simonwhatley / govuk-publishing-frontend

GOV.UK Publishing Frontend contains code to build user interfaces for the GOV.UK website.
https://govuk-publishing-frontend.onrender.com
MIT License
1 stars 0 forks source link

Bump express-session from 1.17.3 to 1.18.0 #278

Closed dependabot[bot] closed 1 month ago

dependabot[bot] commented 1 month ago

Bumps express-session from 1.17.3 to 1.18.0.

Release notes

Sourced from express-session's releases.

1.18.0

  • Add debug log for pathname mismatch
  • Add partitioned to cookie options
  • Add priority to cookie options
  • Fix handling errors from setting cookie
  • Support any type in secret that crypto.createHmac supports
  • deps: cookie@0.6.0
    • Fix expires option to reject invalid dates
    • perf: improve default decode speed
    • perf: remove slow string split in parse
  • deps: cookie-signature@1.0.7
Changelog

Sourced from express-session's changelog.

1.18.0 / 2024-01-28

  • Add debug log for pathname mismatch
  • Add partitioned to cookie options
  • Add priority to cookie options
  • Fix handling errors from setting cookie
  • Support any type in secret that crypto.createHmac supports
  • deps: cookie@0.6.0
    • Fix expires option to reject invalid dates
    • perf: improve default decode speed
    • perf: remove slow string split in parse
  • deps: cookie-signature@1.0.7
Commits
  • 24d4972 1.18.0
  • 855f21a docs: add connect-ottoman to the list of session stores
  • 991b7ee Add debug log for pathname mismatch
  • 408229e Add "partitioned" to cookie options
  • 50e1429 build: Node.js@20.11
  • 6153b3f build: Node.js@21.6
  • 88e0f2e build: actions/checkout@v4
  • d9354ef Fix handling errors from setting cookie
  • f9f2318 docs: remove session-rethinkdb to the list of session stores
  • 3ee08c4 Add "priority" to cookie options
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)