From dcbbfbba70b291580ee9b25f1a1d23591df8414e Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Wed, 27 Mar 2024 10:08:42 +0000 Subject: [PATCH] Update dependency express to v4.19.2 [SECURITY] --- ghost/core/package.json | 2 +- ghost/members-api/package.json | 2 +- ghost/mw-session-from-token/package.json | 2 +- ghost/session-service/package.json | 2 +- yarn.lock | 37 ------------------------ 5 files changed, 4 insertions(+), 41 deletions(-) diff --git a/ghost/core/package.json b/ghost/core/package.json index 52d5354cb9..707e072660 100644 --- a/ghost/core/package.json +++ b/ghost/core/package.json @@ -176,7 +176,7 @@ "cookie-session": "2.1.0", "cors": "2.8.5", "downsize": "0.0.8", - "express": "4.19.1", + "express": "4.19.2", "express-brute": "1.0.1", "express-hbs": "2.5.0", "express-jwt": "8.4.1", diff --git a/ghost/members-api/package.json b/ghost/members-api/package.json index 3324fe8423..306319713a 100644 --- a/ghost/members-api/package.json +++ b/ghost/members-api/package.json @@ -42,7 +42,7 @@ "@types/jsonwebtoken": "9.0.5", "body-parser": "1.20.2", "bson-objectid": "2.0.4", - "express": "4.19.1", + "express": "4.19.2", "got": "11.8.6", "jsonwebtoken": "8.5.1", "lodash": "4.17.21", diff --git a/ghost/mw-session-from-token/package.json b/ghost/mw-session-from-token/package.json index a0b113d813..db6087e2ba 100644 --- a/ghost/mw-session-from-token/package.json +++ b/ghost/mw-session-from-token/package.json @@ -19,7 +19,7 @@ ], "devDependencies": { "c8": "8.0.1", - "express": "4.19.1", + "express": "4.19.2", "mocha": "10.2.0", "should": "13.2.3", "sinon": "15.2.0" diff --git a/ghost/session-service/package.json b/ghost/session-service/package.json index 26f6eb0e3f..01d74144d9 100644 --- a/ghost/session-service/package.json +++ b/ghost/session-service/package.json @@ -19,7 +19,7 @@ ], "devDependencies": { "c8": "8.0.1", - "express": "4.19.1", + "express": "4.19.2", "mocha": "10.2.0", "should": "13.2.3", "sinon": "15.2.0" diff --git a/yarn.lock b/yarn.lock index 8249c92563..246c7c7a62 100644 --- a/yarn.lock +++ b/yarn.lock @@ -16560,43 +16560,6 @@ express-unless@^2.1.3: resolved "https://registry.yarnpkg.com/express-unless/-/express-unless-2.1.3.tgz#f951c6cca52a24da3de32d42cfd4db57bc0f9a2e" integrity sha512-wj4tLMyCVYuIIKHGt0FhCtIViBcwzWejX0EjNxveAa6dG+0XBCQhMbx+PnkLkFCxLC69qoFrxds4pIyL88inaQ== -express@4.19.1: - version "4.19.1" - resolved "https://registry.yarnpkg.com/express/-/express-4.19.1.tgz#4700635795e911600a45596138cf5b0320e78256" - integrity sha512-K4w1/Bp7y8iSiVObmCrtq8Cs79XjJc/RU2YYkZQ7wpUu5ZyZ7MtPHkqoMz4pf+mgXfNvo2qft8D9OnrH2ABk9w== - dependencies: - accepts "~1.3.8" - array-flatten "1.1.1" - body-parser "1.20.2" - content-disposition "0.5.4" - content-type "~1.0.4" - cookie "0.6.0" - cookie-signature "1.0.6" - debug "2.6.9" - depd "2.0.0" - encodeurl "~1.0.2" - escape-html "~1.0.3" - etag "~1.8.1" - finalhandler "1.2.0" - fresh "0.5.2" - http-errors "2.0.0" - merge-descriptors "1.0.1" - methods "~1.1.2" - on-finished "2.4.1" - parseurl "~1.3.3" - path-to-regexp "0.1.7" - proxy-addr "~2.0.7" - qs "6.11.0" - range-parser "~1.2.1" - safe-buffer "5.2.1" - send "0.18.0" - serve-static "1.15.0" - setprototypeof "1.2.0" - statuses "2.0.1" - type-is "~1.6.18" - utils-merge "1.0.1" - vary "~1.1.2" - express@4.19.2, express@^4.10.7, express@^4.17.1, express@^4.17.2, express@^4.17.3, express@^4.18.2: version "4.19.2" resolved "https://registry.yarnpkg.com/express/-/express-4.19.2.tgz#e25437827a3aa7f2a827bc8171bbbb664a356465"