Skip to content

Commit de35daa

Browse files
jcayzacjcayzac
authoredOct 7, 2024··
[CVE 2024-47764] Update package 'cookie' (#12132)
·
create-astro@4.11.1astro@4.15.12
1 parent c8baa38 commit de35daa

File tree

3 files changed

+11
-6
lines changed

3 files changed

+11
-6
lines changed
 

‎.changeset/twenty-spoons-sneeze.md

+5
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,5 @@
1+
---
2+
'astro': patch
3+
---
4+
5+
Updates the [`cookie`](https://npmjs.com/package/cookie) dependency to avoid the [CVE 2024-47764](https://nvd.nist.gov/vuln/detail/CVE-2024-47764) vulnerability.

‎packages/astro/package.json

+1-1
Original file line numberDiff line numberDiff line change
@@ -140,7 +140,7 @@
140140
"ci-info": "^4.0.0",
141141
"clsx": "^2.1.1",
142142
"common-ancestor-path": "^1.0.1",
143-
"cookie": "^0.6.0",
143+
"cookie": "^0.7.1",
144144
"cssesc": "^3.0.0",
145145
"debug": "^4.3.7",
146146
"deterministic-object-hash": "^2.0.2",

‎pnpm-lock.yaml

+5-5
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

0 commit comments

Comments
 (0)
Please sign in to comment.