fix(deps): bump undici#829
Conversation
Bumps and [undici](https://github.com/nodejs/undici). These dependencies needed to be updated together. Updates `undici` from 7.21.0 to 7.24.2 - [Release notes](https://github.com/nodejs/undici/releases) - [Commits](nodejs/undici@v7.21.0...v7.24.2) Updates `undici` from 6.23.0 to 6.24.1 - [Release notes](https://github.com/nodejs/undici/releases) - [Commits](nodejs/undici@v7.21.0...v7.24.2) --- updated-dependencies: - dependency-name: undici dependency-version: 7.24.2 dependency-type: indirect - dependency-name: undici dependency-version: 6.24.1 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
✅ Deploy Preview for phillips-seldon ready!
To edit notification comments on pull requests, go to your Netlify project configuration. |
|
🚀 Storybook preview is ready. • Preview: https://68b9f094608b90f3cfec5a06-ctmidgqypt.chromatic.com/ |
Dependency Upgrade Risk AssessmentRisk Level: What This Library Does & How We Use Itundici is Node.js's built-in HTTP/1.1 client. In seldon it is a transitive dependency (not a direct dep) used by test/build tooling. What Changed7.21.0 → 7.24.2 (patch/minor within major 7) Risk Rationale
Regression Tests ChecklistBefore merging, confirm:
|
Dependency Upgrade Risk AssessmentRisk Level: What This Library Does & How We Use Itundici is Node.js's built-in HTTP client. In seldon it is a transitive dependency used by build/test tooling — not a direct dep in package.json. What Changed7.21.0 → 7.24.2 (patch/minor within major 7) Risk Rationale
Regression Tests ChecklistBefore merging, confirm:
|
|
Superseded by #887. |
Bumps and undici. These dependencies needed to be updated together.
Updates
undicifrom 7.21.0 to 7.24.2Release notes
Sourced from undici's releases.
... (truncated)
Commits
f2e155bBumped v7.24.24d2d1afremove maxDecompressedMessageSize (#4891)3a05a4ffix fetch path logic (#4890)23e3cd3Bumped v7.24.13aedaa8remove PLAN.md0d7ec33fix: proto pollution (#4885)07a3906Bumped v7.24.0 (#4887)74495c6fix: reject duplicate content-length and host headers84235c6Fix websocket 64-bit length overflow77594f9fix: validate upgrade header to prevent CRLF injectionUpdates
undicifrom 6.23.0 to 6.24.1Release notes
Sourced from undici's releases.
... (truncated)
Commits
f2e155bBumped v7.24.24d2d1afremove maxDecompressedMessageSize (#4891)3a05a4ffix fetch path logic (#4890)23e3cd3Bumped v7.24.13aedaa8remove PLAN.md0d7ec33fix: proto pollution (#4885)07a3906Bumped v7.24.0 (#4887)74495c6fix: reject duplicate content-length and host headers84235c6Fix websocket 64-bit length overflow77594f9fix: validate upgrade header to prevent CRLF injectionYou can trigger a rebase of this PR by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)You can disable automated security fix PRs for this repo from the Security Alerts page.