[Snyk(Unlimited)] Upgrade body-parser from 1.9.0 to 1.19.0

[snyk-bot]

Snyk has created this PR to upgrade body-parser from 1.9.0 to 1.19.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 32 versions ahead of your current version.
• The recommended version was released 7 months ago, on 2019-04-26.

The recommended version fixes:

Severity	Title	Issue ID
	Arbitrary Code Injection	SNYK-JS-MORGAN-72579

Release notes

• Package name: body-parser
  • 1.19.0 - 2019-04-26
    • deps: bytes@3.1.0
      • Add petabyte (pb) support
    • deps: http-errors@1.7.2
      • Set constructor name when possible
      • deps: setprototypeof@1.1.1
      • deps: statuses@'>= 1.5.0 < 2'
    • deps: iconv-lite@0.4.24
      • Added encoding MIK
    • deps: qs@6.7.0
      • Fix parsing array brackets after index
    • deps: raw-body@2.4.0
      • deps: bytes@3.1.0
      • deps: http-errors@1.7.2
      • deps: iconv-lite@0.4.24
    • deps: type-is@~1.6.17
      • deps: mime-types@~2.1.24
      • perf: prevent internal throw on invalid type
  • 1.18.3 - 2018-05-14
    • Fix stack trace for strict json parse error
    • deps: depd@~1.1.2
      • perf: remove argument reassignment
    • deps: http-errors@~1.6.3
      • deps: depd@~1.1.2
      • deps: setprototypeof@1.1.0
      • deps: statuses@'>= 1.3.1 < 2'
    • deps: iconv-lite@0.4.23
      • Fix loading encoding with year appended
      • Fix deprecation warnings on Node.js 10+
    • deps: qs@6.5.2
    • deps: raw-body@2.3.3
      • deps: http-errors@1.6.3
      • deps: iconv-lite@0.4.23
    • deps: type-is@~1.6.16
      • deps: mime-types@~2.1.18
  • 1.18.2 - 2017-09-22
    • deps: debug@2.6.9
    • perf: remove argument reassignment
  • 1.18.1 - 2017-09-12
    • deps: content-type@~1.0.4
      • perf: remove argument reassignment
      • perf: skip parameter parsing when no parameters
    • deps: iconv-lite@0.4.19
      • Fix ISO-8859-1 regression
      • Update Windows-1255
    • deps: qs@6.5.1
      • Fix parsing & compacting very deep objects
    • deps: raw-body@2.3.2
      • deps: iconv-lite@0.4.19
  • 1.18.0 - 2017-09-09
    • Fix JSON strict violation error to match native parse error
    • Include the body property on verify errors
    • Include the type property on all generated errors
    • Use http-errors to set status code on errors
    • deps: bytes@3.0.0
    • deps: debug@2.6.8
    • deps: depd@~1.1.1
      • Remove unnecessary Buffer loading
    • deps: http-errors@~1.6.2
      • deps: depd@1.1.1
    • deps: iconv-lite@0.4.18
      • Add support for React Native
      • Add a warning if not loaded as utf-8
      • Fix CESU-8 decoding in Node.js 8
      • Improve speed of ISO-8859-1 encoding
    • deps: qs@6.5.0
    • deps: raw-body@2.3.1
      • Use http-errors for standard emitted errors
      • deps: bytes@3.0.0
      • deps: iconv-lite@0.4.18
      • perf: skip buffer decoding on overage chunk
    • perf: prevent internal throw when missing charset
  • 1.17.2 - 2017-05-18
    • deps: debug@2.6.7
      • Fix DEBUG_MAX_ARRAY_LENGTH
      • deps: ms@2.0.0
    • deps: type-is@~1.6.15
      • deps: mime-types@~2.1.15
  • 1.17.1 - 2017-03-06
    • deps: qs@6.4.0
      • Fix regression parsing keys starting with [
  • 1.17.0 - 2017-03-01
    • deps: http-errors@~1.6.1
      • Make message property enumerable for HttpErrors
      • deps: setprototypeof@1.0.3
    • deps: qs@6.3.1
      • Fix compacting nested arrays
  • 1.16.1 - 2017-02-11
    • deps: debug@2.6.1
      • Fix deprecation messages in WebStorm and other editors
      • Undeprecate DEBUG_FD set to 1 or 2
  • 1.16.0 - 2017-01-18
    • deps: debug@2.6.0
      • Allow colors in workers
      • Deprecated DEBUG_FD environment variable
      • Fix error when running under React Native
      • Use same color for same namespace
      • deps: ms@0.7.2
    • deps: http-errors@~1.5.1
      • deps: inherits@2.0.3
      • deps: setprototypeof@1.0.2
      • deps: statuses@'>= 1.3.1 < 2'
    • deps: iconv-lite@0.4.15
      • Added encoding MS-31J
      • Added encoding MS-932
      • Added encoding MS-936
      • Added encoding MS-949
      • Added encoding MS-950
      • Fix GBK/GB18030 handling of Euro character
    • deps: qs@6.2.1
      • Fix array parsing from skipping empty values
    • deps: raw-body@~2.2.0
      • deps: iconv-lite@0.4.15
    • deps: type-is@~1.6.14
      • deps: mime-types@~2.1.13
  • 1.15.2 - 2016-06-20
  • 1.15.1 - 2016-05-06
  • 1.15.0 - 2016-02-11
  • 1.14.2 - 2015-12-16
  • 1.14.1 - 2015-09-28
  • 1.14.0 - 2015-09-16
  • 1.13.3 - 2015-07-31
  • 1.13.2 - 2015-07-06
  • 1.13.1 - 2015-06-16
  • 1.13.0 - 2015-06-15
  • 1.12.4 - 2015-05-11
  • 1.12.3 - 2015-04-16
  • 1.12.2 - 2015-03-17
  • 1.12.1 - 2015-03-16
  • 1.12.0 - 2015-02-14
  • 1.11.0 - 2015-01-31
  • 1.10.2 - 2015-01-21
  • 1.10.1 - 2015-01-02
  • 1.10.0 - 2014-12-03
  • 1.9.3 - 2014-11-22
  • 1.9.2 - 2014-10-28
  • 1.9.1 - 2014-10-23
  • 1.9.0 - 2014-09-24
from body-parser GitHub release notes

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs