Bump cookie-session from 2.0.0-beta.3 to 2.1.0

[dependabot[bot]]

Bumps cookie-session from 2.0.0-beta.3 to 2.1.0.

Release notes

Sourced from cookie-session's releases.

2.1.0

• Fix loading sessions with special keys
• deps: cookies@0.9.1
  • Add partitioned option for CHIPS support
  • Add priority option for Priority cookie support
  • Fix accidental cookie name/value truncation when given invalid chars
  • Fix maxAge option to reject invalid values
  • Remove quotes from returned quoted cookie value
  • Use req.socket over deprecated req.connection
  • pref: small lookup regexp optimization

2.0.0

• Change default cookie name to session
• Change .populated to .isPopulated
• Create new session for all types of invalid sessions
• Drop support for Node.js 0.8
• Remove private req.session.save()
• Remove the key option; use name instead
• Remove undocumented req.session.length to free up key name
• Remove undocumented req.sessionCookies and req.sessionKey
• Save all enumerable properties on req.session
  • Including _-prefixed properties
• Use Object.defineProperty instead of deprecated __define*__
• Use safe-buffer for improved Buffer API
• deps: cookies@0.8.0
  • Fix check for default secure option behavior
  • Fix maxAge option preventing cookie deletion
  • Support "none" in sameSite option
  • deps: depd@~2.0.0
  • deps: keygrip@~1.1.0
  • perf: remove argument reassignment
• deps: debug@3.2.7
  • Add DEBUG_HIDE_DATE
  • Add 256 color mode support
  • Enable / disable namespaces dynamically
  • Make millisecond timer namespace-specific
  • Remove DEBUG_FD support
  • Use Date#toISOString() when output is not a TTY
• deps: on-headers@~1.0.2
  • Fix res.writeHead patch missing return value
• deps: safe-buffer@5.2.1
• perf: reduce the scope of try-catch deopt
• perf: remove internal reference to request from session object

2.0.0-rc.1

• Remove private req.session.save()
• Remove undocumented req.session.length to free up key name
• Remove undocumented req.sessionCookies and req.sessionKey
• deps: cookies@0.8.0
  • Fix check for default secure option behavior

... (truncated)

Changelog

Sourced from cookie-session's changelog.

2.1.0 / 2024-01-23

• Fix loading sessions with special keys
• deps: cookies@0.9.1
  • Add partitioned option for CHIPS support
  • Add priority option for Priority cookie support
  • Fix accidental cookie name/value truncation when given invalid chars
  • Fix maxAge option to reject invalid values
  • Remove quotes from returned quoted cookie value
  • Use req.socket over deprecated req.connection
  • pref: small lookup regexp optimization

2.0.0 / 2021-12-16

• deps: debug@3.2.7
• deps: safe-buffer@5.2.1

2.0.0-rc.1 / 2020-01-23

• Remove private req.session.save()
• Remove undocumented req.session.length to free up key name
• Remove undocumented req.sessionCookies and req.sessionKey
• deps: cookies@0.8.0
  • Fix check for default secure option behavior
  • Fix maxAge option preventing cookie deletion
  • Support "none" in sameSite option
  • deps: depd@~2.0.0
  • deps: keygrip@~1.1.0
  • perf: remove argument reassignment
• deps: debug@3.2.6
• deps: on-headers@~1.0.2
  • Fix res.writeHead patch missing return value
• deps: safe-buffer@5.2.0
• perf: remove internal reference to request from session object

Commits

• ff7c2b2 2.1.0
• 51e7ce4 Fix loading sessions with special keys
• 16c12cf tests: add more tests around signed cookies
• 0dc9683 deps: cookies@0.9.1
• f77fa09 build: Node.js@20.11
• db0ff50 build: supertest@6.3.4
• e060228 build: Node.js@21.6
• 7dc0c5d docs: update link to cookie limits
• 08e8d62 build: eslint-plugin-import@2.29.1
• 0c4d5af build: eslint@8.56.0
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note Automatic rebases have been disabled on this pull request as it has been open for over 30 days.