Skip to content

Commit

Permalink
fix: updates nyc version and ignores undici vuln flag (#366)
Browse files Browse the repository at this point in the history 
* fix: upgrade's nyc version in lock to fix audit

* fix: ignores undici audit flag
  • Loading branch information
@douglance
douglance authored Oct 17, 2023
1 parent a3f36ec commit d2a38b8
Show file tree
Hide file tree
Showing 2 changed files with 283 additions and 249 deletions.
7 changes: 6 additions & 1 deletion audit-ci.jsonc
View file
Original file line number Diff line number Diff line change
Expand Up @@ -112,6 +112,11 @@
// from: @arbitrum/nitro-contracts>@openzeppelin/contracts-upgradeable
// from @arbitrum/nitro-contracts>@openzeppelin/contracts
// We don't use ERC2771Context
"GHSA-g4vp-m682-qqmp"
"GHSA-g4vp-m682-qqmp",
// https://github.com/advisories/GHSA-wqq4-5wpv-mx2g
// Undici's cookie header not cleared on cross-origin redirect in fetch
// from: hardhat>undici
// hardhat is only used in dev
"GHSA-wqq4-5wpv-mx2g"
]
}
Loading

0 comments on commit d2a38b8

Please sign in to comment.