New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Snyk] Upgrade express-session from 1.17.3 to 1.18.0 #100

Merged

jgresty merged 1 commit into main from snyk-upgrade-ce41180de951acaada0dbf6608ef8712

Feb 23, 2024

Contributor

love-bhardwaj commented Feb 23, 2024

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade express-session from 1.17.3 to 1.18.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 1 version ahead of your current version.
The recommended version was released a month ago, on 2024-01-28.

Release notes

Package name: express-session

1.18.0 - 2024-01-28
- Add debug log for pathname mismatch
- Add partitioned to cookie options
- Add priority to cookie options
- Fix handling errors from setting cookie
- Support any type in secret that crypto.createHmac supports
- deps: cookie@0.6.0
  - Fix expires option to reject invalid dates
  - perf: improve default decode speed
  - perf: remove slow string split in parse
- deps: cookie-signature@1.0.7
1.17.3 - 2022-05-11
- Fix resaving already-saved new session at end of request
- deps: cookie@0.4.2

from express-session GitHub release notes

Commit messages

Package name: express-session

24d4972 1.18.0
855f21a docs: add connect-ottoman to the list of session stores
991b7ee Add debug log for pathname mismatch
408229e Add "partitioned" to cookie options
50e1429 build: Node.js@20.11
6153b3f build: Node.js@21.6
88e0f2e build: actions/checkout@v4
d9354ef Fix handling errors from setting cookie
f9f2318 docs: remove session-rethinkdb to the list of session stores
3ee08c4 Add "priority" to cookie options
71c3f74 docs: add connect-cosmosdb to the list of session stores
9d377c5 docs: add dynamodb-store-v3 to the list of session stores
a1f884f docs: add @ cyclic.sh/session-store to the list of session stores
e5f19ce docs: add note on length of secret
2a7a50b eslint@8.56.0
a46e857 supertest@6.3.4
7dec651 build: Node.js@18.19
8e9f7a4 build: Node.js@20.10
6b7c9a0 build: Node.js@21.5
825e6c0 build: fix code coverage aggregate upload
c1611ad build: actions/checkout@v3
4bfc5ba build: use $GITHUB_OUTPUT for environment list
fc24b26 build: Node.js@18.18
e942982 build: Node.js@20.9

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

love-bhardwaj requested a review from a team as a code owner

February 23, 2024 11:01


          fix: upgrade express-session from 1.17.3 to 1.18.0

5295c8c

Snyk has created this PR to upgrade express-session from 1.17.3 to 1.18.0.

See this package in npm:
https://www.npmjs.com/package/express-session

See this project in Snyk:
https://app.snyk.io/org/snyk-apprisk-essentials-closed-beta-demo-group/project/4d7720bb-ed26-4679-9c15-8495f982dcd2?utm_source=github&utm_medium=referral&page=upgrade-pr

jgresty force-pushed the snyk-upgrade-ce41180de951acaada0dbf6608ef8712 branch from 41d50b2 to 5295c8c Compare

February 23, 2024 23:03

jgresty approved these changes

View reviewed changes

jgresty merged commit dd49519 into main

2 checks passed

jgresty deleted the snyk-upgrade-ce41180de951acaada0dbf6608ef8712 branch

February 23, 2024 23:05

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet