New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. Weβll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Update hawk to version 4.0.0 π #1891
Conversation
On hold until we drop support for everything below 4.0.0 https://twitter.com/eranhammer/status/662013345550065664 |
Hawk@4.1.1 would solve the Node Security Advisory that has just recently been released. |
The Node Security Advisory 77 was fixed for hawk@3.1.3 as well so you and your code are protected. Not to mention that the fix was about the server implementation of hawk, not the client one. Resources: I'm going to use this comment as references to any new PR about this issue. If you have problems with warning messages about this security issue, contact the authors of that tool to update their database. |
@simov Thanks! What's the process of updating |
No idea TBH, I guess they (https://github.com/nodesecurity/nsp) should support things like:
but I'm not sure. |
I'm updating the advisory to reflect the correct semver versions right now. |
3509ed8
to
3c51968
Compare
3c51968
to
20fa41a
Compare
20fa41a
to
054689a
Compare
Hello π
πππ
hawk just published its new version 4.0.0, which is not covered by your current version range.
If this pull request passes your tests you can publish your software with the latest version of hawk β otherwise use this branch to work on adaptions and fixes.
Happy fixing and merging π΄
The new version differs by 7 commits .
a4486be
noise
4fc847c
ES5 build. Closes #154
0e3621b
node4
e011181
es6. Closes #153
10daa13
Cleanup for #148
5e72fa2
Merge pull request #148 from LeviticusMB/parseUri-fix
9feb3f4
Rewrite parseUri to handle unusual but valid URI characters.
See the full diff.
This pull request was created by greenkeeper.io.
Tired of seeing this sponsor message? Upgrade to the supporter plan! You'll also get your pull requests faster β‘It keeps your software, up to date, all the time.