From 2613d8aa0bf9f5bf36ae3e91b0c646725d65b114 Mon Sep 17 00:00:00 2001 From: Peter Bengtsson Date: Mon, 18 Mar 2024 09:31:49 -0400 Subject: [PATCH] Upgrade express and express-rate-limit (#49722) --- package-lock.json | 39 +++++++++++++++++++++------------------ package.json | 4 ++-- 2 files changed, 23 insertions(+), 20 deletions(-) diff --git a/package-lock.json b/package-lock.json index 6a80ed9eeb02..093439b14b7a 100644 --- a/package-lock.json +++ b/package-lock.json @@ -31,8 +31,8 @@ "dayjs": "^1.11.3", "dotenv": "^16.0.1", "escape-string-regexp": "5.0.0", - "express": "4.18.2", - "express-rate-limit": "7.0.0", + "express": "4.18.3", + "express-rate-limit": "7.2.0", "express-timeout-handler": "^2.2.2", "fastest-levenshtein": "1.0.16", "file-type": "19.0.0", @@ -4569,12 +4569,12 @@ "license": "MIT" }, "node_modules/body-parser": { - "version": "1.20.1", - "resolved": "https://registry.npmjs.org/body-parser/-/body-parser-1.20.1.tgz", - "integrity": "sha512-jWi7abTbYwajOytWCQc37VulmWiRae5RyTpaCyDcS5/lMdtwSz5lOpDE67srw/HYe35f1z3fDQw+3txg7gNtWw==", + "version": "1.20.2", + "resolved": "https://registry.npmjs.org/body-parser/-/body-parser-1.20.2.tgz", + "integrity": "sha512-ml9pReCu3M61kGlqoTm2umSXTlRTuGTx0bfYj+uIUKKYycG5NtSbeetV3faSU6R7ajOPw0g/J1PvK4qNy7s5bA==", "dependencies": { "bytes": "3.1.2", - "content-type": "~1.0.4", + "content-type": "~1.0.5", "debug": "2.6.9", "depd": "2.0.0", "destroy": "1.2.0", @@ -4582,7 +4582,7 @@ "iconv-lite": "0.4.24", "on-finished": "2.4.1", "qs": "6.11.0", - "raw-body": "2.5.1", + "raw-body": "2.5.2", "type-is": "~1.6.18", "unpipe": "1.0.0" }, @@ -6989,13 +6989,13 @@ } }, "node_modules/express": { - "version": "4.18.2", - "resolved": "https://registry.npmjs.org/express/-/express-4.18.2.tgz", - "integrity": "sha512-5/PsL6iGPdfQ/lKM1UuielYgv3BUoJfz1aUwU9vHZ+J7gyvwdQXFEBIEIaxeGf0GIcreATNyBExtalisDbuMqQ==", + "version": "4.18.3", + "resolved": "https://registry.npmjs.org/express/-/express-4.18.3.tgz", + "integrity": "sha512-6VyCijWQ+9O7WuVMTRBTl+cjNNIzD5cY5mQ1WM8r/LEkI2u8EYpOotESNwzNlyCn3g+dmjKYI6BmNneSr/FSRw==", "dependencies": { "accepts": "~1.3.8", "array-flatten": "1.1.1", - "body-parser": "1.20.1", + "body-parser": "1.20.2", "content-disposition": "0.5.4", "content-type": "~1.0.4", "cookie": "0.5.0", @@ -7030,14 +7030,17 @@ } }, "node_modules/express-rate-limit": { - "version": "7.0.0", - "resolved": "https://registry.npmjs.org/express-rate-limit/-/express-rate-limit-7.0.0.tgz", - "integrity": "sha512-zKMQ9meikj7j3ILeVvHIaBejAYljgDBtGuCfbzNS2d0VCW4s68ONdtEhBJnOGW/Ty1wGeNXgC4m/C1bBUIX0LA==", + "version": "7.2.0", + "resolved": "https://registry.npmjs.org/express-rate-limit/-/express-rate-limit-7.2.0.tgz", + "integrity": "sha512-T7nul1t4TNyfZMJ7pKRKkdeVJWa2CqB8NA1P8BwYaoDI5QSBZARv5oMS43J7b7I5P+4asjVXjb7ONuwDKucahg==", "engines": { "node": ">= 16" }, + "funding": { + "url": "https://github.com/sponsors/express-rate-limit" + }, "peerDependencies": { - "express": "^4 || ^5" + "express": "4 || 5 || ^5.0.0-beta.1" } }, "node_modules/express-timeout-handler": { @@ -13051,9 +13054,9 @@ } }, "node_modules/raw-body": { - "version": "2.5.1", - "resolved": "https://registry.npmjs.org/raw-body/-/raw-body-2.5.1.tgz", - "integrity": "sha512-qqJBtEyVgS0ZmPGdCFPWJ3FreoqvG4MVQln/kCgF7Olq95IbOp0/BWyMwbdtn4VTvkM8Y7khCQ2Xgk/tcrCXig==", + "version": "2.5.2", + "resolved": "https://registry.npmjs.org/raw-body/-/raw-body-2.5.2.tgz", + "integrity": "sha512-8zGqypfENjCIqGhgXToC8aB2r7YrBX+AQAfIPs/Mlk+BtPTztOvTS01NRW/3Eh60J+a48lt8qsCzirQ6loCVfA==", "dependencies": { "bytes": "3.1.2", "http-errors": "2.0.0", diff --git a/package.json b/package.json index 4f39074387fa..c9266fa78a6b 100644 --- a/package.json +++ b/package.json @@ -253,8 +253,8 @@ "dayjs": "^1.11.3", "dotenv": "^16.0.1", "escape-string-regexp": "5.0.0", - "express": "4.18.2", - "express-rate-limit": "7.0.0", + "express": "4.18.3", + "express-rate-limit": "7.2.0", "express-timeout-handler": "^2.2.2", "fastest-levenshtein": "1.0.16", "file-type": "19.0.0",