fix(deps): bump apollo-server-express from 3.10.0 to 3.10.4

[dependabot[bot]]

Bumps apollo-server-express from 3.10.0 to 3.10.4.

Changelog

Sourced from apollo-server-express's changelog.

v3.10.4

• apollo-server-core: Manage memory more efficiently in the usage reporting plugin by allowing large objects to be garbage collected more quickly. [PR #7106](apollographql/apollo-server#7106)
• apollo-server-core: The usage reporting plugin now defaults to a 30 second timeout for each attempt to send reports to Apollo Server instead of no timeout; the timeout can be adjusted with the new requestTimeoutMs option to ApolloServerPluginUsageReporting. (Apollo's servers already enforced a 30 second timeout, so this is unlikely to break any existing use cases.) [PR #7106](apollographql/apollo-server#7106)

v3.10.3

• apollo-server-core: Fix memory leak in usage reporting plugin. [Issue #6983](apollographql/apollo-server#6983) [PR #6999](https://github.com/apollographql/apollo-server/[Issue #6983](apollographql/apollo-server#6983)

v3.10.2

• apollo-server-fastify: Use return reply.send in handlers to match the pattern encouraged by Fastify 4 (although apollo-server-fastify@3 only works with Fastify 3). [PR #6798](apollographql/apollo-server#6798)
• apollo-datasource-rest@3.7.0: Add option memoizeGetRequests to disable GET cache [PR #6650](apollographql/apollo-server#6650) and [PR #6834](apollographql/apollo-server#6834)

v3.10.1

• ⚠️ SECURITY: The default landing page contained HTML to display a sample curl command which is made visible if the full landing page bundle could not be fetched from Apollo's CDN. The server's URL is directly interpolated into this command inside the browser from window.location.href. On some older browsers such as IE11, this value is not URI-encoded. On such browsers, opening a malicious URL pointing at an Apollo Router could cause execution of attacker-controlled JavaScript. In this release, the fallback page does not display a curl command. More details are available at the security advisory.
• Improve error message when both a graph ref and a graph variant are specified. [PR #6709](apollographql/apollo-server#6709)
• Fix the TypeScript declaration of the fieldLevelInstrumentation option to ApolloServerPluginUsageReporting to show that the function may return a number in addition to a boolean. This now matches the implementation and docs. [PR #6763](apollographql/apollo-server#6763)

Commits

• f519e1d Release
• 985c079 Release
• 2bf7f66 chore(deps): update all non-major dependencies (main) (#6852)
• f6c5c9f Release
• e6097d6 Release
• cb4020c chore(deps): update all non-major dependencies (#6737)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[codecov[bot]]

Codecov Report

:exclamation: No coverage uploaded for pull request base (main@9f3643c). Click here to learn what that means. The diff coverage is n/a.

@@           Coverage Diff           @@
##             main     #179   +/-   ##
=======================================
  Coverage        ?   97.89%           
=======================================
  Files           ?       15           
  Lines           ?      237           
  Branches        ?        0           
=======================================
  Hits            ?      232           
  Misses          ?        5           
  Partials        ?        0           

:mega: We’re building smart automated test selection to slash your CI/CD build times. Learn more

[dependabot[bot]]

Superseded by #181.