Skip to content

Commit 733a719

Browse files
xidedixxidedix
committed
chore(dependencies): overrides undici version to ^7.18.2 to mitigate 2 low severity vulnerabilities
undici 7.0.0 - 7.18.1 Undici has an unbounded decompression chain in HTTP responses on Node.js Fetch API via Content-Encoding leads to resource exhaustion - GHSA-g9mf-h72j-4rw9 node_modules/undici @angular/build >=21.0.0-next.0 Depends on vulnerable versions of undici node_modules/@angular/build 2 low severity vulnerabilities
1 parent f97e329 commit 733a719

File tree

1 file changed

+3
-0
lines changed

1 file changed

+3
-0
lines changed

package.json

Lines changed: 3 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -108,5 +108,8 @@
108108
"engines": {
109109
"node": "^20.19.0 || ^22.12.0 || ^24.0.0",
110110
"npm": ">=10"
111+
},
112+
"overrides": {
113+
"undici": "^7.18.2"
111114
}
112115
}

0 commit comments

Comments
 (0)