forked from dapr/samples
-
Notifications
You must be signed in to change notification settings - Fork 0
[Snyk] Upgrade body-parser from 1.19.0 to 1.20.3#945
Open
harrykimpel wants to merge 1 commit intomasterfrom
Open
[Snyk] Upgrade body-parser from 1.19.0 to 1.20.3#945harrykimpel wants to merge 1 commit intomasterfrom
harrykimpel wants to merge 1 commit intomasterfrom
Conversation
Owner
Snyk has created this PR to upgrade body-parser from 1.19.0 to 1.20.3.
i Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
-
The recommended version is 6 versions ahead of your current version.
-
The recommended version was released on 2 months ago.
Release notes
Package name: body-parser
-
1.20.3 - 2024-09-09
What's Changed
Important
- deps: qs@6.13.0
- add
depthoption to customize the depth level in the parser - IMPORTANT: The default
depthlevel for parsing URL-encoded data is now32(previously wasInfinity). Documentation
Other changes
- chore: add support for OSSF scorecard reporting by @ inigomarquinez in #522
- ci: fix errors in ci github action for node 8 and 9 by @ inigomarquinez in #523
- fix: pin to node@22.4.1 by @ wesleytodd in #527
- deps: qs@6.12.3 by @ melikhov-dev in #521
- Add OSSF Scorecard badge by @ bjohansebas in #531
- Linter by @ UlisesGascon in #534
- Release: 1.20.3 by @ UlisesGascon in #535
New Contributors
- @ inigomarquinez made their first contribution in #522
- @ melikhov-dev made their first contribution in #521
- @ bjohansebas made their first contribution in #531
- @ UlisesGascon made their first contribution in #534
Full Changelog: 1.20.2...1.20.3
-
1.20.2 - 2023-02-22
- Fix strict json error message on Node.js 19+
- deps: content-type@~1.0.5
- perf: skip value escaping when unnecessary
- deps: raw-body@2.5.2
-
1.20.1 - 2022-10-06
- deps: qs@6.11.0
- perf: remove unnecessary object clone
-
1.20.0 - 2022-04-03
- Fix error message for json parse whitespace in
strict - Fix internal error when inflated body exceeds limit
- Prevent loss of async hooks context
- Prevent hanging when request already read
- deps: depd@2.0.0
- Replace internal
evalusage withFunctionconstructor - Use instance methods on
processto check for listeners
- Replace internal
- deps: http-errors@2.0.0
- deps: depd@2.0.0
- deps: statuses@2.0.1
- deps: on-finished@2.4.1
- deps: qs@6.10.3
- deps: raw-body@2.5.1
- deps: http-errors@2.0.0
- Fix error message for json parse whitespace in
-
1.19.2 - 2022-02-16
- deps: bytes@3.1.2
- deps: qs@6.9.7
- Fix handling of
__proto__keys
- Fix handling of
- deps: raw-body@2.4.3
- deps: bytes@3.1.2
- 1.19.1 - 2021-12-10
- 1.19.0 - 2019-04-26
Important
- Check the changes in this PR to ensure they won't cause issues with your project.
- This PR was automatically created by Snyk using the credentials of a real user.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
Snyk has created this PR to upgrade body-parser from 1.19.0 to 1.20.3.
See this package in npm:
body-parser
See this project in Snyk:
https://app.snyk.io/org/harry.kimpel/project/b7068440-c91f-403f-a42f-c8e879268e13?utm_source=github&utm_medium=referral&page=upgrade-pr
See this package in npm:
body-parser
See this project in Snyk:
https://app.snyk.io/org/harry.kimpel/project/b7068440-c91f-403f-a42f-c8e879268e13?utm_source=github&utm_medium=referral&page=upgrade-pr
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.