
What's Changed
Full Changelog: v6.21.0...v6.21.1
Important
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information: