External/card-drop

Update dependency express to v4.19.1 #189

Merged

Vylpes merged 1 commit from renovate/express-4.x-lockfile into develop

2024-03-25 18:42:22 +00:00

RenovateBot commented

2024-03-25 00:03:00 +00:00

Member

This PR contains the following updates:

Package	Type	Update	Change
express (source)	dependencies	minor	`4.18.3` -> `4.19.1`

Release Notes

expressjs/express (express)

`v4.19.1`

==========

Allow passing non-strings to res.location with new encoding handling checks

`v4.19.0`

==========

Prevent open redirect allow list bypass due to encodeurl
deps: cookie@0.6.0

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

If you want to rebase/retry this PR, check this box

This PR has been generated by Renovate Bot.

This PR contains the following updates: | Package | Type | Update | Change | |---|---|---|---| | [express](http://expressjs.com/) ([source](https://github.com/expressjs/express)) | dependencies | minor | [`4.18.3` -> `4.19.1`](https://renovatebot.com/diffs/npm/express/4.18.3/4.19.1) | --- ### Release Notes <details> <summary>expressjs/express (express)</summary> ### [`v4.19.1`](https://github.com/expressjs/express/blob/HEAD/History.md#4191--2024-03-20) [Compare Source](https://github.com/expressjs/express/compare/4.19.0...4.19.1) \========== - Allow passing non-strings to res.location with new encoding handling checks ### [`v4.19.0`](https://github.com/expressjs/express/blob/HEAD/History.md#4190--2024-03-20) [Compare Source](https://github.com/expressjs/express/compare/4.18.3...4.19.0) \========== - Prevent open redirect allow list bypass due to encodeurl - deps: cookie@0.6.0 </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate).

RenovateBot added the

label 2024-03-25 00:03:00 +00:00

RenovateBot added 1 commit 2024-03-25 00:03:00 +00:00

Update dependency express to v4.19.1

ci/woodpecker/push/woodpecker Pipeline was successful

Details

ci/woodpecker/pr/woodpecker Pipeline was successful

Details

ci/woodpecker/pull_request_closed/woodpecker Pipeline was successful

Details

Vylpes merged commit 94f285541b into develop

2024-03-25 18:42:22 +00:00

Vylpes referenced this pull request from a commit

2024-03-25 18:42:22 +00:00

Update dependency express to v4.19.1 (#189)

Vylpes deleted branch renovate/express-4.x-lockfile

2024-03-25 18:42:22 +00:00

Sign in to join this conversation.

No reviewers

No labels

requires documentation

No milestone

No project

No assignees

1 participant

Notifications

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: External/card-drop#189

No description provided.