Update package.json #1087

PraveenAnaparthi · 2023-01-05T12:42:54Z

bump request-ip from 2.x to 3.3.0

Description of the change

bump request-ip from 2.x to 3.3.0,
2. x version has a dependency is_js and it has a Vulnerability. I guess there are no breaking changes between 2. x and 3. x
https://ossindex.sonatype.org/component/pkg:npm/[email protected]?utm_source=dependency-check&utm_medium=integration&utm_content=7.4.3
For the past 6 years, there is no update for the is_js library.

bump request-ip from 2.x to 3.3.0

waltjones

@PraveenAnaparthi I agree, there don't appear to be breaking changes in the changelog. Thank you for the PR!

bump request-ip from 2.x to 3.3.0

Update package.json

30d04be

bump request-ip from 2.x to 3.3.0

waltjones approved these changes Jan 5, 2023

View reviewed changes

waltjones merged commit d6b09e2 into rollbar:master Jan 5, 2023

melvrickgoh mentioned this pull request Jul 7, 2023

bump request-ip to 3.3.0 in package-lock.json #1111

Merged

4 tasks

mudetroit pushed a commit that referenced this pull request Mar 14, 2024

Update package.json (#1087)

5bd5a4f

bump request-ip from 2.x to 3.3.0