chore(deps): update dependency fastify to v4.10.2 [security]

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
fastify (source)	4.3.0 -> 4.10.2

GitHub Vulnerability Alerts

CVE-2022-39288

Impact

An attacker can send an invalid Content-Type header that can cause the application to crash, leading to a possible Denial of Service attack. Only the v4.x line is affected.

(This was updated: upon a close inspection, v3.x is not affected after all).

Patches

Yes, update to > v4.8.0.

Workarounds

You can reject the malicious content types before the body parser enters in action.

  const badNames = Object.getOwnPropertyNames({}.__proto__)
  fastify.addHook('onRequest', async (req, reply) => {
    for (const badName of badNames) {
      if (req.headers['content-type'].indexOf(badName) > -1) {
        reply.code(415)
        throw new Error('Content type not supported')
      }
    }
  })

References

See the HackerOne report #​1715536

For more information

Fastify security policy

CVE-2022-41919

Impact

The attacker can use the incorrect Content-Type to bypass the Pre-Flight checking of fetch. fetch() requests with Content-Type’s essence as "application/x-www-form-urlencoded", "multipart/form-data", or "text/plain", could potentially be used to invoke routes that only accepts application/json content type, thus bypassing any CORS protection, and therefore they could lead to a Cross-Site Request Forgery attack.

Patches

For 4.x users, please update to at least 4.10.2
For 3.x users, please update to at least 3.29.4

Workarounds

Implement Cross-Site Request Forgery protection using @fastify/csrf.

References

Check out the HackerOne report: https://hackerone.com/reports/1763832.

For more information

Fastify security policy

---

Release Notes

fastify/fastify (fastify)

v4.10.2

Compare Source

⚠️ Security Release ⚠️

• Fix for "Incorrect Content-Type parsing can lead to CSRF attack"
  and CVE-2022-41919

Full Changelog: fastify/fastify@v4.10.1...v4.10.2

v4.10.1

Compare Source

What's Changed

• fix node 19.1.0 port validation test by @​Uzlopak in https://github.com/fastify/fastify/pull/4427
• Add fastify-constraints to community plugins by @​Ceres6 in https://github.com/fastify/fastify/pull/4428
• build(deps-dev): bump @​sinonjs/fake-timers from 9.1.2 to 10.0.0 by @​dependabot in https://github.com/fastify/fastify/pull/4421
• add silent option to LogLevel by @​Uzlopak in https://github.com/fastify/fastify/pull/4432

New Contributors

• @​Ceres6 made their first contribution in https://github.com/fastify/fastify/pull/4428

Full Changelog: fastify/fastify@v4.10.0...v4.10.1

v4.10.0

Compare Source

What's Changed

• docs(reference/reply): spelling fixes by @​Fdawgs in https://github.com/fastify/fastify/pull/4358
• Support different content-type typed reply with TypeProvider by @​rain714 in https://github.com/fastify/fastify/pull/4360
• chore: remove leading empty lines by @​LinusU in https://github.com/fastify/fastify/pull/4364
• fix types after pino 8.7.0 change by @​mcollina in https://github.com/fastify/fastify/pull/4365
• Node.js V19 support by @​mcollina in https://github.com/fastify/fastify/pull/4366
• fix: no check on null or undefined values passed as fn by @​metcoder95 in https://github.com/fastify/fastify/pull/4367
• docs(server): config is lost when reply.call not found() is called by @​cesarvspr in https://github.com/fastify/fastify/pull/4368
• Fix typo - 'sever' to 'server' by @​utsav91 in https://github.com/fastify/fastify/pull/4372
• Add platformatic to the Acknowledgements by @​mcollina in https://github.com/fastify/fastify/pull/4378
• docs: add Simone Busoli to plugin maintainers by @​simoneb in https://github.com/fastify/fastify/pull/4379
• add missing 'validationContext' field to FastifyError type by @​jakubburzynski in https://github.com/fastify/fastify/pull/4363
• fix(type-providers): assignability of instance with enabled type provider by @​driimus in https://github.com/fastify/fastify/pull/4371
• feat: support async trailer by @​climba03003 in https://github.com/fastify/fastify/pull/4380
• fix: trailers async race condition by @​climba03003 in https://github.com/fastify/fastify/pull/4383
• docs(ecosystem): Add fastify-list-routes by @​chuongtrh in https://github.com/fastify/fastify/pull/4385
• build(deps-dev): bump @​sinclair/typebox from 0.24.51 to 0.25.2 by @​dependabot in https://github.com/fastify/fastify/pull/4388
• [ Fix ] Improve error message for hooks check by @​debadutta98 in https://github.com/fastify/fastify/pull/4387
• fix: tiny-lru usage by @​climba03003 in https://github.com/fastify/fastify/pull/4391
• Removes old note about named imports in ESM by @​fox1t in https://github.com/fastify/fastify/pull/4392
• docs: Add section about capacity planning by @​kibertoad in https://github.com/fastify/fastify/pull/4386
• docs(recommendations): grammar fixes by @​Fdawgs in https://github.com/fastify/fastify/pull/4396
• chore(doc): duplicated menu item by @​Eomm in https://github.com/fastify/fastify/pull/4398
• feat: add request.routeOptions object by @​debadutta98 in https://github.com/fastify/fastify/pull/4397
• docs: Document multiple app approach by @​kibertoad in https://github.com/fastify/fastify/pull/4393
• fix example using db decorator on fastify instance by @​mmarti in https://github.com/fastify/fastify/pull/4406
• docs: fix removeAdditional refer by @​shunyue1320 in https://github.com/fastify/fastify/pull/4410

New Contributors

• @​rain714 made their first contribution in https://github.com/fastify/fastify/pull/4360
• @​LinusU made their first contribution in https://github.com/fastify/fastify/pull/4364
• @​cesarvspr made their first contribution in https://github.com/fastify/fastify/pull/4368
• @​utsav91 made their first contribution in https://github.com/fastify/fastify/pull/4372
• @​jakubburzynski made their first contribution in https://github.com/fastify/fastify/pull/4363
• @​driimus made their first contribution in https://github.com/fastify/fastify/pull/4371
• @​chuongtrh made their first contribution in https://github.com/fastify/fastify/pull/4385
• @​debadutta98 made their first contribution in https://github.com/fastify/fastify/pull/4387
• @​mmarti made their first contribution in https://github.com/fastify/fastify/pull/4406
• @​shunyue1320 made their first contribution in https://github.com/fastify/fastify/pull/4410

Full Changelog: fastify/fastify@v4.9.2...v4.10.0

v4.9.2

Compare Source

What's Changed

• types: Add missing context types by @​kibertoad in https://github.com/fastify/fastify/pull/4352
• Revert "fix(logger): lost setBindings type in FastifyBaseLogger" by @​climba03003 in https://github.com/fastify/fastify/pull/4355

Full Changelog: fastify/fastify@v4.9.1...v4.9.2

v4.9.1

Compare Source

What's Changed

• docs(reply): specify streams content-type by @​D10f in https://github.com/fastify/fastify/pull/4337
• fix(logger): lost setBindings type in FastifyBaseLogger by @​BlackHole1 in https://github.com/fastify/fastify/pull/4346
• docs(reference): grammar and structure fixes by @​Fdawgs in https://github.com/fastify/fastify/pull/4348
• docs: example how decorators dependencies works by @​leandroandrade in https://github.com/fastify/fastify/pull/4343
• Undefined is a valid value for if set as a single hook by @​mcollina in https://github.com/fastify/fastify/pull/4351

New Contributors

• @​D10f made their first contribution in https://github.com/fastify/fastify/pull/4337

Full Changelog: fastify/fastify@v4.9.0...v4.9.1

v4.9.0

Compare Source

What's Changed

• fix: error handler content-type guessing by @​climba03003 in https://github.com/fastify/fastify/pull/4329
• build(deps-dev): bump fluent-json-schema from 3.1.0 to 4.0.0 by @​dependabot in https://github.com/fastify/fastify/pull/4331
• feat: Supporting different content-type responses by @​iifawzi in https://github.com/fastify/fastify/pull/4264
• fix: should now call default schema compilers by @​Eomm in https://github.com/fastify/fastify/pull/4340
• docs(ecosystem): replace heply -> beliven due to rebranding by @​zuck in https://github.com/fastify/fastify/pull/4334
• docs(ecosystem): add @​fastify-userland plugins and tools by @​BlackHole1 in https://github.com/fastify/fastify/pull/4345
• Validate and throws a custom error when attempting to register invalid hook functions by @​jhhom in https://github.com/fastify/fastify/pull/4332

New Contributors

• @​jhhom made their first contribution in https://github.com/fastify/fastify/pull/4332

Full Changelog: fastify/fastify@v4.8.1...v4.9.0

v4.8.1

Compare Source

⚠️ Security Release ⚠️

This release fixes GHSA-455w-c45v-86rg for the v4.x line.
This is a HIGH vulnerability that can lead to a crash, resulting in a total loss of availability.
The CVE for this vulnerability is CVE-2022-39288.

Full Changelog: fastify/fastify@v4.8.0...v4.8.1

v4.8.0

Compare Source

What's Changed

• Correct github url for fastify-qs package by @​VanoDevium in https://github.com/fastify/fastify/pull/4321
• docs: add test examples with undici and fetch by @​CristiTeo in https://github.com/fastify/fastify/pull/4300
• update onRoute hook docs by @​matthyk in https://github.com/fastify/fastify/pull/4322
• Export error codes by @​fitiskin in https://github.com/fastify/fastify/pull/4266
• feat: support async constraint by @​climba03003 in https://github.com/fastify/fastify/pull/4323

New Contributors

• @​fitiskin made their first contribution in https://github.com/fastify/fastify/pull/4266

Full Changelog: fastify/fastify@v4.7.0...v4.8.0

v4.7.0

Compare Source

What's Changed

• fix: prevent reuse mutated route option for head by @​climba03003 in https://github.com/fastify/fastify/pull/4273
• docs(ecosystem): add fastify-sqlite by @​Eomm in https://github.com/fastify/fastify/pull/4274
• Add RavenDB to community plugins by @​drakhart in https://github.com/fastify/fastify/pull/4277
• ci: reduce ci test when linting fails by @​Eomm in https://github.com/fastify/fastify/pull/4280
• chore: update dependencies by @​anonrig in https://github.com/fastify/fastify/pull/4284
• Check if route exist before checking Content-Type of body by @​mage1k99 in https://github.com/fastify/fastify/pull/4286
• Replace parseInt with Number at get 6% boost by @​anonrig in https://github.com/fastify/fastify/pull/4289
• fix: type of validation function by @​budarin in https://github.com/fastify/fastify/pull/4283
• GitHub Workflows security hardening by @​sashashura in https://github.com/fastify/fastify/pull/4290
• docs: onRoute hooks in plugins by @​philsch in https://github.com/fastify/fastify/pull/4285
• chore: Lint eco system error by @​zrosenbauer in https://github.com/fastify/fastify/pull/4275
• docs(ecosystem): Add @fastify/one-line-logger by @​nooreldeensalah in https://github.com/fastify/fastify/pull/4293
• docs(ecosystem): capitalization fixes by @​Fdawgs in https://github.com/fastify/fastify/pull/4294
• docs(ecosystem): add slow down plugin by @​CristiTeo in https://github.com/fastify/fastify/pull/4292
• fix: custom validator should not mutate headers schema by @​climba03003 in https://github.com/fastify/fastify/pull/4295
• feat: parse request body for http SEARCH requests by @​kalvenschraut in https://github.com/fastify/fastify/pull/4298
• Fix typo in the comment to Context object (lib/context.js) by @​yakovenkodenis in https://github.com/fastify/fastify/pull/4301
• docs(type-providers): replace FastifyLoggerInstance with FastifyBaseLogger by @​samialdury in https://github.com/fastify/fastify/pull/4304
• docs(contributing): clarify teams for joiners by @​Eomm in https://github.com/fastify/fastify/pull/4303
• test: add number coersion related tests by @​anonrig in https://github.com/fastify/fastify/pull/4297
• feat: add routeSchema and routeConfig + switching context handling by @​metcoder95 in https://github.com/fastify/fastify/pull/4216
• docs(ecosystem): add fastify-s3-buckets by @​kibertoad in https://github.com/fastify/fastify/pull/4311
• fix: Fix typo in docs/Reference/Type-Providers.md by @​SnowSuno in https://github.com/fastify/fastify/pull/4312
• build(deps): bump tiny-lru from 8.0.2 to 9.0.2 by @​dependabot in https://github.com/fastify/fastify/pull/4305

New Contributors

• @​mage1k99 made their first contribution in https://github.com/fastify/fastify/pull/4286
• @​budarin made their first contribution in https://github.com/fastify/fastify/pull/4283
• @​sashashura made their first contribution in https://github.com/fastify/fastify/pull/4290
• @​philsch made their first contribution in https://github.com/fastify/fastify/pull/4285
• @​zrosenbauer made their first contribution in https://github.com/fastify/fastify/pull/4275
• @​CristiTeo made their first contribution in https://github.com/fastify/fastify/pull/4292
• @​kalvenschraut made their first contribution in https://github.com/fastify/fastify/pull/4298
• @​yakovenkodenis made their first contribution in https://github.com/fastify/fastify/pull/4301
• @​samialdury made their first contribution in https://github.com/fastify/fastify/pull/4304
• @​SnowSuno made their first contribution in https://github.com/fastify/fastify/pull/4312

Full Changelog: fastify/fastify@v4.6.0...v4.7.0

v4.6.0

Compare Source

What's Changed

• chore: replace deprecated FastifyLoggerInstance occurences in typings with FastifyBaseLogger by @​Uzlopak in https://github.com/fastify/fastify/pull/4224
• fix(types): allow fastify.https to be null by @​SuperchupuDev in https://github.com/fastify/fastify/pull/4226
• chore: fix typo in docs for typescript chapter by @​soomtong in https://github.com/fastify/fastify/pull/4227
• build(deps-dev): bump tsd from 0.22.0 to 0.23.0 by @​dependabot in https://github.com/fastify/fastify/pull/4231
• chore: update dependabot link by @​leandroandrade in https://github.com/fastify/fastify/pull/4232
• docs: improved migration guide for onRoute by @​ShogunPanda in https://github.com/fastify/fastify/pull/4233
• docs: clarify setDefaultRoute scope by @​jacobpgn in https://github.com/fastify/fastify/pull/4236
• docs(ecosystem): add fastify-aws-timestream and fastify-aws-sns by @​gzileni in https://github.com/fastify/fastify/pull/4230
• docs(guides/migration-guide-v4): update content by @​Fdawgs in https://github.com/fastify/fastify/pull/4242
• Improve doc about configuring pino-pretty with TypeScript by @​giacomorebonato in https://github.com/fastify/fastify/pull/4243
• build(deps): bump jsumners/lock-threads from b27edac to 3 by @​dependabot in https://github.com/fastify/fastify/pull/4244
• Revert "build(deps): bump jsumners/lock-threads from b27edac to 3" by @​climba03003 in https://github.com/fastify/fastify/pull/4245
• docs: Remove Ajv configuration from TypeBox Type Provider examples by @​msmolens in https://github.com/fastify/fastify/pull/4249
• fix: visit schemas with custom prototype by @​Eomm in https://github.com/fastify/fastify/pull/4248
• feat: add hasRoute by @​Uzlopak in https://github.com/fastify/fastify/pull/4238
• Docs: Fixing #schema-validator url at ./Reference/Server/#ajv by @​wilbert-abreu in https://github.com/fastify/fastify/pull/4253
• chore(doc): fix format by @​Eomm in https://github.com/fastify/fastify/pull/4255
• chore: export RouteGenericInterface by @​ChrisCrewdson in https://github.com/fastify/fastify/pull/4234
• chore: improve Ecosystem.md linter to check for improper module name patterns by @​nooreldeensalah in https://github.com/fastify/fastify/pull/4257
• test: remove assert to invalid HTTP version by @​RafaelGSS in https://github.com/fastify/fastify/pull/4260
• chore: improve Ecosystem.md linter to lint all sections by @​nooreldeensalah in https://github.com/fastify/fastify/pull/4258
• Fixing #​4259 - Updating typescript example according to the validation changes by @​iifawzi in https://github.com/fastify/fastify/pull/4261
• docs: add pubsub-http-handler by @​cobraz in https://github.com/fastify/fastify/pull/4263
• Variadic listen signature allows string port by @​marco-ippolito in https://github.com/fastify/fastify/pull/4269
• doc: Remove Ajv configuration for TypeBox in TS examples by @​pmbanugo in https://github.com/fastify/fastify/pull/4268
• docs(ecosystem): add 2 new fastify v3.x+ plugins by @​WNemencha in https://github.com/fastify/fastify/pull/4270
• docs(typescript): fix #​4241 by @​mortifia in https://github.com/fastify/fastify/pull/4247

New Contributors

• @​SuperchupuDev made their first contribution in https://github.com/fastify/fastify/pull/4226
• @​soomtong made their first contribution in https://github.com/fastify/fastify/pull/4227
• @​leandroandrade made their first contribution in https://github.com/fastify/fastify/pull/4232
• @​jacobpgn made their first contribution in https://github.com/fastify/fastify/pull/4236
• @​giacomorebonato made their first contribution in https://github.com/fastify/fastify/pull/4243
• @​msmolens made their first contribution in https://github.com/fastify/fastify/pull/4249
• @​wilbert-abreu made their first contribution in https://github.com/fastify/fastify/pull/4253
• @​ChrisCrewdson made their first contribution in https://github.com/fastify/fastify/pull/4234
• @​iifawzi made their first contribution in https://github.com/fastify/fastify/pull/4261
• @​cobraz made their first contribution in https://github.com/fastify/fastify/pull/4263
• @​marco-ippolito made their first contribution in https://github.com/fastify/fastify/pull/4269
• @​pmbanugo made their first contribution in https://github.com/fastify/fastify/pull/4268
• @​WNemencha made their first contribution in https://github.com/fastify/fastify/pull/4270
• @​mortifia made their first contribution in https://github.com/fastify/fastify/pull/4247

Full Changelog: fastify/fastify@v4.5.3...v4.6.0

v4.5.3

Compare Source

What's Changed

• ecosystem.md: move fastify-secure-session and fastify-soap-client to core plugins by @​Uzlopak in https://github.com/fastify/fastify/pull/4212
• fix: inject hangs with undefined promise resolve by @​simoneb in https://github.com/fastify/fastify/pull/4211
• use hasOwnProperty from Object.prototype by @​Uzlopak in https://github.com/fastify/fastify/pull/4214
• chore: fastify branch list by @​Eomm in https://github.com/fastify/fastify/pull/4218
• chore: add support for TypeScript 4.8 by @​SimenB in https://github.com/fastify/fastify/pull/4222

Full Changelog: fastify/fastify@v4.5.2...v4.5.3

v4.5.2

Compare Source

What's Changed

• Fix 4204 by @​mcollina in https://github.com/fastify/fastify/pull/4205

Full Changelog: fastify/fastify@v4.5.1...v4.5.2

v4.5.1

Compare Source

What's Changed

• make sure preSerialization hooks are null by default by @​mcollina in https://github.com/fastify/fastify/pull/4203

Full Changelog: fastify/fastify@v4.5.0...v4.5.1

v4.5.0

Compare Source

What's Changed

• Add fastify-osm by @​gzileni in https://github.com/fastify/fastify/pull/4185
• docs(reference/routes): fix onSend example by @​Fdawgs in https://github.com/fastify/fastify/pull/4188
• chore: clean dev-dependancies by @​Eomm in https://github.com/fastify/fastify/pull/4189
• Forward upgrade from secondary server to primary by @​mcollina in https://github.com/fastify/fastify/pull/4190
• add unit test for ajv-formats by @​Uzlopak in https://github.com/fastify/fastify/pull/4187
• add option to disable/ignore request-id header by @​philippviereck in https://github.com/fastify/fastify/pull/4193
• doc: add fastify.display-name symbol by @​Eomm in https://github.com/fastify/fastify/pull/4191
• docs(validation-and-serialization): Fix example on query string coercion by @​galiarmero in https://github.com/fastify/fastify/pull/4198
• Add fastify-https-always to Ecosystem doc. by @​mattbishop in https://github.com/fastify/fastify/pull/4201

New Contributors

• @​gzileni made their first contribution in https://github.com/fastify/fastify/pull/4185
• @​philippviereck made their first contribution in https://github.com/fastify/fastify/pull/4193
• @​galiarmero made their first contribution in https://github.com/fastify/fastify/pull/4198

Full Changelog: fastify/fastify@v4.4.0...v4.5.0

v4.4.0

Compare Source

What's Changed

• fix(types): bad naming of validateInput by @​metcoder95 in https://github.com/fastify/fastify/pull/4151
• feat: add webdav http methods by @​hungtcs in https://github.com/fastify/fastify/pull/3836
• fix(types): reply.getHeader can return numbers and arrays by @​seanparmelee in https://github.com/fastify/fastify/pull/4154
• feat(logger): use pino.BaseLogger as main interface for fastify logger by @​sgrigorev in https://github.com/fastify/fastify/pull/4150
• docs(ecosystem): Add fastify-bugsnag as community plugin by @​ZigaStrgar in https://github.com/fastify/fastify/pull/4155
• fix typo in docs/reference/Server.md by @​developerHet in https://github.com/fastify/fastify/pull/4163
• Make ResolveFastifyReplyType union-aware by @​cm-ayf in https://github.com/fastify/fastify/pull/4164
• docs: update code snippet for accurate use by @​lirantal in https://github.com/fastify/fastify/pull/4167
• build(deps): bump lycheeverse/lychee-action from 1.5.0 to 1.5.1 by @​dependabot in https://github.com/fastify/fastify/pull/4169
• build(deps-dev): bump markdownlint-cli2 from 0.4.0 to 0.5.0 by @​dependabot in https://github.com/fastify/fastify/pull/4170
• types: adjust and add testing by @​metcoder95 in https://github.com/fastify/fastify/pull/4158
• docs(ecosystem): add fastify-lyra by @​mateonunez in https://github.com/fastify/fastify/pull/4176
• Add links to type providers by @​kibertoad in https://github.com/fastify/fastify/pull/4177
• docs(ecosystem): add fastify-keycloak-adapter by @​yubinTW in https://github.com/fastify/fastify/pull/4180
• Docs: onResponse hook error logging by @​avanelli in https://github.com/fastify/fastify/pull/4178

New Contributors

• @​hungtcs made their first contribution in https://github.com/fastify/fastify/pull/3836
• @​seanparmelee made their first contribution in https://github.com/fastify/fastify/pull/4154
• @​sgrigorev made their first contribution in https://github.com/fastify/fastify/pull/4150
• @​ZigaStrgar made their first contribution in https://github.com/fastify/fastify/pull/4155
• @​developerHet made their first contribution in https://github.com/fastify/fastify/pull/4163
• @​cm-ayf made their first contribution in https://github.com/fastify/fastify/pull/4164
• @​lirantal made their first contribution in https://github.com/fastify/fastify/pull/4167
• @​mateonunez made their first contribution in https://github.com/fastify/fastify/pull/4176
• @​yubinTW made their first contribution in https://github.com/fastify/fastify/pull/4180
• @​avanelli made their first contribution in https://github.com/fastify/fastify/pull/4178

Full Changelog: fastify/fastify@v4.3.0...v4.4.0

---

Configuration

📅 Schedule: Branch creation - "" in timezone America/Los_Angeles, Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about these updates again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[renovate]

⚠ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

• any of the package files in this branch needs updating, or
• the branch becomes conflicted, or
• you click the rebase/retry checkbox if found above, or
• you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: package-lock.json

npm ERR! code ERESOLVE
npm ERR! ERESOLVE could not resolve
npm ERR! 
npm ERR! While resolving: [email protected]
npm ERR! Found: [email protected]
npm ERR! node_modules/fastify
npm ERR!   dev fastify@"4.3.0" from the root project
npm ERR! 
npm ERR! Could not resolve dependency:
npm ERR! peer fastify@"4.10.2" from [email protected]
npm ERR! packages/fastify
npm ERR!   [email protected]
npm ERR!   node_modules/apollo-server-integration-fastify
npm ERR!     workspace packages/fastify from the root project
npm ERR! 
npm ERR! Conflicting peer dependency: [email protected]
npm ERR! node_modules/fastify
npm ERR!   peer fastify@"4.10.2" from [email protected]
npm ERR!   packages/fastify
npm ERR!     [email protected]
npm ERR!     node_modules/apollo-server-integration-fastify
npm ERR!       workspace packages/fastify from the root project
npm ERR! 
npm ERR! Fix the upstream dependency conflict, or retry
npm ERR! this command with --force or --legacy-peer-deps
npm ERR! to accept an incorrect (and potentially broken) dependency resolution.
npm ERR! 
npm ERR! 
npm ERR! For a full report see:
npm ERR! /tmp/renovate/cache/others/npm/_logs/2024-04-25T08_58_32_860Z-eresolve-report.txt

npm ERR! A complete log of this run can be found in: /tmp/renovate/cache/others/npm/_logs/2024-04-25T08_58_32_860Z-debug-0.log

[renovate]

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

• any of the package files in this branch needs updating, or
• the branch becomes conflicted, or
• you click the rebase/retry checkbox if found above, or
• you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: package-lock.json

npm error code ERESOLVE
npm error ERESOLVE could not resolve
npm error
npm error While resolving: [email protected]
npm error Found: [email protected]
npm error node_modules/fastify
npm error   dev fastify@"4.3.0" from the root project
npm error
npm error Could not resolve dependency:
npm error peer fastify@"4.10.2" from [email protected]
npm error packages/fastify
npm error   [email protected]
npm error   node_modules/apollo-server-integration-fastify
npm error     workspace packages/fastify from the root project
npm error
npm error Conflicting peer dependency: [email protected]
npm error node_modules/fastify
npm error   peer fastify@"4.10.2" from [email protected]
npm error   packages/fastify
npm error     [email protected]
npm error     node_modules/apollo-server-integration-fastify
npm error       workspace packages/fastify from the root project
npm error
npm error Fix the upstream dependency conflict, or retry
npm error this command with --force or --legacy-peer-deps
npm error to accept an incorrect (and potentially broken) dependency resolution.
npm error
npm error
npm error For a full report see:
npm error /tmp/renovate/cache/others/npm/_logs/2025-02-09T13_29_01_754Z-eresolve-report.txt
npm error A complete log of this run can be found in: /tmp/renovate/cache/others/npm/_logs/2025-02-09T13_29_01_754Z-debug-0.log