⚠️ Security Fixes ⚠️
- CRLF injection in request path, method, and headers GHSA-3cvr-822r-rqcc, CVE CVE-2022-31150, reported by @Haxatron
- Cookies uncleared on cross-host / cross-origin redirect GHSA-q768-x9m6-m9qp, CVE CVE-2022-31150, reported by @Haxatron
What's Changed
- Drop PR title validation by @mcollina in #1543
- chore: exclude windows node 16 by @mcollina in #1542
- feat: use weighted round robin in balancedPool by @jodevsa in #1069
- Fix up
excludein CI by @dominykas in #1544 - fix(mock utils): set Readable.abort by @KhafraDev in #1549
- fix(body mixin): only allow Uint8Array chunks by @KhafraDev in #1550
- docs: updated proxy docs - renamed already used const proxy to proxyServer by @dancastillo in #1552
New Contributors
- @jodevsa made their first contribution in #1069
- @dancastillo made their first contribution in #1552
Full Changelog: v5.7.0...v5.7.1