chore(deps): bump the npm_and_yarn group across 7 directories with 6 updates

Bumps the npm_and_yarn group with 4 updates in the / directory: hono, @hono/node-server, axios and webpack. Bumps the npm_and_yarn group with 1 update in the /examples/with-express directory: semver. Bumps the npm_and_yarn group with 1 update in the /examples/with-express-auth directory: semver. Bumps the npm_and_yarn group with 1 update in the /examples/with-express-csrf directory: semver. Bumps the npm_and_yarn group with 1 update in the /examples/with-hono directory: semver. Bumps the npm_and_yarn group with 1 update in the /examples/with-multiple-instances directory: semver. Bumps the npm_and_yarn group with 1 update in the /examples/with-nestjs-module directory: tough-cookie.

Updates hono from 4.4.7 to 4.5.8

Release notes

Sourced from hono's releases.

v4.5.8

Security Fix for CSRF Protection Middleware

Before this release, in versions 4.5.7 and below, the CSRF Protection Middleware did not treat requests including Content-Types with uppercase letters (e.g., Application/x-www-form-urlencoded) as potential attacks, allowing them to pass.

This could cause unexpected behavior, leading to a vulnerability. If you are using the CSRF Protection Middleware, please upgrade to version 4.5.8 or higher immediately.

For more details, see the report here: https://github.com/honojs/hono/security/advisories/GHSA-rpfr-3m35-5vx5

v4.5.7

What's Changed

fix(jsx/dom): Fixed a bug that caused Script elements to turn into Style elements. by @usualoma in honojs/hono#3294

perf(jsx/dom): improve performance by @usualoma in honojs/hono#3288

feat(jsx): improve a-tag types with well known values by @ssssota in honojs/hono#3287

fix(validator): Fixed a bug in hono/validator where URL Encoded Data could not be validated if the Content-Type included charset. by @uttk in honojs/hono#3297

feat(jsx): improve target and formtarget attribute types by @ssssota in honojs/hono#3299

docs(README): change Twitter to X by @nakasyou in honojs/hono#3301

fix(client): replace optional params to url correctly by @yusukebe in honojs/hono#3304

feat(jsx): improve input attribute types based on react by @ssssota in honojs/hono#3302

New Contributors

@uttk made their first contribution in honojs/hono#3297

Full Changelog: https://github.com/honojs/hono/compare/v4.5.6...v4.5.7

v4.5.6

What's Changed

fix(jsx): handle async component error explicitly and throw the error in the response by @usualoma in honojs/hono#3274

fix(validator): support multipart headers without a separating space by @Ernxst in honojs/hono#3286

fix(validator): Allow form data will mutliple values appended by @nicksrandall in honojs/hono#3273

feat(jsx): improve meta-tag types with well known values by @ssssota in honojs/hono#3276

New Contributors

@Ernxst made their first contribution in honojs/hono#3286

@ssssota made their first contribution in honojs/hono#3276

Full Changelog: https://github.com/honojs/hono/compare/v4.5.5...v4.5.6

v4.5.5

What's Changed

fix(jsx): allow null, undefined, and boolean to be returned from function component by @usualoma in honojs/hono#3241

feat(context): Add types for c.header by @nakasyou in honojs/hono#3221

fix(jsx): fix draggable type to accept boolean by @yasuaki640 in honojs/hono#3253

feat(context): add Context-Type types to c.header by @nakasyou in honojs/hono#3255

fix(serve-static): supports directory contains . and not end / by @yusukebe in honojs/hono#3256

Full Changelog: https://github.com/honojs/hono/compare/v4.5.4...v4.5.5

v4.5.4

... (truncated)

Commits

d1c7f6f v4.5.8
41ce840 Merge commit from fork
b0af71f v4.5.7
2646696 feat(jsx): improve input attribute types based on react (#3302)
331b3d8 fix(client): replace optional params to url correctly (#3304)
95a6b39 docs(README): change Twitter to X (#3301)
54dab7e feat(jsx): improve target and formtarget attribute types (#3299)
c378dd9 fix(validator): Fixed a bug in hono/validator where URL Encoded Data could no...
17c3b9e feat(jsx): improve a-tag types with well known values (#3287)
1854e24 perf(jsx/dom): improve performance (#3288)
Additional commits viewable in compare view

Updates @hono/node-server from 1.10.1 to 1.12.1

Release notes

Sourced from @hono/node-server's releases.

v1.12.1

What's Changed

fix: return response from res.body if internal data is not ready to be returned directly by @usualoma in honojs/node-server#188

Full Changelog: https://github.com/honojs/node-server/compare/v1.12.0...v1.12.1

v1.12.0

What's Changed

fix(serve-static): supports extension less files by @yusukebe in honojs/node-server#183

feat: implement ConnInfo helper by @nakasyou in honojs/node-server#180

New Contributors

@nakasyou made their first contribution in honojs/node-server#180

Full Changelog: https://github.com/honojs/node-server/compare/v1.11.5...v1.12.0

v1.11.5

What's Changed

fix: make hono as external to build by @yusukebe in honojs/node-server#182

Full Changelog: https://github.com/honojs/node-server/compare/v1.11.4...v1.11.5

v1.11.4

What's Changed

Expose ServerType from './types' by @raighneweng in honojs/node-server#178

New Contributors

@raighneweng made their first contribution in honojs/node-server#178

Full Changelog: https://github.com/honojs/node-server/compare/v1.11.3...v1.11.4

v1.11.3

What's Changed

Update readme with an example of proper "root" when using serveStatic by @brettimus in honojs/node-server#173

fix: avoid error when using TRACE method by @usualoma in honojs/node-server#175

New Contributors

@brettimus made their first contribution in honojs/node-server#173

Full Changelog: https://github.com/honojs/node-server/compare/v1.11.2...v1.11.3

v1.11.2

What's Changed

ci: include tests for node 22 version by @Jayllyz in honojs/node-server#170

fix: memory leak by AbortController by @usualoma in honojs/node-server#172

New Contributors

@Jayllyz made their first contribution in honojs/node-server#170

... (truncated)

Commits

e42500f v1.12.1
c8ad154 fix: return response from res.body if internal data is not ready to be return...
efc104b v1.12.0
4130b9d docs(readme): add a connInfo description
b8fb04b feat: implement ConnInfo helper (#180)
fa8cb6b fix(serve-static): supports extension less files (#183)
87ecf60 v1.11.5
8ab5f3c fix: make hono as external to build (#182)
19bd7fe v1.11.4
5b7d362 fix: Export ServerType (#178)
Additional commits viewable in compare view

Updates axios from 1.6.0 to 1.7.4

Release notes

Sourced from axios's releases.

Release v1.7.4

Release notes:

Bug Fixes

sec: CVE-2024-39338 (#6539) (#6543) (6b6b605)

sec: disregard protocol-relative URL to remediate SSRF (#6539) (07a661a)

Contributors to this release

Lev Pachmanov

Đỗ Trọng Hải

Release v1.7.3

Release notes:

Bug Fixes

adapter: fix progress event emitting; (#6518) (e3c76fc)

fetch: fix withCredentials request config (#6505) (85d4d0e)

xhr: return original config on errors from XHR adapter (#6515) (8966ee7)

Contributors to this release

Dmitriy Mozgovoy

Valerii Sidorenko

prianYu

Release v1.7.2

Release notes:

Bug Fixes

fetch: enhance fetch API detection; (#6413) (4f79aef)

Contributors to this release

Dmitriy Mozgovoy

Release v1.7.1

Release notes:

Bug Fixes

fetch: fixed ReferenceError issue when TextEncoder is not available in the environment; (#6410) (733f15f)

Contributors to this release

Dmitriy Mozgovoy

Release v1.7.0

Release notes:

Features

... (truncated)

Changelog

Sourced from axios's changelog.

1.7.4 (2024-08-13)

Bug Fixes

sec: CVE-2024-39338 (#6539) (#6543) (6b6b605)

sec: disregard protocol-relative URL to remediate SSRF (#6539) (07a661a)

Contributors to this release

Lev Pachmanov

Đỗ Trọng Hải

1.7.3 (2024-08-01)

Bug Fixes

adapter: fix progress event emitting; (#6518) (e3c76fc)

fetch: fix withCredentials request config (#6505) (85d4d0e)

xhr: return original config on errors from XHR adapter (#6515) (8966ee7)

Contributors to this release

Dmitriy Mozgovoy

Valerii Sidorenko

prianYu

1.7.2 (2024-05-21)

Bug Fixes

fetch: enhance fetch API detection; (#6413) (4f79aef)

Contributors to this release

Dmitriy Mozgovoy

1.7.1 (2024-05-20)

Bug Fixes

fetch: fixed ReferenceError issue when TextEncoder is not available in the environment; (#6410) (733f15f)

Contributors to this release

Dmitriy Mozgovoy

... (truncated)

Commits

abd24a7 chore(release): v1.7.4 (#6544)
6b6b605 fix(sec): CVE-2024-39338 (#6539) (#6543)
07a661a fix(sec): disregard protocol-relative URL to remediate SSRF (#6539)
c6cce43 chore(release): v1.7.3 (#6521)
e3c76fc fix(adapter): fix progress event emitting; (#6518)
85d4d0e fix(fetch): fix withCredentials request config (#6505)
92cd8ed chore(github): update ISSUE_TEMPLATE.md (#6519)
8966ee7 fix(xhr): return original config on errors from XHR adapter (#6515)
0e4f9fa chore(release): v1.7.2 (#6414)
4f79aef fix(fetch): enhance fetch API detection; (#6413)
Additional commits viewable in compare view

Updates webpack from 5.88.2 to 5.94.0

Release notes

Sourced from webpack's releases.

v5.94.0

Bug Fixes

Added runtime condition for harmony reexport checked

Handle properly data/http/https protocols in source maps

Make bigint optimistic when browserslist not found

Move @types/eslint-scope to dev deps

Related in asset stats is now always an array when no related found

Handle ASI for export declarations

Mangle destruction incorrect with export named default properly

Fixed unexpected asi generation with sequence expression

Fixed a lot of types

New Features

Added new external type "module-import"

Support webpackIgnore for new URL() construction

[CSS] @import pathinfo support

Security

Fixed DOM clobbering in auto public path

v5.93.0

Bug Fixes

Generate correct relative path to runtime chunks

Makes DefinePlugin quieter under default log level

Fixed mangle destructuring default in namespace import

Fixed consumption of eager shared modules for module federation

Strip slash for pretty regexp

Calculate correct contenthash for CSS generator options

New Features

Added the binary generator option for asset modules to explicitly keep source maps produced by loaders

Added the modern-module library value for tree shakable output

Added the overrideStrict option to override strict or non-strict mode for javascript modules

v5.92.1

Bug Fixes

Doesn't crash with an error when the css experiment is enabled and contenthash is used

v5.92.0

Bug Fixes

Correct tidle range's comutation for module federation

Consider runtime for pure expression dependency update hash

Return value in the subtractRuntime function for runtime logic

... (truncated)

Commits

eabf85d chore(release): 5.94.0
955e057 security: fix DOM clobbering in auto public path
9822387 test: fix
cbb86ed test: fix
5ac3d7f fix: unexpected asi generation with sequence expression
2411661 security: fix DOM clobbering in auto public path
b8c03d4 fix: unexpected asi generation with sequence expression
f46a03c revert: do not use heuristic fallback for "module-import"
60f1898 fix: do not use heuristic fallback for "module-import"
66306aa Revert "fix: module-import get fallback from externalsPresets"
Additional commits viewable in compare view

Updates semver from 7.5.4 to 7.6.3

Release notes

Sourced from semver's releases.

v7.6.3

7.6.3 (2024-07-16)

Bug Fixes

73a3d79 #726 optimize Range parsing and formatting (#726) (@jviide)

Documentation

2975ece #719 fix extra backtick typo (#719) (@stdavis)

v7.6.2

7.6.2 (2024-05-09)

Bug Fixes

6466ba9 #713 lru: use map.delete() directly (#713) (@negezor, @lukekarrys)

v7.6.1

7.6.1 (2024-05-04)

Bug Fixes

c570a34 #704 linting: no-unused-vars (@wraithgar)

ad8ff11 #704 use internal cache implementation (@mbtools)

ac9b357 #682 typo in compareBuild debug message (#682) (@mbtools)

Dependencies

988a8de #709 uninstall lru-cache (#709)

3fabe4d #704 remove lru-cache

Chores

dd09b60 #705 bump @npmcli/template-oss to 4.22.0 (@lukekarrys)

ec49cdc #701 chore: chore: postinstall for dependabot template-oss PR (@lukekarrys)

b236c3d #696 add benchmarks (#696) (@H4ad)

692451b #688 various improvements to README (#688) (@mbtools)

5feeb7f #705 postinstall for dependabot template-oss PR (@lukekarrys)

074156f #701 bump @npmcli/template-oss from 4.21.3 to 4.21.4 (@dependabot[bot])

v7.6.0

7.6.0 (2024-01-31)

Features

a7ab13a #671 preserve pre-release and build parts of a version on coerce (#671) (@madtisa, madtisa, @wraithgar)

Chores

... (truncated)

Changelog

Sourced from semver's changelog.

7.6.3 (2024-07-16)

Bug Fixes

73a3d79 #726 optimize Range parsing and formatting (#726) (@jviide)

Documentation

2975ece #719 fix extra backtick typo (#719) (@stdavis)

7.6.2 (2024-05-09)

Bug Fixes

6466ba9 #713 lru: use map.delete() directly (#713) (@negezor, @lukekarrys)

7.6.1 (2024-05-04)

Bug Fixes

c570a34 #704 linting: no-unused-vars (@wraithgar)

ad8ff11 #704 use internal cache implementation (@mbtools)

ac9b357 #682 typo in compareBuild debug message (#682) (@mbtools)

Dependencies

988a8de #709 uninstall lru-cache (#709)

3fabe4d #704 remove lru-cache

Chores

dd09b60 #705 bump @npmcli/template-oss to 4.22.0 (@lukekarrys)

ec49cdc #701 chore: chore: postinstall for dependabot template-oss PR (@lukekarrys)

b236c3d #696 add benchmarks (#696) (@H4ad)

692451b #688 various improvements to README (#688) (@mbtools)

5feeb7f #705 postinstall for dependabot template-oss PR (@lukekarrys)

074156f #701 bump @npmcli/template-oss from 4.21.3 to 4.21.4 (@dependabot[bot])

7.6.0 (2024-01-31)

Features

a7ab13a #671 preserve pre-release and build parts of a version on coerce (#671) (@madtisa, madtisa, @wraithgar)

Chores

816c7b2 #667 postinstall for dependabot template-oss PR (@lukekarrys)

0bd24d9 #667 bump @npmcli/template-oss from 4.21.1 to 4.21.3 (@dependabot[bot])

e521932 #652 postinstall for dependabot template-oss PR (@lukekarrys)

8873991 #652 chore: chore: postinstall for dependabot template-oss PR (@lukekarrys)

... (truncated)

Commits

0a12d6c chore: release 7.6.3 (#720)
73a3d79 fix: optimize Range parsing and formatting (#726)
2975ece docs: fix extra backtick typo (#719)
eb1380b chore: release 7.6.2 (#714)
6466ba9 fix(lru): use map.delete() directly (#713)
d777418 chore: release 7.6.1 (#706)
988a8de deps: uninstall lru-cache (#709)
5feeb7f chore: postinstall for dependabot template-oss PR
dd09b60 chore: bump @npmcli/template-oss to 4.22.0
c570a34 fix(linting): no-unused-vars
Additional commits viewable in compare view

Updates semver from 7.5.4 to 7.6.3

Release notes

Sourced from semver's releases.

v7.6.3

7.6.3 (2024-07-16)

Bug Fixes

73a3d79 #726 optimize Range parsing and formatting (#726) (@jviide)

Documentation

2975ece #719 fix extra backtick typo (#719) (@stdavis)

v7.6.2

7.6.2 (2024-05-09)

Bug Fixes

6466ba9 #713 lru: use map.delete() directly (#713) (@negezor, @lukekarrys)

v7.6.1

7.6.1 (2024-05-04)

Bug Fixes

c570a34 #704 linting: no-unused-vars (@wraithgar)

ad8ff11 #704 use internal cache implementation (@mbtools)

ac9b357 #682 typo in compareBuild debug message (#682) (@mbtools)

Dependencies

988a8de #709 uninstall lru-cache (#709)

3fabe4d #704 remove lru-cache

Chores

dd09b60 #705 bump @npmcli/template-oss to 4.22.0 (@lukekarrys)

ec49cdc #701 chore: chore: postinstall for dependabot template-oss PR (@lukekarrys)

b236c3d #696 add benchmarks (#696) (@H4ad)

692451b #688 various improvements to README (#688) (@mbtools)

5feeb7f #705 postinstall for dependabot template-oss PR (@lukekarrys)

074156f #701 bump @npmcli/template-oss from 4.21.3 to 4.21.4 (@dependabot[bot])

v7.6.0

7.6.0 (2024-01-31)

Features

a7ab13a #671 preserve pre-release and build parts of a version on coerce (#671) (@madtisa, madtisa, @wraithgar)

Chores

... (truncated)

Changelog

Sourced from semver's changelog.

7.6.3 (2024-07-16)

Bug Fixes

73a3d79 #726 optimize Range parsing and formatting (#726) (@jviide)

Documentation

2975ece #719 fix extra backtick typo (#719) (@stdavis)

7.6.2 (2024-05-09)

Bug Fixes

6466ba9 #713 lru: use map.delete() directly (#713) (@negezor, @lukekarrys)

7.6.1 (2024-05-04)

Bug Fixes

c570a34 #704 linting: no-unused-vars (@wraithgar)

ad8ff11 #704 use internal cache implementation (@mbtools)

ac9b357 #682 typo in compareBuild debug message (#682) (@mbtools)

Dependencies

988a8de #709 uninstall lru-cache (#709)

3fabe4d #704 remove lru-cache

Chores

dd09b60 #705 bump @npmcli/template-oss to 4.22.0 (@lukekarrys)

ec49cdc #701 chore: chore: postinstall for dependabot template-oss PR (@lukekarrys)

b236c3d #696 add benchmarks (#696) (@H4ad)

692451b #688 various improvements to README (#688) (@mbtools)

5feeb7f #705 postinstall for dependabot template-oss PR (@lukekarrys)

074156f #701 bump @npmcli/template-oss from 4.21.3 to 4.21.4 (@dependabot[bot])

7.6.0 (2024-01-31)

Features

a7ab13a #671 preserve pre-release and build parts of a version on coerce (#671) (@madtisa, madtisa, @wraithgar)

Chores

816c7b2 #667 postinstall for dependabot template-oss PR (@lukekarrys)

0bd24d9 #667 bump @npmcli/template-oss from 4.21.1 to 4.21.3 (@dependabot[bot])

e521932 #652 postinstall for dependabot template-oss PR (@lukekarrys)

8873991 #652 chore: chore: postinstall for dependabot template-oss PR (@lukekarrys)

... (truncated)

Commits

0a12d6c chore: release 7.6.3 (#720)
73a3d79 fix: optimize Range parsing and formatting (#726)
2975ece docs: fix extra backtick typo (#719)
eb1380b chore: release 7.6.2 (#714)
6466ba9 fix(lru): use map.delete() directly (#713)
d777418 chore: release 7.6.1 (#706)
988a8de deps: uninstall lru-cache (#709)
5feeb7f chore: postinstall for dependabot template-oss PR
dd09b60 chore: bump @npmcli/template-oss to 4.22.0
c570a34 fix(linting): no-unused-vars
Additional commits viewable in compare view

Updates semver from 7.5.4 to 7.6.3

Release notes

Sourced from semver's releases.

v7.6.3

7.6.3 (2024-07-16)

Bug Fixes

73a3d79 #726 optimize Range parsing and formatting (#726) (@jviide)

Documentation

2975ece #719 fix extra backtick typo (#719) (@stdavis)

v7.6.2

7.6.2 (2024-05-09)

Bug Fixes

6466ba9 #713 lru: use map.delete() directly (#713) (@negezor, @lukekarrys)

v7.6.1

7.6.1 (2024-05-04)

Bug Fixes

c570a34 #704 linting: no-unused-vars (@wraithgar)

ad8ff11 #704 use internal cache implementation (@mbtools)

ac9b357 #682 typo in compareBuild debug message (#682) (@mbtools

felixmosh / bull-board

chore(deps): bump the npm_and_yarn group across 7 directories with 6 updates #800

v4.5.8

Security Fix for CSRF Protection Middleware

v4.5.7

What's Changed

New Contributors

v4.5.6

What's Changed

New Contributors

v4.5.5

What's Changed

v4.5.4

v1.12.1

What's Changed

v1.12.0

What's Changed

New Contributors

v1.11.5

What's Changed

v1.11.4

What's Changed

New Contributors

v1.11.3

What's Changed

New Contributors

v1.11.2

What's Changed

New Contributors

Release v1.7.4

Release notes:

Bug Fixes

Contributors to this release

Release v1.7.3

Release notes:

Bug Fixes

Contributors to this release

Release v1.7.2

Release notes:

Bug Fixes

Contributors to this release

Release v1.7.1

Release notes:

Bug Fixes

Contributors to this release

Release v1.7.0

Release notes:

Features

1.7.4 (2024-08-13)

Bug Fixes

Contributors to this release

1.7.3 (2024-08-01)

Bug Fixes

Contributors to this release

1.7.2 (2024-05-21)

Bug Fixes

Contributors to this release

1.7.1 (2024-05-20)

Bug Fixes

Contributors to this release

v5.94.0

Bug Fixes

New Features

Security

v5.93.0

Bug Fixes

New Features

v5.92.1

Bug Fixes

v5.92.0

Bug Fixes

v7.6.3

7.6.3 (2024-07-16)

Bug Fixes

Documentation

v7.6.2

7.6.2 (2024-05-09)

Bug Fixes

v7.6.1

7.6.1 (2024-05-04)