Bumps the npm_and_yarn group with 4 updates in the / directory: express, @babel/traverse, @cypress/request and cypress.
Bumps the npm_and_yarn group with 5 updates in the /example directory:
The allowInsecureRedirect is false by default, which may cause issues if your usage relies on insecure redirects. For the former behavior, you can opt in to insecure redirects by setting the option to true, but it is not recommended.
Security fix for Prototype Pollution discovery in #282. This is a minor release, although output from the inspect utility is affected by this change, we felt this change was important enough to be pushed into the next patch.
The allowInsecureRedirect is false by default, which may cause issues if your usage relies on insecure redirects. For the former behavior, you can opt in to insecure redirects by setting the option to true, but it is not recommended.
v2.86.0 (2018/0...
_Description has been truncated_
> **Note**
> Automatic rebases have been disabled on this pull request as it has been open for over 30 days.
Bumps the npm_and_yarn group with 4 updates in the / directory: express, @babel/traverse, @cypress/request and cypress. Bumps the npm_and_yarn group with 5 updates in the /example directory:
4.18.2
4.19.2
2.88.11
3.0.1
12.17.2
13.10.0
0.25.0
1.7.2
1.15.2
2.0.3
Updates
express
from 4.18.2 to 4.19.2Release notes
Sourced from express's releases.
... (truncated)
Changelog
Sourced from express's changelog.
Commits
04bc627
4.19.2da4d763
Improved fix for open redirect allow list bypass4f0f6cc
4.19.1a003cfa
Allow passing non-strings to res.location with new encoding handling checks f...a1fa90f
fixed un-edited version in history.md for 4.19.011f2b1d
build: fix build due to inconsistent supertest behavior in older versions084e365
4.19.00867302
Prevent open redirect allow list bypass due to encodeurl567c9c6
Add note on how to update docs for new release (#5541)69a4cf2
deps: cookie@0.6.0Maintainer changes
This version was pushed to npm by wesleytodd, a new releaser for express since your current version.
Updates
@babel/traverse
from 7.13.0 to 7.24.6Release notes
Sourced from
@babel/traverse
's releases.... (truncated)
Changelog
Sourced from
@babel/traverse
's changelog.... (truncated)
Commits
9630250
v7.24.61f010df
Explicitly defineNodePath.prototype.*
(#16488)6e3539b
[babel 8] Publish.d.ts
files for every package (#16416)e37e64d
Use eslint v9 (#16479)3ff20b9
Statically generate boilerplate for bitfield accessors (#16482)97c3eb1
RemovesyntaxType
option for record-and-tuple (parser&plugin) (#16458)71c247a
[babel 8] Require Node.js^18.20.0 || ^20.10.0 || >=21.0.0
(#16457)ddbea7d
v7.24.5e779cad
fix: TypeScript annotation affects output (#16377)ee48754
Use multiple TypeScript projects (#16430)Updates
@cypress/request
from 2.88.11 to 3.0.1Release notes
Sourced from
@cypress/request
's releases.Changelog
Sourced from
@cypress/request
's changelog.... (truncated)
Commits
ca62f3a
Merge pull request #44 from MikeMcC399/peg/qsfb9f625
fix(deps): peg qs to 6.10.499338c8
chore: updates related to release process (#41)c5bcf21
feat: Add allowInsecureRedirect option0664780
fix(request): update tough-cookie dep30def80
Merge pull request #39 from cypress-io/jordanpowell88/update-pkg-version6b79405
update package versionbfbb95f
Merge pull request #32 from BreakBB/fix-cve-2023-26136a67e132
pin 18.16825485a
revert back to yarn but v 18Updates
cypress
from 12.17.2 to 13.10.0Release notes
Sourced from cypress's releases.
... (truncated)
Commits
374ceb2
chore: change path created in prevous PR to make windows compliant (#29551)2567b72
chore: release@cypress/vite-dev-server-v5
.1.027471ad
chore: release 13.10.0 (#29549)079030b
feat: support vite v5 (#29518)3a3d877
fix: Encode fileServerFolder to fix #25839 (#29162)297abbb
fix: Add optional regex check for comma preceding 'but' in assertions for com...9c11188
chore: Update Chrome (beta) to 126.0.6478.7 (#29531)e39e748
fix: preserve orphaned process electron (#29515)3a00948
chore: Move what-is-circular dep within Cypress repo (#29530)5a23501
chore: turn off protocol element highlight selector tests (#29533)Updates
tough-cookie
from 2.5.0 to 4.1.4Release notes
Sourced from tough-cookie's releases.
... (truncated)
Commits
cacbc37
Bump version to 4.1.4a48fb3a
Add tests for url validation50e69bf
Merge pull request #261 from postmanlabs/fix/url-string-validation1253d58
Merge pull request #409 from corvidism/validators-to-string238367e
Add local alias fortoString
4ff4d29
4.1.3 release preparation, update the package and lib/version to 4.1.3. (#284)12d4747
Prevent prototype pollution in cookie memstore (#283)f06b72d
Fix documentation for store.findCookies, missing allowSpecialUseDomain proper...cf6debd
Fix incorrect string validation for URLb1a8898
fix: allow set cookies with localhost (#253)Maintainer changes
This version was pushed to npm by ccasey, a new releaser for tough-cookie since your current version.
Updates
express
from 4.18.2 to 4.19.2Release notes
Sourced from express's releases.
... (truncated)
Changelog
Sourced from express's changelog.
Commits
04bc627
4.19.2da4d763
Improved fix for open redirect allow list bypass4f0f6cc
4.19.1a003cfa
Allow passing non-strings to res.location with new encoding handling checks f...a1fa90f
fixed un-edited version in history.md for 4.19.011f2b1d
build: fix build due to inconsistent supertest behavior in older versions084e365
4.19.00867302
Prevent open redirect allow list bypass due to encodeurl567c9c6
Add note on how to update docs for new release (#5541)69a4cf2
deps: cookie@0.6.0Maintainer changes
This version was pushed to npm by wesleytodd, a new releaser for express since your current version.
Updates
@cypress/request
from 2.88.11 to 3.0.1Release notes
Sourced from
@cypress/request
's releases.Changelog
Sourced from
@cypress/request
's changelog.