[Snyk] Upgrade body-parser from 1.19.0 to 1.19.1

[snyk-bot]

Snyk has created this PR to upgrade body-parser from 1.19.0 to 1.19.1.

:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 1 version ahead of your current version.
• The recommended version was released 21 days ago, on 2021-12-10.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Prototype Pollution SNYK-JS-JSONSCHEMA-1920922	430/1000 Why? CVSS 8.6	No Known Exploit
	Prototype Pollution SNYK-JS-SETVALUE-1540541	430/1000 Why? CVSS 8.6	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: body-parser

• 1.19.1 - 2021-12-10
  
  • deps: bytes@3.1.1
  • deps: http-errors@1.8.1
    • deps: inherits@2.0.4
    • deps: toidentifier@1.0.1
    • deps: setprototypeof@1.2.0
  • deps: qs@6.9.6
  • deps: raw-body@2.4.2
    • deps: bytes@3.1.1
    • deps: http-errors@1.8.1
  • deps: safe-buffer@5.2.1
  • deps: type-is@~1.6.18
• 1.19.0 - 2019-04-26
  
  • deps: bytes@3.1.0
    • Add petabyte (pb) support
  • deps: http-errors@1.7.2
    • Set constructor name when possible
    • deps: setprototypeof@1.1.1
    • deps: statuses@'>= 1.5.0 < 2'
  • deps: iconv-lite@0.4.24
    • Added encoding MIK
  • deps: qs@6.7.0
    • Fix parsing array brackets after index
  • deps: raw-body@2.4.0
    • deps: bytes@3.1.0
    • deps: http-errors@1.7.2
    • deps: iconv-lite@0.4.24
  • deps: type-is@~1.6.17
    • deps: mime-types@~2.1.24
    • perf: prevent internal throw on invalid type

from body-parser GitHub release notes

Commit messages

Package name: body-parser

• d0a214b 1.19.1
• fb172d4 build: eslint-plugin-promise@5.2.0
• c5e63cb build: Node.js@17.2
• c6d43bd build: eslint-plugin-import@2.25.3
• 313ed6d build: eslint-plugin-promise@5.1.1
• 8389b51 deps: bytes@3.1.1
• aae94b2 deps: http-errors@1.8.1
• 7f84d4f deps: raw-body@2.4.2
• abbdfc4 build: fix run names in Github Actions
• c6d0648 docs: fix build badge link
• 8c728e8 deps: qs@6.9.6
• 9dd5f4a build: support Node.js 17.x
• e4381cf build: eslint-plugin-standard@4.1.0
• a33200f build: eslint-plugin-promise@4.3.1
• 44f6bc1 build: eslint-plugin-markdown@2.2.1
• 268d4a2 build: mocha@9.1.3
• 13f195f build: supertest@6.1.6
• 88ad521 build: eslint@7.32.0
• d229294 deps: safe-buffer@5.2.1
• 26b1638 build: eslint-plugin-node@11.1.0
• ba7861e build: nyc@15.1.0
• cd44381 build: support Node.js 16.x
• 49980c5 build: eslint-plugin-import@2.25.2
• 901dd77 build: mocha@8.4.0

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs