Elgato_dark/twenty
1
0
Fork 0
mirror of https://github.com/twentyhq/twenty synced 2026-04-21 13:37:22 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 17

fix: formidable relies on hexoid to prevent guessing of filenames for untrusted executable content (#15672)

Browse source 
Resolves [Dependabot Alert
224](https://github.com/twentyhq/twenty/security/dependabot/224) -
formidable relies on hexoid to prevent guessing of filenames for
untrusted executable content.

Used `yarn up formidable --recursive` to upgrade the version from 2.1.2
to 2.1.5.
This commit is contained in:
Abdullah. 2025-11-06 20:18:32 +05:00 committed by GitHub
parent 546fba7d05
commit 47a9b4ce9d
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
1 changed files with 20 additions and 11 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

31
yarn.lock
View file

@ -12062,6 +12062,13 @@ __metadata:
languageName: node
linkType: hard
"@noble/hashes@npm:^1.1.5":
version: 1.8.0
resolution: "@noble/hashes@npm:1.8.0"
checksum: 10c0/06a0b52c81a6fa7f04d67762e08b2c476a00285858150caeaaff4037356dd5e119f45b2a530f638b77a5eeca013168ec1b655db41bae3236cb2e9d511484fc77
languageName: node
linkType: hard
"@node-saml/node-saml@npm:5.1.0, @node-saml/node-saml@npm:^5.1.0":
version: 5.1.0
resolution: "@node-saml/node-saml@npm:5.1.0"
@ -15391,6 +15398,15 @@ __metadata:
languageName: node
linkType: hard
"@paralleldrive/cuid2@npm:^2.2.2":
version: 2.3.1
resolution: "@paralleldrive/cuid2@npm:2.3.1"
dependencies:
"@noble/hashes": "npm:^1.1.5"
checksum: 10c0/6576b73de49d826b0f33cbab88424dec1f6fa454a9e59a7b621f78c2cfdd2e59d7f48175826d698940a717f45eeb5e87a508583a7316e608f6a05a861a40c129
languageName: node
linkType: hard
"@parcel/watcher-android-arm64@npm:2.4.1":
version: 2.4.1
resolution: "@parcel/watcher-android-arm64@npm:2.4.1"
@ -36396,14 +36412,14 @@ __metadata:
linkType: hard
"formidable@npm:^2.1.2":
version: 2.1.2
resolution: "formidable@npm:2.1.2"
version: 2.1.5
resolution: "formidable@npm:2.1.5"
dependencies:
"@paralleldrive/cuid2": "npm:^2.2.2"
dezalgo: "npm:^1.0.4"
hexoid: "npm:^1.0.0"
once: "npm:^1.4.0"
qs: "npm:^6.11.0"
checksum: 10c0/efba03d11127098daa6ef54c3c0fad25693973eb902fa88ccaaa203baebe8c74d12ba0fe1e113eccf79b9172510fa337e4e107330b124fb3a8c74697b4aa2ce3
checksum: 10c0/2c68ca6cccc1ac3de497c50236631fafea8e1a09396d88b4dd2dc9db6029b5abaeb6747b8b97ebc1143cd40cf62c27ba485b8c6317088c066fc999af3ac621d4
languageName: node
linkType: hard
@ -38303,13 +38319,6 @@ __metadata:
languageName: node
linkType: hard
"hexoid@npm:^1.0.0":
version: 1.0.0
resolution: "hexoid@npm:1.0.0"
checksum: 10c0/9c45e8ba676b9eb88455631ebceec4c829a8374a583410dc735472ab9808bf11339fcd074633c3fa30e420901b894d8a92ffd5e2e21eddd41149546e05a91f69
languageName: node
linkType: hard
"hey-listen@npm:^1.0.8":
version: 1.0.8
resolution: "hey-listen@npm:1.0.8"