Bump express and @types/express (!38) · Merge requests · tools / infra / zeroscale

Dependabot requested to merge dependabot-npm_and_yarn-multi-1f1829b415 into master Oct 08, 2024

Bumps express and @types/express. These dependencies needed to be updated together. Updates express from 5.0.0 to 5.0.1

Release notes

Sourced from express's releases.

5.0.1

What's Changed

remove --bail from test script by @jonchurch in expressjs/express#5962

Nominate @bjohansebas to the triage team by @UlisesGascon in expressjs/express#6009

Link and update captains by @blakeembrey in expressjs/express#6013

Update cookie semver lock to address CVE-2024-47764 by @joshbuker in expressjs/express#6017

Release: 5.0.1 by @UlisesGascon in expressjs/express#6032

Full Changelog: https://github.com/expressjs/express/compare/v5.0.0...5.0.1

Changelog

Sourced from express's changelog.

5.0.1 / 2024-10-08

Update cookie semver lock to address CVE-2024-47764

Commits

d14b2de 5.0.1
2027b87 fix(deps): cookie@0.7.0
2cbf227 Link and update captains (#6013)
3e1a1ce Add @bjohansebas to the triage team (#6009)
6340d15 remove --bail from test script (#5962)
See full diff in compare view

Updates @types/express from 4.17.21 to 5.0.0

Commits

See full diff in compare view

Dependabot commands

You can trigger Dependabot actions by commenting on this MR

$dependabot recreate will recreate this MR rewriting all the manual changes and resolving conflicts

Bump express and @types/express

5.0.1

What's Changed

5.0.1 / 2024-10-08

Merge request reports