New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Snyk] Upgrade express-session from 1.17.3 to 1.18.0 #13

Merged

CGrabda merged 2 commits into main from snyk-upgrade-a4a64ebe8e87d73831b2266568c5d871

May 16, 2024

Owner

CGrabda commented Apr 16, 2024

Snyk has created this PR to upgrade express-session from 1.17.3 to 1.18.0.

As this is a private repository, Snyk-bot does not have access. Therefore, this PR has been created automatically, but appears to have been created by a real user.

✨ Snyk has automatically assigned this pull request, set who gets assigned.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 1 version ahead of your current version.
The recommended version was released 3 months ago, on 2024-01-28.

Release notes

Package name: express-session

1.18.0 - 2024-01-28
- Add debug log for pathname mismatch
- Add partitioned to cookie options
- Add priority to cookie options
- Fix handling errors from setting cookie
- Support any type in secret that crypto.createHmac supports
- deps: cookie@0.6.0
  - Fix expires option to reject invalid dates
  - perf: improve default decode speed
  - perf: remove slow string split in parse
- deps: cookie-signature@1.0.7
1.17.3 - 2022-05-11
- Fix resaving already-saved new session at end of request
- deps: cookie@0.4.2

from express-session GitHub release notes

Commit messages

Package name: express-session

24d4972 1.18.0
855f21a docs: add connect-ottoman to the list of session stores
991b7ee Add debug log for pathname mismatch
408229e Add "partitioned" to cookie options
50e1429 build: Node.js@20.11
6153b3f build: Node.js@21.6
88e0f2e build: actions/checkout@v4
d9354ef Fix handling errors from setting cookie
f9f2318 docs: remove session-rethinkdb to the list of session stores
3ee08c4 Add "priority" to cookie options
71c3f74 docs: add connect-cosmosdb to the list of session stores
9d377c5 docs: add dynamodb-store-v3 to the list of session stores
a1f884f docs: add @ cyclic.sh/session-store to the list of session stores
e5f19ce docs: add note on length of secret
2a7a50b eslint@8.56.0
a46e857 supertest@6.3.4
7dec651 build: Node.js@18.19
8e9f7a4 build: Node.js@20.10
6b7c9a0 build: Node.js@21.5
825e6c0 build: fix code coverage aggregate upload
c1611ad build: actions/checkout@v3
4bfc5ba build: use $GITHUB_OUTPUT for environment list
fc24b26 build: Node.js@18.18
e942982 build: Node.js@20.9

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

👩‍💻 Set who automatically gets assigned

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs


          fix: upgrade express-session from 1.17.3 to 1.18.0

ba46911

Snyk has created this PR to upgrade express-session from 1.17.3 to 1.18.0.

See this package in npm:
https://www.npmjs.com/package/express-session

See this project in Snyk:
https://app.snyk.io/org/cgrabda/project/242fe2a7-7850-46b1-9bac-ab498f5242d4?utm_source=github&utm_medium=referral&page=upgrade-pr

CGrabda self-assigned this


          Merge branch 'main' into snyk-upgrade-a4a64ebe8e87d73831b2266568c5d871

766e3b1

CGrabda merged commit c3ff397 into main

1 check passed

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet