[Snyk] Upgrade http-proxy from 1.17.0 to 1.18.1

[Exkaleburx]

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to upgrade http-proxy from 1.17.0 to 1.18.1.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 2 versions ahead of your current version.

• The recommended version was released on 4 years ago.

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Arbitrary File Write SNYK-JS-TAR-1579155	631	No Known Exploit
	Prototype Pollution SNYK-JS-UNSETVALUE-2400660	631	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	631	Proof of Concept
	Prototype Pollution SNYK-JS-SETVALUE-1540541	631	Proof of Concept
	Prototype Pollution SNYK-JS-SETVALUE-450213	631	Proof of Concept
	Prototype Pollution SNYK-JS-SETVALUE-1540541	631	Proof of Concept
	Prototype Pollution SNYK-JS-SETVALUE-450213	631	Proof of Concept
	Arbitrary File Overwrite SNYK-JS-TAR-1536528	631	No Known Exploit
	Arbitrary File Overwrite SNYK-JS-TAR-1536531	631	No Known Exploit
	Arbitrary File Write SNYK-JS-TAR-1579147	631	No Known Exploit
	Arbitrary File Write SNYK-JS-TAR-1579152	631	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-ANSIREGEX-1583908	631	Proof of Concept
	Uncontrolled resource consumption SNYK-JS-BRACES-6838727	631	Proof of Concept
	Denial of Service (DoS) SNYK-JS-DECODEURICOMPONENT-3149970	631	Proof of Concept
	Prototype Pollution SNYK-JS-INI-1048974	631	Proof of Concept
	Inefficient Regular Expression Complexity SNYK-JS-MICROMATCH-6838728	631	No Known Exploit
	Prototype Pollution SNYK-JS-MIXINDEEP-450212	631	Proof of Concept
	Missing Release of Resource after Effective Lifetime SNYK-JS-INFLIGHT-6095116	631	Proof of Concept
	Uncontrolled Resource Consumption ('Resource Exhaustion') SNYK-JS-TAR-6476909	631	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-GLOBPARENT-1016905	631	Proof of Concept
	Denial of Service (DoS) SNYK-JS-HTTPPROXY-569139	631	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-MINIMATCH-3050818	631	No Known Exploit
	Prototype Pollution SNYK-JS-MINIMIST-559764	631	Proof of Concept
	Prototype Pollution SNYK-JS-MINIMIST-559764	631	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-TAR-1536758	631	No Known Exploit
	Validation Bypass SNYK-JS-KINDOF-537849	631	Proof of Concept
	Prototype Pollution SNYK-JS-MINIMIST-2429795	631	Proof of Concept
	Prototype Pollution SNYK-JS-MINIMIST-2429795	631	Proof of Concept

Release notes

Package name: http-proxy

• 1.18.1 - 2020-05-17
  

  1.18.1

• 1.18.0 - 2019-09-18
  

  Version 1.18.0

• 1.17.0 - 2018-04-20
  

  Due to some great contributions I'm happy to announce a new release of http-proxy containing numerous bug fixes, feature additions and documentation improvements. Thanks to all who contributed for their patience and willingness to contribute despite perceived stagnation in activity in the project. I welcome all contributions and those who are interested in getting more involved with the project. Below I will highlight the changes that landed in the latest version but you can find the full diff of the changes in #1251

  • Add option to rewrite path of set-cookie headers. @ swillis12
  • Add option for overriding http METHOD when proxying request @ AydinChavez
  • Feature: selfHandleResponse for taking responsibility in returning your own response when listening on the proxyRes event. @ cpd0101 @ guoxiangyang
  • Add followRedirects option @ n30n0v
  • Document timeout option @ jlaamanen
  • Fix documentation typos @ carpsareokiguess
  • Document buffer option @ jonhunter1977
  • Include websocket non-upgrade response instead of just closing the socket. Allows auth schemes to be possible with websocket proxying. @ Tigge
  • Stop using the writeHead method explicitly and let node handle it internally to prevent thrown errors @ jakefurler
  • Be more defensive in handling of detecting response state when proxying @ thiagobustamante

from http-proxy GitHub release notes

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.
• Max score is 1000. Note that the real score may have changed since the PR was raised.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs