[Snyk] Security upgrade undici from 4.7.0 to 5.8.0

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • example/package.json
  • example/package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	658/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 5.3	CRLF Injection SNYK-JS-UNDICI-2953389	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: undici

The new version differs by 250 commits.

• 26f60b7 Bumped v5.8.0
• 0a5bee9 Merge pull request from GHSA-q768-x9m6-m9qp
• a29a151 Merge pull request from GHSA-3cvr-822r-rqcc
• 722976c docs: updated proxy docs - renamed already used const proxy to proxyServer (#1552)
• b6af4e6 fix(body mixin): only allow Uint8Array chunks (#1550)
• 6c9e634 fix(mock utils): set Readable.abort (#1549)
• 22e2f39 ci: fix up `exclude` (#1544)
• 99205ec feat: use weighted round robin in balancedPool (#1069)
• 5b57e8c chore: exclude windows node 16 (#1542)
• 93e31a2 Drop PR title validation (#1543)
• e7d3bf3 Bumped v5.7.0
• c485884 fixing lint
• 87ef1b4 Update to llhttp v6.0.7 (#1539)
• 21b4505 fix: faster direct read approach (#1537)
• b609143 fix: allow optional body for mock reply (#1536)
• 4340f0b fix(Headers): lowercase name in `Headers.prototype.set` (#1535)
• aa8782c fix(fetch): re-add support for node v16.8.0+ (#1534)
• c1a0490 5.6.1
• 5ca25c2 fix(fetch): do not assign default value to `RequestInit.method` (#1529)
• 2a2d2bb build(deps-dev): bump tsd from 0.21.0 to 0.22.0 (#1530)
• 42c43f2 fix: improper handling of relative location header (#1523)
• 57e2434 docs: garbage collection `HEAD` method note (#1522)
• e53242d Bumped v5.6.0
• fcbb427 feat(Errors): include error response body in status code errors (v2) (#1519)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 CRLF Injection