Update dependency follow-redirects to v1.15.6 [SECURITY]

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
follow-redirects	1.15.5 -> 1.15.6

GitHub Vulnerability Alerts

CVE-2024-28849

When using axios, its dependency library follow-redirects only clears authorization header during cross-domain redirect, but allows the proxy-authentication header which contains credentials too.

Steps To Reproduce & PoC

axios Test Code

const axios = require('axios');

axios.get('http://127.0.0.1:10081/',{
headers: {
'AuThorization': 'Rear Test',
'ProXy-AuthoriZation': 'Rear Test',
'coOkie': 't=1'
}
}).then(function (response) {
console.log(response);
})
When I meet the cross-domain redirect, the sensitive headers like authorization and cookie are cleared, but proxy-authentication header is kept.

Request sent by axios

image-20240314130755052.png
Request sent by follow-redirects after redirectimage-20240314130809838.png

Impact

This vulnerability may lead to credentials leak.

Recommendations

Remove proxy-authentication header during cross-domain redirect
Recommended Patch

follow-redirects/index.js:464

removeMatchingHeaders(/^(?:authorization|cookie)$/i, this._options.headers);
change to

removeMatchingHeaders(/^(?:authorization|proxy-authorization|cookie)$/i, this._options.headers);
Ref

https://fetch.spec.whatwg.org/#authentication-entries
https://hackerone.com/reports/2390009

---

Release Notes

follow-redirects/follow-redirects (follow-redirects)

v1.15.6

Compare Source

---

Configuration

📅 Schedule: Branch creation - "" in timezone Asia/Tokyo, Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.

[github-actions]

depcheck Result

List up libraries that are defined in dependencies and devDependencies in package.json but not used in your codes.

Unused dependencies

- @popperjs/core
- @sentry/react
- @typescript-eslint/eslint-plugin
- babel-loader
- babel-polyfill
- classnames
- flexboxgrid
- gatsby-legacy-polyfills
- gatsby-plugin-flexsearch
- gatsby-plugin-twitter
- gatsby-react-router-scroll
- html-minifier
- intersection-observer
- md5
- preact
- preact-render-to-string
- react-body-classname
- react-dom
- rimraf
- sass
- typescript

Unused devdependencies

- @babel/core
- @babel/eslint-parser
- @babel/preset-typescript
- @babel/plugin-syntax-typescript
- @storybook/addon-a11y
- @storybook/addon-controls
- @storybook/addon-essentials
- @storybook/addon-info
- @storybook/addon-interactions
- @storybook/addon-knobs
- @storybook/addon-links
- @storybook/addon-storysource
- @storybook/addon-viewport
- @storybook/builder-webpack5
- @storybook/manager-webpack5
- @textlint-rule/textlint-rule-no-duplicate-abbr
- @types/jest
- @types/react-test-renderer
- @types/responselike
- axe-core
- babel-plugin-transform-runtime
- core-js
- cross-env
- css-loader
- eslint
- eslint-config-airbnb
- eslint-import-resolver-webpack
- eslint-plugin-import
- eslint-plugin-jsx-a11y
- eslint-plugin-react
- gh-pages
- husky
- identity-obj-proxy
- jest
- jest-environment-jsdom
- markdownlint-cli2
- memlab
- netlify-cli
- netlify-lambda
- nyc
- prettier
- react-test-renderer
- sass-loader
- start-server-and-test
- stylelint
- stylelint-config-recess-order
- stylelint-config-recommended-scss
- stylelint-config-standard
- stylelint-scss
- textlint
- textlint-filter-rule-allowlist
- textlint-filter-rule-comments
- textlint-rule-aws-spellcheck
- textlint-rule-ja-no-inappropriate-words
- textlint-rule-no-mixed-zenkaku-and-hankaku-alphabet
- textlint-rule-no-start-duplicated-conjunction
- textlint-rule-preset-smarthr
- textlint-rule-prh
- textlint-rule-terminology
- ts-jest
- yaml-lint

Missing

- colors
  - /github/workspace/src/styles/_hover.scss

- @algolia/transporter
  - /github/workspace/src/components/SearchBox/index.tsx

- @algolia/client-search
  - /github/workspace/src/components/SearchBox/index.tsx

- qs
  - /github/workspace/scripts/benchmark.js

- https
  - /github/workspace/scripts/uploadScreenShot.ts

- sharp
  - /github/workspace/functions/src/ogp.js

[coveralls]

Pull Request Test Coverage Report for Build 8308144353

Details

• 0 of 0 changed or added relevant lines in 0 files are covered.
• No unchanged relevant lines lost coverage.
• Overall coverage remained the same at 85.64%

---

Totals
Change from base Build 8308116646:	0.0%
Covered Lines:	251
Relevant Lines:	281

---

💛 - Coveralls

[github-actions]

Memlab leaks report

page-load [7.3MB] (baseline) [s1] > action-on-page [8.3MB] (target) [s2] > revert [9.3MB] (final) [s3]  
------2 clusters------

--Similar leaks in this run: 1634--
--Retained size of leaked objects: 176.2KB--
[<synthetic>] (synthetic) @1 [10.5MB]
  --2 (shortcut)--->  [Window / https://blog.tubone-project24.xyz] (object) @6257 [60.7KB]
  --setTimeout (property)--->  [<closure>] (closure) @100767 [72 bytes]
  --context (internal)--->  [<function scope>] (object) @127373 [20 bytes]
  --previous (internal)--->  [<function scope>] (object) @74443 [36KB]
  --n (variable)--->  [t] (closure) @74307 [1.3KB]
  --context (internal)--->  [<function scope>] (object) @113331 [43.5KB]
  --n (variable)--->  [Object] (object) @116961 [43.4KB]
  --449 (element)--->  [Object] (object) @119169 [24 bytes]
  --exports (property)--->  [r] (closure) @200333 [2.7KB]
  --hasData (property)--->  [<closure>] (closure) @200947 [80 bytes]
  --context (internal)--->  [<function scope>] (object) @200647 [1.5KB]
  --e (variable)--->  [Object] (object) @200649 [1KB]
  --2 (element)--->  [Object] (object) @335911 [76 bytes]
  --aaAutocomplete (property)--->  [f] (object) @351815 [348 bytes]
  --$node (property)--->  [q] (object) @345379 [188 bytes]
  --0 (element)--->  [Detached HTMLSpanElement] (native) @333383 [676 bytes]
  --7 (element)--->  [Detached HTMLDivElement] (native) @332911 [5.7KB]
  --8 (element)--->  [Detached HTMLDivElement] (native) @333771 [444 bytes]
  --6 (element)--->  [Detached HTMLHRElement] (native) @332909 [356 bytes]
  --6 (element)--->  [Detached HTMLDivElement] (native) @332885 [444 bytes]
  --8 (element)--->  [Detached HTMLHRElement] (native) @332883 [356 bytes]
  --6 (element)--->  [Detached HTMLDivElement] (native) @332781 [532 bytes]
  --5 (element)--->  [Detached HTMLParagraphElement] (native) @332783 [1KB]
  --8 (element)--->  [Detached HTMLAnchorElement] (native) @332791 [2KB]
  --13 (element)--->  [Detached InternalNode] (native) @36652 [400 bytes]
  --1 (element)--->  [Detached InternalNode] (native) @55678 [344 bytes]
  --4 (element)--->  [Detached ElementIntersectionObserverData] (native) @31728 [72 bytes]

--Similar leaks in this run: 479--
--Retained size of leaked objects: 50KB--
[<synthetic>] (synthetic) @1 [10.5MB]
  --2 (shortcut)--->  [Window / https://blog.tubone-project24.xyz] (object) @6257 [60.7KB]
  --___replace (property)--->  [<closure>] (closure) @101081 [80 bytes]
  --context (internal)--->  [<function scope>] (object) @78121 [748 bytes]
  --a (variable)--->  [Module] (object) @74313 [6.3KB]
  --get version (property)--->  [version] (closure) @68319 [80 bytes]
  --context (internal)--->  [<function scope>] (object) @68335 [6.5KB]
  --Qn (variable)--->  [y] (object) @404511 [368 bytes]
  --props (property)--->  [Object] (object) @464551 [28 bytes]
  --children (property)--->  [Object] (object) @464181 [296 bytes]
  --props (property)--->  [Object] (object) @465065 [56 bytes]
  --children (property)--->  [Object] (object) @411583 [1.2KB]
  --__ (property)--->  [Object] (object) @466415 [1.1KB]
  --__ (property)--->  [Object] (object) @466419 [940 bytes]
  --__ (property)--->  [Object] (object) @421695 [736 bytes]
  --__d (property)--->  [Detached HTMLDivElement] (native) @333875 [468 bytes]
  --5 (element)--->  [Detached HTMLDivElement] (native) @333873 [384 bytes]
  --5 (element)--->  [Detached HTMLDivElement] (native) @333871 [384 bytes]
  --5 (element)--->  [Detached HTMLDivElement] (native) @333869 [7.9KB]
  --5 (element)--->  [Detached HTMLDivElement] (native) @333865 [7.1KB]
  --6 (element)--->  [Detached HTMLDivElement] (native) @333857 [5.9KB]
  --5 (element)--->  [Detached HTMLDivElement] (native) @333855 [4.8KB]
  --5 (element)--->  [Detached HTMLPictureElement] (native) @333853 [3.7KB]
  --5 (element)--->  [Detached HTMLSourceElement] (native) @333851 [1.6KB]
  --13 (element)--->  [Detached InternalNode] (native) @32500 [224 bytes]
  --1 (element)--->  [Detached InternalNode] (native) @32502 [224 bytes]
  --1 (element)--->  [Detached InternalNode] (native) @33986 [224 bytes]
  --2 (element)--->  [Detached InternalNode] (native) @33990 [112 bytes]
  --1 (element)--->  [Detached EventListener] (native) @38054 [112 bytes]

[github-actions]

Deploy Preview

Deploy path: /home/runner/work/blog/blog/public
Functions path: /home/runner/work/blog/blog/functions/src
Configuration path: /home/runner/work/blog/blog/netlify.toml
Deploying to draft URL...
​
Netlify Build
────────────────────────────────────────────────────────────────
​
❯ Version
@netlify/build 29.36.1
​
❯ Flags
auth: TTs786GkKycSkoas9uwxVwTtamK0txQzpvHwXleU3OQ
deployId: 65f488670df21d04c8ec2ff8
dir: ./public
functions: ./functions/src
open: false
prod: false
prodIfUnlocked: false
site: 3751ef40-b145-4249-9657-39d3fb04ae81
skipFunctionsCache: false
​
❯ Current directory
/home/runner/work/blog/blog
​
❯ Config file
/home/runner/work/blog/blog/netlify.toml
​
❯ Context
dev

Build logs: https://app.netlify.com/sites/pensive-lamport-5822d2/deploys/65f488670df21d04c8ec2ff8
Function logs: https://app.netlify.com/sites/pensive-lamport-5822d2/functions?scope=deploy:65f488670df21d04c8ec2ff8
Website draft URL: https://65f488670df21d04c8ec2ff8--pensive-lamport-5822d2.netlify.app

If everything looks good on your draft URL, deploy it to your main site URL with the --prod flag.
netlify deploy --prod

[github-actions]

Storybook Preview

Deploy path: /home/runner/work/blog/blog/storybook-static
Functions path: /home/runner/work/blog/blog/functions/src
Configuration path: /home/runner/work/blog/blog/netlify.toml
Deploying to draft URL...
​
Netlify Build
────────────────────────────────────────────────────────────────
​
❯ Version
@netlify/build 29.36.1
​
❯ Flags
auth: EPJJ6iiVJKf1WzATp10YTzbujNbkSqWDiVl-3kCXA-Y
deployId: 65f488ac5630940632721bb9
dir: ./storybook-static
open: false
prod: false
prodIfUnlocked: false
site: 905285ac-8339-48d2-86d8-8d639370a095
skipFunctionsCache: false
​
❯ Current directory
/home/runner/work/blog/blog
​
❯ Config file
/home/runner/work/blog/blog/netlify.toml
​
❯ Context
dev

Build logs: https://app.netlify.com/sites/blog-storybook/deploys/65f488ac5630940632721bb9
Function logs: https://app.netlify.com/sites/blog-storybook/functions?scope=deploy:65f488ac5630940632721bb9
Website draft URL: https://65f488ac5630940632721bb9--blog-storybook.netlify.app

If everything looks good on your draft URL, deploy it to your main site URL with the --prod flag.
netlify deploy --prod

[github-actions]

Bundle Analyzer URL

https://65f488670df21d04c8ec2ff8--pensive-lamport-5822d2.netlify.app/webpack-bundle-analyser

[github-actions]

Lighthouse Score

Desktop

performance: 93
accessibility: 100
best-practices: 100
seo: 92
pwa: 100

Mobile

performance: 74
accessibility: 100
best-practices: 96
seo: 93
pwa: 100

[github-actions]

depcheck Result

List up libraries that are defined in dependencies and devDependencies in package.json but not used in your codes.

Unused dependencies

- @popperjs/core
- @sentry/react
- @typescript-eslint/eslint-plugin
- babel-loader
- babel-polyfill
- classnames
- flexboxgrid
- gatsby-legacy-polyfills
- gatsby-plugin-flexsearch
- gatsby-plugin-twitter
- gatsby-react-router-scroll
- html-minifier
- intersection-observer
- md5
- preact
- preact-render-to-string
- react-body-classname
- react-dom
- rimraf
- sass
- typescript

Unused devdependencies

- @babel/core
- @babel/eslint-parser
- @babel/preset-typescript
- @babel/plugin-syntax-typescript
- @storybook/addon-a11y
- @storybook/addon-controls
- @storybook/addon-essentials
- @storybook/addon-info
- @storybook/addon-interactions
- @storybook/addon-knobs
- @storybook/addon-links
- @storybook/addon-storysource
- @storybook/addon-viewport
- @storybook/builder-webpack5
- @storybook/manager-webpack5
- @textlint-rule/textlint-rule-no-duplicate-abbr
- @types/jest
- @types/react-test-renderer
- @types/responselike
- axe-core
- babel-plugin-transform-runtime
- core-js
- cross-env
- css-loader
- eslint
- eslint-config-airbnb
- eslint-import-resolver-webpack
- eslint-plugin-import
- eslint-plugin-jsx-a11y
- eslint-plugin-react
- gh-pages
- husky
- identity-obj-proxy
- jest
- jest-environment-jsdom
- markdownlint-cli2
- memlab
- netlify-cli
- netlify-lambda
- nyc
- prettier
- react-test-renderer
- sass-loader
- start-server-and-test
- stylelint
- stylelint-config-recess-order
- stylelint-config-recommended-scss
- stylelint-config-standard
- stylelint-scss
- textlint
- textlint-filter-rule-allowlist
- textlint-filter-rule-comments
- textlint-rule-aws-spellcheck
- textlint-rule-ja-no-inappropriate-words
- textlint-rule-no-mixed-zenkaku-and-hankaku-alphabet
- textlint-rule-no-start-duplicated-conjunction
- textlint-rule-preset-smarthr
- textlint-rule-prh
- textlint-rule-terminology
- ts-jest
- yaml-lint

Missing

- colors
  - /github/workspace/src/styles/_hover.scss

- @algolia/transporter
  - /github/workspace/src/components/SearchBox/index.tsx

- @algolia/client-search
  - /github/workspace/src/components/SearchBox/index.tsx

- qs
  - /github/workspace/scripts/benchmark.js

- https
  - /github/workspace/scripts/uploadScreenShot.ts

- sharp
  - /github/workspace/functions/src/ogp.js

[github-actions]

depcheck Result

List up libraries that are defined in dependencies and devDependencies in package.json but not used in your codes.

Unused dependencies

- @popperjs/core
- @sentry/react
- @typescript-eslint/eslint-plugin
- babel-loader
- babel-polyfill
- classnames
- flexboxgrid
- gatsby-legacy-polyfills
- gatsby-plugin-flexsearch
- gatsby-plugin-twitter
- gatsby-react-router-scroll
- html-minifier
- intersection-observer
- md5
- preact
- preact-render-to-string
- react-body-classname
- react-dom
- rimraf
- sass
- typescript

Unused devdependencies

- @babel/core
- @babel/eslint-parser
- @babel/plugin-syntax-typescript
- @babel/preset-typescript
- @storybook/addon-a11y
- @storybook/addon-controls
- @storybook/addon-essentials
- @storybook/addon-info
- @storybook/addon-interactions
- @storybook/addon-knobs
- @storybook/addon-links
- @storybook/addon-storysource
- @storybook/addon-viewport
- @storybook/builder-webpack5
- @storybook/manager-webpack5
- @textlint-rule/textlint-rule-no-duplicate-abbr
- @types/jest
- @types/react-test-renderer
- @types/responselike
- axe-core
- babel-plugin-transform-runtime
- core-js
- cross-env
- css-loader
- eslint
- eslint-config-airbnb
- eslint-import-resolver-webpack
- eslint-plugin-import
- eslint-plugin-jsx-a11y
- eslint-plugin-react
- gh-pages
- husky
- identity-obj-proxy
- jest
- jest-environment-jsdom
- markdownlint-cli2
- memlab
- netlify-cli
- netlify-lambda
- nyc
- prettier
- react-test-renderer
- sass-loader
- start-server-and-test
- stylelint
- stylelint-config-recess-order
- stylelint-config-recommended-scss
- stylelint-config-standard
- stylelint-scss
- textlint
- textlint-filter-rule-allowlist
- textlint-filter-rule-comments
- textlint-rule-aws-spellcheck
- textlint-rule-ja-no-inappropriate-words
- textlint-rule-no-mixed-zenkaku-and-hankaku-alphabet
- textlint-rule-no-start-duplicated-conjunction
- textlint-rule-preset-smarthr
- textlint-rule-prh
- textlint-rule-terminology
- ts-jest
- yaml-lint

Missing

- colors
  - /github/workspace/src/styles/_hover.scss

- @algolia/transporter
  - /github/workspace/src/components/SearchBox/index.tsx

- @algolia/client-search
  - /github/workspace/src/components/SearchBox/index.tsx

- qs
  - /github/workspace/scripts/benchmark.js

- https
  - /github/workspace/scripts/uploadScreenShot.ts

- sharp
  - /github/workspace/functions/src/ogp.js

[github-actions]

depcheck Result

List up libraries that are defined in dependencies and devDependencies in package.json but not used in your codes.

Unused dependencies

- @popperjs/core
- @sentry/react
- @typescript-eslint/eslint-plugin
- babel-loader
- babel-polyfill
- classnames
- flexboxgrid
- gatsby-legacy-polyfills
- gatsby-plugin-flexsearch
- gatsby-plugin-twitter
- gatsby-react-router-scroll
- html-minifier
- intersection-observer
- md5
- preact
- preact-render-to-string
- react-body-classname
- react-dom
- rimraf
- sass
- typescript

Unused devdependencies

- @babel/core
- @babel/eslint-parser
- @babel/plugin-syntax-typescript
- @babel/preset-typescript
- @storybook/addon-a11y
- @storybook/addon-controls
- @storybook/addon-essentials
- @storybook/addon-info
- @storybook/addon-interactions
- @storybook/addon-knobs
- @storybook/addon-links
- @storybook/addon-storysource
- @storybook/addon-viewport
- @storybook/builder-webpack5
- @storybook/manager-webpack5
- @textlint-rule/textlint-rule-no-duplicate-abbr
- @types/jest
- @types/react-test-renderer
- @types/responselike
- axe-core
- babel-plugin-transform-runtime
- core-js
- cross-env
- css-loader
- eslint
- eslint-config-airbnb
- eslint-import-resolver-webpack
- eslint-plugin-import
- eslint-plugin-jsx-a11y
- eslint-plugin-react
- gh-pages
- husky
- identity-obj-proxy
- jest
- jest-environment-jsdom
- markdownlint-cli2
- memlab
- netlify-cli
- netlify-lambda
- nyc
- prettier
- react-test-renderer
- sass-loader
- start-server-and-test
- stylelint
- stylelint-config-recess-order
- stylelint-config-recommended-scss
- stylelint-config-standard
- stylelint-scss
- textlint
- textlint-filter-rule-allowlist
- textlint-filter-rule-comments
- textlint-rule-aws-spellcheck
- textlint-rule-ja-no-inappropriate-words
- textlint-rule-no-mixed-zenkaku-and-hankaku-alphabet
- textlint-rule-no-start-duplicated-conjunction
- textlint-rule-preset-smarthr
- textlint-rule-prh
- textlint-rule-terminology
- ts-jest
- yaml-lint

Missing

- colors
  - /github/workspace/src/styles/_hover.scss

- @algolia/transporter
  - /github/workspace/src/components/SearchBox/index.tsx

- @algolia/client-search
  - /github/workspace/src/components/SearchBox/index.tsx

- qs
  - /github/workspace/scripts/benchmark.js

- https
  - /github/workspace/scripts/uploadScreenShot.ts

- sharp
  - /github/workspace/functions/src/ogp.js

[github-actions]

depcheck Result

List up libraries that are defined in dependencies and devDependencies in package.json but not used in your codes.

Unused dependencies

- @popperjs/core
- @sentry/react
- @typescript-eslint/eslint-plugin
- babel-loader
- babel-polyfill
- classnames
- flexboxgrid
- gatsby-legacy-polyfills
- gatsby-plugin-flexsearch
- gatsby-plugin-twitter
- gatsby-react-router-scroll
- html-minifier
- intersection-observer
- md5
- preact
- preact-render-to-string
- react-body-classname
- react-dom
- rimraf
- sass
- typescript

Unused devdependencies

- @babel/core
- @babel/eslint-parser
- @babel/plugin-syntax-typescript
- @babel/preset-typescript
- @storybook/addon-a11y
- @storybook/addon-controls
- @storybook/addon-essentials
- @storybook/addon-info
- @storybook/addon-interactions
- @storybook/addon-knobs
- @storybook/addon-links
- @storybook/addon-storysource
- @storybook/addon-viewport
- @storybook/builder-webpack5
- @storybook/manager-webpack5
- @textlint-rule/textlint-rule-no-duplicate-abbr
- @types/jest
- @types/react-test-renderer
- @types/responselike
- axe-core
- babel-plugin-transform-runtime
- core-js
- cross-env
- css-loader
- eslint
- eslint-config-airbnb
- eslint-import-resolver-webpack
- eslint-plugin-import
- eslint-plugin-jsx-a11y
- eslint-plugin-react
- gh-pages
- husky
- identity-obj-proxy
- jest
- jest-environment-jsdom
- markdownlint-cli2
- memlab
- netlify-cli
- netlify-lambda
- nyc
- prettier
- react-test-renderer
- sass-loader
- start-server-and-test
- stylelint
- stylelint-config-recess-order
- stylelint-config-recommended-scss
- stylelint-config-standard
- stylelint-scss
- textlint
- textlint-filter-rule-allowlist
- textlint-filter-rule-comments
- textlint-rule-aws-spellcheck
- textlint-rule-ja-no-inappropriate-words
- textlint-rule-no-mixed-zenkaku-and-hankaku-alphabet
- textlint-rule-no-start-duplicated-conjunction
- textlint-rule-preset-smarthr
- textlint-rule-prh
- textlint-rule-terminology
- ts-jest
- yaml-lint

Missing

- colors
  - /github/workspace/src/styles/_hover.scss

- @algolia/transporter
  - /github/workspace/src/components/SearchBox/index.tsx

- @algolia/client-search
  - /github/workspace/src/components/SearchBox/index.tsx

- qs
  - /github/workspace/scripts/benchmark.js

- https
  - /github/workspace/scripts/uploadScreenShot.ts

- sharp
  - /github/workspace/functions/src/ogp.js

[github-actions]

Memlab leaks report

page-load [7.2MB] (baseline) [s1] > action-on-page [8.2MB] (target) [s2] > revert [9.2MB] (final) [s3]  
------2 clusters------

--Similar leaks in this run: 1634--
--Retained size of leaked objects: 175.8KB--
[<synthetic>] (synthetic) @1 [10.4MB]
  --2 (shortcut)--->  [Window / https://blog.tubone-project24.xyz] (object) @6269 [63.5KB]
  --setTimeout (property)--->  [<closure>] (closure) @115507 [72 bytes]
  --context (internal)--->  [<function scope>] (object) @147631 [20 bytes]
  --previous (internal)--->  [<function scope>] (object) @48873 [30.1KB]
  --n (variable)--->  [t] (closure) @136085 [1.3KB]
  --context (internal)--->  [<function scope>] (object) @144977 [42.5KB]
  --n (variable)--->  [Object] (object) @125925 [42.4KB]
  --9077 (element)--->  [Object] (object) @124133 [24 bytes]
  --exports (property)--->  [r] (closure) @72631 [2.7KB]
  --hasData (property)--->  [<closure>] (closure) @136403 [80 bytes]
  --context (internal)--->  [<function scope>] (object) @73169 [1.5KB]
  --e (variable)--->  [Object] (object) @73171 [1KB]
  --2 (element)--->  [Object] (object) @328909 [76 bytes]
  --aaAutocomplete (property)--->  [d] (object) @352205 [348 bytes]
  --$node (property)--->  [$] (object) @354407 [188 bytes]
  --0 (element)--->  [Detached HTMLSpanElement] (native) @327679 [676 bytes]
  --7 (element)--->  [Detached HTMLDivElement] (native) @327851 [5.6KB]
  --7 (element)--->  [Detached HTMLDivElement] (native) @327725 [444 bytes]
  --6 (element)--->  [Detached HTMLDivElement] (native) @327877 [444 bytes]
  --5 (element)--->  [Detached HTMLAnchorElement] (native) @327879 [1.7KB]
  --11 (element)--->  [Detached HTMLAnchorElement] (native) @327901 [2.5KB]
  --12 (element)--->  [Detached HTMLAnchorElement] (native) @327915 [2.5KB]
  --12 (element)--->  [Detached HTMLAnchorElement] (native) @327929 [2.5KB]
  --12 (element)--->  [Detached HTMLAnchorElement] (native) @327943 [2.5KB]
  --12 (element)--->  [Detached HTMLAnchorElement] (native) @327969 [2.5KB]
  --12 (element)--->  [Detached HTMLAnchorElement] (native) @328047 [2.5KB]
  --13 (element)--->  [Detached InternalNode] (native) @33060 [488 bytes]
  --1 (element)--->  [Detached InternalNode] (native) @33062 [432 bytes]
  --4 (element)--->  [Detached ElementIntersectionObserverData] (native) @29974 [72 bytes]

--Similar leaks in this run: 479--
--Retained size of leaked objects: 49.9KB--
[<synthetic>] (synthetic) @1 [10.4MB]
  --2 (shortcut)--->  [Window / https://blog.tubone-project24.xyz] (object) @6269 [63.5KB]
  --___replace (property)--->  [<closure>] (closure) @271301 [76 bytes]
  --context (internal)--->  [<function scope>] (object) @158213 [724 bytes]
  --i (variable)--->  [Module] (object) @71669 [6.3KB]
  --get version (property)--->  [version] (closure) @229579 [80 bytes]
  --context (internal)--->  [<function scope>] (object) @68011 [6.5KB]
  --Qn (variable)--->  [y] (object) @398391 [368 bytes]
  --props (property)--->  [Object] (object) @397377 [28 bytes]
  --children (property)--->  [Object] (object) @397379 [296 bytes]
  --props (property)--->  [Object] (object) @399893 [56 bytes]
  --children (property)--->  [Object] (object) @400401 [1.2KB]
  --__ (property)--->  [Object] (object) @418321 [1.1KB]
  --__ (property)--->  [Object] (object) @418331 [940 bytes]
  --__ (property)--->  [Object] (object) @418345 [736 bytes]
  --__d (property)--->  [Detached HTMLDivElement] (native) @327765 [468 bytes]
  --5 (element)--->  [Detached HTMLDivElement] (native) @327763 [384 bytes]
  --5 (element)--->  [Detached HTMLDivElement] (native) @327761 [384 bytes]
  --6 (element)--->  [Detached HTMLDivElement] (native) @328095 [14.9KB]
  --6 (element)--->  [Detached HTMLAnchorElement] (native) @327687 [2KB]
  --11 (element)--->  [Detached HTMLAnchorElement] (native) @327693 [2.2KB]
  --11 (element)--->  [Detached HTMLAnchorElement] (native) @327699 [2.9KB]
  --16 (element)--->  [Detached InternalNode] (native) @35192 [224 bytes]
  --1 (element)--->  [Detached InternalNode] (native) @35194 [224 bytes]
  --1 (element)--->  [Detached InternalNode] (native) @28846 [224 bytes]
  --2 (element)--->  [Detached InternalNode] (native) @28850 [112 bytes]
  --1 (element)--->  [Detached EventListener] (native) @39390 [112 bytes]

[github-actions]

Lighthouse Score

Desktop

performance: 85
accessibility: 100
best-practices: 100
seo: 92
pwa: 100

Mobile

performance: 76
accessibility: 100
best-practices: 96
seo: 93
pwa: 100

[github-actions]

depcheck Result

List up libraries that are defined in dependencies and devDependencies in package.json but not used in your codes.

Unused dependencies

- @popperjs/core
- @sentry/react
- @typescript-eslint/eslint-plugin
- babel-loader
- babel-polyfill
- classnames
- flexboxgrid
- gatsby-legacy-polyfills
- gatsby-plugin-flexsearch
- gatsby-plugin-twitter
- gatsby-react-router-scroll
- html-minifier
- intersection-observer
- md5
- preact
- preact-render-to-string
- react-body-classname
- react-dom
- rimraf
- sass
- typescript

Unused devdependencies

- @babel/core
- @babel/eslint-parser
- @babel/plugin-syntax-typescript
- @babel/preset-typescript
- @storybook/addon-a11y
- @storybook/addon-controls
- @storybook/addon-essentials
- @storybook/addon-info
- @storybook/addon-interactions
- @storybook/addon-knobs
- @storybook/addon-links
- @storybook/addon-storysource
- @storybook/addon-viewport
- @storybook/builder-webpack5
- @storybook/manager-webpack5
- @textlint-rule/textlint-rule-no-duplicate-abbr
- @types/jest
- @types/react-test-renderer
- @types/responselike
- axe-core
- babel-plugin-transform-runtime
- core-js
- cross-env
- css-loader
- eslint
- eslint-config-airbnb
- eslint-import-resolver-webpack
- eslint-plugin-import
- eslint-plugin-jsx-a11y
- eslint-plugin-react
- gh-pages
- husky
- identity-obj-proxy
- jest
- jest-environment-jsdom
- markdownlint-cli2
- memlab
- netlify-cli
- netlify-lambda
- nyc
- prettier
- react-test-renderer
- sass-loader
- start-server-and-test
- stylelint
- stylelint-config-recess-order
- stylelint-config-recommended-scss
- stylelint-config-standard
- stylelint-scss
- textlint
- textlint-filter-rule-allowlist
- textlint-filter-rule-comments
- textlint-rule-aws-spellcheck
- textlint-rule-ja-no-inappropriate-words
- textlint-rule-no-mixed-zenkaku-and-hankaku-alphabet
- textlint-rule-no-start-duplicated-conjunction
- textlint-rule-preset-smarthr
- textlint-rule-prh
- textlint-rule-terminology
- ts-jest
- yaml-lint

Missing

- colors
  - /github/workspace/src/styles/_hover.scss

- @algolia/transporter
  - /github/workspace/src/components/SearchBox/index.tsx

- @algolia/client-search
  - /github/workspace/src/components/SearchBox/index.tsx

- qs
  - /github/workspace/scripts/benchmark.js

- https
  - /github/workspace/scripts/uploadScreenShot.ts

- sharp
  - /github/workspace/functions/src/ogp.js

[github-actions]

Memlab leaks report

page-load [7.2MB] (baseline) [s1] > action-on-page [8.1MB] (target) [s2] > revert [9.2MB] (final) [s3]  
------2 clusters------

--Similar leaks in this run: 1248--
--Retained size of leaked objects: 142.3KB--
[<synthetic>] (synthetic) @1 [10.4MB]
  --2 (shortcut)--->  [Window / https://blog.tubone-project24.xyz] (object) @6269 [63.9KB]
  --setTimeout (property)--->  [<closure>] (closure) @231253 [72 bytes]
  --context (internal)--->  [<function scope>] (object) @104505 [20 bytes]
  --previous (internal)--->  [<function scope>] (object) @46929 [30.1KB]
  --n (variable)--->  [t] (closure) @82227 [1.3KB]
  --context (internal)--->  [<function scope>] (object) @54229 [42.5KB]
  --n (variable)--->  [Object] (object) @47365 [42.4KB]
  --9077 (element)--->  [Object] (object) @47385 [24 bytes]
  --exports (property)--->  [r] (closure) @127865 [2.7KB]
  --hasData (property)--->  [<closure>] (closure) @131307 [80 bytes]
  --context (internal)--->  [<function scope>] (object) @130001 [1.5KB]
  --e (variable)--->  [Object] (object) @130003 [1KB]
  --2 (element)--->  [Object] (object) @334185 [76 bytes]
  --aaAutocomplete (property)--->  [d] (object) @334189 [348 bytes]
  --$node (property)--->  [$] (object) @358925 [188 bytes]
  --0 (element)--->  [Detached HTMLSpanElement] (native) @325461 [676 bytes]
  --7 (element)--->  [Detached HTMLDivElement] (native) @325919 [5.6KB]
  --7 (element)--->  [Detached HTMLDivElement] (native) @325837 [444 bytes]
  --6 (element)--->  [Detached HTMLDivElement] (native) @326013 [444 bytes]
  --6 (element)--->  [Detached HTMLAnchorElement] (native) @325531 [2.5KB]
  --11 (element)--->  [Detached HTMLAnchorElement] (native) @325545 [2.5KB]
  --11 (element)--->  [Detached HTMLAnchorElement] (native) @325559 [2.5KB]
  --11 (element)--->  [Detached HTMLAnchorElement] (native) @325573 [2.5KB]
  --16 (element)--->  [Detached InternalNode] (native) @32662 [336 bytes]
  --2 (element)--->  [Detached InternalNode] (native) @32666 [224 bytes]
  --1 (element)--->  [Detached InternalNode] (native) @34712 [224 bytes]
  --2 (element)--->  [Detached InternalNode] (native) @36902 [112 bytes]
  --1 (element)--->  [Detached EventListener] (native) @39814 [112 bytes]

--Similar leaks in this run: 479--
--Retained size of leaked objects: 49.9KB--
[<synthetic>] (synthetic) @1 [10.4MB]
  --2 (shortcut)--->  [Window / https://blog.tubone-project24.xyz] (object) @6269 [63.9KB]
  --___replace (property)--->  [<closure>] (closure) @231817 [76 bytes]
  --context (internal)--->  [<function scope>] (object) @91445 [724 bytes]
  --i (variable)--->  [Module] (object) @46829 [6.3KB]
  --get version (property)--->  [version] (closure) @161885 [80 bytes]
  --context (internal)--->  [<function scope>] (object) @52627 [6.5KB]
  --Qn (variable)--->  [y] (object) @405507 [368 bytes]
  --props (property)--->  [Object] (object) @404117 [28 bytes]
  --children (property)--->  [Object] (object) @404119 [296 bytes]
  --props (property)--->  [Object] (object) @407521 [56 bytes]
  --children (property)--->  [Object] (object) @407611 [1.2KB]
  --__ (property)--->  [Object] (object) @421479 [1.1KB]
  --__ (property)--->  [Object] (object) @421491 [940 bytes]
  --__ (property)--->  [Object] (object) @421519 [736 bytes]
  --__d (property)--->  [Detached HTMLDivElement] (native) @325879 [440 bytes]
  --5 (element)--->  [Detached HTMLDivElement] (native) @325877 [384 bytes]
  --5 (element)--->  [Detached HTMLDivElement] (native) @325875 [384 bytes]
  --6 (element)--->  [Detached HTMLDivElement] (native) @325499 [14.9KB]
  --5 (element)--->  [Detached HTMLAnchorElement] (native) @325497 [2.3KB]
  --11 (element)--->  [Detached HTMLAnchorElement] (native) @325491 [2.3KB]
  --12 (element)--->  [Detached HTMLAnchorElement] (native) @325485 [2.3KB]
  --13 (element)--->  [Detached InternalNode] (native) @30226 [680 bytes]
  --1 (element)--->  [Detached InternalNode] (native) @30228 [624 bytes]
  --3 (element)--->  [Detached InternalNode] (native) @31212 [528 bytes]
  --1 (element)--->  [Detached InternalNode] (native) @35798 [528 bytes]
  --2 (element)--->  [Detached Attr] (native) @33288 [88 bytes]

[github-actions]

Deploy Preview

Deploy path: /home/runner/work/blog/blog/public
Functions path: /home/runner/work/blog/blog/functions/src
Configuration path: /home/runner/work/blog/blog/netlify.toml
Deploying to draft URL...
​
Netlify Build
────────────────────────────────────────────────────────────────
​
❯ Version
@netlify/build 29.36.1
​
❯ Flags
auth: TTs786GkKycSkoas9uwxVwTtamK0txQzpvHwXleU3OQ
deployId: 65f5a206fbe72cb7c152f3dd
dir: ./public
functions: ./functions/src
open: false
prod: false
prodIfUnlocked: false
site: 3751ef40-b145-4249-9657-39d3fb04ae81
skipFunctionsCache: false
​
❯ Current directory
/home/runner/work/blog/blog
​
❯ Config file
/home/runner/work/blog/blog/netlify.toml
​
❯ Context
dev

Build logs: https://app.netlify.com/sites/pensive-lamport-5822d2/deploys/65f5a206fbe72cb7c152f3dd
Function logs: https://app.netlify.com/sites/pensive-lamport-5822d2/functions?scope=deploy:65f5a206fbe72cb7c152f3dd
Website draft URL: https://65f5a206fbe72cb7c152f3dd--pensive-lamport-5822d2.netlify.app

If everything looks good on your draft URL, deploy it to your main site URL with the --prod flag.
netlify deploy --prod

[github-actions]

Storybook Preview

Deploy path: /home/runner/work/blog/blog/storybook-static
Functions path: /home/runner/work/blog/blog/functions/src
Configuration path: /home/runner/work/blog/blog/netlify.toml
Deploying to draft URL...
​
Netlify Build
────────────────────────────────────────────────────────────────
​
❯ Version
@netlify/build 29.36.1
​
❯ Flags
auth: EPJJ6iiVJKf1WzATp10YTzbujNbkSqWDiVl-3kCXA-Y
deployId: 65f5a21e563094b9b9721cef
dir: ./storybook-static
open: false
prod: false
prodIfUnlocked: false
site: 905285ac-8339-48d2-86d8-8d639370a095
skipFunctionsCache: false
​
❯ Current directory
/home/runner/work/blog/blog
​
❯ Config file
/home/runner/work/blog/blog/netlify.toml
​
❯ Context
dev

Build logs: https://app.netlify.com/sites/blog-storybook/deploys/65f5a21e563094b9b9721cef
Function logs: https://app.netlify.com/sites/blog-storybook/functions?scope=deploy:65f5a21e563094b9b9721cef
Website draft URL: https://65f5a21e563094b9b9721cef--blog-storybook.netlify.app

If everything looks good on your draft URL, deploy it to your main site URL with the --prod flag.
netlify deploy --prod

[github-actions]

Bundle Analyzer URL

https://65f5a206fbe72cb7c152f3dd--pensive-lamport-5822d2.netlify.app/webpack-bundle-analyser

[github-actions]

Lighthouse Score

Desktop

performance: 98
accessibility: 100
best-practices: 100
seo: 92
pwa: 100

Mobile

performance: 76
accessibility: 100
best-practices: 96
seo: 93
pwa: 100