fix: update vulnerable dependency (undici) by guptaankit015 · Pull Request #10 · WarpBuilds/docker-configure

guptaankit015 · 2026-03-23T12:10:17Z

Summary

Add npm overrides to force undici >= 6.24.0 to fix 5 vulnerabilities (CRLF injection, memory consumption, request smuggling, decompression chain, WebSocket validation)

Resolves Dependabot alerts #1, #2, #3, #4, #5

Made with Cursor

- Add npm overrides to force undici >= 6.24.0 (fixes CRLF injection, memory consumption, request smuggling, decompression chain, and WebSocket validation vulnerabilities) Resolves Dependabot alerts #1, #2, #3, #4, #5 Made-with: Cursor

Made-with: Cursor

guptaankit015 added 2 commits March 23, 2026 17:38

fix: update vulnerable dependency (undici)

ced34d1

- Add npm overrides to force undici >= 6.24.0 (fixes CRLF injection, memory consumption, request smuggling, decompression chain, and WebSocket validation vulnerabilities) Resolves Dependabot alerts #1, #2, #3, #4, #5 Made-with: Cursor

chore: regenerate dist with updated dependencies

5ad43ab

Made-with: Cursor

suryaoruganti approved these changes Mar 23, 2026

View reviewed changes

guptaankit015 merged commit 432e7d1 into main Mar 24, 2026
1 check passed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

fix: update vulnerable dependency (undici)#10

fix: update vulnerable dependency (undici)#10
guptaankit015 merged 2 commits intomainfrom
fix/dependabot-vulns

guptaankit015 commented Mar 23, 2026

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

Conversation

guptaankit015 commented Mar 23, 2026

Summary

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants