Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Replace request to address security vulnerabilities #1424

Closed
kns482 opened this issue Jan 17, 2024 · 2 comments
Closed

Replace request to address security vulnerabilities #1424

kns482 opened this issue Jan 17, 2024 · 2 comments
Labels
enhancement New feature request javascript Pull requests that update Javascript code p3 Priority 3

Comments

@kns482
Copy link

kns482 commented Jan 17, 2024

The current use of the request package is deprecated and poses security vulnerabilities. Are there any plans to replace request?

image
@github-actions github-actions bot added p3 Priority 3 need triage labels Jan 17, 2024
@mnahkies
Copy link

In addition to the transient dependency on the old version of tough-cookie, request itself now has GHSA-p8p7-x288-28g6

It would be great to see it replaced with native fetch, axios, or similar.

@jeremytchang jeremytchang added javascript Pull requests that update Javascript code enhancement New feature request and removed need triage labels Aug 26, 2024
@jkaster jkaster closed this as completed Sep 12, 2024
@jkaster
Copy link
Contributor

jkaster commented Sep 12, 2024

Duplicate of #1439

@jkaster jkaster marked this as a duplicate of #1439 Sep 12, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature request javascript Pull requests that update Javascript code p3 Priority 3
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@mnahkies @jkaster @jeremytchang @kns482