build(deps): bump express from 4.18.2 to 4.19.0 in /api

[dependabot[bot]]

Bumps express from 4.18.2 to 4.19.0.

Release notes

Sourced from express's releases.

4.19.0

What's Changed

• fix typo in release date by @​UlisesGascon in expressjs/express#5527
• docs: nominating @​wesleytodd to be project captian by @​wesleytodd in expressjs/express#5511
• docs: loosen TC activity rules by @​wesleytodd in expressjs/express#5510
• Add note on how to update docs for new release by @​crandmck in expressjs/express#5541
• Prevent open redirect allow list bypass due to encodeurl
• Release 4.19.0 by @​wesleytodd in expressjs/express#5551

New Contributors

• @​crandmck made their first contribution in expressjs/express#5541

Full Changelog: https://github.com/expressjs/express/compare/4.18.3...4.19.0

4.18.3

Main Changes

• Fix routing requests without method
• deps: body-parser@1.20.2
  • Fix strict json error message on Node.js 19+
  • deps: content-type@~1.0.5
  • deps: raw-body@2.5.2

Other Changes

• Use https: protocol instead of deprecated git: protocol by @​vcsjones in expressjs/express#5032
• build: Node.js@16.18 and Node.js@18.12 by @​abenhamdine in expressjs/express#5034
• ci: update actions/checkout to v3 by @​armujahid in expressjs/express#5027
• test: remove unused function arguments in params by @​raksbisht in expressjs/express#5124
• Remove unused originalIndex from acceptParams by @​raksbisht in expressjs/express#5119
• Fixed typos by @​raksbisht in expressjs/express#5117
• examples: remove unused params by @​raksbisht in expressjs/express#5113
• fix: parameter str is not described in JSDoc by @​raksbisht in expressjs/express#5130
• fix: typos in History.md by @​raksbisht in expressjs/express#5131
• build : add Node.js@19.7 by @​abenhamdine in expressjs/express#5028
• test: remove unused function arguments in params by @​raksbisht in expressjs/express#5137
• use random port in test so it won't fail on already listening by @​rluvaton in expressjs/express#5162
• tests: use cb() instead of done() by @​kristof-low in expressjs/express#5233
• examples: remove multipart example by @​riddlew in expressjs/express#5195
• Update support Node.js@18 in the CI by @​UlisesGascon in expressjs/express#5490
• Fix favicon-related bug in cookie-sessions example by @​DmytroKondrashov in expressjs/express#5414
• Release 4.18.3 by @​UlisesGascon in expressjs/express#5505

New Contributors

• @​vcsjones made their first contribution in expressjs/express#5032
• @​abenhamdine made their first contribution in expressjs/express#5034
• @​armujahid made their first contribution in expressjs/express#5027
• @​raksbisht made their first contribution in expressjs/express#5124
• @​rluvaton made their first contribution in expressjs/express#5162
• @​kristof-low made their first contribution in expressjs/express#5233
• @​riddlew made their first contribution in expressjs/express#5195

... (truncated)

Changelog

Sourced from express's changelog.

4.18.3 / 2024-03-20

• Prevent open redirect allow list bypass due to encodeurl
• deps: cookie@0.6.0

4.18.3 / 2024-02-29

• Fix routing requests without method
• deps: body-parser@1.20.2
  • Fix strict json error message on Node.js 19+
  • deps: content-type@~1.0.5
  • deps: raw-body@2.5.2
• deps: cookie@0.6.0
  • Add partitioned option

Commits

• 084e365 4.19.0
• 0867302 Prevent open redirect allow list bypass due to encodeurl
• 567c9c6 Add note on how to update docs for new release (#5541)
• 69a4cf2 deps: cookie@0.6.0
• 4ee853e docs: loosen TC activity rules
• 414854b docs: nominating @​wesleytodd to be project captian
• 06c6b88 docs: update release date
• 1b51eda 4.18.3
• b625132 build: pin Node 21.x to minor
• e3eca80 build: pin Node 21.x to minor
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by wesleytodd, a new releaser for express since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[relativeci[bot]]

Job #582: Bundle Size — 6.56MiB (+0.82%).

78fa492(current) vs 6504eb9 main#553(baseline)

Bundle metrics   5 changes 1 regression 1 improvement

	Current Job #582	Baseline Job #553
Initial JS	1.7MiB(+3.18%)	1.64MiB
Initial CSS	0B	0B
Cache Invalidation	100%	0%
Chunks	12(+9.09%)	11
Assets	40	40
Modules	262(+2.75%)	255
Duplicate Modules	0	0
Duplicate Code	0%	0%
Packages	26(-3.7%)	27
Duplicate Packages	0	0

Bundle size by type   3 changes 1 regression 2 improvements

|            |       Current
[Job #582](https://app.relative-ci.com/projects/aQOR2wibqHsYkX5B6W4W/jobs/582-w4POCRY5sbDUZH2JXrsF?utm_source=github&utm_medium=pr-report "View job report") |      Baseline
[Job #553](https://app.relative-ci.com/projects/aQOR2wibqHsYkX5B6W4W/jobs/553-kLqDWUlXNm34Qms8J1Md?utm_source=github&utm_medium=pr-report "View baseline job report") | |:--|--:|--:| |   [JS](https://app.relative-ci.com/projects/aQOR2wibqHsYkX5B6W4W/jobs/582-w4POCRY5sbDUZH2JXrsF/assets?ba=%7B%22filters%22%3A%22ft.CSS-0_ft.JS-1_ft.IMG-0_ft.MEDIA-0_ft.FONT-0_ft.HTML-0_ft.OTHER-0%22%7D "View JS assets") | `2.65MiB` (`+2.13%`) | `2.59MiB` | |   [IMG](https://app.relative-ci.com/projects/aQOR2wibqHsYkX5B6W4W/jobs/582-w4POCRY5sbDUZH2JXrsF/assets?ba=%7B%22filters%22%3A%22ft.CSS-0_ft.JS-0_ft.IMG-1_ft.MEDIA-0_ft.FONT-0_ft.HTML-0_ft.OTHER-0%22%7D "View IMG assets") | `2.01MiB` (`-0.09%`) | `2.01MiB` | |   [Fonts](https://app.relative-ci.com/projects/aQOR2wibqHsYkX5B6W4W/jobs/582-w4POCRY5sbDUZH2JXrsF/assets?ba=%7B%22filters%22%3A%22ft.CSS-0_ft.JS-0_ft.IMG-0_ft.MEDIA-0_ft.FONT-1_ft.HTML-0_ft.OTHER-0%22%7D "View Fonts assets") | `1.75MiB` | `1.75MiB` | |   [CSS](https://app.relative-ci.com/projects/aQOR2wibqHsYkX5B6W4W/jobs/582-w4POCRY5sbDUZH2JXrsF/assets?ba=%7B%22filters%22%3A%22ft.CSS-1_ft.JS-0_ft.IMG-0_ft.MEDIA-0_ft.FONT-0_ft.HTML-0_ft.OTHER-0%22%7D "View CSS assets") | `160.01KiB` (`-0.08%`) | `160.14KiB` |

---

View job #582 report View dependabot/npm_and_yarn/api/beta... branch activity View project dashboard

[dependabot[bot]]

Superseded by #402.