Skip to content

chore(deps): bump multer from 1.4.5-lts.2 to 2.1.1#276

Merged
seanhanca merged 2 commits into
mainfrom
dependabot/npm_and_yarn/multer-2.1.1
Apr 22, 2026
Merged

chore(deps): bump multer from 1.4.5-lts.2 to 2.1.1#276
seanhanca merged 2 commits into
mainfrom
dependabot/npm_and_yarn/multer-2.1.1

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Apr 21, 2026

Bumps multer from 1.4.5-lts.2 to 2.1.1.

Release notes

Sourced from multer's releases.

v2.1.1

Important

What's Changed

New Contributors

Full Changelog: expressjs/multer@v2.1.0...v2.1.1

v2.1.0

Important

What's Changed

New Contributors

Full Changelog: expressjs/multer@v2.0.2...v2.1.0

... (truncated)

Changelog

Sourced from multer's changelog.

2.1.1

2.1.0

2.0.2

2.0.1

2.0.0

Commits
  • 368c8a1 2.1.1 (#1380)
  • 7e66481 🐛 fix recursion issue
  • 643571e ✅ add explicit test for client able to send body without abrupt disconnect
  • e86fa52 fix error/abort handling
  • ca37779 chore(deps): bump actions/checkout from 4.1.1 to 6.0.2 (#1374)
  • 13088f4 chore(deps): bump actions/upload-artifact from 4.5.0 to 7.0.0 (#1375)
  • bc6a1d1 chore(deps): bump github/codeql-action from 3.24.7 to 4.32.4 (#1376)
  • c496e93 chore(deps): bump coverallsapp/github-action from 1.2.5 to 2.3.6 (#1377)
  • fa173d3 chore(deps): bump ossf/scorecard-action from 2.4.0 to 2.4.3 (#1378)
  • 17d7f51 chore: add node version to 25.x in CI
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by ulisesgascon, a new releaser for multer since your current version.


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
chore(deps): bump multer from 1.4.5-lts.2 to 2.1.1
2933c9d 
Bumps [multer](https://github.com/expressjs/multer) from 1.4.5-lts.2 to 2.1.1.
- [Release notes](https://github.com/expressjs/multer/releases)
- [Changelog](https://github.com/expressjs/multer/blob/main/CHANGELOG.md)
- [Commits](expressjs/multer@v1.4.5-lts.2...v2.1.1)

---
updated-dependencies:
- dependency-name: multer
  dependency-version: 2.1.1
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added the type/dependencies Dependency updates label Apr 21, 2026
@vercel
Copy link
Copy Markdown
Contributor

vercel Bot commented Apr 21, 2026
edited
Loading

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Actions Updated (UTC)
naap-platform Ready Ready Preview, Comment Apr 22, 2026 2:43am

Request Review

@github-actions github-actions Bot added scope/backend Backend service changes plugin/plugin-publisher Plugin Publisher plugin size/XL Extra large PR (500+ lines) labels Apr 21, 2026
@github-actions
Copy link
Copy Markdown

github-actions Bot commented Apr 21, 2026

⚠️ This PR is very large (1212 lines changed). Please split it into smaller, focused PRs if possible.

@github-actions github-actions Bot added size/M Medium PR (51-200 lines) and removed size/XL Extra large PR (500+ lines) labels Apr 22, 2026
seanhanca
seanhanca approved these changes Apr 22, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

@seanhanca seanhanca left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Reviewed multer 2.x usage in both services/storage-svc and plugins/plugin-publisher/backend — all calls (multer({ dest, limits, fileFilter }), multer.memoryStorage(), upload.single, upload.array, req.file/req.files) are API-compatible with multer 2.x. No code changes required.

Pre-existing CI failure was a stale lockfile; regenerated root package-lock.json to bring multer@2.1.1 into sync — Lockfile Sync, Audit (0 critical), Quality Gates, Lint & TypeCheck, Plugin Tests, Lifecycle BDD all green.

@seanhanca seanhanca merged commit 2181e11 into main Apr 22, 2026
25 checks passed
@seanhanca seanhanca deleted the dependabot/npm_and_yarn/multer-2.1.1 branch April 22, 2026 02:46
This was referenced Apr 22, 2026
Closed
Closed
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@seanhanca seanhanca seanhanca approved these changes

Assignees

No one assigned

Labels

plugin/plugin-publisher Plugin Publisher plugin scope/backend Backend service changes size/M Medium PR (51-200 lines) type/dependencies Dependency updates

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@seanhanca @SeanHan