[pull] master from koajs:master#147
Merged
Merged
Conversation
Bumps [qs](https://github.com/ljharb/qs) from 6.14.0 to 6.14.1. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/ljharb/qs/blob/main/CHANGELOG.md">qs's changelog</a>.</em></p> <blockquote> <h2><strong>6.14.1</strong></h2> <ul> <li>[Fix] ensure arrayLength applies to <code>[]</code> notation as well</li> <li>[Fix] <code>parse</code>: when a custom decoder returns <code>null</code> for a key, ignore that key</li> <li>[Refactor] <code>parse</code>: extract key segment splitting helper</li> <li>[meta] add threat model</li> <li>[actions] add workflow permissions</li> <li>[Tests] <code>stringify</code>: increase coverage</li> <li>[Dev Deps] update <code>eslint</code>, <code>@ljharb/eslint-config</code>, <code>npmignore</code>, <code>es-value-fixtures</code>, <code>for-each</code>, <code>object-inspect</code></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/ljharb/qs/commit/3fa11a5f643c76896387bd2d86904a2d0141fdf7"><code>3fa11a5</code></a> v6.14.1</li> <li><a href="https://github.com/ljharb/qs/commit/a62670423c1ccab0dd83c621bfb98c7c024e314d"><code>a626704</code></a> [Dev Deps] update <code>npmignore</code></li> <li><a href="https://github.com/ljharb/qs/commit/3086902ecf7f088d0d1803887643ac6c03d415b9"><code>3086902</code></a> [Fix] ensure arrayLength applies to <code>[]</code> notation as well</li> <li><a href="https://github.com/ljharb/qs/commit/fc7930e86c2264c1568c9f5606830e19b0bc2af2"><code>fc7930e</code></a> [Dev Deps] update <code>eslint</code>, <code>@ljharb/eslint-config</code></li> <li><a href="https://github.com/ljharb/qs/commit/0b06aac566abee45ef0327667a7cc89e7aed8b58"><code>0b06aac</code></a> [Dev Deps] update <code>@ljharb/eslint-config</code></li> <li><a href="https://github.com/ljharb/qs/commit/64951f6200a1fb72cc003c6e8226dde3d2ef591f"><code>64951f6</code></a> [Refactor] <code>parse</code>: extract key segment splitting helper</li> <li><a href="https://github.com/ljharb/qs/commit/e1bd2599cdff4c936ea52fb1f16f921cbe7aa88c"><code>e1bd259</code></a> [Dev Deps] update <code>@ljharb/eslint-config</code></li> <li><a href="https://github.com/ljharb/qs/commit/f4b3d39709fef6ddbd85128d1ba4c6b566c4902e"><code>f4b3d39</code></a> [eslint] add eslint 9 optional peer dep</li> <li><a href="https://github.com/ljharb/qs/commit/6e94d9596ca50dffafcef40a5f64eca89962cf34"><code>6e94d95</code></a> [Dev Deps] update <code>eslint</code>, <code>@ljharb/eslint-config</code>, <code>npmignore</code></li> <li><a href="https://github.com/ljharb/qs/commit/973dc3c51c86da9f4e30edeb4b1725158d439102"><code>973dc3c</code></a> [actions] add workflow permissions</li> <li>Additional commits viewable in <a href="https://github.com/ljharb/qs/compare/v6.14.0...v6.14.1">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/koajs/koa/network/alerts). </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [http-errors](https://github.com/jshttp/http-errors) from 2.0.0 to 2.0.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/jshttp/http-errors/releases">http-errors's releases</a>.</em></p> <blockquote> <h2>v2.0.1</h2> <h2>What's Changed</h2> <ul> <li>Add support for OSSF scorecard reporting by <a href="https://github.com/carpasse"><code>@carpasse</code></a> in <a href="https://redirect.github.com/jshttp/http-errors/pull/107">jshttp/http-errors#107</a></li> <li>refactor: improve <code>toClassName</code> function readability and JSDoc completeness by <a href="https://github.com/Ayoub-Mabrouk"><code>@Ayoub-Mabrouk</code></a> in <a href="https://redirect.github.com/jshttp/http-errors/pull/112">jshttp/http-errors#112</a></li> <li>chore: upgrade scorecard workflow pinned action versions by <a href="https://github.com/carpasse"><code>@carpasse</code></a> in <a href="https://redirect.github.com/jshttp/http-errors/pull/113">jshttp/http-errors#113</a></li> <li>Add test for extending native errors w/o altering prototype by <a href="https://github.com/jonchurch"><code>@jonchurch</code></a> in <a href="https://redirect.github.com/jshttp/http-errors/pull/106">jshttp/http-errors#106</a></li> <li>remove --bail from test script by <a href="https://github.com/jonchurch"><code>@jonchurch</code></a> in <a href="https://redirect.github.com/jshttp/http-errors/pull/114">jshttp/http-errors#114</a></li> <li>[StepSecurity] Apply security best practices by <a href="https://github.com/step-security-bot"><code>@step-security-bot</code></a> in <a href="https://redirect.github.com/jshttp/http-errors/pull/116">jshttp/http-errors#116</a></li> <li>build(deps): bump actions/checkout from 2.7.0 to 4.2.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/jshttp/http-errors/pull/117">jshttp/http-errors#117</a></li> <li>build(deps): bump ossf/scorecard-action from 2.4.0 to 2.4.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/jshttp/http-errors/pull/118">jshttp/http-errors#118</a></li> <li>build(deps): bump coverallsapp/github-action from 1.2.5 to 2.3.6 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/jshttp/http-errors/pull/119">jshttp/http-errors#119</a></li> <li>build(deps): bump actions/upload-artifact from 4.5.0 to 4.6.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/jshttp/http-errors/pull/121">jshttp/http-errors#121</a></li> <li>build(deps): bump github/codeql-action from 3.27.9 to 3.28.18 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/jshttp/http-errors/pull/123">jshttp/http-errors#123</a></li> <li>fix: use <code>ubuntu-latest</code> as ci runner by <a href="https://github.com/UlisesGascon"><code>@UlisesGascon</code></a> in <a href="https://redirect.github.com/jshttp/http-errors/pull/124">jshttp/http-errors#124</a></li> <li>remove --bail by <a href="https://github.com/jonchurch"><code>@jonchurch</code></a> in <a href="https://redirect.github.com/jshttp/http-errors/pull/125">jshttp/http-errors#125</a></li> <li>deps: update statuses and switch fixed versions to tilde (~) by <a href="https://github.com/Phillip9587"><code>@Phillip9587</code></a> in <a href="https://redirect.github.com/jshttp/http-errors/pull/126">jshttp/http-errors#126</a></li> <li>chore: add funding to package.json by <a href="https://github.com/Phillip9587"><code>@Phillip9587</code></a> in <a href="https://redirect.github.com/jshttp/http-errors/pull/130">jshttp/http-errors#130</a></li> <li>build(deps): bump github/codeql-action from 3.28.18 to 3.29.5 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/jshttp/http-errors/pull/131">jshttp/http-errors#131</a></li> <li>ci: add nodejs v18 - v24 to test matrix by <a href="https://github.com/Phillip9587"><code>@Phillip9587</code></a> in <a href="https://redirect.github.com/jshttp/http-errors/pull/127">jshttp/http-errors#127</a></li> <li>build(deps-dev): bump eslint-plugin-import from 2.25.3 to 2.32.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/jshttp/http-errors/pull/129">jshttp/http-errors#129</a></li> <li>build(deps): bump github/codeql-action from 3.29.7 to 3.29.11 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/jshttp/http-errors/pull/133">jshttp/http-errors#133</a></li> <li>build(deps): bump actions/checkout from 4.2.2 to 5.0.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/jshttp/http-errors/pull/132">jshttp/http-errors#132</a></li> <li>build(deps): bump actions/upload-artifact from 4.6.2 to 5.0.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/jshttp/http-errors/pull/138">jshttp/http-errors#138</a></li> <li>build(deps): bump github/codeql-action from 3.29.11 to 4.31.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/jshttp/http-errors/pull/137">jshttp/http-errors#137</a></li> <li>build(deps): bump ossf/scorecard-action from 2.4.2 to 2.4.3 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/jshttp/http-errors/pull/134">jshttp/http-errors#134</a></li> <li>Release: 2.0.1 by <a href="https://github.com/UlisesGascon"><code>@UlisesGascon</code></a> in <a href="https://redirect.github.com/jshttp/http-errors/pull/140">jshttp/http-errors#140</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/Ayoub-Mabrouk"><code>@Ayoub-Mabrouk</code></a> made their first contribution in <a href="https://redirect.github.com/jshttp/http-errors/pull/112">jshttp/http-errors#112</a></li> <li><a href="https://github.com/jonchurch"><code>@jonchurch</code></a> made their first contribution in <a href="https://redirect.github.com/jshttp/http-errors/pull/106">jshttp/http-errors#106</a></li> <li><a href="https://github.com/step-security-bot"><code>@step-security-bot</code></a> made their first contribution in <a href="https://redirect.github.com/jshttp/http-errors/pull/116">jshttp/http-errors#116</a></li> <li><a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] made their first contribution in <a href="https://redirect.github.com/jshttp/http-errors/pull/117">jshttp/http-errors#117</a></li> <li><a href="https://github.com/UlisesGascon"><code>@UlisesGascon</code></a> made their first contribution in <a href="https://redirect.github.com/jshttp/http-errors/pull/124">jshttp/http-errors#124</a></li> <li><a href="https://github.com/Phillip9587"><code>@Phillip9587</code></a> made their first contribution in <a href="https://redirect.github.com/jshttp/http-errors/pull/126">jshttp/http-errors#126</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/jshttp/http-errors/compare/v2.0.0...v2.0.1">https://github.com/jshttp/http-errors/compare/v2.0.0...v2.0.1</a></p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/jshttp/http-errors/blob/master/HISTORY.md">http-errors's changelog</a>.</em></p> <blockquote> <h1>2.0.1 / 2025-11-20</h1> <ul> <li>deps: use tilde notation for dependencies</li> <li>deps: update statuses to 2.0.2</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/jshttp/http-errors/commit/61aee5769e92678ff25a2da8e3a2dd1504762432"><code>61aee57</code></a> 2.0.1 (<a href="https://redirect.github.com/jshttp/http-errors/issues/140">#140</a>)</li> <li><a href="https://github.com/jshttp/http-errors/commit/6acba1ff0cd71a97a913a7f6baa89788d477c462"><code>6acba1f</code></a> build(deps): bump ossf/scorecard-action from 2.4.2 to 2.4.3 (<a href="https://redirect.github.com/jshttp/http-errors/issues/134">#134</a>)</li> <li><a href="https://github.com/jshttp/http-errors/commit/d2dcbbffb34dc45baf30d9186cf89bd20b689d04"><code>d2dcbbf</code></a> build(deps): bump github/codeql-action from 3.29.11 to 4.31.2 (<a href="https://redirect.github.com/jshttp/http-errors/issues/137">#137</a>)</li> <li><a href="https://github.com/jshttp/http-errors/commit/fa47a60e96e774b176f81ef1d9f4ca0239607c87"><code>fa47a60</code></a> build(deps): bump actions/upload-artifact from 4.6.2 to 5.0.0 (<a href="https://redirect.github.com/jshttp/http-errors/issues/138">#138</a>)</li> <li><a href="https://github.com/jshttp/http-errors/commit/09b3881c43ed0e7579f4e76e1bf7a77e23d86c06"><code>09b3881</code></a> build(deps): bump actions/checkout from 4.2.2 to 5.0.0 (<a href="https://redirect.github.com/jshttp/http-errors/issues/132">#132</a>)</li> <li><a href="https://github.com/jshttp/http-errors/commit/f1ad32238afb63cdd0e4ab935cdae6b4728c71aa"><code>f1ad322</code></a> build(deps): bump github/codeql-action from 3.29.7 to 3.29.11 (<a href="https://redirect.github.com/jshttp/http-errors/issues/133">#133</a>)</li> <li><a href="https://github.com/jshttp/http-errors/commit/109fe03f60a8c4ce911785927fe7388fe69025c7"><code>109fe03</code></a> build(deps-dev): bump eslint-plugin-import from 2.25.3 to 2.32.0 (<a href="https://redirect.github.com/jshttp/http-errors/issues/129">#129</a>)</li> <li><a href="https://github.com/jshttp/http-errors/commit/7a0544616f7e708a536c28ef5f936d20030215b8"><code>7a05446</code></a> ci: add nodejs v18 - v24 to test matrix (<a href="https://redirect.github.com/jshttp/http-errors/issues/127">#127</a>)</li> <li><a href="https://github.com/jshttp/http-errors/commit/6dfaf4983d8814aab2f216e8ec73c566f6ca8003"><code>6dfaf49</code></a> build(deps): bump github/codeql-action from 3.28.18 to 3.29.5 (<a href="https://redirect.github.com/jshttp/http-errors/issues/131">#131</a>)</li> <li><a href="https://github.com/jshttp/http-errors/commit/535aebf128ec21e23053c05c5a2d98b981147b2d"><code>535aebf</code></a> chore: add funding to package.json (<a href="https://redirect.github.com/jshttp/http-errors/issues/130">#130</a>)</li> <li>Additional commits viewable in <a href="https://github.com/jshttp/http-errors/compare/v2.0.0...v2.0.1">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~ulisesgascon">ulisesgascon</a>, a new releaser for http-errors since your current version.</p> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) You can trigger a rebase of this PR by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> > **Note** > Automatic rebases have been disabled on this pull request as it has been open for over 30 days. Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [mime-types](https://github.com/jshttp/mime-types) from 3.0.1 to 3.0.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/jshttp/mime-types/releases">mime-types's releases</a>.</em></p> <blockquote> <h2>v3.0.2</h2> <h2>What's Changed</h2> <ul> <li>fix: use <code>ubuntu-latest</code> as ci runner by <a href="https://github.com/UlisesGascon"><code>@UlisesGascon</code></a> in <a href="https://redirect.github.com/jshttp/mime-types/pull/143">jshttp/mime-types#143</a></li> <li>[StepSecurity] Apply security best practices by <a href="https://github.com/step-security-bot"><code>@step-security-bot</code></a> in <a href="https://redirect.github.com/jshttp/mime-types/pull/141">jshttp/mime-types#141</a></li> <li>fix: mime-score logic for mp4 types by <a href="https://github.com/broofa"><code>@broofa</code></a> in <a href="https://redirect.github.com/jshttp/mime-types/pull/140">jshttp/mime-types#140</a></li> <li>🧪 add engines test by <a href="https://github.com/ctcpip"><code>@ctcpip</code></a> in <a href="https://redirect.github.com/jshttp/mime-types/pull/136">jshttp/mime-types#136</a></li> <li>chore: add funding to package.json by <a href="https://github.com/Phillip9587"><code>@Phillip9587</code></a> in <a href="https://redirect.github.com/jshttp/mime-types/pull/158">jshttp/mime-types#158</a></li> <li>build(deps): bump github/codeql-action from 3.27.9 to 3.30.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/jshttp/mime-types/pull/163">jshttp/mime-types#163</a></li> <li>build(deps): bump actions/checkout from 4 to 5 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/jshttp/mime-types/pull/164">jshttp/mime-types#164</a></li> <li>build(deps): bump actions/setup-node from 4 to 5 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/jshttp/mime-types/pull/166">jshttp/mime-types#166</a></li> <li>build(deps): bump github/codeql-action from 3.30.0 to 3.30.5 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/jshttp/mime-types/pull/168">jshttp/mime-types#168</a></li> <li>build(deps): bump ossf/scorecard-action from 2.4.0 to 2.4.3 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/jshttp/mime-types/pull/167">jshttp/mime-types#167</a></li> <li>build(deps-dev): bump eslint-plugin-promise from 6.1.1 to 6.6.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/jshttp/mime-types/pull/150">jshttp/mime-types#150</a></li> <li>build(deps): bump coverallsapp/github-action from 1.2.5 to 2.3.6 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/jshttp/mime-types/pull/144">jshttp/mime-types#144</a></li> <li>build(deps-dev): bump eslint-plugin-markdown from 3.0.0 to 3.0.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/jshttp/mime-types/pull/148">jshttp/mime-types#148</a></li> <li>build(deps-dev): bump mocha from 10.2.0 to 10.8.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/jshttp/mime-types/pull/149">jshttp/mime-types#149</a></li> <li>build(deps): bump actions/upload-artifact from 4.5.0 to 4.6.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/jshttp/mime-types/pull/147">jshttp/mime-types#147</a></li> <li>fix: update JSDoc to convey only false return by <a href="https://github.com/kellyselden"><code>@kellyselden</code></a> in <a href="https://redirect.github.com/jshttp/mime-types/pull/152">jshttp/mime-types#152</a></li> <li>build(deps-dev): bump eslint-plugin-import from 2.27.5 to 2.32.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/jshttp/mime-types/pull/155">jshttp/mime-types#155</a></li> <li>Release: 3.0.2 by <a href="https://github.com/UlisesGascon"><code>@UlisesGascon</code></a> in <a href="https://redirect.github.com/jshttp/mime-types/pull/169">jshttp/mime-types#169</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/step-security-bot"><code>@step-security-bot</code></a> made their first contribution in <a href="https://redirect.github.com/jshttp/mime-types/pull/141">jshttp/mime-types#141</a></li> <li><a href="https://github.com/ctcpip"><code>@ctcpip</code></a> made their first contribution in <a href="https://redirect.github.com/jshttp/mime-types/pull/136">jshttp/mime-types#136</a></li> <li><a href="https://github.com/Phillip9587"><code>@Phillip9587</code></a> made their first contribution in <a href="https://redirect.github.com/jshttp/mime-types/pull/158">jshttp/mime-types#158</a></li> <li><a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] made their first contribution in <a href="https://redirect.github.com/jshttp/mime-types/pull/163">jshttp/mime-types#163</a></li> <li><a href="https://github.com/kellyselden"><code>@kellyselden</code></a> made their first contribution in <a href="https://redirect.github.com/jshttp/mime-types/pull/152">jshttp/mime-types#152</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/jshttp/mime-types/compare/v3.0.1...v3.0.2">https://github.com/jshttp/mime-types/compare/v3.0.1...v3.0.2</a></p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/jshttp/mime-types/blob/master/HISTORY.md">mime-types's changelog</a>.</em></p> <blockquote> <h1>3.0.2 / 2025-11-20</h1> <ul> <li>Fix: update JSDoc to reflect that functions return only <code>false</code> or <code>string</code>, not <code>boolean|string</code>.</li> <li>Fix: refined mime-score logic so <code>.mp4</code> resolves correctly</li> <li>Fix:reflect the current Node.js version supported to ≥ 18 (See 3.0.0 for more details).</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/jshttp/mime-types/commit/29a0302d799933a45384892df0722f3c5bb1b033"><code>29a0302</code></a> 3.0.2 (<a href="https://redirect.github.com/jshttp/mime-types/issues/169">#169</a>)</li> <li><a href="https://github.com/jshttp/mime-types/commit/c3ebfb1a276479e0de0270fac0dedd12b8b2ff2e"><code>c3ebfb1</code></a> build(deps-dev): bump eslint-plugin-import from 2.27.5 to 2.32.0 (<a href="https://redirect.github.com/jshttp/mime-types/issues/155">#155</a>)</li> <li><a href="https://github.com/jshttp/mime-types/commit/02e8eb213ea761528c9de9e8ef3402992072a353"><code>02e8eb2</code></a> fix: update JSDoc to convey only false return (<a href="https://redirect.github.com/jshttp/mime-types/issues/152">#152</a>)</li> <li><a href="https://github.com/jshttp/mime-types/commit/ef03e6a777f293be73db7571bcf5d174b68db7d8"><code>ef03e6a</code></a> build(deps): bump actions/upload-artifact from 4.5.0 to 4.6.2 (<a href="https://redirect.github.com/jshttp/mime-types/issues/147">#147</a>)</li> <li><a href="https://github.com/jshttp/mime-types/commit/636cd1b66a66a0c4be01b47211c238bfeed78f5d"><code>636cd1b</code></a> build(deps-dev): bump mocha from 10.2.0 to 10.8.2 (<a href="https://redirect.github.com/jshttp/mime-types/issues/149">#149</a>)</li> <li><a href="https://github.com/jshttp/mime-types/commit/c02166bab2c5bb1f8665b5ee3ca437c9d6c07da4"><code>c02166b</code></a> build(deps-dev): bump eslint-plugin-markdown from 3.0.0 to 3.0.1 (<a href="https://redirect.github.com/jshttp/mime-types/issues/148">#148</a>)</li> <li><a href="https://github.com/jshttp/mime-types/commit/44956c63038a6a317153ec0842583a443c56595c"><code>44956c6</code></a> build(deps): bump coverallsapp/github-action from 1.2.5 to 2.3.6 (<a href="https://redirect.github.com/jshttp/mime-types/issues/144">#144</a>)</li> <li><a href="https://github.com/jshttp/mime-types/commit/5e3bb15d29affcaece32d85477cb2b8aac583dfd"><code>5e3bb15</code></a> build(deps-dev): bump eslint-plugin-promise from 6.1.1 to 6.6.0 (<a href="https://redirect.github.com/jshttp/mime-types/issues/150">#150</a>)</li> <li><a href="https://github.com/jshttp/mime-types/commit/53f720cdf96869375b0240a044504aa158561019"><code>53f720c</code></a> build(deps): bump ossf/scorecard-action from 2.4.0 to 2.4.3 (<a href="https://redirect.github.com/jshttp/mime-types/issues/167">#167</a>)</li> <li><a href="https://github.com/jshttp/mime-types/commit/eac806f33b9222492f188cc12176346110498cf1"><code>eac806f</code></a> build(deps): bump github/codeql-action from 3.30.0 to 3.30.5 (<a href="https://redirect.github.com/jshttp/mime-types/issues/168">#168</a>)</li> <li>Additional commits viewable in <a href="https://github.com/jshttp/mime-types/compare/v3.0.1...v3.0.2">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) You can trigger a rebase of this PR by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> > **Note** > Automatic rebases have been disabled on this pull request as it has been open for over 30 days. Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
This PR updates the terminology in `docs/guide.md` from **"Server-Side Events"** to the correct term **"Server-Sent Events" (SSE)**. Changes: - Rename the section heading from `Server-Side Events` to `Server-Sent Events`. - Update the description text to use “server-sent events” consistently. This aligns the docs with the standard naming used in the HTML specification and MDN Web Docs, and should make it easier for readers to search for related resources (e.g. “Server-Sent Events”, “SSE”, `EventSource`). ## Checklist - [x] I have ensured my pull request is not behind the main or master branch of the original repository. - [x] I have rebased all commits where necessary so that reviewing this pull request can be done without having to merge it first. - [x] I have written a commit message that passes commitlint linting. - [x] I have ensured that my code changes pass linting tests. - [x] I have ensured that my code changes pass unit tests. - [x] I have described my pull request and the reasons for code changes along with context if necessary.
Bumps [content-disposition](https://github.com/jshttp/content-disposition) from 0.5.4 to 1.0.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/jshttp/content-disposition/releases">content-disposition's releases</a>.</em></p> <blockquote> <h2>1.0.1</h2> <h2>What's Changed</h2> <ul> <li>Remove dependency <code>safe-buffer</code> by <a href="https://github.com/Phillip9587"><code>@Phillip9587</code></a> in <a href="https://redirect.github.com/jshttp/content-disposition/pull/53">jshttp/content-disposition#53</a></li> <li>fix: update package.json engines field to reflect minimum supported node version by <a href="https://github.com/Phillip9587"><code>@Phillip9587</code></a> in <a href="https://redirect.github.com/jshttp/content-disposition/pull/56">jshttp/content-disposition#56</a></li> <li>tests: Spelling by <a href="https://github.com/jsoref"><code>@jsoref</code></a> in <a href="https://redirect.github.com/jshttp/content-disposition/pull/59">jshttp/content-disposition#59</a></li> <li>chore: upgrade scorecard workflow pinned action versions by <a href="https://github.com/carpasse"><code>@carpasse</code></a> in <a href="https://redirect.github.com/jshttp/content-disposition/pull/65">jshttp/content-disposition#65</a></li> <li>Fix badges by <a href="https://github.com/Phillip9587"><code>@Phillip9587</code></a> in <a href="https://redirect.github.com/jshttp/content-disposition/pull/55">jshttp/content-disposition#55</a></li> <li>ci: updated github actions ci workflow by <a href="https://github.com/Phillip9587"><code>@Phillip9587</code></a> in <a href="https://redirect.github.com/jshttp/content-disposition/pull/69">jshttp/content-disposition#69</a></li> <li>Replace var with const in example code by <a href="https://github.com/Binilkks"><code>@Binilkks</code></a> in <a href="https://redirect.github.com/jshttp/content-disposition/pull/67">jshttp/content-disposition#67</a></li> <li>replace <code>mocha</code> and <code>nyc</code> with native node test runner and <code>c8</code> by <a href="https://github.com/Phillip9587"><code>@Phillip9587</code></a> in <a href="https://redirect.github.com/jshttp/content-disposition/pull/54">jshttp/content-disposition#54</a></li> <li>ci: add dependabot by <a href="https://github.com/Phillip9587"><code>@Phillip9587</code></a> in <a href="https://redirect.github.com/jshttp/content-disposition/pull/73">jshttp/content-disposition#73</a></li> <li>ci: add CodeQl (SAST) by <a href="https://github.com/Phillip9587"><code>@Phillip9587</code></a> in <a href="https://redirect.github.com/jshttp/content-disposition/pull/71">jshttp/content-disposition#71</a></li> <li>build(deps): bump ossf/scorecard-action from 2.4.0 to 2.4.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/jshttp/content-disposition/pull/75">jshttp/content-disposition#75</a></li> <li>build(deps): bump github/codeql-action from 3.27.9 to 3.28.18 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/jshttp/content-disposition/pull/80">jshttp/content-disposition#80</a></li> <li>build(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/jshttp/content-disposition/pull/81">jshttp/content-disposition#81</a></li> <li>chore: add funding to package.json by <a href="https://github.com/Phillip9587"><code>@Phillip9587</code></a> in <a href="https://redirect.github.com/jshttp/content-disposition/pull/84">jshttp/content-disposition#84</a></li> <li>build(deps): bump actions/upload-artifact from 4 to 5 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/jshttp/content-disposition/pull/94">jshttp/content-disposition#94</a></li> <li>build(deps): bump actions/download-artifact from 4 to 6 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/jshttp/content-disposition/pull/93">jshttp/content-disposition#93</a></li> <li>build(deps): bump github/codeql-action from 3.28.18 to 4.31.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/jshttp/content-disposition/pull/92">jshttp/content-disposition#92</a></li> <li>Release: 1.0.1 by <a href="https://github.com/UlisesGascon"><code>@UlisesGascon</code></a> in <a href="https://redirect.github.com/jshttp/content-disposition/pull/58">jshttp/content-disposition#58</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/Phillip9587"><code>@Phillip9587</code></a> made their first contribution in <a href="https://redirect.github.com/jshttp/content-disposition/pull/53">jshttp/content-disposition#53</a></li> <li><a href="https://github.com/jsoref"><code>@jsoref</code></a> made their first contribution in <a href="https://redirect.github.com/jshttp/content-disposition/pull/59">jshttp/content-disposition#59</a></li> <li><a href="https://github.com/Binilkks"><code>@Binilkks</code></a> made their first contribution in <a href="https://redirect.github.com/jshttp/content-disposition/pull/67">jshttp/content-disposition#67</a></li> <li><a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] made their first contribution in <a href="https://redirect.github.com/jshttp/content-disposition/pull/75">jshttp/content-disposition#75</a></li> <li><a href="https://github.com/UlisesGascon"><code>@UlisesGascon</code></a> made their first contribution in <a href="https://redirect.github.com/jshttp/content-disposition/pull/58">jshttp/content-disposition#58</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/jshttp/content-disposition/compare/v1.0.0...v1.0.1">https://github.com/jshttp/content-disposition/compare/v1.0.0...v1.0.1</a></p> <h2>1.0.0</h2> <h2>Breaking Changes</h2> <ul> <li>drop support to node <18 versions <a href="https://redirect.github.com/jshttp/content-disposition/pull/50">jshttp/content-disposition#50</a></li> </ul> <h2>What's Changed</h2> <ul> <li>Fix CI GH action by <a href="https://github.com/carpasse"><code>@carpasse</code></a> in <a href="https://redirect.github.com/jshttp/content-disposition/pull/48">jshttp/content-disposition#48</a></li> <li>Add OSSF scorecard pipeline by <a href="https://github.com/carpasse"><code>@carpasse</code></a> in <a href="https://redirect.github.com/jshttp/content-disposition/pull/49">jshttp/content-disposition#49</a></li> <li>Replace deprecated String.prototype.substr() by <a href="https://github.com/CommanderRoot"><code>@CommanderRoot</code></a> in <a href="https://redirect.github.com/jshttp/content-disposition/pull/42">jshttp/content-disposition#42</a></li> <li>fix(ci)!:drop node <18 and update ci by <a href="https://github.com/wesleytodd"><code>@wesleytodd</code></a> in <a href="https://redirect.github.com/jshttp/content-disposition/pull/50">jshttp/content-disposition#50</a></li> <li>Support decode 'utf8' (no dash) by <a href="https://github.com/alexstrat"><code>@alexstrat</code></a> in <a href="https://redirect.github.com/jshttp/content-disposition/pull/13">jshttp/content-disposition#13</a></li> <li>1.x Staging PR by <a href="https://github.com/wesleytodd"><code>@wesleytodd</code></a> in <a href="https://redirect.github.com/jshttp/content-disposition/pull/51">jshttp/content-disposition#51</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/CommanderRoot"><code>@CommanderRoot</code></a> made their first contribution in <a href="https://redirect.github.com/jshttp/content-disposition/pull/42">jshttp/content-disposition#42</a></li> <li><a href="https://github.com/wesleytodd"><code>@wesleytodd</code></a> made their first contribution in <a href="https://redirect.github.com/jshttp/content-disposition/pull/50">jshttp/content-disposition#50</a></li> <li><a href="https://github.com/alexstrat"><code>@alexstrat</code></a> made their first contribution in <a href="https://redirect.github.com/jshttp/content-disposition/pull/13">jshttp/content-disposition#13</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/jshttp/content-disposition/compare/v0.5.4...v1.0.0">https://github.com/jshttp/content-disposition/compare/v0.5.4...v1.0.0</a></p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/jshttp/content-disposition/blob/master/HISTORY.md">content-disposition's changelog</a>.</em></p> <blockquote> <h1>1.0.1 / 2025-11-18</h1> <ul> <li>Updated <code>engines</code> field to Node@18 or higher (fixed reference, see 1.0.0)</li> <li>Remove dependency <code>safe-buffer</code></li> </ul> <h1>1.0.0 / 2024-08-31</h1> <ul> <li>drop node <18</li> <li>allow utf8 as alias for utf-8</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/jshttp/content-disposition/commit/b56faefa036f1f78502b978bcb716aa75190eaa4"><code>b56faef</code></a> 1.0.1 (<a href="https://redirect.github.com/jshttp/content-disposition/issues/58">#58</a>)</li> <li><a href="https://github.com/jshttp/content-disposition/commit/0839a62f096643fdf2f8e180bc769c8d8e2f9f46"><code>0839a62</code></a> build(deps): bump github/codeql-action from 3.28.18 to 4.31.2 (<a href="https://redirect.github.com/jshttp/content-disposition/issues/92">#92</a>)</li> <li><a href="https://github.com/jshttp/content-disposition/commit/5badd4b7da365b8c0100225d1e82714260f47c8e"><code>5badd4b</code></a> build(deps): bump actions/download-artifact from 4 to 6 (<a href="https://redirect.github.com/jshttp/content-disposition/issues/93">#93</a>)</li> <li><a href="https://github.com/jshttp/content-disposition/commit/4162dbd398ac1388631bcb85ac36bfd3c9a8d7c4"><code>4162dbd</code></a> build(deps): bump actions/upload-artifact from 4 to 5 (<a href="https://redirect.github.com/jshttp/content-disposition/issues/94">#94</a>)</li> <li><a href="https://github.com/jshttp/content-disposition/commit/b2ce0fbd8b01288c42648e21b8d1dff5c0a4363d"><code>b2ce0fb</code></a> chore: add funding to package.json (<a href="https://redirect.github.com/jshttp/content-disposition/issues/84">#84</a>)</li> <li><a href="https://github.com/jshttp/content-disposition/commit/f0c058a81d8090d65eec42c63f9236ba71303adb"><code>f0c058a</code></a> build(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 (<a href="https://redirect.github.com/jshttp/content-disposition/issues/81">#81</a>)</li> <li><a href="https://github.com/jshttp/content-disposition/commit/1f4451c29909bb139c25407ebe9e731a78cd61e2"><code>1f4451c</code></a> build(deps): bump github/codeql-action from 3.27.9 to 3.28.18 (<a href="https://redirect.github.com/jshttp/content-disposition/issues/80">#80</a>)</li> <li><a href="https://github.com/jshttp/content-disposition/commit/765ef238604ce5195b2604223e82f4956af30704"><code>765ef23</code></a> build(deps): bump ossf/scorecard-action from 2.4.0 to 2.4.1 (<a href="https://redirect.github.com/jshttp/content-disposition/issues/75">#75</a>)</li> <li><a href="https://github.com/jshttp/content-disposition/commit/21c68cd4546ce809ddafb73f54a07cbfbdb1a520"><code>21c68cd</code></a> ci: add CodeQl (SAST) (<a href="https://redirect.github.com/jshttp/content-disposition/issues/71">#71</a>)</li> <li><a href="https://github.com/jshttp/content-disposition/commit/8fec68dca4ef83c2aef071d6629cf7f5cdb5eabd"><code>8fec68d</code></a> ci: add dependabot (<a href="https://redirect.github.com/jshttp/content-disposition/issues/73">#73</a>)</li> <li>Additional commits viewable in <a href="https://github.com/jshttp/content-disposition/compare/v0.5.4...v1.0.1">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~ulisesgascon">ulisesgascon</a>, a new releaser for content-disposition since your current version.</p> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) You can trigger a rebase of this PR by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> > **Note** > Automatic rebases have been disabled on this pull request as it has been open for over 30 days. Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [js-yaml](https://github.com/nodeca/js-yaml) from 4.1.0 to 4.1.1. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md">js-yaml's changelog</a>.</em></p> <blockquote> <h2>[4.1.1] - 2025-11-12</h2> <h3>Security</h3> <ul> <li>Fix prototype pollution issue in yaml merge (<<) operator.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/nodeca/js-yaml/commit/cc482e775913e6625137572a3712d2826170e53a"><code>cc482e7</code></a> 4.1.1 released</li> <li><a href="https://github.com/nodeca/js-yaml/commit/50968b862e75866ef90e626572fe0b2f97b55f9f"><code>50968b8</code></a> dist rebuild</li> <li><a href="https://github.com/nodeca/js-yaml/commit/d092d866031751cb27c12d93f3e2470ad74d678b"><code>d092d86</code></a> lint fix</li> <li><a href="https://github.com/nodeca/js-yaml/commit/383665ff4248ec2192d1274e934462bb30426879"><code>383665f</code></a> fix prototype pollution in merge (<<)</li> <li><a href="https://github.com/nodeca/js-yaml/commit/0d3ca7a27b03a6c974790a30a89e456007d62976"><code>0d3ca7a</code></a> README.md: HTTP => HTTPS (<a href="https://redirect.github.com/nodeca/js-yaml/issues/678">#678</a>)</li> <li><a href="https://github.com/nodeca/js-yaml/commit/49baadd52af887d2991e2c39a6639baa56d6c71b"><code>49baadd</code></a> doc: 'empty' style option for !!null</li> <li><a href="https://github.com/nodeca/js-yaml/commit/ba3460eb9d3e4478edcbc29edabe17c2157fc9ce"><code>ba3460e</code></a> Fix demo link (<a href="https://redirect.github.com/nodeca/js-yaml/issues/618">#618</a>)</li> <li>See full diff in <a href="https://github.com/nodeca/js-yaml/compare/4.1.0...4.1.1">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/koajs/koa/network/alerts). </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
See Commits and Changes for more details.
Created by
pull[bot] (v2.0.0-alpha.4)
Can you help keep this open source service alive? 💖 Please sponsor : )