Commit 71e4249
Fix undici security vulnerability (CVE-2026-22036) (#1578)
Override undici version to 6.23.0 to address CVE-2026-22036, which
affects versions below 6.23.0. This fixes an unbounded decompression
chain vulnerability in HTTP responses.
Co-authored-by: Claude Sonnet 4.5 <noreply@anthropic.com>1 parent ce69680 commit 71e4249
2 files changed
Lines changed: 7 additions & 16 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
34 | 34 | | |
35 | 35 | | |
36 | 36 | | |
| 37 | + | |
| 38 | + | |
| 39 | + | |
37 | 40 | | |
38 | 41 | | |
39 | 42 | | |
| |||
0 commit comments