3 files changed, 11 insertions, 6 deletions

diff --git a/.changeset/twenty-spoons-sneeze.md b/.changeset/twenty-spoons-sneeze.md
new file mode 100644
index 000000000..c4a4bb592
--- /dev/null
+++ b/.changeset/twenty-spoons-sneeze.md
@@ -0,0 +1,5 @@
+---
+'astro': patch
+---
+
+Updates the [`cookie`](https://npmjs.com/package/cookie) dependency to avoid the [CVE 2024-47764](https://nvd.nist.gov/vuln/detail/CVE-2024-47764) vulnerability.
diff --git a/packages/astro/package.json b/packages/astro/package.json
index 0a4600a8e..c77ce9197 100644
--- a/packages/astro/package.json
+++ b/packages/astro/package.json
@@ -140,7 +140,7 @@
     "ci-info": "^4.0.0",
     "clsx": "^2.1.1",
     "common-ancestor-path": "^1.0.1",
-    "cookie": "^0.6.0",
+    "cookie": "^0.7.1",
     "cssesc": "^3.0.0",
     "debug": "^4.3.7",
     "deterministic-object-hash": "^2.0.2",
diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml
index 49a8ca06c..cb5d63cc1 100644
--- a/pnpm-lock.yaml
+++ b/pnpm-lock.yaml
@@ -607,8 +607,8 @@ importers:
         specifier: ^1.0.1
         version: 1.0.1
       cookie:
-        specifier: ^0.6.0
-        version: 0.6.0
+        specifier: ^0.7.1
+        version: 0.7.1
       cssesc:
         specifier: ^3.0.0
         version: 3.0.0
@@ -7774,8 +7774,8 @@ packages:
   convert-source-map@2.0.0:
     resolution: {integrity: sha512-Kvp459HrV2FEJ1CAsi1Ku+MY3kasH19TFykTz2xWmMeq6bk2NU3XXvfJ+Q61m0xktWwt+1HSYf3JZsTms3aRJg==}
 
-  cookie@0.6.0:
-    resolution: {integrity: sha512-U71cyTamuh1CRNCfpGY6to28lxvNwPG4Guz/EVjgf3Jmzv0vlDp1atT9eS5dDjMYHucpHbWns6Lwf3BKz6svdw==}
+  cookie@0.7.1:
+    resolution: {integrity: sha512-6DnInpx7SJ2AK3+CTUE/ZM0vWTUboZCegxhC2xiIydHR9jNuTAASBrfEpHhiGOZw/nX51bHt6YQl8jsGo4y/0w==}
     engines: {node: '>= 0.6'}
 
   copy-anything@3.0.5:
@@ -13519,7 +13519,7 @@ snapshots:
 
   convert-source-map@2.0.0: {}
 
-  cookie@0.6.0: {}
+  cookie@0.7.1: {}
 
   copy-anything@3.0.5:
     dependencies: