search

expressjs / body-parser

Node.js body parsing middleware
MIT License
5.45k stars 727 forks source link

Remove devDependency `safe-buffer` #547

Closed Phillip9587 closed 1 month ago

Phillip9587 commented 1 month ago

This PR removes the safe-buffer package from devDependencies as it's no longer needed. Since we no longer support Node.js versions older than 18.0.0, the native Buffer class now fully handles security concerns. Additionally, there are no instances of new Buffer(...) usage in the repository.

UlisesGascon commented 1 month ago

We probably want to reflect this change in the HISTORY.md file.

Phillip9587 commented 1 month ago

We probably want to reflect this change in the HISTORY.md file.

Is it necessary for a devDependency?

UlisesGascon commented 1 month ago

Is it necessary for a devDependency?

Oh! you are right, forget my last comment :)