Title: Bump body-parser and express in /frontend by dependabot[bot] · Pull Request #22 · llooker/fastapi_python_example · GitHub
Open Graph Title: Bump body-parser and express in /frontend by dependabot[bot] · Pull Request #22 · llooker/fastapi_python_example
X Title: Bump body-parser and express in /frontend by dependabot[bot] · Pull Request #22 · llooker/fastapi_python_example
Description: Bumps body-parser and express. These dependencies needed to be updated together.
Updates body-parser from 1.20.0 to 1.20.3
Release notes
Sourced from body-parser's releases.
1.20.3
What's Changed
Important
deps: qs@6.13.0
add depth option to customize the depth level in the parser
IMPORTANT: The default depth level for parsing URL-encoded data is now 32 (previously was Infinity). Documentation
Other changes
chore: add support for OSSF scorecard reporting by @inigomarquinez in expressjs/body-parser#522
ci: fix errors in ci github action for node 8 and 9 by @inigomarquinez in expressjs/body-parser#523
fix: pin to node@22.4.1 by @wesleytodd in expressjs/body-parser#527
deps: qs@6.12.3 by @melikhov-dev in expressjs/body-parser#521
Add OSSF Scorecard badge by @bjohansebas in expressjs/body-parser#531
Linter by @UlisesGascon in expressjs/body-parser#534
Release: 1.20.3 by @UlisesGascon in expressjs/body-parser#535
New Contributors
@inigomarquinez made their first contribution in expressjs/body-parser#522
@melikhov-dev made their first contribution in expressjs/body-parser#521
@bjohansebas made their first contribution in expressjs/body-parser#531
@UlisesGascon made their first contribution in expressjs/body-parser#534
Full Changelog: expressjs/body-parser@1.20.2...1.20.3
1.20.2
Fix strict json error message on Node.js 19+
deps: content-type@~1.0.5
perf: skip value escaping when unnecessary
deps: raw-body@2.5.2
1.20.1
deps: qs@6.11.0
perf: remove unnecessary object clone
Changelog
Sourced from body-parser's changelog.
1.20.3 / 2024-09-10
deps: qs@6.13.0
add depth option to customize the depth level in the parser
IMPORTANT: The default depth level for parsing URL-encoded data is now 32 (previously was Infinity)
1.20.2 / 2023-02-21
Fix strict json error message on Node.js 19+
deps: content-type@~1.0.5
perf: skip value escaping when unnecessary
deps: raw-body@2.5.2
1.20.1 / 2022-10-06
deps: qs@6.11.0
perf: remove unnecessary object clone
Commits
1752951 1.20.3
39744cf chore: linter (#534)
b2695c4 Merge commit from fork
ade0f3f add scorecard to readme (#531)
99a1bd6 deps: qs@6.12.3 (#521)
9478591 fix: pin to node@22.4.1
83db46a ci: fix errors in ci github action for node 8 and 9 (#523)
9d4e212 chore: add support for OSSF scorecard reporting (#522)
ee91374 1.20.2
368a93a Fix strict json error message on Node.js 19+
Additional commits viewable in compare view
Maintainer changes
This version was pushed to npm by ulisesgascon, a new releaser for body-parser since your current version.
Updates express from 4.18.1 to 4.21.0
Release notes
Sourced from express's releases.
4.21.0
What's Changed
Deprecate "back" magic string in redirects by @blakeembrey in expressjs/express#5935
finalhandler@1.3.1 by @wesleytodd in expressjs/express#5954
fix(deps): serve-static@1.16.2 by @wesleytodd in expressjs/express#5951
Upgraded dependency qs to 6.13.0 to match qs in body-parser by @agadzinski93 in expressjs/express#5946
New Contributors
@agadzinski93 made their first contribution in expressjs/express#5946
Full Changelog: expressjs/express@4.20.0...4.21.0
4.20.0
What's Changed
Important
IMPORTANT: The default depth level for parsing URL-encoded data is now 32 (previously was Infinity)
Remove link renderization in html while using res.redirect
Other Changes
4.19.2 Staging by @wesleytodd in expressjs/express#5561
remove duplicate location test for data uri by @wesleytodd in expressjs/express#5562
feat: document beta releases expectations by @marco-ippolito in expressjs/express#5565
Cut down on duplicated CI runs by @jonchurch in expressjs/express#5564
Add a Threat Model by @UlisesGascon in expressjs/express#5526
Assign captain of encodeurl by @blakeembrey in expressjs/express#5579
Nominate jonchurch as repo captain for http-errors, expressjs.com, morgan, cors, body-parser by @jonchurch in expressjs/express#5587
docs: update Security.md by @inigomarquinez in expressjs/express#5590
docs: update triage nomination policy by @UlisesGascon in expressjs/express#5600
Add CodeQL (SAST) by @UlisesGascon in expressjs/express#5433
docs: add UlisesGascon as triage initiative captain by @UlisesGascon in expressjs/express#5605
deps: encodeurl@~2.0.0 by @blakeembrey in expressjs/express#5569
skip QUERY method test by @jonchurch in expressjs/express#5628
ignore ETAG query test on 21 and 22, reuse skip util by @jonchurch in expressjs/express#5639
add support Node.js@22 in the CI by @mertcanaltin in expressjs/express#5627
doc: add table of contents, tc/triager lists to readme by @mertcanaltin in expressjs/express#5619
List and sort all projects, add captains by @blakeembrey in expressjs/express#5653
docs: add @UlisesGascon as captain for cookie-parser by @UlisesGascon in expressjs/express#5666
✨ bring back query tests for node 21 by @ctcpip in expressjs/express#5690
[v4] Deprecate res.clearCookie accepting options.maxAge and options.expires by @jonchurch in expressjs/express#5672
skip QUERY tests for Node 21 only, still not supported by @jonchurch in expressjs/express#5695
📝 update people, add ctcpip to TC by @ctcpip in expressjs/express#5683
remove minor version pinning from ci by @jonchurch in expressjs/express#5722
Fix link variable use in attribution section of CODE OF CONDUCT by @IamLizu in expressjs/express#5762
Replace Appveyor windows testing with GHA by @jonchurch in expressjs/express#5599
Add OSSF Scorecard badge by @UlisesGascon in expressjs/express#5436
update scorecard link by @bjohansebas in expressjs/express#5814
Nominate @IamLizu to the triage team by @UlisesGascon in expressjs/express#5836
deps: path-to-regexp@0.1.8 by @blakeembrey in expressjs/express#5603
... (truncated)
Changelog
Sourced from express's changelog.
4.21.0 / 2024-09-11
Deprecate res.location("back") and res.redirect("back") magic string
deps: serve-static@1.16.2
includes send@0.19.0
deps: finalhandler@1.3.1
deps: qs@6.13.0
4.20.0 / 2024-09-10
deps: serve-static@0.16.0
Remove link renderization in html while redirecting
deps: send@0.19.0
Remove link renderization in html while redirecting
deps: body-parser@0.6.0
add depth option to customize the depth level in the parser
IMPORTANT: The default depth level for parsing URL-encoded data is now 32 (previously was Infinity)
Remove link renderization in html while using res.redirect
deps: path-to-regexp@0.1.10
Adds support for named matching groups in the routes using a regex
Adds backtracking protection to parameters without regexes defined
deps: encodeurl@~2.0.0
Removes encoding of \, |, and ^ to align better with URL spec
Deprecate passing options.maxAge and options.expires to res.clearCookie
Will be ignored in v5, clearCookie will set a cookie with an expires in the past to instruct clients to delete the cookie
4.19.2 / 2024-03-25
Improved fix for open redirect allow list bypass
4.19.1 / 2024-03-20
Allow passing non-strings to res.location with new encoding handling checks
4.19.0 / 2024-03-20
Prevent open redirect allow list bypass due to encodeurl
deps: cookie@0.6.0
4.18.3 / 2024-02-29
Fix routing requests without method
deps: body-parser@1.20.2
Fix strict json error message on Node.js 19+
deps: content-type@~1.0.5
... (truncated)
Commits
7e562c6 4.21.0
1bcde96 fix(deps): qs@6.13.0 (#5946)
7d36477 fix(deps): serve-static@1.16.2 (#5951)
40d2d8f fix(deps): finalhandler@1.3.1
77ada90 Deprecate "back" magic string in redirects (#5935)
21df421 4.20.0
4c9ddc1 feat: upgrade to serve-static@0.16.0
9ebe5d5 feat: upgrade to send@0.19.0 (#5928)
ec4a01b feat: upgrade to body-parser@1.20.3 (#5926)
54271f6 fix: don't render redirect values in anchor href
Additional commits viewable in compare view
Maintainer changes
This version was pushed to npm by wesleytodd, a new releaser for express since your current version.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show
Open Graph Description: Bumps body-parser and express. These dependencies needed to be updated together. Updates body-parser from 1.20.0 to 1.20.3 Release notes Sourced from body-parser's releases. 1.20.3 What's...
X Description: Bumps body-parser and express. These dependencies needed to be updated together. Updates body-parser from 1.20.0 to 1.20.3 Release notes Sourced from body-parser's releases. 1.20.3 What&a...
Opengraph URL: https://github.com/llooker/fastapi_python_example/pull/22
X: @github
Domain: patch-diff.githubusercontent.com
| route-pattern | /:user_id/:repository/pull/:id/checks(.:format) |
| route-controller | pull_requests |
| route-action | checks |
| fetch-nonce | v2:9dbbc82b-01da-dcb4-e968-d0dba05aa29d |
| current-catalog-service-hash | 87dc3bc62d9b466312751bfd5f889726f4f1337bdff4e8be7da7c93d6c00a25a |
| request-id | D25E:3CB44F:721BA6:94F27C:698D5FC2 |
| html-safe-nonce | 652d046798680b721a7b09ec1b3a6d9e22fd23458f276635a8261423183c564f |
| visitor-payload | eyJyZWZlcnJlciI6IiIsInJlcXVlc3RfaWQiOiJEMjVFOjNDQjQ0Rjo3MjFCQTY6OTRGMjdDOjY5OEQ1RkMyIiwidmlzaXRvcl9pZCI6IjgwODQ5ODM5MjU5NTkzODUwMjYiLCJyZWdpb25fZWRnZSI6ImlhZCIsInJlZ2lvbl9yZW5kZXIiOiJpYWQifQ== |
| visitor-hmac | b8340035ed311f1a847648db75e15f0d06d020a28fa19032a7016e47d51f38e2 |
| hovercard-subject-tag | pull_request:2073168030 |
| github-keyboard-shortcuts | repository,pull-request-list,pull-request-conversation,pull-request-files-changed,checks,copilot |
| google-site-verification | Apib7-x98H0j5cPqHWwSMm6dNU4GmODRoqxLiDzdx9I |
| octolytics-url | https://collector.github.com/github/collect |
| analytics-location | / |
| fb:app_id | 1401488693436528 |
| apple-itunes-app | app-id=1477376905, app-argument=https://github.com/llooker/fastapi_python_example/pull/22/checks |
| twitter:image | https://avatars.githubusercontent.com/in/29110?s=400&v=4 |
| twitter:card | summary_large_image |
| og:image | https://avatars.githubusercontent.com/in/29110?s=400&v=4 |
| og:image:alt | Bumps body-parser and express. These dependencies needed to be updated together. Updates body-parser from 1.20.0 to 1.20.3 Release notes Sourced from body-parser's releases. 1.20.3 What's... |
| og:site_name | GitHub |
| og:type | object |
| hostname | github.com |
| expected-hostname | github.com |
| None | c0818105fa276287e9369cfdefa0a0fa7953719791ceff9b94d69623c0a4fe8a |
| turbo-cache-control | no-preview |
| go-import | github.com/llooker/fastapi_python_example git https://github.com/llooker/fastapi_python_example.git |
| octolytics-dimension-user_id | 1437890 |
| octolytics-dimension-user_login | llooker |
| octolytics-dimension-repository_id | 508145798 |
| octolytics-dimension-repository_nwo | llooker/fastapi_python_example |
| octolytics-dimension-repository_public | true |
| octolytics-dimension-repository_is_fork | false |
| octolytics-dimension-repository_network_root_id | 508145798 |
| octolytics-dimension-repository_network_root_nwo | llooker/fastapi_python_example |
| turbo-body-classes | logged-out env-production page-responsive full-width full-width-p-0 |
| disable-turbo | false |
| browser-stats-url | https://api.github.com/_private/browser/stats |
| browser-errors-url | https://api.github.com/_private/browser/errors |
| release | a95a17cc440c14d4fcddc0641bc1136fa8d908f0 |
| ui-target | full |
| theme-color | #1e2327 |
| color-scheme | light dark |
Links:
Viewport: width=device-width