Skip to content

1.18.0
Compare
Choose a tag to compare
@cf-identity cf-identity released this 13 Aug 21:49
1.18.0
cdc3768

Security

  • Addressed vulnerability regarding Signature Verification Bypass in jwt-simple
  • Addressed ecstatic vulnerability to Open Redirect
  • Bumped node-tar from 4.4.1 to 4.4.8 (Security fix)
  • Addressed lodash vulnerability by bumping to v4.6.1 or later in order to address a high severity CVE: CVE-2019-10744
    - Bump lodash.defaultsdeep from 4.6.0 to 4.6.1 (Security fix)
    - Bump lodash.merge from 4.6.1 to 4.6.2 (Security fix)

Updates

  • Bump webpack from 4.8.3 to 4.39.1
  • Bump webpack-cli from 3.3.2 to 3.3.6
  • Bump nightwatch from 1.0.18 to 1.2.1
  • Bump file-loader from 1.1.11 to 4.1.0
  • Bump jasmine from 2.9.0 to 3.3.1
  • Bump chromedriver from 74.0.0 to 76.0.0
Assets 2
Loading