Skip to content

Commit 1a58d33

Browse files
astiobastiob
committed
Force-update got to 11.8.5 even in nodegit's dependencies
AFAICT NodeGit's only uses of Got are trivial and indeed limited to a script in its util directory, which is only used when compiling NodeGit from source. So an override shouldn't break anything (and indeed any Got vulnerability here might not matter at all, but let's keep Dependabot happy). These findings are corroborated by: nodegit/nodegit#1925
1 parent f0377ad commit 1a58d33

4 files changed

Lines changed: 121 additions & 389 deletions

File tree

digimon-rearise-bots/package-lock.json

Lines changed: 1 addition & 218 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

digimon-rearise-bots/package.json

Lines changed: 5 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -36,5 +36,10 @@
3636
"discord.js": "^13.6.0",
3737
"mysql2": "^2.3.3",
3838
"ts-node": "^10.2.1"
39+
},
40+
"overrides": {
41+
"nodegit": {
42+
"got": "$got"
43+
}
3944
}
4045
}

0 commit comments

Comments
 (0)