Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update dependency body-parser to ~1.20.0 #5

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Update dependency body-parser to ~1.20.0 #5

wants to merge 1 commit into from

Conversation

mend-for-github-com[bot]
Copy link

@mend-for-github-com mend-for-github-com bot commented Jul 6, 2022
edited
Loading

This PR contains the following updates:

Package Type Update Change
body-parser dependencies minor ~1.17.1 -> ~1.20.0

By merging this PR, the below vulnerabilities will be automatically resolved:

Severity CVSS Score CVE
High High 7.5 CVE-2022-24999
High High 7.5 CVE-2024-45590
Low Low 3.7 CVE-2017-16137
Low Low 3.5 CVE-2017-20165

Release Notes

expressjs/body-parser (body-parser)

v1.20.3

Compare Source

===================

  • deps: [email protected]
  • add depth option to customize the depth level in the parser
  • IMPORTANT: The default depth level for parsing URL-encoded data is now 32 (previously was Infinity)

v1.20.2

Compare Source

===================

  • Fix strict json error message on Node.js 19+
  • deps: content-type@~1.0.5
    • perf: skip value escaping when unnecessary
  • deps: [email protected]

v1.20.1

Compare Source

===================

v1.20.0

Compare Source

===================

v1.19.2

Compare Source

===================

v1.19.1

Compare Source

===================

v1.19.0

Compare Source

===================

v1.18.3

Compare Source

===================

v1.18.2

Compare Source

===================

v1.18.1

Compare Source

===================

v1.18.0

Compare Source

===================

  • Fix JSON strict violation error to match native parse error
  • Include the body property on verify errors
  • Include the type property on all generated errors
  • Use http-errors to set status code on errors
  • deps: [email protected]
  • deps: [email protected]
  • deps: depd@~1.1.1
    • Remove unnecessary Buffer loading
  • deps: http-errors@~1.6.2
  • deps: [email protected]
    • Add support for React Native
    • Add a warning if not loaded as utf-8
    • Fix CESU-8 decoding in Node.js 8
    • Improve speed of ISO-8859-1 encoding
  • deps: [email protected]
  • deps: [email protected]
  • perf: prevent internal throw when missing charset
  • If you want to rebase/retry this PR, check this box

@mend-for-github-com mend-for-github-com bot added the security fix Security fix generated by Mend label Jul 6, 2022
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/body-parser-1.x branch 6 times, most recently from 0e26427 to 0ffc9e7 Compare November 17, 2022 11:59
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/body-parser-1.x branch 5 times, most recently from 543c151 to 1546468 Compare November 25, 2022 13:03
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/body-parser-1.x branch 6 times, most recently from 5c212a0 to 4d924df Compare December 1, 2022 13:59
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/body-parser-1.x branch 2 times, most recently from df3b206 to 0ec4a83 Compare December 3, 2022 16:17
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/body-parser-1.x branch 9 times, most recently from 36a283c to caf27d6 Compare December 22, 2022 10:06
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/body-parser-1.x branch from caf27d6 to a3eaee2 Compare December 25, 2022 00:36
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/body-parser-1.x branch 7 times, most recently from 070874e to c425c9b Compare January 13, 2023 06:23
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/body-parser-1.x branch 4 times, most recently from 79f10f9 to a1ce39d Compare January 20, 2023 15:54
@mend-for-github-com mend-for-github-com bot changed the title Update dependency body-parser to ~1.18.0 Update dependency body-parser to ~1.18.0 - autoclosed Mar 27, 2023
@mend-for-github-com mend-for-github-com bot deleted the whitesource-remediate/body-parser-1.x branch March 27, 2023 19:20
@mend-for-github-com mend-for-github-com bot changed the title Update dependency body-parser to ~1.18.0 - autoclosed Update dependency body-parser to ~1.18.0 Mar 31, 2023
@mend-for-github-com mend-for-github-com bot reopened this Mar 31, 2023
@mend-for-github-com mend-for-github-com bot restored the whitesource-remediate/body-parser-1.x branch March 31, 2023 04:50
@mend-for-github-com mend-for-github-com bot changed the title Update dependency body-parser to ~1.18.0 Update dependency body-parser to ~1.18.0 - autoclosed Jun 14, 2023
@mend-for-github-com mend-for-github-com bot deleted the whitesource-remediate/body-parser-1.x branch June 14, 2023 21:23
@mend-for-github-com mend-for-github-com bot changed the title Update dependency body-parser to ~1.18.0 - autoclosed Update dependency body-parser to ~1.18.0 Jun 19, 2023
@mend-for-github-com mend-for-github-com bot reopened this Jun 19, 2023
@mend-for-github-com mend-for-github-com bot restored the whitesource-remediate/body-parser-1.x branch June 19, 2023 20:37
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/body-parser-1.x branch from a1ce39d to ac853fe Compare June 19, 2023 20:37
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/body-parser-1.x branch from ac853fe to ae19e8e Compare July 4, 2023 20:04
@mend-for-github-com mend-for-github-com bot changed the title Update dependency body-parser to ~1.18.0 Update dependency body-parser to ~1.19.0 Aug 29, 2023
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/body-parser-1.x branch from ae19e8e to 3dad212 Compare August 29, 2023 04:56
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/body-parser-1.x branch from 3dad212 to 398b78e Compare September 19, 2024 00:06
@mend-for-github-com mend-for-github-com bot changed the title Update dependency body-parser to ~1.19.0 Update dependency body-parser to ~1.20.0 Sep 19, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
security fix Security fix generated by Mend
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants