@tryghost/content-api 1.11.18 → 1.11.19

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (6) hide show
  1. package/cjs/content-api.js +5 -5
  2. package/es/content-api.js +8 -8
  3. package/es/content-api.js.map +1 -1
  4. package/package.json +5 -5
  5. package/umd/content-api.min.js +1 -1
  6. package/umd/content-api.min.js.map +1 -1
package/cjs/content-api.js CHANGED
@@ -3,7 +3,7 @@
3
3
  var axios = require('axios');
4
4
 
5
5
  var name$1 = "@tryghost/content-api";
6
- var version = "1.11.18";
6
+ var version = "1.11.19";
7
7
  var repository = "https://github.com/TryGhost/SDK/tree/main/packages/content-api";
8
8
  var author = "Ghost Foundation";
9
9
  var license = "MIT";
@@ -36,9 +36,9 @@ var devDependencies = {
36
36
  "@babel/polyfill": "7.12.1",
37
37
  "@babel/preset-env": "7.23.2",
38
38
  "@rollup/plugin-json": "6.0.1",
39
- c8: "7.13.0",
39
+ c8: "8.0.1",
40
40
  "core-js": "3.33.1",
41
- "eslint-plugin-ghost": "2.16.0",
41
+ "eslint-plugin-ghost": "3.3.2",
42
42
  mocha: "10.2.0",
43
43
  rollup: "2.79.1",
44
44
  "rollup-plugin-babel": "4.4.0",
@@ -48,12 +48,12 @@ var devDependencies = {
48
48
  "rollup-plugin-replace": "2.2.0",
49
49
  "rollup-plugin-terser": "7.0.2",
50
50
  should: "13.2.3",
51
- sinon: "15.0.4"
51
+ sinon: "17.0.0"
52
52
  };
53
53
  var dependencies = {
54
54
  axios: "^1.0.0"
55
55
  };
56
- var gitHead = "8c2ce00854de1d1aca04c01ff8c753cb868368b6";
56
+ var gitHead = "77a1645eadd5ce2c2a747a95405f6d8b15ea4e45";
57
57
  var packageInfo = {
58
58
  name: name$1,
59
59
  version: version,
package/es/content-api.js CHANGED
@@ -2339,8 +2339,8 @@ var xhrAdapter = isXHRAdapterSupported && function (config) {
2339
2339
  // Specifically not if we're in a web worker, or react-native.
2340
2340
  if (platform.isStandardBrowserEnv) {
2341
2341
  // Add xsrf header
2342
- const xsrfValue = (config.withCredentials || isURLSameOrigin(fullPath))
2343
- && config.xsrfCookieName && cookies.read(config.xsrfCookieName);
2342
+ // regarding CVE-2023-45857 config.withCredentials condition was removed temporarily
2343
+ const xsrfValue = isURLSameOrigin(fullPath) && config.xsrfCookieName && cookies.read(config.xsrfCookieName);
2344
2344
 
2345
2345
  if (xsrfValue) {
2346
2346
  requestHeaders.set(config.xsrfHeaderName, xsrfValue);
@@ -2655,7 +2655,7 @@ function mergeConfig(config1, config2) {
2655
2655
  return config;
2656
2656
  }
2657
2657
 
2658
- const VERSION = "1.5.1";
2658
+ const VERSION = "1.6.0";
2659
2659
 
2660
2660
  const validators$1 = {};
2661
2661
 
@@ -3234,7 +3234,7 @@ axios.default = axios;
3234
3234
  var axios$1 = axios;
3235
3235
 
3236
3236
  var name$1 = "@tryghost/content-api";
3237
- var version = "1.11.18";
3237
+ var version = "1.11.19";
3238
3238
  var repository = "https://github.com/TryGhost/SDK/tree/main/packages/content-api";
3239
3239
  var author = "Ghost Foundation";
3240
3240
  var license = "MIT";
@@ -3267,9 +3267,9 @@ var devDependencies = {
3267
3267
  "@babel/polyfill": "7.12.1",
3268
3268
  "@babel/preset-env": "7.23.2",
3269
3269
  "@rollup/plugin-json": "6.0.1",
3270
- c8: "7.13.0",
3270
+ c8: "8.0.1",
3271
3271
  "core-js": "3.33.1",
3272
- "eslint-plugin-ghost": "2.16.0",
3272
+ "eslint-plugin-ghost": "3.3.2",
3273
3273
  mocha: "10.2.0",
3274
3274
  rollup: "2.79.1",
3275
3275
  "rollup-plugin-babel": "4.4.0",
@@ -3279,12 +3279,12 @@ var devDependencies = {
3279
3279
  "rollup-plugin-replace": "2.2.0",
3280
3280
  "rollup-plugin-terser": "7.0.2",
3281
3281
  should: "13.2.3",
3282
- sinon: "15.0.4"
3282
+ sinon: "17.0.0"
3283
3283
  };
3284
3284
  var dependencies = {
3285
3285
  axios: "^1.0.0"
3286
3286
  };
3287
- var gitHead = "8c2ce00854de1d1aca04c01ff8c753cb868368b6";
3287
+ var gitHead = "77a1645eadd5ce2c2a747a95405f6d8b15ea4e45";
3288
3288
  var packageInfo = {
3289
3289
  name: name$1,
3290
3290
  version: version,