-
Notifications
You must be signed in to change notification settings - Fork 0
New issue
Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? # to your account
Update express and entities #3
Conversation
Updated: - express from 4.18.2 to 5.0.0 - entities from 4.5.0 to 5.0.0 For issues or feature requests: <support@depshub.com>
@@ -27,12 +27,12 @@ app.get('/generate-proxy-url', (req, res) => { | |||
}); | |||
|
|||
// Ultraviolet handler | |||
app.use('/service/', (req, res) => { | |||
app.use('/service/*', (req, res) => { |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Package express version 5.0.0 has the following breaking changes:
Updated to
path-to-regexp@8.x
, removing sub-expression regex patterns for security reasons (ReDoS mitigation).
@@ -1,6 +1,6 @@ | |||
import express from 'express'; | |||
import { createServer } from 'node:http'; | |||
import { uvPath } from '@titaniumnetwork-dev/ultraviolet'; | |||
import { uvPath } from '@titaniumnetwork-dev/ultraviolet/dist'; |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Package entities version 5.0.0 has the following breaking changes:
⚠️ BREAKING: Thelib
directory was renamed todist
in #1497. Deep imports will have to be updated.
config: '/uv/uv.config.js', | ||
sw: '/uv/uv.sw.js', | ||
}; | ||
handler: '/dist/uv.handler.js', |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Package entities version 5.0.0 has the following breaking changes:
⚠️ BREAKING: Thelib
directory was renamed todist
in #1497. Deep imports will have to be updated.
|
This PR includes 2 dependency updates, including 🔴 1 vulnerability, 🟠 1 major updates.
package.json
4.18.2
🔴 5.0.0
4.5.0
🟠 5.0.0
express
## 5.0.04.18.2
->🔴 5.0.0
- ChangelogExpress v5.0.0
Most relevant details
Major Changes in v5
path-to-regexp8.x
, removing sub-expression regex patterns for security reasons (ReDoS mitigation).body-parser
changes: Several improvements including the ability to customizeurlencoded
body depth and defaultingextended
tofalse
.Security Updates
Migration
Security Guidance
What's Changed
http-errors
,expressjs.com
,morgan
,cors
,body-parser
by jonchurch in Nominate jonchurch as repo captain forhttp-errors
,expressjs.com
,morgan
,cors
,body-parser
expressjs/express#5587res.clearCookie
acceptingoptions.maxAge
andoptions.expires
by jonchurch in [v4] Deprecateres.clearCookie
acceptingoptions.maxAge
andoptions.expires
expressjs/express#5672expires
andmaxAge
inres.clearCookie()
by jonchurch in Ignoreexpires
andmaxAge
inres.clearCookie()
expressjs/express#5792debug
dep from 3.10 to 4.3.6 by carpasse in chore: upgradedebug
dep from 3.10 to 4.3.6 expressjs/express#5829question
anddiscuss
by IamLizu in docs: specify new instructions forquestion
anddiscuss
expressjs/express#5835merge-descriptors
with allowing minors by RobinTail in 5.x: Upgradingmerge-descriptors
with allowing minors expressjs/express#5782merge-descriptors
dependency by RobinTail in 4.x: Upgrademerge-descriptors
dependency expressjs/express#5781fresh^2.0.0
by jonchurch in update tofresh@^2.0.0
expressjs/express#5916back
as a magic string by blakeembrey in Deleteback
as a magic string expressjs/express#5933New Contributors
debug
dep from 3.10 to 4.3.6 expressjs/express#5829merge-descriptors
with allowing minors expressjs/express#5782entities
## 5.0.04.5.0
->🟠 5.0.0
- ChangelogWhat's Changed
eslint-plugin-unicorn
) Improve code style with unicorn fb55/entities#1496Breaking Changes
lib
directory was renamed todist
in #1497. Deep imports will have to be updated.1
(changed by1
since last month).2
(changed by2
since last month).This pull request was created using DepsHub