Bump express and @scullyio/scully-plugin-base-href-rewrite in /website/client

[dependabot[bot]]

Bumps express to 4.17.3 and updates ancestor dependency @scullyio/scully-plugin-base-href-rewrite. These dependencies need to be updated together.

Updates express from 4.17.1 to 4.17.3

Release notes

Sourced from express's releases.

4.17.3

• deps: accepts@~1.3.8
  • deps: mime-types@~2.1.34
  • deps: negotiator@0.6.3
• deps: body-parser@1.19.2
  • deps: bytes@3.1.2
  • deps: qs@6.9.7
  • deps: raw-body@2.4.3
• deps: cookie@0.4.2
• deps: qs@6.9.7
  • Fix handling of __proto__ keys
• pref: remove unnecessary regexp for trust proxy

4.17.2

• Fix handling of undefined in res.jsonp
• Fix handling of undefined when "json escape" is enabled
• Fix incorrect middleware execution with unanchored RegExps
• Fix res.jsonp(obj, status) deprecation message
• Fix typo in res.is JSDoc
• deps: body-parser@1.19.1
  • deps: bytes@3.1.1
  • deps: http-errors@1.8.1
  • deps: qs@6.9.6
  • deps: raw-body@2.4.2
  • deps: safe-buffer@5.2.1
  • deps: type-is@~1.6.18
• deps: content-disposition@0.5.4
  • deps: safe-buffer@5.2.1
• deps: cookie@0.4.1
  • Fix maxAge option to reject invalid values
• deps: proxy-addr@~2.0.7
  • Use req.socket over deprecated req.connection
  • deps: forwarded@0.2.0
  • deps: ipaddr.js@1.9.1
• deps: qs@6.9.6
• deps: safe-buffer@5.2.1
• deps: send@0.17.2
  • deps: http-errors@1.8.1
  • deps: ms@2.1.3
  • pref: ignore empty http tokens
• deps: serve-static@1.14.2
  • deps: send@0.17.2
• deps: setprototypeof@1.2.0

Changelog

Sourced from express's changelog.

4.17.3 / 2022-02-16

• deps: accepts@~1.3.8
  • deps: mime-types@~2.1.34
  • deps: negotiator@0.6.3
• deps: body-parser@1.19.2
  • deps: bytes@3.1.2
  • deps: qs@6.9.7
  • deps: raw-body@2.4.3
• deps: cookie@0.4.2
• deps: qs@6.9.7
  • Fix handling of __proto__ keys
• pref: remove unnecessary regexp for trust proxy

4.17.2 / 2021-12-16

• Fix handling of undefined in res.jsonp
• Fix handling of undefined when "json escape" is enabled
• Fix incorrect middleware execution with unanchored RegExps
• Fix res.jsonp(obj, status) deprecation message
• Fix typo in res.is JSDoc
• deps: body-parser@1.19.1
  • deps: bytes@3.1.1
  • deps: http-errors@1.8.1
  • deps: qs@6.9.6
  • deps: raw-body@2.4.2
  • deps: safe-buffer@5.2.1
  • deps: type-is@~1.6.18
• deps: content-disposition@0.5.4
  • deps: safe-buffer@5.2.1
• deps: cookie@0.4.1
  • Fix maxAge option to reject invalid values
• deps: proxy-addr@~2.0.7
  • Use req.socket over deprecated req.connection
  • deps: forwarded@0.2.0
  • deps: ipaddr.js@1.9.1
• deps: qs@6.9.6
• deps: safe-buffer@5.2.1
• deps: send@0.17.2
  • deps: http-errors@1.8.1
  • deps: ms@2.1.3
  • pref: ignore empty http tokens
• deps: serve-static@1.14.2
  • deps: send@0.17.2
• deps: setprototypeof@1.2.0

Commits

• 3d7fce5 4.17.3
• f906371 build: update example dependencies
• 6381bc6 deps: qs@6.9.7
• a007863 deps: body-parser@1.19.2
• e98f584 Revert "build: use minimatch@3.0.4 for Node.js < 4"
• a659137 tests: use strict mode
• a39e409 tests: prevent leaking changes to NODE_ENV
• 82de4de examples: fix path traversal in downloads example
• 12310c5 build: use nyc for test coverage
• 884657d examples: remove bitwise syntax for includes check
• Additional commits viewable in compare view

Updates @scullyio/scully-plugin-base-href-rewrite from 1.0.0-beta.0 to 2.1.41

Release notes

Sourced from @​scullyio/scully-plugin-base-href-rewrite's releases.

v2.1.41

What's Changed

• fix(scully-plugin-puppeteer): correctly track requests in bare project by @​gkalpak in scullyio/scully#1610
• style(scully): Change logging to increase clarity by @​dolanmiu in scullyio/scully#1605
• docs(scully): add brunoelo blog to showcase by @​BrunoElo in scullyio/scully#1602
• fix(scully-plugin-puppeteer): rename onRenderReady event to prevent zone.js patching by @​lamp-of-god in scullyio/scully#1597
• chore(deps): bump eventsource from 1.1.0 to 1.1.2 by https://github.com/dependabot in scullyio/scully#1594

New Contributors

• @​gkalpak made their first contribution in scullyio/scully#1610
• @​dolanmiu made their first contribution in scullyio/scully#1605
• @​BrunoElo made their first contribution in scullyio/scully#1602
• @​lamp-of-god made their first contribution in scullyio/scully#1597

Note: this is a roll-up with a couple of releases that had no impact on the libraries

Full Changelog: https://github.com/scullyio/scully/compare/v2.1.36...v2.1.41

v2.1.36

What's Changed

• fix(scully-plugin-puppeteer): change now reserved 'onCustomEvent' to 'onRenderReady' to prevent the default 25 seconds timeout by @​SanderElias in scullyio/scully#1593
• chore(deps): bump ejs from 3.1.6 to 3.1.7 by @​dependabot in scullyio/scully#1584
• docs(scully): additional query parameter info by @​TheCodingWaffle in scullyio/scully#1583
• Non-major documentation updates by @​sanjay51 in scullyio/scully#1582

New Contributors

• @​TheCodingWaffle made their first contribution in scullyio/scully#1583

Note:

We didn't publish .33 - .34, but instead rolled them up into here, as they had only internal-facing changes and documentation

Full Changelog: https://github.com/scullyio/scully/compare/v2.1.32...v2.1.36

v2.1.32

What's Changed

• Minor: Fix type proccess -> process by @​sanjay51 in scullyio/scully#1579
• docs(scully): add collage club to showcase by @​A7xSV in scullyio/scully#1574
• fix(monorepo): update package-lock to not fail on install. by @​SanderElias in scullyio/scully#1581

New Contributors

• @​A7xSV made their first contribution in scullyio/scully#1574
• @​sanjay51 made their first contribution in scullyio/scully#1579

Note:

We didn't publish .30 and .31, but instead rolled them up into here, as they had only internal-facing changes

Full Changelog: https://github.com/scullyio/scully/compare/v2.1.29...v2.1.32

v2.1.29

... (truncated)

Commits

• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/engagementlab/hygiene-with-chhota-bheem/network/alerts).