Bumps the npm_and_yarn group with 4 updates in the / directory: express, @babel/traverse, @cypress/request and cypress.
Bumps the npm_and_yarn group with 5 updates in the /example directory:
The allowInsecureRedirect is false by default, which may cause issues if your usage relies on insecure redirects. For the former behavior, you can opt in to insecure redirects by setting the option to true, but it is not recommended.
Security fix for Prototype Pollution discovery in #282. This is a minor release, although output from the inspect utility is affected by this change, we felt this change was important enough to be pushed into the next patch.
Bumps the npm_and_yarn group with 4 updates in the / directory: express, @babel/traverse, @cypress/request and cypress. Bumps the npm_and_yarn group with 5 updates in the /example directory:
4.18.2
4.19.2
2.88.11
3.0.1
12.17.2
13.7.1
0.25.0
1.6.8
1.15.2
2.0.3
Updates
express
from 4.18.2 to 4.19.2Release notes
Sourced from express's releases.
... (truncated)
Changelog
Sourced from express's changelog.
Commits
04bc627
4.19.2da4d763
Improved fix for open redirect allow list bypass4f0f6cc
4.19.1a003cfa
Allow passing non-strings to res.location with new encoding handling checks f...a1fa90f
fixed un-edited version in history.md for 4.19.011f2b1d
build: fix build due to inconsistent supertest behavior in older versions084e365
4.19.00867302
Prevent open redirect allow list bypass due to encodeurl567c9c6
Add note on how to update docs for new release (#5541)69a4cf2
deps: cookie@0.6.0Maintainer changes
This version was pushed to npm by wesleytodd, a new releaser for express since your current version.
Updates
@babel/traverse
from 7.13.0 to 7.24.1Release notes
Sourced from
@babel/traverse
's releases.... (truncated)
Changelog
Sourced from
@babel/traverse
's changelog.... (truncated)
Commits
822b025
v7.24.1fc0d5ad
Update typescript and lint tools (#16351)69e7928
Consider well-known and registered symbols as literals (#16342)40110e9
Update source map deps (#16327)ce59160
v7.24.0bd5abd5
fix: avoidpopContext
on unvisited node paths (#16305)08a057c
UseObject.hasOwn
when available (#16248)a0dd614
v7.23.91200542
fix: Don't throw ingetTypeAnnotation
when using TS+inference (#15383)e428a6d
v7.23.7Updates
@cypress/request
from 2.88.11 to 3.0.1Release notes
Sourced from
@cypress/request
's releases.Changelog
Sourced from
@cypress/request
's changelog.... (truncated)
Commits
ca62f3a
Merge pull request #44 from MikeMcC399/peg/qsfb9f625
fix(deps): peg qs to 6.10.499338c8
chore: updates related to release process (#41)c5bcf21
feat: Add allowInsecureRedirect option0664780
fix(request): update tough-cookie dep30def80
Merge pull request #39 from cypress-io/jordanpowell88/update-pkg-version6b79405
update package versionbfbb95f
Merge pull request #32 from BreakBB/fix-cve-2023-26136a67e132
pin 18.16825485a
revert back to yarn but v 18Updates
cypress
from 12.17.2 to 13.7.1Release notes
Sourced from cypress's releases.
... (truncated)
Commits
f17fa4c
chore: release 13.7.1 (#29184)9c27c37
fix: patch new tab creation for firefox 124 and up to fix issue where… (#29179)ef66293
chore: skip rerun tests inside driver integration for chromium browse… (#29182)75eba1e
fix: fixing issue with blurring shadow dom elements (#29125)7735405
chore: skip flaky tests (#29149)fe97eec
chore: keep example app/assets in yarn autoclean (#29159)e9b3d43
chore: Update v8 snapshot cache (#29152)9a3e25c
docs: correct link from examples readme to pr contributing (#29163)85b85dd
docs: add more details to the@packages/example
deploy process (#29136)9f1ef29
chore: Update v8 snapshot cache (#29140)Updates
tough-cookie
from 2.5.0 to 4.1.3Release notes
Sourced from tough-cookie's releases.
... (truncated)
Commits
4ff4d29
4.1.3 release preparation, update the package and lib/version to 4.1.3. (#284)12d4747
Prevent prototype pollution in cookie memstore (#283)f06b72d
Fix documentation for store.findCookies, missing allowSpecialUseDomain proper...b1a8898
fix: allow set cookies with localhost (#253)ec70796
4.1.1 Patch -- allow special use domains by default (#250)d4ac580
fix: allow special use domains by default (#249)79c2f7d
4.1.0 release to NPM (#245)4fafc17
Prepare tough-cookie 4.1 for publishing (updated GitHub actions, move Dockerf...aa4396d
fix: distinguish between no samesite and samesite=none (#240)b8d7511
Modernize README (#234)Maintainer changes
This version was pushed to npm by awaterma, a new releaser for tough-cookie since your current version.
Updates
express
from 4.18.2 to 4.19.2Release notes
Sourced from express's releases.