Skip to content

cli: bump undici version#1469

Merged
josephjclark merged 4 commits into
release/nextfrom
bump-undici
Jul 2, 2026
Merged

cli: bump undici version#1469
josephjclark merged 4 commits into
release/nextfrom
bump-undici

Conversation

@josephjclark

Copy link
Copy Markdown
Collaborator

We have many security advisories on undici.

They pretty much all come from dev dependencies and test code. Mostly from older adpator versions.

I've bumped the CLI's main dependency, and I'll go make sure adaptors is up to scratch. Maybe I'll update some adaptor versions used by this repo but it's really not important and I'm going to close the advisories.

AI Usage

Please disclose whether you've used AI anywhere in this PR (it's cool, we just
want to know!):

  • I have used Claude Code
  • I have used another model
  • I have not used AI

You can read more details in our
Responsible AI Policy

@github-project-automation github-project-automation Bot moved this to New Issues in Core Jul 2, 2026
@josephjclark josephjclark changed the base branch from main to release/next July 2, 2026 15:50
@josephjclark josephjclark merged commit 0b09320 into release/next Jul 2, 2026
7 checks passed
@github-project-automation github-project-automation Bot moved this from New Issues to Done in Core Jul 2, 2026
@josephjclark josephjclark deleted the bump-undici branch July 2, 2026 15:50
josephjclark added a commit that referenced this pull request Jul 2, 2026
* CLI: Deploy through v1 API with v2 spec (#1465)

* convert v2 spec down to v1

* refactor to make a version-sniffing util

* integrate the new feature

* test

* Add special case for  to-app-state to convert a project to a v1 spec stucture

* Add validation to mock provisioner

* experiment with using Project to generate a spec file from state

* format

* restore tests

* little style tweak

* remove state.json

* handle credentials properly in spec

* update tests

* mock: handle deleted edges

* fix tests

* correct project credential name

* one more test for luck

* one more test fix and log removal

* tighten exec commands to prevent injection attacks (#1468)

* remove debug code

* cli: bump undici version (#1469)

* cli: bump undici version

* fix and changeset

* fix test

* format

* versions: cli@1.38.2 worker@1.27.1

* update changelog
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

Status: Done

Development

Successfully merging this pull request may close these issues.

2 participants