Douglas Wilson

Rand, do you know who has access to the cloudflare account? I think it has all been transferred to node.js foundation last I remember.

Hi @leonardo-czanoch I'm sorry you are having trouble. I'm not very familiar with jekyll, and certainly not running it on Windows. I am hoping someone will come by to help...

> Note: This will fail in node.js 0.8 and 0.10 as the capability to specify a custom decodeURIComponent implementation to use wasn't added until 0.12. We can hold the PR...

The reason it has been sitting is just because it cannot be merged into the 1.x line due to the incompatibility. Because this module is a part of express, it...

And I would be happy to use `qs` for everything here as well. The downside to using `querystring` for the simple parser is that since it ships as part of...

@ljharb this is likely not even correct for params to `qs` (I passed `depth: -1` since `0` is not the right behavior, but idk), but it's at least _something_ that...

Ah, yes, so depth: 0 was supposed to make sense after all :D . Yes, that is a hard decision. But if it helps at all, this module and Express...

We are working on this as a security issue that was reported.

In general unless there is a consensus that JSON.parse is fundamentally unsafe and should not be used, there isn't actually a security issue at hand in this module. The security...

One method to protect your app if you have vulnerable code (and are not willing to fix it), would be to add the following middleware after body parser: ```js app.use((req,...