Update hawk to version 4.0.0 π #1891
Conversation
|
On hold until we drop support for everything below 4.0.0 https://twitter.com/eranhammer/status/662013345550065664 |
|
Hawk@4.1.1 would solve the Node Security Advisory that has just recently been released. |
|
The Node Security Advisory 77 was fixed for hawk@3.1.3 as well so you and your code are protected. Not to mention that the fix was about the server implementation of hawk, not the client one. Resources: I'm going to use this comment as references to any new PR about this issue. If you have problems with warning messages about this security issue, contact the authors of that tool to update their database. |
@simov Thanks! What's the process of updating |
|
No idea TBH, I guess they (https://github.com/nodesecurity/nsp) should support things like: but I'm not sure. |
|
I'm updating the advisory to reflect the correct semver versions right now. |
mikeal
force-pushed
the
greenkeeper-hawk-4.0.0
branch
4 times, most recently
from
3509ed8
to
3c51968
Compare
mikeal
force-pushed
the
greenkeeper-hawk-4.0.0
branch
from
3c51968
to
20fa41a
Compare
mikeal
force-pushed
the
greenkeeper-hawk-4.0.0
branch
from
20fa41a
to
054689a
Compare
Hello π
πππ
hawk just published its new version 4.0.0, which is not covered by your current version range.
If this pull request passes your tests you can publish your software with the latest version of hawk β otherwise use this branch to work on adaptions and fixes.
Happy fixing and merging π΄
The new version differs by 7 commits .
a4486benoise4fc847cES5 build. Closes #1540e3621bnode4e011181es6. Closes #15310daa13Cleanup for #1485e72fa2Merge pull request #148 from LeviticusMB/parseUri-fix9feb3f4Rewrite parseUri to handle unusual but valid URI characters.See the full diff.
This pull request was created by greenkeeper.io.
Tired of seeing this sponsor message? Upgrade to the supporter plan! You'll also get your pull requests faster β‘It keeps your software, up to date, all the time.