Unverified Commit 758d23f6 authored by Kevin O'Sullivan's avatar Kevin O'Sullivan Committed by GitHub
Browse files

Merge pull request #28 from Shopify/release_3_1_71

Packaging for release v3.1.71
parents 7fcdf666 82b958c9
......@@ -7,9 +7,9 @@ and adheres to [Semantic Versioning](http://semver.org/spec/v2.0.0.html).
## [Unreleased]
### Removed
## [3.1.71] - 2020-10-16
- Removes `safe-compare` as a dependency, preferring Node's `crypto.timingSafeEqual` [1470](https://github.com/Shopify/quilt/pull/1470)
- Removes `safe-compare` as a dependency, preferring Node's `crypto.timingSafeEqual` [1470](https://github.com/Shopify/quilt/pull/1470) | [2](https://github.com/Shopify/koa-shopify-auth/issues/2)
## [3.1.70] - 2020-09-08
......
......@@ -9,9 +9,9 @@ Sister module to [`@shopify/shopify-express`](https://www.npmjs.com/package/@sho
Features you might know from the express module like the webhook middleware and proxy will be presented as their [own packages instead](https://github.com/Shopify/quilt/blob/master/packages/koa-shopify-graphql-proxy/README.md).
## Warning: 3.1.61-3.1.62 vulnerable to reflected XSS
## Warning: versions prior to 3.1.68 vulnerable to reflected XSS
Versions 3.1.61 and 3.1.62 are vulnerable to a reflected XSS attack. Please update to the latest version to protect your app.
Versions prior to 3.1.68 are vulnerable to a reflected XSS attack. Please update to the latest version to protect your app.
## Installation
......
{
"name": "@shopify/koa-shopify-auth",
"version": "3.1.70",
"version": "3.1.71",
"license": "MIT",
"description": "Middleware to authenticate a Koa application with Shopify",
"main": "dist/src/index.js",
......
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment