Upgrade got
Shinigami92 opened this issue · comments
Upgrade got
when sindresorhus/got#1749 is fixed, merged and released
Line 37 in 080356d
@pagekit This can easily be fixed by just updating got to at least "^9.6.0", run yarn
and then create a new release
I think a PR from me would be overkill for just a dependency update.
I'm wondering why there is no dependabot PR for this 🤔
@janschoenherr @steffans why isn't this fixed?
Please just create a little new release that fixes this vulnerability.
Our pipelines are setup that they fail if a high vulnerability was found in the dependencies and so we need to manually deploy it each time, knowing that there is a CVE...
THX