Commit 906a85f
committed
Fix high-severity dependency vulnerabilities
npm audit fix resolves 3 high-severity CVEs:
- express-rate-limit 8.2.0-8.2.1: IPv4-mapped IPv6 bypass on dual-stack
(GHSA-46wh-pxpv-q5gq)
- hono <=4.12.3: cookie attribute injection via unsanitized domain/path
(GHSA-5pq2-9x2x-5p6w), SSE control field injection (GHSA-p6xx-57qc),
arbitrary file access via serveStatic (GHSA-q5qw-h33p)
Made-with: Cursor1 parent ebb34fa commit 906a85f
1 file changed
Lines changed: 20 additions & 20 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.
0 commit comments