Skip to content

[Snyk] Upgrade express from 4.17.3 to 4.18.0#2079

Merged
FabianKramm merged 1 commit intomasterfrom
snyk-upgrade-ec6bd3d06a51192ec85288c4467e7608
May 24, 2022
Merged

[Snyk] Upgrade express from 4.17.3 to 4.18.0#2079
FabianKramm merged 1 commit intomasterfrom
snyk-upgrade-ec6bd3d06a51192ec85288c4467e7608

Conversation

@LukasGentele
Copy link
Copy Markdown
Contributor

@LukasGentele LukasGentele commented May 16, 2022

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to upgrade express from 4.17.3 to 4.18.0.

merge advice
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

  • The recommended version is 1 version ahead of your current version.
  • The recommended version was released 21 days ago, on 2022-04-25.
Release notes
Package name: express
  • 4.18.0 - 2022-04-25
    • Add "root" option to res.download
    • Allow options without filename in res.download
    • Deprecate string and non-integer arguments to res.status
    • Fix behavior of null/undefined as maxAge in res.cookie
    • Fix handling very large stacks of sync middleware
    • Ignore Object.prototype values in settings through app.set/app.get
    • Invoke default with same arguments as types in res.format
    • Support proper 205 responses using res.send
    • Use http-errors for res.format error
    • deps: body-parser@1.20.0
      • Fix error message for json parse whitespace in strict
      • Fix internal error when inflated body exceeds limit
      • Prevent loss of async hooks context
      • Prevent hanging when request already read
      • deps: depd@2.0.0
      • deps: http-errors@2.0.0
      • deps: on-finished@2.4.1
      • deps: qs@6.10.3
      • deps: raw-body@2.5.1
    • deps: cookie@0.5.0
      • Add priority option
      • Fix expires option to reject invalid dates
    • deps: depd@2.0.0
      • Replace internal eval usage with Function constructor
      • Use instance methods on process to check for listeners
    • deps: finalhandler@1.2.0
      • Remove set content headers that break response
      • deps: on-finished@2.4.1
      • deps: statuses@2.0.1
    • deps: on-finished@2.4.1
      • Prevent loss of async hooks context
    • deps: qs@6.10.3
    • deps: send@0.18.0
      • Fix emitted 416 error missing headers property
      • Limit the headers removed for 304 response
      • deps: depd@2.0.0
      • deps: destroy@1.2.0
      • deps: http-errors@2.0.0
      • deps: on-finished@2.4.1
      • deps: statuses@2.0.1
    • deps: serve-static@1.15.0
      • deps: send@0.18.0
    • deps: statuses@2.0.1
      • Remove code 306
      • Rename 425 Unordered Collection to standard 425 Too Early
  • 4.17.3 - 2022-02-17
    • deps: accepts@~1.3.8
      • deps: mime-types@~2.1.34
      • deps: negotiator@0.6.3
    • deps: body-parser@1.19.2
      • deps: bytes@3.1.2
      • deps: qs@6.9.7
      • deps: raw-body@2.4.3
    • deps: cookie@0.4.2
    • deps: qs@6.9.7
      • Fix handling of __proto__ keys
    • pref: remove unnecessary regexp for trust proxy
from express GitHub release notes
Commit messages
Package name: express
  • 547fdd4 4.18.0
  • 0b330ef bench: print latency and vary connections
  • 158a170 build: support Node.js 18.x
  • 29ea1b2 build: use 64-bit Node.js in AppVeyor
  • 11a209e build: support Node.js 17.x
  • fd8e45c tests: mark stack overflow as long running
  • 708ac4c Fix handling very large stacks of sync middleware
  • 92c5ce5 deps: cookie@0.5.0
  • 8880dda examples: add missing html label associations
  • b91c7ff examples: use http-errors to create errors
  • ecaf67c docs: remove Node Security Project from security policy
  • 99175c3 docs: fix typo in casing of HTTP
  • 1b2e097 tests: fix typo in description
  • 04da4aa build: use supertest@3.4.2 for Node.js 6.x
  • 2e2d78c deps: on-finished@2.4.1
  • 980d881 deps: statuses@2.0.1
  • 1df7576 deps: qs@6.10.3
  • 32c558d deps: body-parser@1.20.0
  • a107702 Use http-errors for res.format error
  • 5855339 Fix behavior of null/undefined as "maxAge" in res.cookie
  • 1cc8169 deps: depd@2.0.0
  • 9482b82 Invoke default with same arguments as types in res.format
  • 10b9b50 examples: use updated res.download in example
  • 03dc367 Allow options without filename in res.download

Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

@netlify
Copy link
Copy Markdown

netlify Bot commented May 16, 2022
edited
Loading

Deploy Preview for devspace-docs ready!

Name Link
🔨 Latest commit 5cc535c
🔍 Latest deploy log https://app.netlify.com/sites/devspace-docs/deploys/6282aae147584c0008d809ee
😎 Deploy Preview https://deploy-preview-2079--devspace-docs.netlify.app
📱 Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.

To edit notification comments on pull requests, go to your Netlify site settings.

@FabianKramm FabianKramm merged commit 5af7964 into master May 24, 2022
@FabianKramm FabianKramm deleted the snyk-upgrade-ec6bd3d06a51192ec85288c4467e7608 branch May 24, 2022 13:19
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@LukasGentele @FabianKramm @snyk-bot