tabloro
tabloro copied to clipboard
fyyyyy
Bump debug, compression, express, express-session, imager and supertest
Bumps debug to 2.6.9 and updates ancestor dependencies debug, compression, express, express-session, imager and supertest. These dependencies need to be updated together.
Updates debug from 0.7.0 to 2.6.9
Release notes
Sourced from debug's releases.
2.6.9
Patches
- Remove ReDoS regexp in
%oformatter: #504Credits
Huge thanks to
@zhuangyafor their help!release 2.6.7
No release notes provided.
release 2.6.6
No release notes provided.
release 2.6.5
No release notes provided.
release 2.6.4
No release notes provided.
release 2.6.3
No release notes provided.
release 2.6.2
No release notes provided.
release 2.6.1
No release notes provided.
release 2.6.0
No release notes provided.
release 2.5.2
No release notes provided.
release 2.5.1
No release notes provided.
release 2.4.5
No release notes provided.
release 2.4.4
No release notes provided.
release 2.4.3
No release notes provided.
release 2.4.2
No release notes provided.
... (truncated)
Changelog
Sourced from debug's changelog.
2.6.9 / 2017-09-22
- remove ReDoS regexp in %o formatter (#504)
2.6.8 / 2017-05-18
- Fix: Check for undefined on browser globals (#462,
@marbemac)2.6.7 / 2017-05-16
- Fix: Update ms to 2.0.0 to fix regular expression denial of service vulnerability (#458,
@hubdotcom)- Fix: Inline extend function in node implementation (#452,
@dougwilson)- Docs: Fix typo (#455,
@msasad)2.6.5 / 2017-04-27
- Fix: null reference check on window.documentElement.style.WebkitAppearance (#447,
@thebigredgeek)- Misc: clean up browser reference checks (#447,
@thebigredgeek)- Misc: add npm-debug.log to .gitignore (
@thebigredgeek)2.6.4 / 2017-04-20
- Fix: bug that would occure if process.env.DEBUG is a non-string value. (#444,
@LucianBuzzo)- Chore: ignore bower.json in npm installations. (#437,
@joaovieira)- Misc: update "ms" to v0.7.3 (
@tootallnate)2.6.3 / 2017-03-13
- Fix: Electron reference to
process.env.DEBUG(#431,@paulcbetts)- Docs: Changelog fix (
@thebigredgeek)2.6.2 / 2017-03-10
- Fix: DEBUG_MAX_ARRAY_LENGTH (#420,
@slavaGanzin)- Docs: Add backers and sponsors from Open Collective (#422,
@piamancini)- Docs: Add Slackin invite badge (
@tootallnate)2.6.1 / 2017-02-10
... (truncated)
Commits
13abeaeRelease 2.6.9f53962eremove ReDoS regexp in %o formatter (#504)52e1f21Release 2.6.82482e08Check for undefined on browser globals (#462)6bb07f7release 2.6.715850cbFix Regular Expression Denial of Service (ReDoS)4a6c85cupdate "debug" to v1.0.0 (#454)b68dbf8Fix typo (#455)1351d2fInline extend function in node implementation (#452)c211947update version for component- Additional commits viewable in compare view
Maintainer changes
This version was pushed to npm by tootallnate, a new releaser for debug since your current version.
Updates compression from 1.1.0 to 1.7.4
Release notes
Sourced from compression's releases.
1.7.4
- deps: compressible@~2.0.16
- Mark
text/lessas compressible- deps: mime-db@'>= 1.38.0 < 2'
- deps: on-headers@~1.0.2
- Fix
res.writeHeadpatch missing return value- perf: prevent unnecessary buffer copy
1.7.3
- deps: accepts@~1.3.5
- deps: mime-types@~2.1.18
- deps: compressible@~2.0.14
- Mark all XML-derived types as compressible
- deps: mime-db@'>= 1.34.0 < 2'
- deps: [email protected]
1.7.2
- deps: compressible@~2.0.13
- deps: mime-db@'>= 1.33.0 < 2'
1.7.1
- deps: accepts@~1.3.4
- deps: mime-types@~2.1.16
- deps: [email protected]
- deps: compressible@~2.0.11
- deps: mime-db@'>= 1.29.0 < 2'
- deps: [email protected]
- deps: vary@~1.1.2
- perf: improve header token parsing speed
1.7.0
- Use
safe-bufferfor improved Buffer API- deps: [email protected]
- deps: compressible@~2.0.10
- Fix regex fallback to not override
compressible: falsein db- deps: mime-db@'>= 1.27.0 < 2'
- deps: [email protected]
- Allow colors in workers
- Deprecated
DEBUG_FDenvironment variable set to3or higher- Fix error when running under React Native
- Fix
DEBUG_MAX_ARRAY_LENGTH- Use same color for same namespace
- deps: [email protected]
- deps: vary@~1.1.1
- perf: hoist regular expression
1.6.2
- deps: accepts@~1.3.3
- deps: mime-types@~2.1.11
- deps: [email protected]
... (truncated)
Changelog
Sourced from compression's changelog.
1.7.4 / 2019-03-18
- deps: compressible@~2.0.16
- Mark
text/lessas compressible- deps: mime-db@'>= 1.38.0 < 2'
- deps: on-headers@~1.0.2
- Fix
res.writeHeadpatch missing return value- perf: prevent unnecessary buffer copy
1.7.3 / 2018-07-15
- deps: accepts@~1.3.5
- deps: mime-types@~2.1.18
- deps: compressible@~2.0.14
- Mark all XML-derived types as compressible
- deps: mime-db@'>= 1.34.0 < 2'
- deps: [email protected]
1.7.2 / 2018-02-18
- deps: compressible@~2.0.13
- deps: mime-db@'>= 1.33.0 < 2'
1.7.1 / 2017-09-26
- deps: accepts@~1.3.4
- deps: mime-types@~2.1.16
- deps: [email protected]
- deps: compressible@~2.0.11
- deps: mime-db@'>= 1.29.0 < 2'
- deps: [email protected]
- deps: vary@~1.1.2
- perf: improve header token parsing speed
1.7.0 / 2017-07-10
- Use
safe-bufferfor improved Buffer API- deps: [email protected]
- deps: compressible@~2.0.10
- Fix regex fallback to not override
compressible: falsein db- deps: mime-db@'>= 1.27.0 < 2'
- deps: [email protected]
- Allow colors in workers
- Deprecated
DEBUG_FDenvironment variable set to3or higher- Fix error when running under React Native
... (truncated)
Commits
dd5055d1.7.47e91b18perf: prevent unnecessary buffer copyf6873b5build: [email protected]b07e7fdbuild: [email protected]aed82c0build: [email protected]5b7d4c0build: [email protected]ddf2b6ebuild: simplify & speed up logic in Travis CI build steps61a438dbuild: [email protected]7ee13e1deps: on-headers@~1.0.28fb7dcadeps: compressible@~2.0.16- Additional commits viewable in compare view
Updates express from 4.9.0 to 4.18.2
Release notes
Sourced from express's releases.
4.18.2
- Fix regression routing a large stack in a single route
- deps: [email protected]
- deps: [email protected]
- perf: remove unnecessary object clone
- deps: [email protected]
4.18.1
- Fix hanging on large stack of sync routes
4.18.0
- Add "root" option to
res.download- Allow
optionswithoutfilenameinres.download- Deprecate string and non-integer arguments to
res.status- Fix behavior of
null/undefinedasmaxAgeinres.cookie- Fix handling very large stacks of sync middleware
- Ignore
Object.prototypevalues in settings throughapp.set/app.get- Invoke
defaultwith same arguments as types inres.format- Support proper 205 responses using
res.send- Use
http-errorsforres.formaterror- deps: [email protected]
- Fix error message for json parse whitespace in
strict- Fix internal error when inflated body exceeds limit
- Prevent loss of async hooks context
- Prevent hanging when request already read
- deps: [email protected]
- deps: [email protected]
- deps: [email protected]
- deps: [email protected]
- deps: [email protected]
- deps: [email protected]
- Add
priorityoption- Fix
expiresoption to reject invalid dates- deps: [email protected]
- Replace internal
evalusage withFunctionconstructor- Use instance methods on
processto check for listeners- deps: [email protected]
- Remove set content headers that break response
- deps: [email protected]
- deps: [email protected]
- deps: [email protected]
- Prevent loss of async hooks context
- deps: [email protected]
- deps: [email protected]
- Fix emitted 416 error missing headers property
- Limit the headers removed for 304 response
- deps: [email protected]
- deps: [email protected]
- deps: [email protected]
- deps: [email protected]
... (truncated)
Changelog
Sourced from express's changelog.
4.18.2 / 2022-10-08
- Fix regression routing a large stack in a single route
- deps: [email protected]
- deps: [email protected]
- perf: remove unnecessary object clone
- deps: [email protected]
4.18.1 / 2022-04-29
- Fix hanging on large stack of sync routes
4.18.0 / 2022-04-25
- Add "root" option to
res.download- Allow
optionswithoutfilenameinres.download- Deprecate string and non-integer arguments to
res.status- Fix behavior of
null/undefinedasmaxAgeinres.cookie- Fix handling very large stacks of sync middleware
- Ignore
Object.prototypevalues in settings throughapp.set/app.get- Invoke
defaultwith same arguments as types inres.format- Support proper 205 responses using
res.send- Use
http-errorsforres.formaterror- deps: [email protected]
- Fix error message for json parse whitespace in
strict- Fix internal error when inflated body exceeds limit
- Prevent loss of async hooks context
- Prevent hanging when request already read
- deps: [email protected]
- deps: [email protected]
- deps: [email protected]
- deps: [email protected]
- deps: [email protected]
- deps: [email protected]
- Add
priorityoption- Fix
expiresoption to reject invalid dates- deps: [email protected]
- Replace internal
evalusage withFunctionconstructor- Use instance methods on
processto check for listeners- deps: [email protected]
- Remove set content headers that break response
- deps: [email protected]
- deps: [email protected]
- deps: [email protected]
- Prevent loss of async hooks context
- deps: [email protected]
- deps: [email protected]
... (truncated)
Commits
8368dc14.18.261f4049docs: replace Freenode with Libera Chatbb7907bbuild: [email protected]f56ce73build: [email protected]24b3dc5deps: [email protected]689d175deps: [email protected]340be0fbuild: [email protected]33e8dc3docs: use Node.js name style644f646build: [email protected]ecd7572build: [email protected]- Additional commits viewable in compare view
Updates express-session from 1.8.2 to 1.17.3
Release notes
Sourced from express-session's releases.
1.17.3
- Fix resaving already-saved new session at end of request
- deps: [email protected]
1.17.2
- Fix
res.endpatch to always commit headers- deps: [email protected]
- deps: [email protected]
1.17.1
- Fix internal method wrapping error on failed reloads
1.17.0
- deps: [email protected]
- Add
SameSite=Nonesupport- deps: [email protected]
1.16.2
- Fix restoring
cookie.originalMaxAgewhen store returnsDate- deps: parseurl@~1.3.3
1.16.1
- Fix error passing
dataoption toCookieconstructor- Fix uncaught error from bad session data
1.16.0
- Catch invalid
cookie.maxAgevalue earlier- Deprecate setting
cookie.maxAgeto aDateobject- Fix issue where
resave: falsemay not save altered sessions- Remove
utils-mergedependency- Use
safe-bufferfor improved Buffer API- Use
Set-Cookieas cookie header name for compatibility- deps: depd@~2.0.0
- Replace internal
evalusage withFunctionconstructor- Use instance methods on
processto check for listeners- perf: remove argument reassignment
- deps: on-headers@~1.0.2
- Fix
res.writeHeadpatch missing return value1.15.6
- deps: [email protected]
- deps: parseurl@~1.3.2
- perf: reduce overhead for full URLs
- perf: unroll the "fast-path"
RegExp- deps: uid-safe@~2.1.5
- perf: remove only trailing
=- deps: [email protected]
1.15.5
- Fix
TypeErrorwhenreq.urlis an empty string
... (truncated)
Changelog
Sourced from express-session's changelog.
1.17.3 / 2022-05-11
- Fix resaving already-saved new session at end of request
- deps: [email protected]
1.17.2 / 2021-05-19
- Fix
res.endpatch to always commit headers- deps: [email protected]
- deps: [email protected]
1.17.1 / 2020-04-16
- Fix internal method wrapping error on failed reloads
1.17.0 / 2019-10-10
- deps: [email protected]
- Add
SameSite=Nonesupport- deps: [email protected]
1.16.2 / 2019-06-12
- Fix restoring
cookie.originalMaxAgewhen store returnsDate- deps: parseurl@~1.3.3
1.16.1 / 2019-04-11
- Fix error passing
dataoption toCookieconstructor- Fix uncaught error from bad session data
1.16.0 / 2019-04-10
- Catch invalid
cookie.maxAgevalue earlier- Deprecate setting
cookie.maxAgeto aDateobject- Fix issue where
resave: falsemay not save altered sessions- Remove
utils-mergedependency- Use
safe-bufferfor improved Buffer API- Use
Set-Cookieas cookie header name for compatibility- deps: depd@~2.0.0
- Replace internal
evalusage withFunctionconstructor- Use instance methods on
processto check for listeners- perf: remove argument reassignment
... (truncated)
Commits
1010fad1.17.399d6cdeFix resaving already-saved new session at end of requesta06b0bebuild: remove unnecessary entry from package filesa1aebf2build: [email protected]08f5dcabuild: [email protected]86ed9f3build: [email protected]18a1011build: support Node.js 18.x78d1acdbuild: [email protected]0704929docs: add user login example5df613cdocs: document default cookie.sameSite- Additional commits viewable in compare view
Updates imager from 0.2.7 to 1.0.0-alpha1
Release notes
Sourced from imager's releases.
1.0.0-alpha1
This release implements imager using es6 generators and graphicsmagick-stream.
You need to be running node >= 0.11.12 to use this release.
The api has changed for both the
.uploadand.removemethods. Please read the readme on how to use it.It has only been tested with s3 and not with rackspace. Checkout the generators branch for more...
Changelog
Sourced from imager's changelog.
0.4.0 / 2014-09-19
- Drop support for node 0.8.x
0.3.0 / 2014-09-19
- Update dependencies
- async@^0.9.0
- gm@^1.16.0
- knox@^0.9.1
- lodash@^2.4.1
- mime@^1.2.11
- pkgcloud@^0.9.6
Commits
58d9a8cupdate readme todos24087baadd .remove() docs, api and tests415c935update readmef5c5a88add tests for uploading without presets97e19ecupdate readmeb6447d0update readmeb4c2efeallow uploading original image if presets are not provided2d63fecupdate readme about preset options86516e8update readmefff25f3add option to upload original file without processing- Additional commits viewable in compare view
Updates supertest from 0.13.0 to 6.3.3
Release notes
Sourced from supertest's releases.
v6.3.3
- chore: bump deps 2910f73
https://github.com/visionmedia/supertest/compare/v6.3.2...v6.3.3
v6.3.2
- docs: added maintainer note e24875d
- docs: fixed links 5b59ddc
https://github.com/visionmedia/supertest/compare/v6.3.1...v6.3.2
v6.3.1
- fix: bump superagent (closes #798) 25122e6
https://github.com/visionmedia/supertest/compare/v6.3.0...v6.3.1
v6.3.0
- fix: lint package.json, added files array 20adbc1
- Merge pull request #793 from lamweili/feat/http2 22b89b6
- Merge pull request #795 from lamweili/code-coverage a225e95
- Merge pull request #794 from lamweili/migrate-cov fa129dc
- test(#767): 100% code coverage 9c5bd92
- ci: migrated code coverage from coveralls to codecov 46e6feb
- feat: supports http2 da57804
- Merge pull request #767 from alexandre-abrioux/expect-stacktrace e064b5a
- Merge pull request #774 from jmccure/update-promise-example-readme ba4b43b
- Merge pull request #792 from lamweili/refactor/test b8c2e29
- ci: added ci da1e842
- refactor(test): do not hardcode any ports, use ephemeral ports 8847310
- refactor(test): do not have both
sandserver, renamed toserverfor consistency c1c4402- test: 100% test coverage 8bf4c14
- refactor(TestAgent): removed the host param when creating
Testobject 1c8930d- feat(TestAgent): decoupled TestAgent and superagent's Agent to support more than
ca,key,cert5e23869- fix(TestAgent): attach cookies to agent after plugin is used 6d9b9cb
- Update promise example to work with Mocha 5862fe6
- fix: add stacktrace to failed expect function call 3dba4e9
- test: add failing test b24da85
https://github.com/visionmedia/supertest/compare/v6.2.4...v6.3.0
v6.2.4
- chore: bump deps f411b02
- chore: bump deps 5e54761
https://github.com/visionmedia/supertest/compare/v6.2.3...v6.2.4
v6.2.3
- chore: bump deps 6329e2d
- Merge pull request #759 from francescobarbera/master e6d371c
- docs: add an example for complex object in multipart upload 729e818
... (truncated)
Commits
ffb96df6.3.32910f73chore: bump depsfb4f3276.3.2e24875ddocs: added maintainer note5b59ddcdocs: fixed linksca353dd6.3.125122e6fix: bump superagent (closes #798)6a950436.3.020adbc1fix: lint package.json, added files array22b89b6Merge pull request #793 from lamweili/feat/http2- Additional commits viewable in compare view
Maintainer changes
This version was pushed to npm by titanism, a new releaser for supertest since your current version.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)@dependabot use these labelswill set the current labels as the default for future PRs for this repo and language@dependabot use these reviewerswill set the current reviewers as the default for future PRs for this repo and language@dependabot use these assigneeswill set the current assignees as the default for future PRs for this repo and language@dependabot use this milestonewill set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the Security Alerts page.
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "Published by a pub.dev verified publisher"){kind=small}