René's URL Explorer Experiment


Title: [Snyk] Security upgrade express from 4.17.1 to 4.21.1 by MelnikovAG · Pull Request #8 · MelnikovAG/https-localhost · GitHub

Open Graph Title: [Snyk] Security upgrade express from 4.17.1 to 4.21.1 by MelnikovAG · Pull Request #8 · MelnikovAG/https-localhost

X Title: [Snyk] Security upgrade express from 4.17.1 to 4.21.1 by MelnikovAG · Pull Request #8 · MelnikovAG/https-localhost

Description: Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project. Changes included in this PR Changes to the following files to upgrade the vulnerable dependencies to a fixed version: package.json package-lock.json Vulnerabilities that will be fixed With an upgrade: Severity Priority Score (*) Issue Breaking Change Exploit Maturity 601/1000 Why? Recently disclosed, Has a fix available, CVSS 6.3 Cross-site Scripting (XSS) SNYK-JS-COOKIE-8163060 No No Known Exploit (*) Note that the real score may have changed since the PR was raised. Commit messages Package name: express The new version differs by 250 commits. 8e229f9 4.21.1 a024c8a fix(deps): cookie@0.7.1 7e562c6 4.21.0 1bcde96 fix(deps): qs@6.13.0 (#5946) 7d36477 fix(deps): serve-static@1.16.2 (#5951) 40d2d8f fix(deps): finalhandler@1.3.1 77ada90 Deprecate `"back"` magic string in redirects (#5935) 21df421 4.20.0 4c9ddc1 feat: upgrade to serve-static@0.16.0 9ebe5d5 feat: upgrade to send@0.19.0 (#5928) ec4a01b feat: upgrade to body-parser@1.20.3 (#5926) 54271f6 fix: don't render redirect values in anchor href 125bb74 path-to-regexp@0.1.10 (#5902) 2a980ad merge-descriptors@1.0.3 (#5781) a3e7e05 docs: specify new instructions for `question` and `discuss` c5addb9 deps: path-to-regexp@0.1.8 (#5603) e35380a docs: add @ IamLizu to the triage team (#5836) f5b6e67 docs: update scorecard link (#5814) 2177f67 docs: add OSSF Scorecard badge (#5436) f4bd86e Replace Appveyor windows testing with GHA (#5599) 2ec589c Fix Contributor Covenant link definition reference in attribution section (#5762) 4cf7eed remove minor version pinning from ci (#5722) 6d08471 📝 update people, add ctcpip to TC (#5683) 61421a8 skip QUERY tests for Node 21 only, still not supported (#5695) See the full diff Check the changes in this PR to ensure they won't cause issues with your project. Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs. For more information: 🧐 View latest project report 🛠 Adjust project settings 📚 Read more about Snyk's upgrade and patch logic Learn how to fix vulnerabilities with free interactive lessons: 🦉 Cross-site Scripting (XSS)

Open Graph Description: Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project. Changes included in this PR Changes to the following files to upgrade the vulnerable depe...

X Description: Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project. Changes included in this PR Changes to the following files to upgrade the vulnerable depe...

Opengraph URL: https://github.com/MelnikovAG/https-localhost/pull/8

X: @github

direct link

Domain: github.com

route-pattern/:user_id/:repository/pull/:id/files(.:format)
route-controllerpull_requests
route-actionfiles
fetch-noncev2:8502b391-8da2-82a6-4837-8ec188f2e438
current-catalog-service-hashae870bc5e265a340912cde392f23dad3671a0a881730ffdadd82f2f57d81641b
request-idB0E8:2C9FC7:145891F:1AF1DFC:6A534884
html-safe-nonce0d8dbc93da6b5dcf3093062e308a1daf21c1b6756802c877a49dc2bc4c6ed83a
visitor-payloadeyJyZWZlcnJlciI6IiIsInJlcXVlc3RfaWQiOiJCMEU4OjJDOUZDNzoxNDU4OTFGOjFBRjFERkM6NkE1MzQ4ODQiLCJ2aXNpdG9yX2lkIjoiNTg0MzIzMjE1MzkxNjM2MDgzNiIsInJlZ2lvbl9lZGdlIjoiaWFkIiwicmVnaW9uX3JlbmRlciI6ImlhZCJ9
visitor-hmac59469e1c9577d4a9a1e4bfd868be372afa349104cc90157c24c484b06a00447d
hovercard-subject-tagpull_request:2118877953
github-keyboard-shortcutsrepository,pull-request-list,pull-request-conversation,pull-request-files-changed,copilot
google-site-verificationApib7-x98H0j5cPqHWwSMm6dNU4GmODRoqxLiDzdx9I
octolytics-urlhttps://collector.github.com/github/collect
analytics-location///pull_requests/show/files
fb:app_id1401488693436528
apple-itunes-appapp-id=1477376905, app-argument=https://github.com/MelnikovAG/https-localhost/pull/8/files
twitter:imagehttps://avatars.githubusercontent.com/u/35483392?s=400&v=4
twitter:cardsummary_large_image
og:imagehttps://avatars.githubusercontent.com/u/35483392?s=400&v=4
og:image:altSnyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project. Changes included in this PR Changes to the following files to upgrade the vulnerable depe...
og:site_nameGitHub
og:typeobject
hostnamegithub.com
expected-hostnamegithub.com
Noneb9a586c06a05a7a86fc7e3f4dbd03e42f6869085879aa184aa6369456dbd50fb
turbo-cache-controlno-preview
diff-viewunified
go-importgithub.com/MelnikovAG/https-localhost git https://github.com/MelnikovAG/https-localhost.git
octolytics-dimension-user_id35483392
octolytics-dimension-user_loginMelnikovAG
octolytics-dimension-repository_id405227915
octolytics-dimension-repository_nwoMelnikovAG/https-localhost
octolytics-dimension-repository_publictrue
octolytics-dimension-repository_is_forktrue
octolytics-dimension-repository_parent_id142558583
octolytics-dimension-repository_parent_nwodaquinoaldo/https-localhost
octolytics-dimension-repository_network_root_id142558583
octolytics-dimension-repository_network_root_nwodaquinoaldo/https-localhost
turbo-body-classeslogged-out env-production page-responsive full-width
disable-turbotrue
browser-stats-urlhttps://api.github.com/_private/browser/stats
browser-errors-urlhttps://api.github.com/_private/browser/errors
release07a982c1d40157c619b364352b704c3ce66bb332
ui-targetfull
theme-color#1e2327
color-schemelight dark

Links:

Skip to contenthttps://github.com/MelnikovAG/https-localhost/pull/8/files#start-of-content
https://github.com/
Sign in https://github.com/login?return_to=https%3A%2F%2Fgithub.com%2FMelnikovAG%2Fhttps-localhost%2Fpull%2F8%2Ffiles
GitHub CopilotWrite better code with AIhttps://github.com/features/copilot
GitHub Copilot appDirect agents from issue to mergehttps://github.com/features/ai/github-app
MCP RegistryNewIntegrate external toolshttps://github.com/mcp
ActionsAutomate any workflowhttps://github.com/features/actions
CodespacesInstant dev environmentshttps://github.com/features/codespaces
IssuesPlan and track workhttps://github.com/features/issues
Code ReviewManage code changeshttps://github.com/features/code-review
GitHub Advanced SecurityFind and fix vulnerabilitieshttps://github.com/security/advanced-security
Code securitySecure your code as you buildhttps://github.com/security/advanced-security/code-security
Secret protectionStop leaks before they starthttps://github.com/security/advanced-security/secret-protection
Why GitHubhttps://github.com/why-github
Documentationhttps://docs.github.com
Bloghttps://github.blog
Changeloghttps://github.blog/changelog
Marketplacehttps://github.com/marketplace
View all featureshttps://github.com/features
Enterpriseshttps://github.com/enterprise
Small and medium teamshttps://github.com/team
Startupshttps://github.com/enterprise/startups
Nonprofitshttps://github.com/solutions/industry/nonprofits
App Modernizationhttps://github.com/solutions/use-case/app-modernization
DevSecOpshttps://github.com/solutions/use-case/devsecops
DevOpshttps://github.com/solutions/use-case/devops
CI/CDhttps://github.com/solutions/use-case/ci-cd
View all use caseshttps://github.com/solutions/use-case
Healthcarehttps://github.com/solutions/industry/healthcare
Financial serviceshttps://github.com/solutions/industry/financial-services
Manufacturinghttps://github.com/solutions/industry/manufacturing
Governmenthttps://github.com/solutions/industry/government
View all industrieshttps://github.com/solutions/industry
View all solutionshttps://github.com/solutions
AIhttps://github.com/resources/articles?topic=ai
Software Developmenthttps://github.com/resources/articles?topic=software-development
DevOpshttps://github.com/resources/articles?topic=devops
Securityhttps://github.com/resources/articles?topic=security
View all topicshttps://github.com/resources/articles
Customer storieshttps://github.com/customer-stories
Events & webinarshttps://github.com/resources/events
Ebooks & reportshttps://github.com/resources/whitepapers
Business insightshttps://github.com/solutions/executive-insights
GitHub Skillshttps://skills.github.com
Documentationhttps://docs.github.com
Customer supporthttps://support.github.com
Community forumhttps://github.com/orgs/community/discussions
Trust centerhttps://github.com/trust-center
Partnershttps://github.com/partners
View all resourceshttps://github.com/resources
GitHub SponsorsFund open source developershttps://github.com/open-source/sponsors
Security Labhttps://securitylab.github.com
Maintainer Communityhttps://maintainers.github.com
Acceleratorhttps://github.com/open-source/accelerator
GitHub Starshttps://stars.github.com
Archive Programhttps://archiveprogram.github.com
Topicshttps://github.com/topics
Trendinghttps://github.com/trending
Collectionshttps://github.com/collections
Enterprise platformAI-powered developer platformhttps://github.com/enterprise
GitHub Advanced SecurityEnterprise-grade security featureshttps://github.com/security/advanced-security
Copilot for BusinessEnterprise-grade AI featureshttps://github.com/features/copilot/copilot-business
Premium SupportEnterprise-grade 24/7 supporthttps://github.com/enterprise/premium-support
Pricinghttps://github.com/pricing
Search syntax tipshttps://docs.github.com/search-github/github-code-search/understanding-github-code-search-syntax
documentationhttps://docs.github.com/search-github/github-code-search/understanding-github-code-search-syntax
Sign in https://github.com/login?return_to=https%3A%2F%2Fgithub.com%2FMelnikovAG%2Fhttps-localhost%2Fpull%2F8%2Ffiles
Sign up https://github.com/signup?ref_cta=Sign+up&ref_loc=header+logged+out&ref_page=%2F%3Cuser-name%3E%2F%3Crepo-name%3E%2Fpull_requests%2Fshow%2Ffiles&source=header-repo&source_repo=MelnikovAG%2Fhttps-localhost
Reloadhttps://github.com/MelnikovAG/https-localhost/pull/8/files
Reloadhttps://github.com/MelnikovAG/https-localhost/pull/8/files
Reloadhttps://github.com/MelnikovAG/https-localhost/pull/8/files
MelnikovAG https://github.com/MelnikovAG
https-localhosthttps://github.com/MelnikovAG/https-localhost
daquinoaldo/https-localhosthttps://github.com/daquinoaldo/https-localhost
Notifications https://github.com/login?return_to=%2FMelnikovAG%2Fhttps-localhost
Fork 0 https://github.com/login?return_to=%2FMelnikovAG%2Fhttps-localhost
Star 0 https://github.com/login?return_to=%2FMelnikovAG%2Fhttps-localhost
Code https://github.com/MelnikovAG/https-localhost
Pull requests 11 https://github.com/MelnikovAG/https-localhost/pulls
Actions https://github.com/MelnikovAG/https-localhost/actions
Projects https://github.com/MelnikovAG/https-localhost/projects
Security and quality 0 https://github.com/MelnikovAG/https-localhost/security
Insights https://github.com/MelnikovAG/https-localhost/pulse
Code https://github.com/MelnikovAG/https-localhost
Pull requests https://github.com/MelnikovAG/https-localhost/pulls
Actions https://github.com/MelnikovAG/https-localhost/actions
Projects https://github.com/MelnikovAG/https-localhost/projects
Security and quality https://github.com/MelnikovAG/https-localhost/security
Insights https://github.com/MelnikovAG/https-localhost/pulse
Sign up for GitHub https://github.com/signup?return_to=%2FMelnikovAG%2Fhttps-localhost%2Fissues%2Fnew%2Fchoose
terms of servicehttps://docs.github.com/terms
privacy statementhttps://docs.github.com/privacy
Sign inhttps://github.com/login?return_to=%2FMelnikovAG%2Fhttps-localhost%2Fissues%2Fnew%2Fchoose
MelnikovAGhttps://github.com/MelnikovAG
masterhttps://github.com/MelnikovAG/https-localhost/tree/master
snyk-fix-cdad1f2483d3e760034070772d2a2d71https://github.com/MelnikovAG/https-localhost/tree/snyk-fix-cdad1f2483d3e760034070772d2a2d71
Conversation 0 https://github.com/MelnikovAG/https-localhost/pull/8
Commits 1 https://github.com/MelnikovAG/https-localhost/pull/8/commits
Checks 0 https://github.com/MelnikovAG/https-localhost/pull/8/checks
Files changed https://github.com/MelnikovAG/https-localhost/pull/8/files
Please reload this pagehttps://github.com/MelnikovAG/https-localhost/pull/8/files
[Snyk] Security upgrade express from 4.17.1 to 4.21.1 https://github.com/MelnikovAG/https-localhost/pull/8/files#top
Show all changes 1 commit https://github.com/MelnikovAG/https-localhost/pull/8/files
b7c7be1 fix: package.json & package-lock.json to reduce vulnerabilities snyk-bot Oct 11, 2024 https://github.com/MelnikovAG/https-localhost/pull/8/commits/b7c7be19bf6c290757417386ca34865192abaef0
Clear filters https://github.com/MelnikovAG/https-localhost/pull/8/files
Please reload this pagehttps://github.com/MelnikovAG/https-localhost/pull/8/files
Please reload this pagehttps://github.com/MelnikovAG/https-localhost/pull/8/files
package-lock.json https://github.com/MelnikovAG/https-localhost/pull/8/files#diff-053150b640a7ce75eff69d1a22cae7f0f94ad64ce9a855db544dda0929316519
package.json https://github.com/MelnikovAG/https-localhost/pull/8/files#diff-7ae45ad102eab3b6d7e7896acd08c427a9b25b346470d7bc6507b6481575d519
Please reload this pagehttps://github.com/MelnikovAG/https-localhost/pull/8/files
https://github.com
Termshttps://docs.github.com/site-policy/github-terms/github-terms-of-service
Privacyhttps://docs.github.com/site-policy/privacy-policies/github-privacy-statement
Securityhttps://github.com/security
Statushttps://www.githubstatus.com/
Communityhttps://github.community/
Docshttps://docs.github.com/
Contacthttps://support.github.com?tags=dotcom-footer

Viewport: width=device-width


URLs of crawlers that visited me.