Andreas/LibreChat
1
0
Fork 0
mirror of https://github.com/danny-avila/LibreChat.git synced 2026-01-11 04:58:51 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions 3

🛡️ chore: multer v2.0.0 for CVE-2025-47935 and CVE-2025-47944 (#7454)

Browse source 
* chore: bump multer to v2.0.0 to resolve CVE-2025-47935 and CVE-2025-47944

* chore: temp. remove helmet dependency to appease unused NPM package workflow
This commit is contained in:
Danny Avila 2025-05-19 19:22:43 -04:00 committed by GitHub
parent 9c9fe4e03a
commit 739b0d3012
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
2 changed files with 32 additions and 41 deletions
Download patch file Download diff file Expand all files Collapse all files

3
api/package.json
View file

@ -71,7 +71,6 @@
"firebase": "^11.0.2",
"googleapis": "^126.0.1",
"handlebars": "^4.7.7",
"helmet": "^8.1.0",
"https-proxy-agent": "^7.0.6",
"ioredis": "^5.3.2",
"js-yaml": "^4.1.0",
@ -87,7 +86,7 @@
"mime": "^3.0.0",
"module-alias": "^2.2.3",
"mongoose": "^8.12.1",
"multer": "^1.4.5-lts.1",
"multer": "^2.0.0",
"nanoid": "^3.3.7",
"nodemailer": "^6.9.15",
"ollama": "^0.5.0",