chore(deps): update dependency express to v4.19.0 - autoclosed #23

mend-for-github-com · 2024-04-19T04:24:01Z

This PR contains the following updates:

Package	Type	Update	Change
express (source)	dependencies	minor	`4.18.2` -> `4.19.0`

By merging this PR, the below vulnerabilities will be automatically resolved:

Severity	CVSS Score	CVE	Reachability
Medium	6.1	CVE-2024-29041

Release Notes

expressjs/express (express)

`v4.19.0`

Compare Source

==========

Prevent open redirect allow list bypass due to encodeurl
deps: cookie@0.6.0

`v4.18.3`

Compare Source

==========

Fix routing requests without method
deps: body-parser@1.20.2
- Fix strict json error message on Node.js 19+
- deps: content-type@~1.0.5
- deps: raw-body@2.5.2
deps: cookie@0.6.0
- Add partitioned option

If you want to rebase/retry this PR, check this box

chore(deps): update dependency express to v4.19.0

e9db61d

mend-for-github-com bot added the security fix Security fix generated by Mend label Apr 19, 2024

mend-for-github-com bot changed the title ~~chore(deps): update dependency express to v4.19.0~~ chore(deps): update dependency express to v4.19.0 - autoclosed Apr 30, 2024

mend-for-github-com bot closed this Apr 30, 2024

mend-for-github-com bot deleted the whitesource-remediate/express-4.x-lockfile branch April 30, 2024 04:32

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

chore(deps): update dependency express to v4.19.0 - autoclosed #23

chore(deps): update dependency express to v4.19.0 - autoclosed #23

Uh oh!

mend-for-github-com bot commented Apr 19, 2024

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

chore(deps): update dependency express to v4.19.0 - autoclosed #23

chore(deps): update dependency express to v4.19.0 - autoclosed #23

Uh oh!

Conversation

mend-for-github-com bot commented Apr 19, 2024

Release Notes

v4.19.0

v4.18.3

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

`v4.19.0`

`v4.18.3`