From f3f8bdc019e37fd0e9c14532fdafbad6e9e74e3a Mon Sep 17 00:00:00 2001
From: Lucas Werkmeister <mail@lucaswerkmeister.de>
Date: Tue, 9 Apr 2024 20:10:35 +0200
Subject: [PATCH] Update http-cookie-agent and undici
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Apparently the undici update includes two security fixes
(GHSA-9qxr-qj54-h672 [1], GHSA-m4v8-wqvr-p9f7 [2]), though it doesn’t
sound like either of them could have affected m3api users.

    npm i {http-cookie-agent,undici}@latest

[1]: https://github.com/nodejs/undici/security/advisories/GHSA-9qxr-qj54-h672
[2]: https://github.com/nodejs/undici/security/advisories/GHSA-m4v8-wqvr-p9f7
---
 package-lock.json | 24 ++++++++++++------------
 package.json      |  4 ++--
 2 files changed, 14 insertions(+), 14 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index 352f3f6..ffc51cc 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -9,9 +9,9 @@
 			"version": "0.8.1",
 			"license": "ISC",
 			"dependencies": {
-				"http-cookie-agent": "^6.0.1",
+				"http-cookie-agent": "^6.0.3",
 				"tough-cookie": "^4.1.3",
-				"undici": "^6.9.0"
+				"undici": "^6.12.0"
 			},
 			"devDependencies": {
 				"@sinonjs/fake-timers": "^11.2.2",
@@ -592,9 +592,9 @@
 			}
 		},
 		"node_modules/agent-base": {
-			"version": "7.1.0",
-			"resolved": "https://registry.npmjs.org/agent-base/-/agent-base-7.1.0.tgz",
-			"integrity": "sha512-o/zjMZRhJxny7OyEF+Op8X+efiELC7k7yOjMzgfzVqOzXqkBkWI79YoTdOtsuWd5BWhAGAuOY/Xa6xpiaWXiNg==",
+			"version": "7.1.1",
+			"resolved": "https://registry.npmjs.org/agent-base/-/agent-base-7.1.1.tgz",
+			"integrity": "sha512-H0TSyFNDMomMNJQBn8wFV5YC/2eJ+VXECwOadZJT554xP6cODZHPX3H9QMQECxvrgiSOP1pHjy1sMWQVYJOUOA==",
 			"dependencies": {
 				"debug": "^4.3.4"
 			},
@@ -2456,11 +2456,11 @@
 			"dev": true
 		},
 		"node_modules/http-cookie-agent": {
-			"version": "6.0.1",
-			"resolved": "https://registry.npmjs.org/http-cookie-agent/-/http-cookie-agent-6.0.1.tgz",
-			"integrity": "sha512-AhPCqG7i3K8OVWORyuULoP7/Xv90wf14jBAKyLqjKpaJyGjutiwryYV+Lj1jqPYnQtbQFimwSaeY7NXw22TckQ==",
+			"version": "6.0.3",
+			"resolved": "https://registry.npmjs.org/http-cookie-agent/-/http-cookie-agent-6.0.3.tgz",
+			"integrity": "sha512-6JdymEgWgsg9VQ5VN9FGpRRcivyu4WdM0Ud3kW+Q0PB7knt0EFtlhNPU8wCuscXLfIEI5y6jEMdFTBODNsJR6g==",
 			"dependencies": {
-				"agent-base": "^7.1.0"
+				"agent-base": "^7.1.1"
 			},
 			"engines": {
 				"node": ">=18.0.0"
@@ -4732,9 +4732,9 @@
 			"dev": true
 		},
 		"node_modules/undici": {
-			"version": "6.9.0",
-			"resolved": "https://registry.npmjs.org/undici/-/undici-6.9.0.tgz",
-			"integrity": "sha512-XPWfXzJedevUziHwun70EKNvGnxv4CnfraFZ4f/JV01+fcvMYzHE26r/j8AY/9c/70nkN4B1zX7E2Oyuqwz4+Q==",
+			"version": "6.12.0",
+			"resolved": "https://registry.npmjs.org/undici/-/undici-6.12.0.tgz",
+			"integrity": "sha512-d87yk8lqSFUYtR5fTFe2frpkMIrUEz+lgoJmhcL+J3StVl+8fj8ytE4lLnJOTPCE12YbumNGzf4LYsQyusdV5g==",
 			"engines": {
 				"node": ">=18.0"
 			}
diff --git a/package.json b/package.json
index bc2ceec..365e7de 100644
--- a/package.json
+++ b/package.json
@@ -29,9 +29,9 @@
 		"node": ">=18.2.0"
 	},
 	"dependencies": {
-		"http-cookie-agent": "^6.0.1",
+		"http-cookie-agent": "^6.0.3",
 		"tough-cookie": "^4.1.3",
-		"undici": "^6.9.0"
+		"undici": "^6.12.0"
 	},
 	"devDependencies": {
 		"@sinonjs/fake-timers": "^11.2.2",