DIA
discord.js - Imagine an app3mo ago
rxch

Vulnerability

it says run npm audit fix to fix 4 low severity vulnerabilities but it doesnt fix it npm audit report undici <=5.28.3 Undici proxy-authorization header not cleared on cross-origin redirect in fetch - https://github.com/advisories/GHSA-3787-6prv-h9w3 Undici's Proxy-Authorization header not cleared on cross-origin redirect for dispatch, request, stream, pipeline - https://github.com/advisories/GHSA-m4v8-wqvr-p9f7 Undici's fetch with integrity option is too lax when algorithm is specified but hash value is in incorrect - https://github.com/advisories/GHSA-9qxr-qj54-h672 fix available via npm audit fix node_modules/undici @discordjs/rest 2.0.1-dev.1690848847-1af7e5a0b.0 - 2.3.0-dev.1707178154-3755e66d4 Depends on vulnerable versions of undici node_modules/@discordjs/rest @discordjs/ws >=1.0.1-dev.1690848792-1af7e5a0b.0 Depends on vulnerable versions of @discordjs/rest node_modules/@discordjs/ws discord.js 14.0.0-dev.1640779371.9cdc448 - 14.0.0-dev.1657757514-fe34f48 || 14.12.2-dev.1690891477-7295a3a94.0 - 14.15.0-dev.1713312606-6759f5b9c Depends on vulnerable versions of @discordjs/rest Depends on vulnerable versions of @discordjs/ws Depends on vulnerable versions of undici node_modules/discord.js
GitHub
CVE-2024-24758 - GitHub Advisory Database
Undici proxy-authorization header not cleared on cross-origin redirect in fetch
GitHub
CVE-2024-30260 - GitHub Advisory Database
Undici's Proxy-Authorization header not cleared on cross-origin redirect for dispatch, request, stream, pipeline
GitHub
CVE-2024-30261 - GitHub Advisory Database
Undici's fetch with integrity option is too lax when algorithm is specified but hash value is in incorrect
No description
3 Replies
d.js toolkit
d.js toolkit3mo ago
- What's your exact discord.js npm list discord.js and node node -v version? - Not a discord.js issue? Check out #other-js-ts. - Consider reading #how-to-get-help to improve your question! - Explain what exactly your issue is. - Post the full error stack trace, not just the top part! - Show your code! - Issue solved? Press the button! - Marked as resolved by OP
rxch
rxch3mo ago
i get that there are links to fix 3 but are they safe or something?
rxch
rxch3mo ago
theres like patched versions but idk how to update
No description
Want results from more Discord servers?
Add your server
More Posts
I need help pleaseI have a ticket system for Discord and i don´t get it worked please DM me if you can helpFetch messages after a message with including initialMessage```ts let messages = await dmChannel.messages.fetch(); const initialMessage = messages.find( (x) =I don't suppose TextChannel polls are available on the API yet are they?I know it's a new feature which has been rolled out slowly across servers by Discord. I don't supposStill need help understanding how I can stop a collector if await is used inside (for a modal)Let's say the player dismisses the ephemeral message. The collector still runs because the actual "sHow can I stop this collector if component disappears (for example, ephemeral msg closed)I want this collector to stop if the entire message is closed. The interaction is "unknown" if I runShop QueueHello yall I'm wanting to make a shop queue which is essentially where I add multiple things under tHow can I make the following thing happenI want to update an already existing message first and then show a modal. But the error occurs replyButton InteractionHey, heres my code: buttonCollector.on('collect', async buttonInteraction => { console.l