Skip to content

Update form-data to 4.0.5 to address critical CVEs #2613

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
nicholas-lockhart wants to merge 2 commits into
base: main
Choose a base branch
from
Open

Update form-data to 4.0.5 to address critical CVEs #2613

nicholas-lockhart wants to merge 2 commits into from

Conversation

@nicholas-lockhart
Copy link
Contributor

@nicholas-lockhart nicholas-lockhart commented Dec 2, 2025

The form-data package has a vulnerability which is flagged as critical (CVE-2025-7783). Bumped the version to 4.0.5, which addresses the issue. The tests continue to pass, and there is no need for any additional tests.

@nicholas-lockhart nicholas-lockhart mentioned this pull request Dec 10, 2025
Open
@blueww
Copy link
Member

blueww commented Dec 11, 2025
edited
Loading

@EmmaZhu
Would you please check if this PR has any conflict with the current change for deprecated dependency from you ?
If you are OK, I am good to merge it.

@blueww blueww requested a review from EmmaZhu December 11, 2025 03:22
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@EmmaZhu EmmaZhu Awaiting requested review from EmmaZhu

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@nicholas-lockhart @blueww