Address Dependabot Security Alert No. 10: Patch undici

[t-will-gillis]

Prerequisite

1. Be a member of Hack for LA. (There are no fees to join.) If you have not joined yet, please follow the steps on our Getting Started page.
2. Before you claim or start working on an issue, please make sure you have read our How to Contribute to Hack for LA Guide.

Overview

We need to resolve the new alert Dependabot 10 and investigate how to resolve the alert.

Action Items

• The following action item serves to "link" this issue as the "tracking issue" for the CodeQL alert and to provide more details regarding the alerts:
• https://github.com/hackforla/website/security/dependabot/10
• If the recommendation is to dismiss the alert:
  • Apply the label ready for dev lead
  • Move the issue to Questions/In Review
• If the recommendation is to update code:
  • Create an issue branch and proceed with the code update
  • Test using docker to ensure that there are no changes to any affected webpage(s)
  • Proceed with pull request in the usual manner

Resources/Instructions

• Code scanning results page
• CodeQL query help for JavaScript
• How to manage CodeQL alerts

[github-actions]

Hi @t-will-gillis.

Please don't forget to add the proper labels to this issue. Currently, the labels for the following are missing:

• Complexity

NOTE: Please ignore this comment if you do not have 'write' access to this directory.

To add a label, take a look at Github's documentation here.

Also, don't forget to remove the "missing labels" afterwards.
To remove a label, the process is similar to adding a label, but you select a currently added label to remove it.

After the proper labels are added, the merge team will review the issue and add a "Ready for Prioritization" label once it is ready for prioritization.

Additional Resources:

• Wiki: How to create issues
• Wiki: How to read and interpret labels

[HackforLABot]

Hi @t-will-gillis, we notice that you are assigned to an issue that you authored. Please remember to add the Draft label to this issue while you are working on it.

[t-will-gillis]

eta: eod 2/9