-
Notifications
You must be signed in to change notification settings - Fork 2k
fix: update follow-redirects to 1.14.7 #1564
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Conversation
Hey @indexzero by any chance would you be able (or perhaps know of someone with permissions) to merge and release this to resolve the security concerns? :) |
Maybe @jcrugzz? @james-portelli-cko As you may know (but if so, then for readers following along), this isn't necessary to fix the vulnerability warnings. If you reinstall |
@Trott I've deleted node_modules, removed package-lock, then reinstall http-proxy and I'm still getting old follow-redirects : /
|
The snippet you are showing does not necessarily mean that a vulnerable version of follow-redirects is installed. Use |
I suppose this repo is inactive. |
Fixes: #1563