v2.4.1
What's Changed
Tweaks and fixes
- Highlight important information in README by @marvinruder in #585
- Reduce duplicates by @marvinruder in #589, #591
Notable dependency updates
- Update Node.js to v20.8.1 by @renovate in #588, #592
- Fixes CVE-2023-44487: nghttp2 Security Release (High)
- Fixes CVE-2023-45143: undici Security Release (High)
- Fixes CVE-2023-39332: Path traversal through path stored in Uint8Array (High)
- Fixes CVE-2023-39331: Permission model improperly protects against path traversal (High)
- Fixes CVE-2023-38552: Integrity checks according to policies can be circumvented (Medium)
- Fixes CVE-2023-39333: Code injection via WebAssembly export names (Low)
Full Changelog: v2.4.0...v2.4.1
Contributors
renovate and marvinruder