TEKK/khoa
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
1,299 Commits 1 Branch 0 Tags
e3ba5578fe352ba2d5cadc95242f09661d33a195
Commit Graph

100 Commits

Author SHA1 Message Date
Khoajs Sync Bot
f1f0137022 chore: apply Khoajs naming transformations (upstream sync)
Some checks failed
Node.js CI / build (18.x) (push) Has been cancelled
Details
Node.js CI / build (20.x) (push) Has been cancelled
Details
Node.js CI / build (22.x) (push) Has been cancelled
Details
2026-04-17 21:06:52 +00:00
Khoajs Sync Bot
efdda86d48 chore: apply Khoajs naming transformations (upstream sync)
Some checks failed
Node.js CI / build (18.x) (push) Has been cancelled
Details
Node.js CI / build (20.x) (push) Has been cancelled
Details
Node.js CI / build (22.x) (push) Has been cancelled
Details
2026-04-17 21:05:32 +00:00
Khoajs Sync Bot
2f16d196c0 chore: apply Khoajs naming transformations (upstream sync)
Some checks failed
Node.js CI / build (18.x) (push) Has been cancelled
Details
Node.js CI / build (20.x) (push) Has been cancelled
Details
Node.js CI / build (22.x) (push) Has been cancelled
Details
2026-04-17 20:57:37 +00:00
Khoajs Sync Bot
1f4bbea3d9 chore: apply Khoajs naming transformations (upstream sync)
Some checks failed
Node.js CI / build (18.x) (push) Has been cancelled
Details
Node.js CI / build (20.x) (push) Has been cancelled
Details
Node.js CI / build (22.x) (push) Has been cancelled
Details
2026-04-17 19:46:56 +00:00
MK
e0ba8ef39d 3.2.0
Some checks failed
Node.js CI / build (18.x) (push) Has been cancelled
Details
Node.js CI / build (20.x) (push) Has been cancelled
Details
Node.js CI / build (22.x) (push) Has been cancelled
Details
2026-03-28 13:39:25 +08:00
dependabot[bot]
3b0508e8d0 build(deps-dev): bump qs from 6.14.1 to 6.14.2 (#1927) 
Bumps [qs](https://github.com/ljharb/qs) from 6.14.1 to 6.14.2.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/ljharb/qs/blob/main/CHANGELOG.md">qs's
changelog</a>.</em></p>
<blockquote>
<h2><strong>6.14.2</strong></h2>
<ul>
<li>[Fix] <code>parse</code>: mark overflow objects for indexed notation
exceeding <code>arrayLimit</code> (<a
href="https://redirect.github.com/ljharb/qs/issues/546">#546</a>)</li>
<li>[Fix] <code>arrayLimit</code> means max count, not max index, in
<code>combine</code>/<code>merge</code>/<code>parseArrayValue</code></li>
<li>[Fix] <code>parse</code>: throw on <code>arrayLimit</code> exceeded
with indexed notation when <code>throwOnLimitExceeded</code> is true (<a
href="https://redirect.github.com/ljharb/qs/issues/529">#529</a>)</li>
<li>[Fix] <code>parse</code>: enforce <code>arrayLimit</code> on
<code>comma</code>-parsed values</li>
<li>[Fix] <code>parse</code>: fix error message to reflect arrayLimit as
max index; remove extraneous comments (<a
href="https://redirect.github.com/ljharb/qs/issues/545">#545</a>)</li>
<li>[Robustness] avoid <code>.push</code>, use <code>void</code></li>
<li>[readme] document that <code>addQueryPrefix</code> does not add
<code>?</code> to empty output (<a
href="https://redirect.github.com/ljharb/qs/issues/418">#418</a>)</li>
<li>[readme] clarify <code>parseArrays</code> and
<code>arrayLimit</code> documentation (<a
href="https://redirect.github.com/ljharb/qs/issues/543">#543</a>)</li>
<li>[readme] replace runkit CI badge with shields.io check-runs
badge</li>
<li>[meta] fix changelog typo (<code>arrayLength</code> →
<code>arrayLimit</code>)</li>
<li>[actions] fix rebase workflow permissions</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="bdcf0c7f82"><code>bdcf0c7</code></a>
v6.14.2</li>
<li><a
href="294db90c81"><code>294db90</code></a>
[readme] document that <code>addQueryPrefix</code> does not add
<code>?</code> to empty output</li>
<li><a
href="5c308e5516"><code>5c308e5</code></a>
[readme] clarify <code>parseArrays</code> and <code>arrayLimit</code>
documentation</li>
<li><a
href="6addf8cf73"><code>6addf8c</code></a>
[Fix] <code>parse</code>: mark overflow objects for indexed notation
exceeding <code>arrayLimit</code></li>
<li><a
href="cfc108f662"><code>cfc108f</code></a>
[Fix] <code>arrayLimit</code> means max count, not max index, in
<code>combine</code>/<code>merge</code>/`pars...</li>
<li><a
href="febb64442a"><code>febb644</code></a>
[Fix] <code>parse</code>: throw on <code>arrayLimit</code> exceeded with
indexed notation when `thr...</li>
<li><a
href="f6a7abff1f"><code>f6a7abf</code></a>
[Fix] <code>parse</code>: enforce <code>arrayLimit</code> on
<code>comma</code>-parsed values</li>
<li><a
href="fbc5206c25"><code>fbc5206</code></a>
[Fix] <code>parse</code>: fix error message to reflect arrayLimit as max
index; remove e...</li>
<li><a
href="1b9a8b4e78"><code>1b9a8b4</code></a>
[actions] fix rebase workflow permissions</li>
<li><a
href="2a35775614"><code>2a35775</code></a>
[meta] fix changelog typo (<code>arrayLength</code> →
<code>arrayLimit</code>)</li>
<li>Additional commits viewable in <a
href="https://github.com/ljharb/qs/compare/v6.14.1...v6.14.2">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=qs&package-manager=npm_and_yarn&previous-version=6.14.1&new-version=6.14.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts page](https://github.com/koajs/koa/network/alerts).

</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-02-25 21:40:47 +08:00
MK
c5a52e056d 3.1.2 2026-02-25 21:30:15 +08:00
dependabot[bot]
fecd464ae7 build(deps-dev): bump js-yaml from 4.1.0 to 4.1.1 (#1922) 
Bumps [js-yaml](https://github.com/nodeca/js-yaml) from 4.1.0 to 4.1.1.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md">js-yaml's
changelog</a>.</em></p>
<blockquote>
<h2>[4.1.1] - 2025-11-12</h2>
<h3>Security</h3>
<ul>
<li>Fix prototype pollution issue in yaml merge (&lt;&lt;)
operator.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="cc482e7759"><code>cc482e7</code></a>
4.1.1 released</li>
<li><a
href="50968b862e"><code>50968b8</code></a>
dist rebuild</li>
<li><a
href="d092d86603"><code>d092d86</code></a>
lint fix</li>
<li><a
href="383665ff42"><code>383665f</code></a>
fix prototype pollution in merge (&lt;&lt;)</li>
<li><a
href="0d3ca7a27b"><code>0d3ca7a</code></a>
README.md: HTTP =&gt; HTTPS (<a
href="https://redirect.github.com/nodeca/js-yaml/issues/678">#678</a>)</li>
<li><a
href="49baadd52a"><code>49baadd</code></a>
doc: 'empty' style option for !!null</li>
<li><a
href="ba3460eb9d"><code>ba3460e</code></a>
Fix demo link (<a
href="https://redirect.github.com/nodeca/js-yaml/issues/618">#618</a>)</li>
<li>See full diff in <a
href="https://github.com/nodeca/js-yaml/compare/4.1.0...4.1.1">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=js-yaml&package-manager=npm_and_yarn&previous-version=4.1.0&new-version=4.1.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts page](https://github.com/koajs/koa/network/alerts).

</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-01-04 00:14:56 +01:00
dependabot[bot]
d2066cf2a5 build(deps): bump content-disposition from 0.5.4 to 1.0.1 (#1917) 
Bumps
[content-disposition](https://github.com/jshttp/content-disposition)
from 0.5.4 to 1.0.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/jshttp/content-disposition/releases">content-disposition's
releases</a>.</em></p>
<blockquote>
<h2>1.0.1</h2>
<h2>What's Changed</h2>
<ul>
<li>Remove dependency <code>safe-buffer</code> by <a
href="https://github.com/Phillip9587"><code>@​Phillip9587</code></a> in
<a
href="https://redirect.github.com/jshttp/content-disposition/pull/53">jshttp/content-disposition#53</a></li>
<li>fix: update package.json engines field to reflect minimum supported
node version by <a
href="https://github.com/Phillip9587"><code>@​Phillip9587</code></a> in
<a
href="https://redirect.github.com/jshttp/content-disposition/pull/56">jshttp/content-disposition#56</a></li>
<li>tests: Spelling by <a
href="https://github.com/jsoref"><code>@​jsoref</code></a> in <a
href="https://redirect.github.com/jshttp/content-disposition/pull/59">jshttp/content-disposition#59</a></li>
<li>chore: upgrade scorecard workflow pinned action versions by <a
href="https://github.com/carpasse"><code>@​carpasse</code></a> in <a
href="https://redirect.github.com/jshttp/content-disposition/pull/65">jshttp/content-disposition#65</a></li>
<li>Fix badges by <a
href="https://github.com/Phillip9587"><code>@​Phillip9587</code></a> in
<a
href="https://redirect.github.com/jshttp/content-disposition/pull/55">jshttp/content-disposition#55</a></li>
<li>ci: updated github actions ci workflow by <a
href="https://github.com/Phillip9587"><code>@​Phillip9587</code></a> in
<a
href="https://redirect.github.com/jshttp/content-disposition/pull/69">jshttp/content-disposition#69</a></li>
<li>Replace var with const in example code by <a
href="https://github.com/Binilkks"><code>@​Binilkks</code></a> in <a
href="https://redirect.github.com/jshttp/content-disposition/pull/67">jshttp/content-disposition#67</a></li>
<li>replace <code>mocha</code> and <code>nyc</code> with native node
test runner and <code>c8</code> by <a
href="https://github.com/Phillip9587"><code>@​Phillip9587</code></a> in
<a
href="https://redirect.github.com/jshttp/content-disposition/pull/54">jshttp/content-disposition#54</a></li>
<li>ci: add dependabot by <a
href="https://github.com/Phillip9587"><code>@​Phillip9587</code></a> in
<a
href="https://redirect.github.com/jshttp/content-disposition/pull/73">jshttp/content-disposition#73</a></li>
<li>ci: add CodeQl (SAST) by <a
href="https://github.com/Phillip9587"><code>@​Phillip9587</code></a> in
<a
href="https://redirect.github.com/jshttp/content-disposition/pull/71">jshttp/content-disposition#71</a></li>
<li>build(deps): bump ossf/scorecard-action from 2.4.0 to 2.4.1 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/jshttp/content-disposition/pull/75">jshttp/content-disposition#75</a></li>
<li>build(deps): bump github/codeql-action from 3.27.9 to 3.28.18 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/jshttp/content-disposition/pull/80">jshttp/content-disposition#80</a></li>
<li>build(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/jshttp/content-disposition/pull/81">jshttp/content-disposition#81</a></li>
<li>chore: add funding to package.json by <a
href="https://github.com/Phillip9587"><code>@​Phillip9587</code></a> in
<a
href="https://redirect.github.com/jshttp/content-disposition/pull/84">jshttp/content-disposition#84</a></li>
<li>build(deps): bump actions/upload-artifact from 4 to 5 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/jshttp/content-disposition/pull/94">jshttp/content-disposition#94</a></li>
<li>build(deps): bump actions/download-artifact from 4 to 6 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/jshttp/content-disposition/pull/93">jshttp/content-disposition#93</a></li>
<li>build(deps): bump github/codeql-action from 3.28.18 to 4.31.2 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/jshttp/content-disposition/pull/92">jshttp/content-disposition#92</a></li>
<li>Release: 1.0.1 by <a
href="https://github.com/UlisesGascon"><code>@​UlisesGascon</code></a>
in <a
href="https://redirect.github.com/jshttp/content-disposition/pull/58">jshttp/content-disposition#58</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a
href="https://github.com/Phillip9587"><code>@​Phillip9587</code></a>
made their first contribution in <a
href="https://redirect.github.com/jshttp/content-disposition/pull/53">jshttp/content-disposition#53</a></li>
<li><a href="https://github.com/jsoref"><code>@​jsoref</code></a> made
their first contribution in <a
href="https://redirect.github.com/jshttp/content-disposition/pull/59">jshttp/content-disposition#59</a></li>
<li><a href="https://github.com/Binilkks"><code>@​Binilkks</code></a>
made their first contribution in <a
href="https://redirect.github.com/jshttp/content-disposition/pull/67">jshttp/content-disposition#67</a></li>
<li><a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot]
made their first contribution in <a
href="https://redirect.github.com/jshttp/content-disposition/pull/75">jshttp/content-disposition#75</a></li>
<li><a
href="https://github.com/UlisesGascon"><code>@​UlisesGascon</code></a>
made their first contribution in <a
href="https://redirect.github.com/jshttp/content-disposition/pull/58">jshttp/content-disposition#58</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/jshttp/content-disposition/compare/v1.0.0...v1.0.1">https://github.com/jshttp/content-disposition/compare/v1.0.0...v1.0.1</a></p>
<h2>1.0.0</h2>
<h2>Breaking Changes</h2>
<ul>
<li>drop support to node &lt;18 versions <a
href="https://redirect.github.com/jshttp/content-disposition/pull/50">jshttp/content-disposition#50</a></li>
</ul>
<h2>What's Changed</h2>
<ul>
<li>Fix CI GH action by <a
href="https://github.com/carpasse"><code>@​carpasse</code></a> in <a
href="https://redirect.github.com/jshttp/content-disposition/pull/48">jshttp/content-disposition#48</a></li>
<li>Add OSSF scorecard pipeline by <a
href="https://github.com/carpasse"><code>@​carpasse</code></a> in <a
href="https://redirect.github.com/jshttp/content-disposition/pull/49">jshttp/content-disposition#49</a></li>
<li>Replace deprecated String.prototype.substr() by <a
href="https://github.com/CommanderRoot"><code>@​CommanderRoot</code></a>
in <a
href="https://redirect.github.com/jshttp/content-disposition/pull/42">jshttp/content-disposition#42</a></li>
<li>fix(ci)!:drop node &lt;18 and update ci by <a
href="https://github.com/wesleytodd"><code>@​wesleytodd</code></a> in <a
href="https://redirect.github.com/jshttp/content-disposition/pull/50">jshttp/content-disposition#50</a></li>
<li>Support decode 'utf8' (no dash) by <a
href="https://github.com/alexstrat"><code>@​alexstrat</code></a> in <a
href="https://redirect.github.com/jshttp/content-disposition/pull/13">jshttp/content-disposition#13</a></li>
<li>1.x Staging PR by <a
href="https://github.com/wesleytodd"><code>@​wesleytodd</code></a> in <a
href="https://redirect.github.com/jshttp/content-disposition/pull/51">jshttp/content-disposition#51</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a
href="https://github.com/CommanderRoot"><code>@​CommanderRoot</code></a>
made their first contribution in <a
href="https://redirect.github.com/jshttp/content-disposition/pull/42">jshttp/content-disposition#42</a></li>
<li><a
href="https://github.com/wesleytodd"><code>@​wesleytodd</code></a> made
their first contribution in <a
href="https://redirect.github.com/jshttp/content-disposition/pull/50">jshttp/content-disposition#50</a></li>
<li><a href="https://github.com/alexstrat"><code>@​alexstrat</code></a>
made their first contribution in <a
href="https://redirect.github.com/jshttp/content-disposition/pull/13">jshttp/content-disposition#13</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/jshttp/content-disposition/compare/v0.5.4...v1.0.0">https://github.com/jshttp/content-disposition/compare/v0.5.4...v1.0.0</a></p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/jshttp/content-disposition/blob/master/HISTORY.md">content-disposition's
changelog</a>.</em></p>
<blockquote>
<h1>1.0.1 / 2025-11-18</h1>
<ul>
<li>Updated <code>engines</code> field to Node@18 or higher (fixed
reference, see 1.0.0)</li>
<li>Remove dependency <code>safe-buffer</code></li>
</ul>
<h1>1.0.0 / 2024-08-31</h1>
<ul>
<li>drop node &lt;18</li>
<li>allow utf8 as alias for utf-8</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="b56faefa03"><code>b56faef</code></a>
1.0.1 (<a
href="https://redirect.github.com/jshttp/content-disposition/issues/58">#58</a>)</li>
<li><a
href="0839a62f09"><code>0839a62</code></a>
build(deps): bump github/codeql-action from 3.28.18 to 4.31.2 (<a
href="https://redirect.github.com/jshttp/content-disposition/issues/92">#92</a>)</li>
<li><a
href="5badd4b7da"><code>5badd4b</code></a>
build(deps): bump actions/download-artifact from 4 to 6 (<a
href="https://redirect.github.com/jshttp/content-disposition/issues/93">#93</a>)</li>
<li><a
href="4162dbd398"><code>4162dbd</code></a>
build(deps): bump actions/upload-artifact from 4 to 5 (<a
href="https://redirect.github.com/jshttp/content-disposition/issues/94">#94</a>)</li>
<li><a
href="b2ce0fbd8b"><code>b2ce0fb</code></a>
chore: add funding to package.json (<a
href="https://redirect.github.com/jshttp/content-disposition/issues/84">#84</a>)</li>
<li><a
href="f0c058a81d"><code>f0c058a</code></a>
build(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 (<a
href="https://redirect.github.com/jshttp/content-disposition/issues/81">#81</a>)</li>
<li><a
href="1f4451c299"><code>1f4451c</code></a>
build(deps): bump github/codeql-action from 3.27.9 to 3.28.18 (<a
href="https://redirect.github.com/jshttp/content-disposition/issues/80">#80</a>)</li>
<li><a
href="765ef23860"><code>765ef23</code></a>
build(deps): bump ossf/scorecard-action from 2.4.0 to 2.4.1 (<a
href="https://redirect.github.com/jshttp/content-disposition/issues/75">#75</a>)</li>
<li><a
href="21c68cd454"><code>21c68cd</code></a>
ci: add CodeQl (SAST) (<a
href="https://redirect.github.com/jshttp/content-disposition/issues/71">#71</a>)</li>
<li><a
href="8fec68dca4"><code>8fec68d</code></a>
ci: add dependabot (<a
href="https://redirect.github.com/jshttp/content-disposition/issues/73">#73</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/jshttp/content-disposition/compare/v0.5.4...v1.0.1">compare
view</a></li>
</ul>
</details>
<details>
<summary>Maintainer changes</summary>
<p>This version was pushed to npm by <a
href="https://www.npmjs.com/~ulisesgascon">ulisesgascon</a>, a new
releaser for content-disposition since your current version.</p>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=content-disposition&package-manager=npm_and_yarn&previous-version=0.5.4&new-version=1.0.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

You can trigger a rebase of this PR by commenting `@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

> **Note**
> Automatic rebases have been disabled on this pull request as it has
been open for over 30 days.

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-01-04 00:10:11 +01:00
dependabot[bot]
096682b315 build(deps): bump mime-types from 3.0.1 to 3.0.2 (#1918) 
Bumps [mime-types](https://github.com/jshttp/mime-types) from 3.0.1 to
3.0.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/jshttp/mime-types/releases">mime-types's
releases</a>.</em></p>
<blockquote>
<h2>v3.0.2</h2>
<h2>What's Changed</h2>
<ul>
<li>fix: use <code>ubuntu-latest</code> as ci runner by <a
href="https://github.com/UlisesGascon"><code>@​UlisesGascon</code></a>
in <a
href="https://redirect.github.com/jshttp/mime-types/pull/143">jshttp/mime-types#143</a></li>
<li>[StepSecurity] Apply security best practices by <a
href="https://github.com/step-security-bot"><code>@​step-security-bot</code></a>
in <a
href="https://redirect.github.com/jshttp/mime-types/pull/141">jshttp/mime-types#141</a></li>
<li>fix: mime-score logic for mp4 types by <a
href="https://github.com/broofa"><code>@​broofa</code></a> in <a
href="https://redirect.github.com/jshttp/mime-types/pull/140">jshttp/mime-types#140</a></li>
<li>🧪 add engines test by <a
href="https://github.com/ctcpip"><code>@​ctcpip</code></a> in <a
href="https://redirect.github.com/jshttp/mime-types/pull/136">jshttp/mime-types#136</a></li>
<li>chore: add funding to package.json by <a
href="https://github.com/Phillip9587"><code>@​Phillip9587</code></a> in
<a
href="https://redirect.github.com/jshttp/mime-types/pull/158">jshttp/mime-types#158</a></li>
<li>build(deps): bump github/codeql-action from 3.27.9 to 3.30.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/jshttp/mime-types/pull/163">jshttp/mime-types#163</a></li>
<li>build(deps): bump actions/checkout from 4 to 5 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/jshttp/mime-types/pull/164">jshttp/mime-types#164</a></li>
<li>build(deps): bump actions/setup-node from 4 to 5 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/jshttp/mime-types/pull/166">jshttp/mime-types#166</a></li>
<li>build(deps): bump github/codeql-action from 3.30.0 to 3.30.5 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/jshttp/mime-types/pull/168">jshttp/mime-types#168</a></li>
<li>build(deps): bump ossf/scorecard-action from 2.4.0 to 2.4.3 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/jshttp/mime-types/pull/167">jshttp/mime-types#167</a></li>
<li>build(deps-dev): bump eslint-plugin-promise from 6.1.1 to 6.6.0 by
<a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/jshttp/mime-types/pull/150">jshttp/mime-types#150</a></li>
<li>build(deps): bump coverallsapp/github-action from 1.2.5 to 2.3.6 by
<a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/jshttp/mime-types/pull/144">jshttp/mime-types#144</a></li>
<li>build(deps-dev): bump eslint-plugin-markdown from 3.0.0 to 3.0.1 by
<a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/jshttp/mime-types/pull/148">jshttp/mime-types#148</a></li>
<li>build(deps-dev): bump mocha from 10.2.0 to 10.8.2 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/jshttp/mime-types/pull/149">jshttp/mime-types#149</a></li>
<li>build(deps): bump actions/upload-artifact from 4.5.0 to 4.6.2 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/jshttp/mime-types/pull/147">jshttp/mime-types#147</a></li>
<li>fix: update JSDoc to convey only false return by <a
href="https://github.com/kellyselden"><code>@​kellyselden</code></a> in
<a
href="https://redirect.github.com/jshttp/mime-types/pull/152">jshttp/mime-types#152</a></li>
<li>build(deps-dev): bump eslint-plugin-import from 2.27.5 to 2.32.0 by
<a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/jshttp/mime-types/pull/155">jshttp/mime-types#155</a></li>
<li>Release: 3.0.2 by <a
href="https://github.com/UlisesGascon"><code>@​UlisesGascon</code></a>
in <a
href="https://redirect.github.com/jshttp/mime-types/pull/169">jshttp/mime-types#169</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a
href="https://github.com/step-security-bot"><code>@​step-security-bot</code></a>
made their first contribution in <a
href="https://redirect.github.com/jshttp/mime-types/pull/141">jshttp/mime-types#141</a></li>
<li><a href="https://github.com/ctcpip"><code>@​ctcpip</code></a> made
their first contribution in <a
href="https://redirect.github.com/jshttp/mime-types/pull/136">jshttp/mime-types#136</a></li>
<li><a
href="https://github.com/Phillip9587"><code>@​Phillip9587</code></a>
made their first contribution in <a
href="https://redirect.github.com/jshttp/mime-types/pull/158">jshttp/mime-types#158</a></li>
<li><a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot]
made their first contribution in <a
href="https://redirect.github.com/jshttp/mime-types/pull/163">jshttp/mime-types#163</a></li>
<li><a
href="https://github.com/kellyselden"><code>@​kellyselden</code></a>
made their first contribution in <a
href="https://redirect.github.com/jshttp/mime-types/pull/152">jshttp/mime-types#152</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/jshttp/mime-types/compare/v3.0.1...v3.0.2">https://github.com/jshttp/mime-types/compare/v3.0.1...v3.0.2</a></p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/jshttp/mime-types/blob/master/HISTORY.md">mime-types's
changelog</a>.</em></p>
<blockquote>
<h1>3.0.2 / 2025-11-20</h1>
<ul>
<li>Fix: update JSDoc to reflect that functions return only
<code>false</code> or <code>string</code>, not
<code>boolean|string</code>.</li>
<li>Fix: refined mime-score logic so <code>.mp4</code> resolves
correctly</li>
<li>Fix:reflect the current Node.js version supported to ≥ 18 (See 3.0.0
for more details).</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="29a0302d79"><code>29a0302</code></a>
3.0.2 (<a
href="https://redirect.github.com/jshttp/mime-types/issues/169">#169</a>)</li>
<li><a
href="c3ebfb1a27"><code>c3ebfb1</code></a>
build(deps-dev): bump eslint-plugin-import from 2.27.5 to 2.32.0 (<a
href="https://redirect.github.com/jshttp/mime-types/issues/155">#155</a>)</li>
<li><a
href="02e8eb213e"><code>02e8eb2</code></a>
fix: update JSDoc to convey only false return (<a
href="https://redirect.github.com/jshttp/mime-types/issues/152">#152</a>)</li>
<li><a
href="ef03e6a777"><code>ef03e6a</code></a>
build(deps): bump actions/upload-artifact from 4.5.0 to 4.6.2 (<a
href="https://redirect.github.com/jshttp/mime-types/issues/147">#147</a>)</li>
<li><a
href="636cd1b66a"><code>636cd1b</code></a>
build(deps-dev): bump mocha from 10.2.0 to 10.8.2 (<a
href="https://redirect.github.com/jshttp/mime-types/issues/149">#149</a>)</li>
<li><a
href="c02166bab2"><code>c02166b</code></a>
build(deps-dev): bump eslint-plugin-markdown from 3.0.0 to 3.0.1 (<a
href="https://redirect.github.com/jshttp/mime-types/issues/148">#148</a>)</li>
<li><a
href="44956c6303"><code>44956c6</code></a>
build(deps): bump coverallsapp/github-action from 1.2.5 to 2.3.6 (<a
href="https://redirect.github.com/jshttp/mime-types/issues/144">#144</a>)</li>
<li><a
href="5e3bb15d29"><code>5e3bb15</code></a>
build(deps-dev): bump eslint-plugin-promise from 6.1.1 to 6.6.0 (<a
href="https://redirect.github.com/jshttp/mime-types/issues/150">#150</a>)</li>
<li><a
href="53f720cdf9"><code>53f720c</code></a>
build(deps): bump ossf/scorecard-action from 2.4.0 to 2.4.3 (<a
href="https://redirect.github.com/jshttp/mime-types/issues/167">#167</a>)</li>
<li><a
href="eac806f33b"><code>eac806f</code></a>
build(deps): bump github/codeql-action from 3.30.0 to 3.30.5 (<a
href="https://redirect.github.com/jshttp/mime-types/issues/168">#168</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/jshttp/mime-types/compare/v3.0.1...v3.0.2">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=mime-types&package-manager=npm_and_yarn&previous-version=3.0.1&new-version=3.0.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

You can trigger a rebase of this PR by commenting `@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

> **Note**
> Automatic rebases have been disabled on this pull request as it has
been open for over 30 days.

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-01-04 00:05:44 +01:00
dependabot[bot]
8215c2e389 build(deps): bump http-errors from 2.0.0 to 2.0.1 (#1919) 
Bumps [http-errors](https://github.com/jshttp/http-errors) from 2.0.0 to
2.0.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/jshttp/http-errors/releases">http-errors's
releases</a>.</em></p>
<blockquote>
<h2>v2.0.1</h2>
<h2>What's Changed</h2>
<ul>
<li>Add support for OSSF scorecard reporting by <a
href="https://github.com/carpasse"><code>@​carpasse</code></a> in <a
href="https://redirect.github.com/jshttp/http-errors/pull/107">jshttp/http-errors#107</a></li>
<li>refactor: improve <code>toClassName</code> function readability and
JSDoc completeness by <a
href="https://github.com/Ayoub-Mabrouk"><code>@​Ayoub-Mabrouk</code></a>
in <a
href="https://redirect.github.com/jshttp/http-errors/pull/112">jshttp/http-errors#112</a></li>
<li>chore: upgrade scorecard workflow pinned action versions by <a
href="https://github.com/carpasse"><code>@​carpasse</code></a> in <a
href="https://redirect.github.com/jshttp/http-errors/pull/113">jshttp/http-errors#113</a></li>
<li>Add test for extending native errors w/o altering prototype by <a
href="https://github.com/jonchurch"><code>@​jonchurch</code></a> in <a
href="https://redirect.github.com/jshttp/http-errors/pull/106">jshttp/http-errors#106</a></li>
<li>remove --bail from test script by <a
href="https://github.com/jonchurch"><code>@​jonchurch</code></a> in <a
href="https://redirect.github.com/jshttp/http-errors/pull/114">jshttp/http-errors#114</a></li>
<li>[StepSecurity] Apply security best practices by <a
href="https://github.com/step-security-bot"><code>@​step-security-bot</code></a>
in <a
href="https://redirect.github.com/jshttp/http-errors/pull/116">jshttp/http-errors#116</a></li>
<li>build(deps): bump actions/checkout from 2.7.0 to 4.2.2 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/jshttp/http-errors/pull/117">jshttp/http-errors#117</a></li>
<li>build(deps): bump ossf/scorecard-action from 2.4.0 to 2.4.2 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/jshttp/http-errors/pull/118">jshttp/http-errors#118</a></li>
<li>build(deps): bump coverallsapp/github-action from 1.2.5 to 2.3.6 by
<a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/jshttp/http-errors/pull/119">jshttp/http-errors#119</a></li>
<li>build(deps): bump actions/upload-artifact from 4.5.0 to 4.6.2 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/jshttp/http-errors/pull/121">jshttp/http-errors#121</a></li>
<li>build(deps): bump github/codeql-action from 3.27.9 to 3.28.18 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/jshttp/http-errors/pull/123">jshttp/http-errors#123</a></li>
<li>fix: use <code>ubuntu-latest</code> as ci runner by <a
href="https://github.com/UlisesGascon"><code>@​UlisesGascon</code></a>
in <a
href="https://redirect.github.com/jshttp/http-errors/pull/124">jshttp/http-errors#124</a></li>
<li>remove --bail by <a
href="https://github.com/jonchurch"><code>@​jonchurch</code></a> in <a
href="https://redirect.github.com/jshttp/http-errors/pull/125">jshttp/http-errors#125</a></li>
<li>deps: update statuses and switch fixed versions to tilde (~) by <a
href="https://github.com/Phillip9587"><code>@​Phillip9587</code></a> in
<a
href="https://redirect.github.com/jshttp/http-errors/pull/126">jshttp/http-errors#126</a></li>
<li>chore: add funding to package.json by <a
href="https://github.com/Phillip9587"><code>@​Phillip9587</code></a> in
<a
href="https://redirect.github.com/jshttp/http-errors/pull/130">jshttp/http-errors#130</a></li>
<li>build(deps): bump github/codeql-action from 3.28.18 to 3.29.5 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/jshttp/http-errors/pull/131">jshttp/http-errors#131</a></li>
<li>ci: add nodejs v18 - v24 to test matrix by <a
href="https://github.com/Phillip9587"><code>@​Phillip9587</code></a> in
<a
href="https://redirect.github.com/jshttp/http-errors/pull/127">jshttp/http-errors#127</a></li>
<li>build(deps-dev): bump eslint-plugin-import from 2.25.3 to 2.32.0 by
<a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/jshttp/http-errors/pull/129">jshttp/http-errors#129</a></li>
<li>build(deps): bump github/codeql-action from 3.29.7 to 3.29.11 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/jshttp/http-errors/pull/133">jshttp/http-errors#133</a></li>
<li>build(deps): bump actions/checkout from 4.2.2 to 5.0.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/jshttp/http-errors/pull/132">jshttp/http-errors#132</a></li>
<li>build(deps): bump actions/upload-artifact from 4.6.2 to 5.0.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/jshttp/http-errors/pull/138">jshttp/http-errors#138</a></li>
<li>build(deps): bump github/codeql-action from 3.29.11 to 4.31.2 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/jshttp/http-errors/pull/137">jshttp/http-errors#137</a></li>
<li>build(deps): bump ossf/scorecard-action from 2.4.2 to 2.4.3 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/jshttp/http-errors/pull/134">jshttp/http-errors#134</a></li>
<li>Release: 2.0.1 by <a
href="https://github.com/UlisesGascon"><code>@​UlisesGascon</code></a>
in <a
href="https://redirect.github.com/jshttp/http-errors/pull/140">jshttp/http-errors#140</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a
href="https://github.com/Ayoub-Mabrouk"><code>@​Ayoub-Mabrouk</code></a>
made their first contribution in <a
href="https://redirect.github.com/jshttp/http-errors/pull/112">jshttp/http-errors#112</a></li>
<li><a href="https://github.com/jonchurch"><code>@​jonchurch</code></a>
made their first contribution in <a
href="https://redirect.github.com/jshttp/http-errors/pull/106">jshttp/http-errors#106</a></li>
<li><a
href="https://github.com/step-security-bot"><code>@​step-security-bot</code></a>
made their first contribution in <a
href="https://redirect.github.com/jshttp/http-errors/pull/116">jshttp/http-errors#116</a></li>
<li><a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot]
made their first contribution in <a
href="https://redirect.github.com/jshttp/http-errors/pull/117">jshttp/http-errors#117</a></li>
<li><a
href="https://github.com/UlisesGascon"><code>@​UlisesGascon</code></a>
made their first contribution in <a
href="https://redirect.github.com/jshttp/http-errors/pull/124">jshttp/http-errors#124</a></li>
<li><a
href="https://github.com/Phillip9587"><code>@​Phillip9587</code></a>
made their first contribution in <a
href="https://redirect.github.com/jshttp/http-errors/pull/126">jshttp/http-errors#126</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/jshttp/http-errors/compare/v2.0.0...v2.0.1">https://github.com/jshttp/http-errors/compare/v2.0.0...v2.0.1</a></p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/jshttp/http-errors/blob/master/HISTORY.md">http-errors's
changelog</a>.</em></p>
<blockquote>
<h1>2.0.1 / 2025-11-20</h1>
<ul>
<li>deps: use tilde notation for dependencies</li>
<li>deps: update statuses to 2.0.2</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="61aee5769e"><code>61aee57</code></a>
2.0.1 (<a
href="https://redirect.github.com/jshttp/http-errors/issues/140">#140</a>)</li>
<li><a
href="6acba1ff0c"><code>6acba1f</code></a>
build(deps): bump ossf/scorecard-action from 2.4.2 to 2.4.3 (<a
href="https://redirect.github.com/jshttp/http-errors/issues/134">#134</a>)</li>
<li><a
href="d2dcbbffb3"><code>d2dcbbf</code></a>
build(deps): bump github/codeql-action from 3.29.11 to 4.31.2 (<a
href="https://redirect.github.com/jshttp/http-errors/issues/137">#137</a>)</li>
<li><a
href="fa47a60e96"><code>fa47a60</code></a>
build(deps): bump actions/upload-artifact from 4.6.2 to 5.0.0 (<a
href="https://redirect.github.com/jshttp/http-errors/issues/138">#138</a>)</li>
<li><a
href="09b3881c43"><code>09b3881</code></a>
build(deps): bump actions/checkout from 4.2.2 to 5.0.0 (<a
href="https://redirect.github.com/jshttp/http-errors/issues/132">#132</a>)</li>
<li><a
href="f1ad32238a"><code>f1ad322</code></a>
build(deps): bump github/codeql-action from 3.29.7 to 3.29.11 (<a
href="https://redirect.github.com/jshttp/http-errors/issues/133">#133</a>)</li>
<li><a
href="109fe03f60"><code>109fe03</code></a>
build(deps-dev): bump eslint-plugin-import from 2.25.3 to 2.32.0 (<a
href="https://redirect.github.com/jshttp/http-errors/issues/129">#129</a>)</li>
<li><a
href="7a0544616f"><code>7a05446</code></a>
ci: add nodejs v18 - v24 to test matrix (<a
href="https://redirect.github.com/jshttp/http-errors/issues/127">#127</a>)</li>
<li><a
href="6dfaf4983d"><code>6dfaf49</code></a>
build(deps): bump github/codeql-action from 3.28.18 to 3.29.5 (<a
href="https://redirect.github.com/jshttp/http-errors/issues/131">#131</a>)</li>
<li><a
href="535aebf128"><code>535aebf</code></a>
chore: add funding to package.json (<a
href="https://redirect.github.com/jshttp/http-errors/issues/130">#130</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/jshttp/http-errors/compare/v2.0.0...v2.0.1">compare
view</a></li>
</ul>
</details>
<details>
<summary>Maintainer changes</summary>
<p>This version was pushed to npm by <a
href="https://www.npmjs.com/~ulisesgascon">ulisesgascon</a>, a new
releaser for http-errors since your current version.</p>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=http-errors&package-manager=npm_and_yarn&previous-version=2.0.0&new-version=2.0.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

You can trigger a rebase of this PR by commenting `@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

> **Note**
> Automatic rebases have been disabled on this pull request as it has
been open for over 30 days.

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-01-04 00:05:09 +01:00
dependabot[bot]
cfe5ec6aea build(deps-dev): bump qs from 6.14.0 to 6.14.1 (#1921) 
Bumps [qs](https://github.com/ljharb/qs) from 6.14.0 to 6.14.1.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/ljharb/qs/blob/main/CHANGELOG.md">qs's
changelog</a>.</em></p>
<blockquote>
<h2><strong>6.14.1</strong></h2>
<ul>
<li>[Fix] ensure arrayLength applies to <code>[]</code> notation as
well</li>
<li>[Fix] <code>parse</code>: when a custom decoder returns
<code>null</code> for a key, ignore that key</li>
<li>[Refactor] <code>parse</code>: extract key segment splitting
helper</li>
<li>[meta] add threat model</li>
<li>[actions] add workflow permissions</li>
<li>[Tests] <code>stringify</code>: increase coverage</li>
<li>[Dev Deps] update <code>eslint</code>,
<code>@ljharb/eslint-config</code>, <code>npmignore</code>,
<code>es-value-fixtures</code>, <code>for-each</code>,
<code>object-inspect</code></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="3fa11a5f64"><code>3fa11a5</code></a>
v6.14.1</li>
<li><a
href="a62670423c"><code>a626704</code></a>
[Dev Deps] update <code>npmignore</code></li>
<li><a
href="3086902ecf"><code>3086902</code></a>
[Fix] ensure arrayLength applies to <code>[]</code> notation as
well</li>
<li><a
href="fc7930e86c"><code>fc7930e</code></a>
[Dev Deps] update <code>eslint</code>,
<code>@ljharb/eslint-config</code></li>
<li><a
href="0b06aac566"><code>0b06aac</code></a>
[Dev Deps] update <code>@ljharb/eslint-config</code></li>
<li><a
href="64951f6200"><code>64951f6</code></a>
[Refactor] <code>parse</code>: extract key segment splitting helper</li>
<li><a
href="e1bd2599cd"><code>e1bd259</code></a>
[Dev Deps] update <code>@ljharb/eslint-config</code></li>
<li><a
href="f4b3d39709"><code>f4b3d39</code></a>
[eslint] add eslint 9 optional peer dep</li>
<li><a
href="6e94d9596c"><code>6e94d95</code></a>
[Dev Deps] update <code>eslint</code>,
<code>@ljharb/eslint-config</code>, <code>npmignore</code></li>
<li><a
href="973dc3c51c"><code>973dc3c</code></a>
[actions] add workflow permissions</li>
<li>Additional commits viewable in <a
href="https://github.com/ljharb/qs/compare/v6.14.0...v6.14.1">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=qs&package-manager=npm_and_yarn&previous-version=6.14.0&new-version=6.14.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts page](https://github.com/koajs/koa/network/alerts).

</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-01-04 00:04:47 +01:00
MK
2e52fb589c 3.1.1 2025-10-27 12:24:20 +08:00
MK
1c642f4e4f 3.1.0 2025-10-26 21:16:22 +08:00
MK
ffd497a190 3.0.3 2025-10-18 22:20:40 +08:00
MK
433b20c9e5 3.0.2 2025-10-17 14:55:00 +08:00
fengmk2
1ddb048adc 3.0.1 2025-07-27 15:35:05 +08:00
dependabot[bot]
d378e5c5f9 build(deps-dev): bump supertest from 7.1.1 to 7.1.4 (#1895) 
Bumps [supertest](https://github.com/ladjs/supertest) from 7.1.1 to
7.1.4.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/ladjs/supertest/releases">supertest's
releases</a>.</em></p>
<blockquote>
<h2>v7.1.4</h2>
<ul>
<li>chore: bump deps  6021ec8</li>
<li>Merge pull request <a
href="https://redirect.github.com/ladjs/supertest/issues/865">#865</a>
from forwardemail/dependabot/npm_and_yarn/form-data-4.0.4 ceca508</li>
<li>chore(deps): bump form-data from 4.0.3 to 4.0.4  b1fb983</li>
</ul>
<hr />
<p><a
href="https://github.com/ladjs/supertest/compare/v7.1.3...v7.1.4">https://github.com/ladjs/supertest/compare/v7.1.3...v7.1.4</a></p>
<h2>v7.1.3</h2>
<ul>
<li>fix: revert automatic server closing (per <a
href="https://redirect.github.com/ladjs/supertest/issues/651">#651</a>)
b6fd281</li>
<li>fix: rename ci file  75bcbc9</li>
</ul>
<hr />
<p><a
href="https://github.com/ladjs/supertest/compare/v7.1.2...v7.1.3">https://github.com/ladjs/supertest/compare/v7.1.2...v7.1.3</a></p>
<h2>v7.1.2</h2>
<ul>
<li>feat: fix server lifecycle, callback handling, and SuperAgent v10
compatibility 6d060e3</li>
<li>Merge pull request <a
href="https://redirect.github.com/ladjs/supertest/issues/862">#862</a>
from noritaka1166/fix-typo-test 0413057</li>
<li>Merge pull request <a
href="https://redirect.github.com/ladjs/supertest/issues/841">#841</a>
from viniciusamc/master e2be0e1</li>
<li>chore: fix typo in test  b7f985b</li>
<li>feat(bearer):bearer auth token method  411f7ce</li>
</ul>
<hr />
<p><a
href="https://github.com/ladjs/supertest/compare/v7.1.1...v7.1.2">https://github.com/ladjs/supertest/compare/v7.1.1...v7.1.2</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="076228a654"><code>076228a</code></a>
7.1.4</li>
<li><a
href="6021ec8174"><code>6021ec8</code></a>
chore: bump deps</li>
<li><a
href="ceca508bd4"><code>ceca508</code></a>
Merge pull request <a
href="https://redirect.github.com/ladjs/supertest/issues/865">#865</a>
from forwardemail/dependabot/npm_and_yarn/form-data-4...</li>
<li><a
href="b1fb983db7"><code>b1fb983</code></a>
chore(deps): bump form-data from 4.0.3 to 4.0.4</li>
<li><a
href="0cf2ec375f"><code>0cf2ec3</code></a>
7.1.3</li>
<li><a
href="b6fd281d29"><code>b6fd281</code></a>
fix: revert automatic server closing (per <a
href="https://redirect.github.com/ladjs/supertest/issues/651">#651</a>)</li>
<li><a
href="75bcbc941d"><code>75bcbc9</code></a>
fix: rename ci file</li>
<li><a
href="29c3267d31"><code>29c3267</code></a>
7.1.2</li>
<li><a
href="6d060e3c8d"><code>6d060e3</code></a>
feat: fix server lifecycle, callback handling, and SuperAgent v10
compatibility</li>
<li><a
href="04130571b0"><code>0413057</code></a>
Merge pull request <a
href="https://redirect.github.com/ladjs/supertest/issues/862">#862</a>
from noritaka1166/fix-typo-test</li>
<li>Additional commits viewable in <a
href="https://github.com/ladjs/supertest/compare/v7.1.1...v7.1.4">compare
view</a></li>
</ul>
</details>
<details>
<summary>Maintainer changes</summary>
<p>This version was pushed to npm by <a
href="https://www.npmjs.com/~titanism">titanism</a>, a new releaser for
supertest since your current version.</p>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=supertest&package-manager=npm_and_yarn&previous-version=7.1.1&new-version=7.1.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-07-26 23:20:26 -07:00
dependabot[bot]
cb22d8dcde build(deps): bump statuses from 2.0.1 to 2.0.2 (#1888) 
Bumps [statuses](https://github.com/jshttp/statuses) from 2.0.1 to
2.0.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/jshttp/statuses/releases">statuses's
releases</a>.</em></p>
<blockquote>
<h2>v2.0.2</h2>
<h2>What's Changed</h2>
<ul>
<li>Ci/add missing node versions by <a
href="https://github.com/carpasse"><code>@​carpasse</code></a> in <a
href="https://redirect.github.com/jshttp/statuses/pull/32">jshttp/statuses#32</a></li>
<li>chore: add support for OSSF scorecard reporting by <a
href="https://github.com/inigomarquinez"><code>@​inigomarquinez</code></a>
in <a
href="https://redirect.github.com/jshttp/statuses/pull/24">jshttp/statuses#24</a></li>
<li>chore: pin dependencies and specify permissions in the pipeline by
<a
href="https://github.com/inigomarquinez"><code>@​inigomarquinez</code></a>
in <a
href="https://redirect.github.com/jshttp/statuses/pull/25">jshttp/statuses#25</a></li>
<li>docs: add openssf badge in readme file by <a
href="https://github.com/inigomarquinez"><code>@​inigomarquinez</code></a>
in <a
href="https://redirect.github.com/jshttp/statuses/pull/29">jshttp/statuses#29</a></li>
<li>chore: add codeql pipeline by <a
href="https://github.com/inigomarquinez"><code>@​inigomarquinez</code></a>
in <a
href="https://redirect.github.com/jshttp/statuses/pull/26">jshttp/statuses#26</a></li>
<li>chore: add dependency review tool by <a
href="https://github.com/inigomarquinez"><code>@​inigomarquinez</code></a>
in <a
href="https://redirect.github.com/jshttp/statuses/pull/27">jshttp/statuses#27</a></li>
<li>chore: add dependabot by <a
href="https://github.com/inigomarquinez"><code>@​inigomarquinez</code></a>
in <a
href="https://redirect.github.com/jshttp/statuses/pull/28">jshttp/statuses#28</a></li>
<li>fix: use <code>ubuntu-latest</code> as ci runner by <a
href="https://github.com/UlisesGascon"><code>@​UlisesGascon</code></a>
in <a
href="https://redirect.github.com/jshttp/statuses/pull/33">jshttp/statuses#33</a></li>
<li>Replace deprecated String.prototype.substr() by <a
href="https://github.com/CommanderRoot"><code>@​CommanderRoot</code></a>
in <a
href="https://redirect.github.com/jshttp/statuses/pull/23">jshttp/statuses#23</a></li>
<li>ci: modernize pipelines by <a
href="https://github.com/UlisesGascon"><code>@​UlisesGascon</code></a>
in <a
href="https://redirect.github.com/jshttp/statuses/pull/34">jshttp/statuses#34</a></li>
<li>fix: typo in pipeline by <a
href="https://github.com/UlisesGascon"><code>@​UlisesGascon</code></a>
in <a
href="https://redirect.github.com/jshttp/statuses/pull/39">jshttp/statuses#39</a></li>
<li>build(deps-dev): bump raw-body from 2.4.1 to 2.5.2 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/jshttp/statuses/pull/35">jshttp/statuses#35</a></li>
<li>build(deps-dev): bump eslint-plugin-promise from 4.2.1 to 4.3.1 by
<a href="https://github.com/dependabot"><code>@​dependabot</code></a> in
<a
href="https://redirect.github.com/jshttp/statuses/pull/36">jshttp/statuses#36</a></li>
<li>build(deps-dev): bump csv-parse from 4.15.1 to 4.16.3 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/jshttp/statuses/pull/37">jshttp/statuses#37</a></li>
<li>build(deps-dev): bump eslint-plugin-import from 2.23.2 to 2.31.0 by
<a href="https://github.com/dependabot"><code>@​dependabot</code></a> in
<a
href="https://redirect.github.com/jshttp/statuses/pull/38">jshttp/statuses#38</a></li>
<li>Release: 2.0.2 by <a
href="https://github.com/UlisesGascon"><code>@​UlisesGascon</code></a>
in <a
href="https://redirect.github.com/jshttp/statuses/pull/40">jshttp/statuses#40</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/carpasse"><code>@​carpasse</code></a>
made their first contribution in <a
href="https://redirect.github.com/jshttp/statuses/pull/32">jshttp/statuses#32</a></li>
<li><a
href="https://github.com/inigomarquinez"><code>@​inigomarquinez</code></a>
made their first contribution in <a
href="https://redirect.github.com/jshttp/statuses/pull/24">jshttp/statuses#24</a></li>
<li><a
href="https://github.com/UlisesGascon"><code>@​UlisesGascon</code></a>
made their first contribution in <a
href="https://redirect.github.com/jshttp/statuses/pull/33">jshttp/statuses#33</a></li>
<li><a
href="https://github.com/CommanderRoot"><code>@​CommanderRoot</code></a>
made their first contribution in <a
href="https://redirect.github.com/jshttp/statuses/pull/23">jshttp/statuses#23</a></li>
<li><a
href="https://github.com/dependabot"><code>@​dependabot</code></a> made
their first contribution in <a
href="https://redirect.github.com/jshttp/statuses/pull/35">jshttp/statuses#35</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/jshttp/statuses/compare/v2.0.1...v2.0.2">https://github.com/jshttp/statuses/compare/v2.0.1...v2.0.2</a></p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/jshttp/statuses/blob/master/HISTORY.md">statuses's
changelog</a>.</em></p>
<blockquote>
<h1>2.0.2 / 2025-06-06</h1>
<ul>
<li>Migrate to <code>String.prototype.slice()</code></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="33ec007ae0"><code>33ec007</code></a>
2.0.2 (<a
href="https://redirect.github.com/jshttp/statuses/issues/40">#40</a>)</li>
<li><a
href="cc539ee32c"><code>cc539ee</code></a>
build(deps-dev): bump eslint-plugin-import from 2.23.2 to 2.31.0 (<a
href="https://redirect.github.com/jshttp/statuses/issues/38">#38</a>)</li>
<li><a
href="c3a417aa27"><code>c3a417a</code></a>
build(deps-dev): bump csv-parse from 4.15.1 to 4.16.3 (<a
href="https://redirect.github.com/jshttp/statuses/issues/37">#37</a>)</li>
<li><a
href="99d64aeffe"><code>99d64ae</code></a>
build(deps-dev): bump eslint-plugin-promise from 4.2.1 to 4.3.1 (<a
href="https://redirect.github.com/jshttp/statuses/issues/36">#36</a>)</li>
<li><a
href="6eb7e1199d"><code>6eb7e11</code></a>
build(deps-dev): bump raw-body from 2.4.1 to 2.5.2 (<a
href="https://redirect.github.com/jshttp/statuses/issues/35">#35</a>)</li>
<li><a
href="2e7a28e297"><code>2e7a28e</code></a>
fix: typo in pipeline (<a
href="https://redirect.github.com/jshttp/statuses/issues/39">#39</a>)</li>
<li><a
href="8f80743554"><code>8f80743</code></a>
ci: modernize pipelines (<a
href="https://redirect.github.com/jshttp/statuses/issues/34">#34</a>)</li>
<li><a
href="ed17ccd1d6"><code>ed17ccd</code></a>
chore: migrate to <code>String.prototype.slice()</code> (<a
href="https://redirect.github.com/jshttp/statuses/issues/23">#23</a>)</li>
<li><a
href="76d850208b"><code>76d8502</code></a>
fix: use <code>ubuntu-latest</code> as ci runner (<a
href="https://redirect.github.com/jshttp/statuses/issues/33">#33</a>)</li>
<li><a
href="4f369f5942"><code>4f369f5</code></a>
ci: add dependabot (<a
href="https://redirect.github.com/jshttp/statuses/issues/28">#28</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/jshttp/statuses/compare/v2.0.1...v2.0.2">compare
view</a></li>
</ul>
</details>
<details>
<summary>Maintainer changes</summary>
<p>This version was pushed to npm by <a
href="https://www.npmjs.com/~ulisesgascon">ulisesgascon</a>, a new
releaser for statuses since your current version.</p>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=statuses&package-manager=npm_and_yarn&previous-version=2.0.1&new-version=2.0.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-06-27 23:29:06 -07:00
Imed Jaberi
0acad8ff37 feat: replace cache-content-type with mime-types directly (#1886) 
## Checklist

- [x] I have ensured my pull request is not behind the main or master
branch of the original repository.
- [x] I have rebased all commits where necessary so that reviewing this
pull request can be done without having to merge it first.
- [x] I have written a commit message that passes commitlint linting.
- [x] I have ensured that my code changes pass linting tests.
- [x] I have ensured that my code changes pass unit tests.
- [x] I have described my pull request and the reasons for code changes
along with context if necessary.
 2025-06-06 13:11:57 +01:00
Imed Jaberi
2f6e8147db feat: replace debug module with pure node:util::debuglog (#1885) 
## Checklist

- [x] I have ensured my pull request is not behind the main or master
branch of the original repository.
- [x] I have rebased all commits where necessary so that reviewing this
pull request can be done without having to merge it first.
- [x] I have written a commit message that passes commitlint linting.
- [x] I have ensured that my code changes pass linting tests.
- [x] I have ensured that my code changes pass unit tests.
- [x] I have described my pull request and the reasons for code changes
along with context if necessary.
 2025-06-05 22:32:10 +01:00
dependabot[bot]
8620ced588 build(deps): bump debug from 4.4.0 to 4.4.1 (#1880) 
Bumps [debug](https://github.com/debug-js/debug) from 4.4.0 to 4.4.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/debug-js/debug/releases">debug's
releases</a>.</em></p>
<blockquote>
<h2>4.4.1</h2>
<h2>What's Changed</h2>
<ul>
<li>fix(Issue-996): replace whitespaces in namespaces string with commas
globally by <a
href="https://github.com/pdahal-cx"><code>@​pdahal-cx</code></a> in <a
href="https://redirect.github.com/debug-js/debug/pull/997">debug-js/debug#997</a></li>
<li>fixes <a
href="https://redirect.github.com/debug-js/debug/issues/987">#987</a>
fallback to localStorage.DEBUG if debug is not defined by <a
href="https://github.com/lzilioli"><code>@​lzilioli</code></a> in <a
href="https://redirect.github.com/debug-js/debug/pull/988">debug-js/debug#988</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/pdahal-cx"><code>@​pdahal-cx</code></a>
made their first contribution in <a
href="https://redirect.github.com/debug-js/debug/pull/997">debug-js/debug#997</a></li>
<li><a href="https://github.com/lzilioli"><code>@​lzilioli</code></a>
made their first contribution in <a
href="https://redirect.github.com/debug-js/debug/pull/988">debug-js/debug#988</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/debug-js/debug/compare/4.4.0...4.4.1">https://github.com/debug-js/debug/compare/4.4.0...4.4.1</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="33330fa861"><code>33330fa</code></a>
4.4.1</li>
<li><a
href="98df33ed9d"><code>98df33e</code></a>
remove istanbul</li>
<li><a
href="bf2f574c3e"><code>bf2f574</code></a>
fixes <a
href="https://redirect.github.com/debug-js/debug/issues/987">#987</a>
fallback to localStorage.DEBUG if debug is not defined (<a
href="https://redirect.github.com/debug-js/debug/issues/988">#988</a>)</li>
<li><a
href="a0497bd46d"><code>a0497bd</code></a>
Replace whitespaces in namespaces string with commas globally instead of
just...</li>
<li>See full diff in <a
href="https://github.com/debug-js/debug/compare/4.4.0...4.4.1">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=debug&package-manager=npm_and_yarn&previous-version=4.4.0&new-version=4.4.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
Dependabot will merge this PR once CI passes on it, as requested by
@jonathanong.

[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-05-23 22:52:31 -07:00
dependabot[bot]
dec1ffcbda build(deps-dev): bump supertest from 7.1.0 to 7.1.1 (#1879) 
Bumps [supertest](https://github.com/ladjs/supertest) from 7.1.0 to
7.1.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/ladjs/supertest/releases">supertest's
releases</a>.</em></p>
<blockquote>
<h2>v7.1.1</h2>
<ul>
<li>Merge pull request <a
href="https://redirect.github.com/ladjs/supertest/issues/858">#858</a>
from ByteOPCode/master f553845</li>
<li>feat: update superagent version  d37d197</li>
</ul>
<p><a
href="https://github.com/ladjs/supertest/compare/v7.1.0...v7.1.1">https://github.com/ladjs/supertest/compare/v7.1.0...v7.1.1</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="200031e219"><code>200031e</code></a>
7.1.1</li>
<li><a
href="f55384519f"><code>f553845</code></a>
Merge pull request <a
href="https://redirect.github.com/ladjs/supertest/issues/858">#858</a>
from ByteOPCode/master</li>
<li><a
href="d37d197bd7"><code>d37d197</code></a>
feat: update superagent version</li>
<li>See full diff in <a
href="https://github.com/ladjs/supertest/compare/v7.1.0...v7.1.1">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=supertest&package-manager=npm_and_yarn&previous-version=7.1.0&new-version=7.1.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-05-23 22:52:20 -07:00
dependabot[bot]
61bf494594 build(deps-dev): bump formidable from 3.5.2 to 3.5.4 (#1878) 
Bumps [formidable](https://github.com/node-formidable/formidable) from
3.5.2 to 3.5.4.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/node-formidable/formidable/releases">formidable's
releases</a>.</em></p>
<blockquote>
<h2>v3.5.3</h2>
<h2>What's Changed</h2>
<ul>
<li>
<p>Fix existing test failure by <a
href="https://github.com/ryhmrt"><code>@​ryhmrt</code></a> in <a
href="https://redirect.github.com/node-formidable/formidable/pull/990">node-formidable/formidable#990</a></p>
</li>
<li>
<p>update Ryan Dahl x account link by <a
href="https://github.com/moetezch"><code>@​moetezch</code></a> in <a
href="https://redirect.github.com/node-formidable/formidable/pull/989">node-formidable/formidable#989</a></p>
</li>
<li>
<p>update failing tests</p>
</li>
<li>
<p>update CI/CD workflows and actions;</p>
</li>
<li>
<p>update CodeQL github action for security analysis</p>
</li>
<li>
<p>update readme, links and badges</p>
</li>
<li>
<p>update to use cuid2 (battle-tested <code>@paralleldrive/cuid2</code>
package) for better random names - should not be breaking anything since
it's still 25 characters long, but a lot safer and faster.</p>
</li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/ryhmrt"><code>@​ryhmrt</code></a> made
their first contribution in <a
href="https://redirect.github.com/node-formidable/formidable/pull/990">node-formidable/formidable#990</a></li>
<li><a href="https://github.com/moetezch"><code>@​moetezch</code></a>
made their first contribution in <a
href="https://redirect.github.com/node-formidable/formidable/pull/989">node-formidable/formidable#989</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/node-formidable/formidable/compare/v3.5.2...v3.5.3">https://github.com/node-formidable/formidable/compare/v3.5.2...v3.5.3</a></p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/node-formidable/formidable/blob/master/CHANGELOG.md">formidable's
changelog</a>.</em></p>
<blockquote>
<h3>3.5.4</h3>
<ul>
<li>fix the <code>os.machine</code> breaking some dependents, fix <a
href="https://redirect.github.com/node-formidable/formidable/issues/994">#994</a></li>
<li>add Node 16, 18, 20, 22 to CI/CD</li>
</ul>
<h3>3.5.3</h3>
<ul>
<li>security report by ZAST.AI help for some vulnerabilities addressing
(primarily the random names generation)</li>
<li>update failing tests</li>
<li>update CI/CD workflows and actions;</li>
<li>update CodeQL github action for security analysis</li>
<li>update readme, links and badges</li>
<li>update to use cuid2 (battle-tested <code>@paralleldrive/cuid2</code>
package) for better random names - should not be breaking anything since
it's still 25 characters long, but a lot safer and faster.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a
href="https://github.com/node-formidable/formidable/commits">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=formidable&package-manager=npm_and_yarn&previous-version=3.5.2&new-version=3.5.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts page](https://github.com/koajs/koa/network/alerts).

</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-04-29 10:13:31 -07:00
jongleberry
ead934d8f2 3.0.0 2025-04-27 17:37:40 -07:00
dependabot[bot]
7716028fec build(deps-dev): bump c8 from 8.0.1 to 10.1.3 (#1874) 
Bumps [c8](https://github.com/bcoe/c8) from 8.0.1 to 10.1.3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/bcoe/c8/releases">c8's
releases</a>.</em></p>
<blockquote>
<h2>v10.1.3</h2>
<h2><a
href="https://github.com/bcoe/c8/compare/v10.1.2...v10.1.3">10.1.3</a>
(2024-12-10)</h2>
<h3>Bug Fixes</h3>
<ul>
<li><strong>deps:</strong> update bcoe/v8-coverage addressing v8 issue
(<a href="https://redirect.github.com/bcoe/c8/issues/552">#552</a>) (<a
href="b32a563e25">b32a563</a>)</li>
</ul>
<h2>v10.1.2</h2>
<h2><a
href="https://github.com/bcoe/c8/compare/v10.1.1...v10.1.2">10.1.2</a>
(2024-06-13)</h2>
<h3>Bug Fixes</h3>
<ul>
<li><strong>deps:</strong> make monocart-coverage-reports an optional
with meta defined (<a
href="3b91fdaa0e">3b91fda</a>)</li>
</ul>
<h2>v10.1.1</h2>
<h2><a
href="https://github.com/bcoe/c8/compare/v10.1.0...v10.1.1">10.1.1</a>
(2024-06-11)</h2>
<h3>Bug Fixes</h3>
<ul>
<li>stop installing monocart-coverage-reports (<a
href="https://redirect.github.com/bcoe/c8/issues/535">#535</a>) (<a
href="13979a76b5">13979a7</a>)</li>
</ul>
<h2>v10.1.0</h2>
<h2><a
href="https://github.com/bcoe/c8/compare/v10.0.0...v10.1.0">10.1.0</a>
(2024-06-11)</h2>
<h3>Features</h3>
<ul>
<li>add experimental monocart reports (<a
href="https://redirect.github.com/bcoe/c8/issues/521">#521</a>) (<a
href="2e5e297ac0">2e5e297</a>)</li>
</ul>
<h2>v10.0.0</h2>
<h2><a
href="https://github.com/bcoe/c8/compare/v9.1.0...v10.0.0">10.0.0</a>
(2024-06-10)</h2>
<h3>⚠ BREAKING CHANGES</h3>
<ul>
<li><strong>deps:</strong> Node 18 is now the minimum supported Node.js
version</li>
</ul>
<h3>Bug Fixes</h3>
<ul>
<li><strong>deps:</strong> update test-exclude with new glob / minimatch
(<a href="https://redirect.github.com/bcoe/c8/issues/531">#531</a>) (<a
href="e33cf30d0c">e33cf30</a>)</li>
</ul>
<h2>v9.1.0</h2>
<h2><a
href="https://github.com/bcoe/c8/compare/v9.0.0...v9.1.0">9.1.0</a>
(2024-01-11)</h2>
<h3>Features</h3>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/bcoe/c8/blob/main/CHANGELOG.md">c8's
changelog</a>.</em></p>
<blockquote>
<h2><a
href="https://github.com/bcoe/c8/compare/v10.1.2...v10.1.3">10.1.3</a>
(2024-12-10)</h2>
<h3>Bug Fixes</h3>
<ul>
<li><strong>deps:</strong> update bcoe/v8-coverage addressing v8 issue
(<a href="https://redirect.github.com/bcoe/c8/issues/552">#552</a>) (<a
href="b32a563e25">b32a563</a>)</li>
</ul>
<h2><a
href="https://github.com/bcoe/c8/compare/v10.1.1...v10.1.2">10.1.2</a>
(2024-06-13)</h2>
<h3>Bug Fixes</h3>
<ul>
<li><strong>deps:</strong> make monocart-coverage-reports an optional
with meta defined (<a
href="3b91fdaa0e">3b91fda</a>)</li>
</ul>
<h2><a
href="https://github.com/bcoe/c8/compare/v10.1.0...v10.1.1">10.1.1</a>
(2024-06-11)</h2>
<h3>Bug Fixes</h3>
<ul>
<li>stop installing monocart-coverage-reports (<a
href="https://redirect.github.com/bcoe/c8/issues/535">#535</a>) (<a
href="13979a76b5">13979a7</a>)</li>
</ul>
<h2><a
href="https://github.com/bcoe/c8/compare/v10.0.0...v10.1.0">10.1.0</a>
(2024-06-11)</h2>
<h3>Features</h3>
<ul>
<li>add experimental monocart reports (<a
href="https://redirect.github.com/bcoe/c8/issues/521">#521</a>) (<a
href="2e5e297ac0">2e5e297</a>)</li>
</ul>
<h2><a
href="https://github.com/bcoe/c8/compare/v9.1.0...v10.0.0">10.0.0</a>
(2024-06-10)</h2>
<h3>⚠ BREAKING CHANGES</h3>
<ul>
<li><strong>deps:</strong> Node 18 is now the minimum supported Node.js
version</li>
</ul>
<h3>Bug Fixes</h3>
<ul>
<li><strong>deps:</strong> update test-exclude with new glob / minimatch
(<a href="https://redirect.github.com/bcoe/c8/issues/531">#531</a>) (<a
href="e33cf30d0c">e33cf30</a>)</li>
</ul>
<h2><a
href="https://github.com/bcoe/c8/compare/v9.0.0...v9.1.0">9.1.0</a>
(2024-01-11)</h2>
<h3>Features</h3>
<ul>
<li>support passing reporter options from config (<a
href="https://redirect.github.com/bcoe/c8/issues/459">#459</a>) (<a
href="88db5db56e">88db5db</a>)</li>
</ul>
<h3>Bug Fixes</h3>
<ul>
<li><strong>refactor:</strong> remove stale check for
createDynamicModule (<a
href="5e18365b15">5e18365</a>)</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="1ec3cc41ff"><code>1ec3cc4</code></a>
chore(main): release 10.1.3 (<a
href="https://redirect.github.com/bcoe/c8/issues/553">#553</a>)</li>
<li><a
href="b32a563e25"><code>b32a563</code></a>
fix(deps): update bcoe/v8-coverage addressing v8 issue (<a
href="https://redirect.github.com/bcoe/c8/issues/552">#552</a>)</li>
<li><a
href="75fa99f7bc"><code>75fa99f</code></a>
chore(deps): update dependency <code>@​types/node</code> to v22 (<a
href="https://redirect.github.com/bcoe/c8/issues/548">#548</a>)</li>
<li><a
href="ff146b4dde"><code>ff146b4</code></a>
chore(main): release 10.1.2 (<a
href="https://redirect.github.com/bcoe/c8/issues/538">#538</a>)</li>
<li><a
href="3b91fdaa0e"><code>3b91fda</code></a>
fix(deps): make monocart-coverage-reports an optional with meta
defined</li>
<li><a
href="e3560e1211"><code>e3560e1</code></a>
chore(main): release 10.1.1 (<a
href="https://redirect.github.com/bcoe/c8/issues/536">#536</a>)</li>
<li><a
href="13979a76b5"><code>13979a7</code></a>
fix: stop installing monocart-coverage-reports (<a
href="https://redirect.github.com/bcoe/c8/issues/535">#535</a>)</li>
<li><a
href="15ac6905cd"><code>15ac690</code></a>
chore(main): release 10.1.0 (<a
href="https://redirect.github.com/bcoe/c8/issues/533">#533</a>)</li>
<li><a
href="96e869ff8c"><code>96e869f</code></a>
build(deps-dev): bump braces from 3.0.2 to 3.0.3 (<a
href="https://redirect.github.com/bcoe/c8/issues/534">#534</a>)</li>
<li><a
href="2e5e297ac0"><code>2e5e297</code></a>
feat: add experimental monocart reports (<a
href="https://redirect.github.com/bcoe/c8/issues/521">#521</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/bcoe/c8/compare/v8.0.1...v10.1.3">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=c8&package-manager=npm_and_yarn&previous-version=8.0.1&new-version=10.1.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-04-26 23:49:47 -07:00
Jeff Wainwright
0b515d24ea chore: adds updated codecov (#1873) 
## Checklist

- Adds initial working codecov comment with node test runner
- Updates done callbacks to async/await
   - **NOTE:** This was causing tests to hang
- Closes #1860

---

- [x] I have ensured my pull request is not behind the main or master
branch of the original repository.
- [x] I have rebased all commits where necessary so that reviewing this
pull request can be done without having to merge it first.
- [x] I have written a commit message that passes commitlint linting.
- [x] I have ensured that my code changes pass linting tests.
- [x] I have ensured that my code changes pass unit tests.
- [x] I have described my pull request and the reasons for code changes
along with context if necessary.

---------

Co-authored-by: Jeff Wainwright <jeffry@tuta.com>
 2025-04-23 14:21:41 -07:00
jongleberry
16b6e08059 3.0.0-alpha.5 2025-04-06 14:43:04 -07:00
jongleberry
3c892f9ca6 :chore: ⬆️ dependencies 2025-04-06 14:36:15 -07:00
dependabot[bot]
d5081a1520 build(deps): bump type-is from 1.6.18 to 2.0.1 (#1866) 
Bumps [type-is](https://github.com/jshttp/type-is) from 1.6.18 to 2.0.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/jshttp/type-is/releases">type-is's
releases</a>.</em></p>
<blockquote>
<h2>2.0.1</h2>
<h2>What's Changed</h2>
<ul>
<li>Refactor normalizeType function to simplify return statement by <a
href="https://github.com/Ayoub-Mabrouk"><code>@​Ayoub-Mabrouk</code></a>
in <a
href="https://redirect.github.com/jshttp/type-is/pull/61">jshttp/type-is#61</a></li>
<li>Refactor tryNormalizeType function for cleaner code by <a
href="https://github.com/Ayoub-Mabrouk"><code>@​Ayoub-Mabrouk</code></a>
in <a
href="https://redirect.github.com/jshttp/type-is/pull/59">jshttp/type-is#59</a></li>
<li>Replace deprecated String.prototype.substr() by <a
href="https://github.com/CommanderRoot"><code>@​CommanderRoot</code></a>
in <a
href="https://redirect.github.com/jshttp/type-is/pull/50">jshttp/type-is#50</a></li>
<li>Optimize argument handling in typeofrequest function by <a
href="https://github.com/Ayoub-Mabrouk"><code>@​Ayoub-Mabrouk</code></a>
in <a
href="https://redirect.github.com/jshttp/type-is/pull/60">jshttp/type-is#60</a></li>
<li>Release 2.0.1 by <a
href="https://github.com/UlisesGascon"><code>@​UlisesGascon</code></a>
in <a
href="https://redirect.github.com/jshttp/type-is/pull/64">jshttp/type-is#64</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a
href="https://github.com/Ayoub-Mabrouk"><code>@​Ayoub-Mabrouk</code></a>
made their first contribution in <a
href="https://redirect.github.com/jshttp/type-is/pull/61">jshttp/type-is#61</a></li>
<li><a
href="https://github.com/CommanderRoot"><code>@​CommanderRoot</code></a>
made their first contribution in <a
href="https://redirect.github.com/jshttp/type-is/pull/50">jshttp/type-is#50</a></li>
<li><a
href="https://github.com/UlisesGascon"><code>@​UlisesGascon</code></a>
made their first contribution in <a
href="https://redirect.github.com/jshttp/type-is/pull/64">jshttp/type-is#64</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/jshttp/type-is/compare/2.0.0...2.0.1">https://github.com/jshttp/type-is/compare/2.0.0...2.0.1</a></p>
<h2>2.0.0</h2>
<h2>What's Changed</h2>
<ul>
<li>README changes by <a
href="https://github.com/Yash-Singh1"><code>@​Yash-Singh1</code></a> in
<a
href="https://redirect.github.com/jshttp/type-is/pull/48">jshttp/type-is#48</a></li>
<li>add OSSF scorecard pipeline by <a
href="https://github.com/carpasse"><code>@​carpasse</code></a> in <a
href="https://redirect.github.com/jshttp/type-is/pull/55">jshttp/type-is#55</a></li>
<li>Fix ci pipeline by <a
href="https://github.com/carpasse"><code>@​carpasse</code></a> in <a
href="https://redirect.github.com/jshttp/type-is/pull/54">jshttp/type-is#54</a></li>
<li>2.x Staging PR by <a
href="https://github.com/wesleytodd"><code>@​wesleytodd</code></a> in <a
href="https://redirect.github.com/jshttp/type-is/pull/57">jshttp/type-is#57</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a
href="https://github.com/Yash-Singh1"><code>@​Yash-Singh1</code></a>
made their first contribution in <a
href="https://redirect.github.com/jshttp/type-is/pull/48">jshttp/type-is#48</a></li>
<li><a href="https://github.com/carpasse"><code>@​carpasse</code></a>
made their first contribution in <a
href="https://redirect.github.com/jshttp/type-is/pull/55">jshttp/type-is#55</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/jshttp/type-is/compare/1.6.18...2.0.0">https://github.com/jshttp/type-is/compare/1.6.18...2.0.0</a></p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/jshttp/type-is/blob/master/HISTORY.md">type-is's
changelog</a>.</em></p>
<blockquote>
<h1>2.0.1 / 2025-03-27</h1>
<h1>2.0.0 / 2024-08-31</h1>
<ul>
<li>Drop node &lt;18</li>
<li>Use <code>content-type@^1.0.5</code> and
<code>media-typer@^1.0.0</code> for type validation
<ul>
<li>No behavior changes, upgrades <code>media-typer</code></li>
</ul>
</li>
<li>deps: mime-types@^3.0.0
<ul>
<li>Add <code>application/toml</code> with extension
<code>.toml</code></li>
<li>Add <code>application/ubjson</code> with extension
<code>.ubj</code></li>
<li>Add <code>application/x-keepass2</code> with extension
<code>.kdbx</code></li>
<li>Add deprecated iWorks mime types and extensions</li>
<li>Add extension <code>.amr</code> to <code>audio/amr</code></li>
<li>Add extension <code>.cjs</code> to
<code>application/node</code></li>
<li>Add extension <code>.dbf</code> to
<code>application/vnd.dbf</code></li>
<li>Add extension <code>.m4s</code> to
<code>video/iso.segment</code></li>
<li>Add extension <code>.mvt</code> to
<code>application/vnd.mapbox-vector-tile</code></li>
<li>Add extension <code>.mxmf</code> to
<code>audio/mobile-xmf</code></li>
<li>Add extension <code>.opus</code> to <code>audio/ogg</code></li>
<li>Add extension <code>.rar</code> to
<code>application/vnd.rar</code></li>
<li>Add extension <code>.td</code> to
<code>application/urc-targetdesc+xml</code></li>
<li>Add extension <code>.trig</code> to
<code>application/trig</code></li>
<li>Add extensions from IANA for <code>application/*+xml</code>
types</li>
<li>Add <code>image/avif</code> with extension <code>.avif</code></li>
<li>Add <code>image/ktx2</code> with extension <code>.ktx2</code></li>
<li>Add <code>image/vnd.ms-dds</code> with extension
<code>.dds</code></li>
<li>Add new upstream MIME types</li>
<li>Fix extension of <code>application/vnd.apple.keynote</code> to be
<code>.key</code></li>
<li>Remove ambigious extensions from IANA for
<code>application/*+xml</code> types</li>
<li>Update primary extension to <code>.es</code> for
<code>application/ecmascript</code></li>
</ul>
</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="4a16e0850e"><code>4a16e08</code></a>
2.0.1 (<a
href="https://redirect.github.com/jshttp/type-is/issues/64">#64</a>)</li>
<li><a
href="e45c6afedc"><code>e45c6af</code></a>
chore: refactor <code>typeofrequest</code> function (<a
href="https://redirect.github.com/jshttp/type-is/issues/60">#60</a>)</li>
<li><a
href="b4e746dcbc"><code>b4e746d</code></a>
chore: refactor to replace deprecated String method (<a
href="https://redirect.github.com/jshttp/type-is/issues/50">#50</a>)</li>
<li><a
href="a00e748eeb"><code>a00e748</code></a>
chore: refactor <code>tryNormalizeType</code> function (<a
href="https://redirect.github.com/jshttp/type-is/issues/59">#59</a>)</li>
<li><a
href="5ecc1414eb"><code>5ecc141</code></a>
chore: refactor <code>normalizeType</code> function (<a
href="https://redirect.github.com/jshttp/type-is/issues/61">#61</a>)</li>
<li><a
href="0d79e2d0c5"><code>0d79e2d</code></a>
2.0.0</li>
<li><a
href="d8a2552c02"><code>d8a2552</code></a>
fix(deps): accept minors of media-typer</li>
<li><a
href="e5dc464bc8"><code>e5dc464</code></a>
fix(deps): accept minors of media-typer</li>
<li><a
href="ed1cc660b3"><code>ed1cc66</code></a>
Use content-type and media-typer for type validation</li>
<li><a
href="3700a79ebc"><code>3700a79</code></a>
fix(deps): replace media-typer with content-type</li>
<li>Additional commits viewable in <a
href="https://github.com/jshttp/type-is/compare/1.6.18...2.0.1">compare
view</a></li>
</ul>
</details>
<details>
<summary>Maintainer changes</summary>
<p>This version was pushed to npm by <a
href="https://www.npmjs.com/~ulisesgascon">ulisesgascon</a>, a new
releaser for type-is since your current version.</p>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=type-is&package-manager=npm_and_yarn&previous-version=1.6.18&new-version=2.0.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-04-02 21:25:54 -07:00
dependabot[bot]
579fd15bf8 build(deps-dev): bump supertest from 7.0.0 to 7.1.0 (#1863) 
Bumps [supertest](https://github.com/ladjs/supertest) from 7.0.0 to
7.1.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/ladjs/supertest/releases">supertest's
releases</a>.</em></p>
<blockquote>
<h2>v7.1.0</h2>
<ul>
<li>Merge pull request <a
href="https://redirect.github.com/ladjs/supertest/issues/852">#852</a>
from alxndrsn/econnreset de045d4</li>
<li>Merge pull request <a
href="https://redirect.github.com/ladjs/supertest/issues/845">#845</a>
from ikonst/master be0d5c7</li>
<li>Merge pull request <a
href="https://redirect.github.com/ladjs/supertest/issues/854">#854</a>
from alxndrsn/commitlint 35ac86f</li>
<li>fix(dev): commitlint dev dependency &amp; config  e67fcb2</li>
<li>fix: avoid server re-use race conditions  96c06e3</li>
<li>test: fix test failure due to localhost being also ipv6 92079a0</li>
</ul>
<p><a
href="https://github.com/ladjs/supertest/compare/v7.0.0...v7.1.0">https://github.com/ladjs/supertest/compare/v7.0.0...v7.1.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="359bc52e3a"><code>359bc52</code></a>
7.1.0</li>
<li><a
href="de045d4d41"><code>de045d4</code></a>
Merge pull request <a
href="https://redirect.github.com/ladjs/supertest/issues/852">#852</a>
from alxndrsn/econnreset</li>
<li><a
href="be0d5c73d9"><code>be0d5c7</code></a>
Merge pull request <a
href="https://redirect.github.com/ladjs/supertest/issues/845">#845</a>
from ikonst/master</li>
<li><a
href="35ac86fc23"><code>35ac86f</code></a>
Merge pull request <a
href="https://redirect.github.com/ladjs/supertest/issues/854">#854</a>
from alxndrsn/commitlint</li>
<li><a
href="e67fcb2791"><code>e67fcb2</code></a>
fix(dev): commitlint dev dependency &amp; config</li>
<li><a
href="96c06e3dcb"><code>96c06e3</code></a>
fix: avoid server re-use race conditions</li>
<li><a
href="92079a017c"><code>92079a0</code></a>
test: fix test failure due to localhost being also ipv6</li>
<li>See full diff in <a
href="https://github.com/ladjs/supertest/compare/v7.0.0...v7.1.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=supertest&package-manager=npm_and_yarn&previous-version=7.0.0&new-version=7.1.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-03-21 22:34:34 -07:00
jongleberry
eee6e805f9 3.0.0-alpha.4 2025-03-21 00:33:57 -07:00
jongleberry
af0547d5f6 don't coerce header value to string on set #1394 (#1859) 
this is a rebase of https://github.com/koajs/koa/pull/1394. closes #1394
 2025-03-17 21:43:21 -07:00
dependabot[bot]
ca6718c90b build(deps): bump debug from 4.3.6 to 4.4.0 (#1852) 
Bumps [debug](https://github.com/debug-js/debug) from 4.3.6 to 4.4.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/debug-js/debug/releases">debug's
releases</a>.</em></p>
<blockquote>
<h2>4.4.0</h2>
<p>Fixes (hopefully) the inefficient regex warnings in
<code>.enable()</code>.</p>
<p>Minor version as this is invariably going to break certain users who
misuse the <code>.enable()</code> API and expected it to work with
regexes, which was never supported nor documented. That's on you, sorry
- that functionality won't be added back.</p>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/debug-js/debug/compare/4.3.7...4.4.0">https://github.com/debug-js/debug/compare/4.3.7...4.4.0</a></p>
<h2>4.3.7</h2>
<h2>What's Changed</h2>
<ul>
<li>Upgrade ms to version 2.1.3 by <a
href="https://github.com/realityking"><code>@​realityking</code></a> in
<a
href="https://redirect.github.com/debug-js/debug/pull/819">debug-js/debug#819</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/debug-js/debug/compare/4.3.6...4.3.7">https://github.com/debug-js/debug/compare/4.3.6...4.3.7</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="7e3814cc60"><code>7e3814c</code></a>
4.4.0</li>
<li><a
href="d2d6bf0bab"><code>d2d6bf0</code></a>
fix inefficient .enable() regex and .enabled() test</li>
<li><a
href="bc60914816"><code>bc60914</code></a>
4.3.7</li>
<li><a
href="c63e96e649"><code>c63e96e</code></a>
Upgrade ms to version 2.1.3 (<a
href="https://redirect.github.com/debug-js/debug/issues/819">#819</a>)</li>
<li><a
href="382864a45a"><code>382864a</code></a>
remove archaic badges from readme</li>
<li>See full diff in <a
href="https://github.com/debug-js/debug/compare/4.3.6...4.4.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=debug&package-manager=npm_and_yarn&previous-version=4.3.6&new-version=4.4.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

You can trigger a rebase of this PR by commenting `@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

> **Note**
> Automatic rebases have been disabled on this pull request as it has
been open for over 30 days.

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-03-16 21:04:18 -07:00
jongleberry
71902b1f21 3.0.0-alpha.2 2024-11-03 21:08:13 -08:00
Imed Jaberi
4c34546413 deps: update http-errors to v2.0.0 (#1486) 
- https://github.com/jshttp/http-errors/blob/master/HISTORY.md
 2024-11-03 20:52:31 -08:00
Vlad Sirenko
ce6b3b6eee Use node test runner (#1845) 
## Checklist
use `node --test` instead of `jest`
See: https://github.com/koajs/koa/issues/1837#issuecomment-2323002820

- [X] I have ensured my pull request is not behind the main or master
branch of the original repository.
- [X] I have rebased all commits where necessary so that reviewing this
pull request can be done without having to merge it first.
- [X] I have written a commit message that passes commitlint linting.
- [X] I have ensured that my code changes pass linting tests.
- [X] I have ensured that my code changes pass unit tests.
- [X] I have described my pull request and the reasons for code changes
along with context if necessary.
 2024-10-27 22:04:24 -05:00
Michal Martinek
988ebec9b4 ⬆️ cookies@0.9.1 (#1846) 
## Checklist

- [x] I have ensured my pull request is not behind the main or master
branch of the original repository.
- [x] I have rebased all commits where necessary so that reviewing this
pull request can be done without having to merge it first.
- [x] I have written a commit message that passes commitlint linting.
- [x] I have ensured that my code changes pass linting tests.
- [x] I have ensured that my code changes pass unit tests.
- [x] I have described my pull request and the reasons for code changes
along with context if necessary.

## Maintainer Notes

Closes https://github.com/koajs/koa/issues/1561
 2024-10-22 13:39:59 -05:00
jongleberry
0d9f062aa8 ⬆️ statuses@2.0.1 
commit 84c89f25b880cf648044e2d0eeb14f9a43e1f2c9
Author: jongleberry <jonathanrichardong@gmail.com>
Date:   Sat Aug 31 11:02:37 2024 -0700

    package-lock++

commit 2c7715c797473d463ed73542d68e634f172dc3c3
Merge: 5af69c8 b95dfcb
Author: jongleberry <jonathanrichardong@gmail.com>
Date:   Sat Aug 31 10:56:58 2024 -0700

    Merge branch 'master' into update-statuses-to-v2.0.0

commit 5af69c87926db6f491af2b8882c07d7d141fe422
Author: imed jaberi <imed.jaberi@hotmail.fr>
Date:   Sat Apr 2 14:47:43 2022 +0100

    fix tests

commit 9af4bb37db0be416cd9e211ef4fc52f57de0cb69
Author: imed jaberi <imed.jaberi@hotmail.fr>
Date:   Sat Apr 2 14:43:51 2022 +0100

    lint code

commit 140be25c88d7641ce7cfc1463889d437e3cb939d
Author: imed jaberi <imed.jaberi@hotmail.fr>
Date:   Sat Apr 2 14:42:10 2022 +0100

    clean locks ---force

commit bc553ec713b16c1fe4d6a400637ab30590c176d2
Author: imed jaberi <imed.jaberi@hotmail.fr>
Date:   Sat Apr 2 14:35:12 2022 +0100

    clean locks

commit 3d7e22aef781820f7d611ad64f7622a7258e2c6d
Merge: ff65ef6 f3c67d9
Author: imed jaberi <imed.jaberi@hotmail.fr>
Date:   Sat Apr 2 14:31:30 2022 +0100

    resolve conflicts

commit ff65ef6c6b19c7f307726bae22eb8154894a14dc
Author: 3imed-jaberi <imed_jebari@hotmail.fr>
Date:   Tue Jul 14 10:52:50 2020 +0200

     deps: use the new statuses api --ctx --response --test

commit f565f3b732a6550a74506c480319e6efe4b51da7
Author: 3imed-jaberi <imed_jebari@hotmail.fr>
Date:   Tue Jul 14 10:52:31 2020 +0200

     deps: use the new statuses api --ctx --response --src

commit e8f7609ca405904fabc6669fa31be0df1c9ada55
Author: 3imed-jaberi <imed_jebari@hotmail.fr>
Date:   Tue Jul 14 10:50:49 2020 +0200

     deps: update statuses >> v2.0.0
 2024-08-31 11:05:25 -07:00
jongleberry
51d0e2deca ⬆️ jest@29 (#1839) 2024-08-30 21:52:45 -07:00
jongleberry
ba9a222382 ⬆️ supertest@7 (#1841) 2024-08-30 21:52:36 -07:00
dependabot[bot]
2281cadfd9 build(deps-dev): bump braces from 3.0.2 to 3.0.3 (#1822) 
Bumps [braces](https://github.com/micromatch/braces) from 3.0.2 to
3.0.3.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="74b2db2938"><code>74b2db2</code></a>
3.0.3</li>
<li><a
href="88f1429a0f"><code>88f1429</code></a>
update eslint. lint, fix unit tests.</li>
<li><a
href="415d660c30"><code>415d660</code></a>
Snyk js braces 6838727 (<a
href="https://redirect.github.com/micromatch/braces/issues/40">#40</a>)</li>
<li><a
href="190510f79d"><code>190510f</code></a>
fix tests, skip 1 test in test/braces.expand</li>
<li><a
href="716eb9f12d"><code>716eb9f</code></a>
readme bump</li>
<li><a
href="a5851e57f4"><code>a5851e5</code></a>
Merge pull request <a
href="https://redirect.github.com/micromatch/braces/issues/37">#37</a>
from coderaiser/fix/vulnerability</li>
<li><a
href="2092bd1fb1"><code>2092bd1</code></a>
feature: braces: add maxSymbols (<a
href="https://github.com/micromatch/braces/issues/">https://github.com/micromatch/braces/issues/</a>...</li>
<li><a
href="9f5b4cf473"><code>9f5b4cf</code></a>
fix: vulnerability (<a
href="https://security.snyk.io/vuln/SNYK-JS-BRACES-6838727">https://security.snyk.io/vuln/SNYK-JS-BRACES-6838727</a>)</li>
<li><a
href="98414f9f1f"><code>98414f9</code></a>
remove funding file</li>
<li><a
href="665ab5d561"><code>665ab5d</code></a>
update keepEscaping doc (<a
href="https://redirect.github.com/micromatch/braces/issues/27">#27</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/micromatch/braces/compare/3.0.2...3.0.3">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=braces&package-manager=npm_and_yarn&previous-version=3.0.2&new-version=3.0.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

You can trigger a rebase of this PR by commenting `@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts page](https://github.com/koajs/koa/network/alerts).

</details>

> **Note**
> Automatic rebases have been disabled on this pull request as it has
been open for over 30 days.

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-08-18 13:27:08 -07:00
dependabot[bot]
5bf8002d7b build(deps): bump debug from 4.3.4 to 4.3.6 (#1836) 
Bumps [debug](https://github.com/debug-js/debug) from 4.3.4 to 4.3.6.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/debug-js/debug/releases">debug's
releases</a>.</em></p>
<blockquote>
<h2>4.3.6</h2>
<h2>What's Changed</h2>
<ul>
<li>Avoid using deprecated RegExp.$1 by <a
href="https://github.com/bluwy"><code>@​bluwy</code></a> in <a
href="https://redirect.github.com/debug-js/debug/pull/969">debug-js/debug#969</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/bluwy"><code>@​bluwy</code></a> made
their first contribution in <a
href="https://redirect.github.com/debug-js/debug/pull/969">debug-js/debug#969</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/debug-js/debug/compare/4.3.5...4.3.6">https://github.com/debug-js/debug/compare/4.3.5...4.3.6</a></p>
<h2>4.3.5</h2>
<h1>Patch</h1>
<ul>
<li>cac39b1c5b018b0fe93a53a05f084eee543d17f5 Fix/debug depth (<a
href="https://redirect.github.com/debug-js/debug/issues/926">#926</a>)</li>
</ul>
<p>Thank you <a
href="https://github.com/calvintwr"><code>@​calvintwr</code></a> for the
fix.</p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="c33b464a79"><code>c33b464</code></a>
4.3.6</li>
<li><a
href="7956a45f68"><code>7956a45</code></a>
Avoid using deprecated RegExp.$1</li>
<li><a
href="5464bdddbc"><code>5464bdd</code></a>
4.3.5</li>
<li><a
href="f244ada2e9"><code>f244ada</code></a>
update authorship contact info</li>
<li><a
href="cac39b1c5b"><code>cac39b1</code></a>
Fix/debug depth (<a
href="https://redirect.github.com/debug-js/debug/issues/926">#926</a>)</li>
<li><a
href="f66cb2d9f7"><code>f66cb2d</code></a>
remove .github folder (and the outdated issue templates)</li>
<li><a
href="d1616622e4"><code>d161662</code></a>
Update ISSUE_TEMPLATE.md</li>
<li><a
href="12c1ad04db"><code>12c1ad0</code></a>
Update ISSUE_TEMPLATE.md</li>
<li>See full diff in <a
href="https://github.com/debug-js/debug/compare/4.3.4...4.3.6">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=debug&package-manager=npm_and_yarn&previous-version=4.3.4&new-version=4.3.6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-08-18 13:16:44 -07:00
Matthieu Tabarin
757e4ebc51 deps: make "only" package inside (#1824) 
closes https://github.com/koajs/koa/issues/1802
 2024-06-20 12:26:12 +08:00
Evgenii Troinov
5573b966a6 feat: Drop node.js 12.x, 14.x, 17.x support (#1797) 2024-04-22 14:25:10 +08:00
dependabot[bot]
6bd2cb18dd build(deps): bump encodeurl from 1.0.2 to 2.0.0 (#1807) 
Bumps [encodeurl](https://github.com/pillarjs/encodeurl) from 1.0.2 to 2.0.0.
- [Release notes](https://github.com/pillarjs/encodeurl/releases)
- [Commits](https://github.com/pillarjs/encodeurl/compare/v1.0.2...v2.0.0)

---
updated-dependencies:
- dependency-name: encodeurl
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-03-29 18:13:23 -07:00
Evgenii Troinov
ac61b8ca12 chore: Replacing eslint with standard cli (#1796) 2024-01-17 10:01:07 +08:00
dependabot[bot]
6134b3c8bf build(deps-dev): bump supertest from 6.3.2 to 6.3.3 (#1727) 
Bumps [supertest](https://github.com/visionmedia/supertest) from 6.3.2 to 6.3.3.
- [Release notes](https://github.com/visionmedia/supertest/releases)
- [Commits](https://github.com/visionmedia/supertest/compare/v6.3.2...v6.3.3)

---
updated-dependencies:
- dependency-name: supertest
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-12-09 13:49:41 +08:00
fengmk2
a0148c1f01 Revert "build(deps-dev): bump jest from 28.1.3 to 29.3.1 (#1709)" (#1719) 
This reverts commit d2b09439b7.
 2022-12-06 11:31:39 +08:00
dependabot[bot]
d2b09439b7 build(deps-dev): bump jest from 28.1.3 to 29.3.1 (#1709) 
Bumps [jest](https://github.com/facebook/jest/tree/HEAD/packages/jest) from 28.1.3 to 29.3.1.
- [Release notes](https://github.com/facebook/jest/releases)
- [Changelog](https://github.com/facebook/jest/blob/main/CHANGELOG.md)
- [Commits](https://github.com/facebook/jest/commits/v29.3.1/packages/jest)

---
updated-dependencies:
- dependency-name: jest
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-12-06 10:39:09 +08:00