https://github.com/osquery/osquery logo
Join Slack
Powered by
<#270 Bump express from 4.17.1 to 4.18.2> Pull req...
# website
g
#270 Bump express from 4.17.1 to 4.18.2 Pull request opened by dependabot[bot] Bumps express from 4.17.1 to 4.18.2. Release notes Sourced from express's releases.
4.18.2
• Fix regression routing a large stack in a single route
• deps: body-parser@1.20.1
• deps: qs@6.11.0
• perf: remove unnecessary object clone
• deps: qs@6.11.0
4.18.1
• Fix hanging on large stack of sync routes
4.18.0
• Add "root" option to 
res.download
• Allow 
options
without 
filename
in 
res.download
• Deprecate string and non-integer arguments to 
res.status
• Fix behavior of `null`/`undefined` as 
maxAge
in 
res.cookie
• Fix handling very large stacks of sync middleware
• Ignore 
Object.prototype
values in settings through `app.set`/`app.get`
• Invoke 
default
with same arguments as types in 
res.format
• Support proper 205 responses using 
res.send
• Use 
http-errors
for 
res.format
error
• deps: body-parser@1.20.0
• Fix error message for json parse whitespace in 
strict
• Fix internal error when inflated body exceeds limit
• Prevent loss of async hooks context
• Prevent hanging when request already read
• deps: depd@2.0.0
• deps: http-errors@2.0.0
• deps: on-finished@2.4.1
• deps: qs@6.10.3
• deps: raw-body@2.5.1
• deps: cookie@0.5.0
• Add 
priority
option
• Fix 
expires
option to reject invalid dates
• deps: depd@2.0.0
• Replace internal 
eval
usage with 
Function
constructor
• Use instance methods on 
process
to check for listeners
• deps: finalhandler@1.2.0
• Remove set content headers that break response
• deps: on-finished@2.4.1
• deps: statuses@2.0.1
• deps: on-finished@2.4.1
• Prevent loss of async hooks context
• deps: qs@6.10.3
• deps: send@0.18.0
• Fix emitted 416 error missing headers property
• Limit the headers removed for 304 response
• deps: depd@2.0.0
• deps: destroy@1.2.0
• deps: http-errors@2.0.0
• deps: on-finished@2.4.1
... (truncated) Changelog Sourced from express's changelog.
4.18.2 / 2022-10-08
• Fix regression routing a large stack in a single route
• deps: body-parser@1.20.1
• deps: qs@6.11.0
• perf: remove unnecessary object clone
• deps: qs@6.11.0
4.18.1 / 2022-04-29
• Fix hanging on large stack of sync routes
4.18.0 / 2022-04-25
• Add "root" option to 
res.download
• Allow 
options
without 
filename
in 
res.download
• Deprecate string and non-integer arguments to 
res.status
• Fix behavior of `null`/`undefined` as 
maxAge
in 
res.cookie
• Fix handling very large stacks of sync middleware
• Ignore 
Object.prototype
values in settings through `app.set`/`app.get`
• Invoke 
default
with same arguments as types in 
res.format
• Support proper 205 responses using 
res.send
• Use 
http-errors
for 
res.format
error
• deps: body-parser@1.20.0
• Fix error message for json parse whitespace in 
strict
• Fix internal error when inflated body exceeds limit
• Prevent loss of async hooks context
• Prevent hanging when request already read
• deps: depd@2.0.0
• deps: http-errors@2.0.0
• deps: on-finished@2.4.1
• deps: qs@6.10.3
• deps: raw-body@2.5.1
• deps: cookie@0.5.0
• Add 
priority
option
• Fix 
expires
option to reject invalid dates
• deps: depd@2.0.0
• Replace internal 
eval
usage with 
Function
constructor
• Use instance methods on 
process
to check for listeners
• deps: finalhandler@1.2.0
• Remove set content headers that break response
• deps: on-finished@2.4.1
• deps: statuses@2.0.1
• deps: on-finished@2.4.1
• Prevent loss of async hooks context
• deps: qs@6.10.3
• deps: send@0.18.0
... (truncated) Commits • `8368dc1` 4.18.2 • `61f4049` docs: replace Freenode with Libera Chat • `bb7907b` build: Node.js@18.10 • `f56ce73` build: supertest@6.3.0 • `24b3dc5` deps: qs@6.11.0 • `689d175` deps: body-parser@1.20.1 • `340be0f` build: eslint@8.24.0 • `33e8dc3` docs: use Node.js name style • `644f646` build: supertest@6.2.4 • `ecd7572` build: Node.js@14.20 • Additional commits viewable in compare view Dependabot compatibility score You can trigger a rebase of this PR by commenting 
@dependabot rebase
. * * * Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: • 
@dependabot rebase
will rebase this PR • 
@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it • 
@dependabot merge
will merge this PR after your CI passes on it • 
@dependabot squash and merge
will squash and merge this PR after your CI passes on it • 
@dependabot cancel merge
will cancel a previously requested merge and block automerging • 
@dependabot reopen
will reopen this PR if it is closed • 
@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually • 
@dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) • 
@dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) • 
@dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) • 
@dependabot use these labels
will set the current labels as the default for future PRs for this repo and language • 
@dependabot use these reviewers
will set the current reviewers as the default for future PRs for this repo and language • 
@dependabot use these assignees
will set the current assignees as the default for future PRs for this repo and language • 
@dependabot use this milestone
will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the Security Alerts page.
Note > Automatic rebases have been disabled on this pull request as it has been open for over 30 days.
osquery/osquery-site All checks have passed 3/3 successful checks
2 Views
Open in Slack
PreviousNext
Powered by