Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update version of vite #5

Merged
merged 1 commit into from
Jan 20, 2024
Merged

Update version of vite #5

merged 1 commit into from
Jan 20, 2024

Conversation

fersaru
Copy link
Collaborator

@fersaru fersaru commented Jan 20, 2024

When I setup the project once more a vulnerability was found for vite. This fix is purely the result of npm audit fix.
To show the vulnerability I run as suggested:

npm audit

giving me the following result:

# npm audit report

vite  5.0.0 - 5.0.11

Severity: high
Vite dev server option `server.fs.deny` can be bypassed when hosted on case-insensitive filesystem - https://github.com/advisories/GHSA-c24v-8rfc-w8vw
fix available via `npm audit fix`
node_modules/vite

1 high severity vulnerability

@fersaru fersaru requested a review from falk-werner as a code owner January 20, 2024 09:41
@falk-werner falk-werner merged commit 41e818b into main Jan 20, 2024
2 checks passed
@falk-werner falk-werner deleted the fix/vite-version branch January 20, 2024 09:47
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@falk-werner falk-werner falk-werner approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@fersaru @falk-werner