{"payload":{"feedbackUrl":"https://github.com/orgs/community/discussions/53140","repo":{"id":355484490,"defaultBranch":"master","name":"glueck-auf-ruegen","ownerLogin":"marvinfriede","currentUserCanPush":false,"isFork":false,"isEmpty":false,"createdAt":"2021-04-07T09:21:59.000Z","ownerAvatar":"https://avatars.githubusercontent.com/u/51965259?v=4","public":true,"private":false,"isOrgOwned":false},"refInfo":{"name":"","listCacheKey":"v0:1726580651.0","currentOid":""},"activityList":{"items":[{"before":"1fbda199d04bc3b8e4abc4a9ad068b0403d3d24e","after":null,"ref":"refs/heads/dependabot/npm_and_yarn/multi-d66d039ac5","pushedAt":"2024-09-17T13:44:11.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"marvinfriede","name":"Marvin Friede","path":"/marvinfriede","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/51965259?s=80&v=4"}},{"before":"fe8f3c975a587051a14c2fa1719533be435ac1c4","after":"c02f3468aba5a3104f2ad68d9f142767724b326a","ref":"refs/heads/master","pushedAt":"2024-09-17T13:44:08.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"marvinfriede","name":"Marvin Friede","path":"/marvinfriede","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/51965259?s=80&v=4"},"commit":{"message":"Bump serve-static and express (#50)\n\nBumps [serve-static](https://github.com/expressjs/serve-static) and\r\n[express](https://github.com/expressjs/express). These dependencies\r\nneeded to be updated together.\r\nUpdates `serve-static` from 1.15.0 to 1.16.2\r\n
\r\nRelease notes\r\n

Sourced from serve-static's\r\nreleases.

\r\n
\r\n

1.16.0

\r\n

What's Changed

\r\n\r\n

New Contributors

\r\n\r\n

Full Changelog: https://github.com/expressjs/serve-static/compare/v1.15.0...1.16.0

\r\n
\r\n
\r\n
\r\nChangelog\r\n

Sourced from serve-static's\r\nchangelog.

\r\n
\r\n

1.16.2 / 2024-09-11

\r\n\r\n

1.16.1 / 2024-09-11

\r\n\r\n

1.16.0 / 2024-09-10

\r\n\r\n
\r\n
\r\n
\r\nCommits\r\n\r\n
\r\n
\r\nMaintainer changes\r\n

This version was pushed to npm by wesleytodd, a new releaser\r\nfor serve-static since your current version.

\r\n
\r\n
\r\n\r\nUpdates `express` from 4.19.2 to 4.21.0\r\n
\r\nRelease notes\r\n

Sourced from express's\r\nreleases.

\r\n
\r\n

4.21.0

\r\n

What's Changed

\r\n\r\n

New Contributors

\r\n\r\n

Full Changelog: https://github.com/expressjs/express/compare/4.20.0...4.21.0

\r\n

4.20.0

\r\n

What's Changed

\r\n

Important

\r\n\r\n

Other Changes

\r\n\r\n\r\n
\r\n

... (truncated)

\r\n
\r\n
\r\nChangelog\r\n

Sourced from express's\r\nchangelog.

\r\n
\r\n

4.21.0 / 2024-09-11

\r\n\r\n

4.20.0 / 2024-09-10

\r\n\r\n
\r\n
\r\n
\r\nCommits\r\n\r\n
\r\n
\r\n\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\nYou can disable automated security fix PRs for this repo from the\r\n[Security Alerts\r\npage](https://github.com/marvinfriede/glueck-auf-ruegen/network/alerts).\r\n\r\n
\r\n\r\nSigned-off-by: dependabot[bot] \r\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>","shortMessageHtmlLink":"Bump serve-static and express (#50)"}},{"before":"878d2cd5ea4dba1f4ff925ff0ac375fefcb56f01","after":null,"ref":"refs/heads/dependabot/npm_and_yarn/multi-cf87d80143","pushedAt":"2024-09-17T13:43:58.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"marvinfriede","name":"Marvin Friede","path":"/marvinfriede","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/51965259?s=80&v=4"}},{"before":"45490f1a70467bf1e9c2817050f839d3fec4b374","after":"fe8f3c975a587051a14c2fa1719533be435ac1c4","ref":"refs/heads/master","pushedAt":"2024-09-17T13:43:54.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"marvinfriede","name":"Marvin Friede","path":"/marvinfriede","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/51965259?s=80&v=4"},"commit":{"message":"Bump send and express (#51)\n\nBumps [send](https://github.com/pillarjs/send) and\r\n[express](https://github.com/expressjs/express). These dependencies\r\nneeded to be updated together.\r\nUpdates `send` from 0.18.0 to 0.19.0\r\n
\r\nRelease notes\r\n

Sourced from send's\r\nreleases.

\r\n
\r\n

0.19.0

\r\n

What's Changed

\r\n
    \r\n
  • Remove link renderization in html while redirecting (pillarjs/send#235)
    • \r\n
\r\n

New Contributors

\r\n
    \r\n
  • @​UlisesGascon\r\nmade their first contribution in pillarjs/send#235
    • \r\n
\r\n

Full Changelog: https://github.com/pillarjs/send/compare/0.18.0...0.19.0

\r\n
\r\n
\r\n
\r\nChangelog\r\n

Sourced from send's\r\nchangelog.

\r\n
\r\n

0.19.0 / 2024-09-10

\r\n
    \r\n
  • Remove link renderization in html while redirecting
    • \r\n
\r\n
\r\n
\r\n
\r\nCommits\r\n\r\n
\r\n
\r\nMaintainer changes\r\n

This version was pushed to npm by ulisesgascon, a new\r\nreleaser for send since your current version.

\r\n
\r\n
\r\n\r\nUpdates `express` from 4.19.2 to 4.21.0\r\n
\r\nRelease notes\r\n

Sourced from express's\r\nreleases.

\r\n
\r\n

4.21.0

\r\n

What's Changed

\r\n
    \r\n
  • Deprecate "back" magic string in redirects by\r\n@​blakeembrey\r\nin expressjs/express#5935
    • \r\n
  • finalhandler@1.3.1 by @​wesleytodd in expressjs/express#5954
    • \r\n
  • fix(deps): serve-static@1.16.2 by @​wesleytodd in expressjs/express#5951
    • \r\n
  • Upgraded dependency qs to 6.13.0 to match qs in body-parser by @​agadzinski93\r\nin expressjs/express#5946
    • \r\n
\r\n

New Contributors

\r\n
    \r\n
  • @​agadzinski93\r\nmade their first contribution in expressjs/express#5946
    • \r\n
\r\n

Full Changelog: https://github.com/expressjs/express/compare/4.20.0...4.21.0

\r\n

4.20.0

\r\n

What's Changed

\r\n

Important

\r\n
    \r\n
  • IMPORTANT: The default depth level for parsing\r\nURL-encoded data is now 32 (previously was\r\nInfinity)
    • \r\n
  • Remove link renderization in html while using\r\nres.redirect
    • \r\n
\r\n

Other Changes

\r\n
    \r\n
  • 4.19.2 Staging by @​wesleytodd in expressjs/express#5561
    • \r\n
  • remove duplicate location test for data uri by @​wesleytodd in expressjs/express#5562
    • \r\n
  • feat: document beta releases expectations by @​marco-ippolito\r\nin expressjs/express#5565
    • \r\n
  • Cut down on duplicated CI runs by @​jonchurch in expressjs/express#5564
    • \r\n
  • Add a Threat Model by @​UlisesGascon\r\nin expressjs/express#5526
    • \r\n
  • Assign captain of encodeurl by @​blakeembrey in\r\nexpressjs/express#5579
    • \r\n
  • Nominate jonchurch as repo captain for http-errors,\r\nexpressjs.com, morgan, cors,\r\nbody-parser by @​jonchurch in expressjs/express#5587
    • \r\n
  • docs: update Security.md by @​inigomarquinez\r\nin expressjs/express#5590
    • \r\n
  • docs: update triage nomination policy by @​UlisesGascon\r\nin expressjs/express#5600
    • \r\n
  • Add CodeQL (SAST) by @​UlisesGascon\r\nin expressjs/express#5433
    • \r\n
  • docs: add UlisesGascon as triage initiative captain by @​UlisesGascon\r\nin expressjs/express#5605
    • \r\n
  • deps: encodeurl@~2.0.0 by @​blakeembrey in\r\nexpressjs/express#5569
    • \r\n
  • skip QUERY method test by @​jonchurch in expressjs/express#5628
    • \r\n
  • ignore ETAG query test on 21 and 22, reuse skip util by @​jonchurch in expressjs/express#5639
    • \r\n
  • add support Node.js@22 in the CI by @​mertcanaltin\r\nin expressjs/express#5627
    • \r\n
  • doc: add table of contents, tc/triager lists to readme by @​mertcanaltin\r\nin expressjs/express#5619
    • \r\n
  • List and sort all projects, add captains by @​blakeembrey in\r\nexpressjs/express#5653
    • \r\n
  • docs: add @​UlisesGascon\r\nas captain for cookie-parser by @​UlisesGascon\r\nin expressjs/express#5666
    • \r\n
  • ✨ bring back query tests for node 21 by @​ctcpip in expressjs/express#5690
    • \r\n
  • [v4] Deprecate res.clearCookie accepting\r\noptions.maxAge and options.expires by @​jonchurch in expressjs/express#5672
    • \r\n
  • skip QUERY tests for Node 21 only, still not supported by @​jonchurch in expressjs/express#5695
    • \r\n
  • 📝 update people, add ctcpip to TC by @​ctcpip in expressjs/express#5683
    • \r\n
  • remove minor version pinning from ci by @​jonchurch in expressjs/express#5722
    • \r\n
  • Fix link variable use in attribution section of CODE OF CONDUCT by\r\n@​IamLizu in expressjs/express#5762
    • \r\n
  • Replace Appveyor windows testing with GHA by @​jonchurch in expressjs/express#5599
    • \r\n
  • Add OSSF Scorecard badge by @​UlisesGascon\r\nin expressjs/express#5436
    • \r\n
  • update scorecard link by @​bjohansebas in\r\nexpressjs/express#5814
    • \r\n
  • Nominate @​IamLizu to the\r\ntriage team by @​UlisesGascon\r\nin expressjs/express#5836
    • \r\n
  • deps: path-to-regexp@0.1.8 by @​blakeembrey in\r\nexpressjs/express#5603
    • \r\n
\r\n\r\n
\r\n

... (truncated)

\r\n
\r\n
\r\nChangelog\r\n

Sourced from express's\r\nchangelog.

\r\n
\r\n

4.21.0 / 2024-09-11

\r\n
    \r\n
  • Deprecate res.location("back") and\r\nres.redirect("back") magic string
    • \r\n
  • deps: serve-static@1.16.2\r\n
      \r\n
    • includes send@0.19.0
      • \r\n
    \r\n
    • \r\n
  • deps: finalhandler@1.3.1
    • \r\n
  • deps: qs@6.13.0
    • \r\n
\r\n

4.20.0 / 2024-09-10

\r\n
    \r\n
  • deps: serve-static@0.16.0\r\n
      \r\n
    • Remove link renderization in html while redirecting
      • \r\n
    \r\n
    • \r\n
  • deps: send@0.19.0\r\n
      \r\n
    • Remove link renderization in html while redirecting
      • \r\n
    \r\n
    • \r\n
  • deps: body-parser@0.6.0\r\n
      \r\n
    • add depth option to customize the depth level in the\r\nparser
      • \r\n
    • IMPORTANT: The default depth level for parsing\r\nURL-encoded data is now 32 (previously was\r\nInfinity)
      • \r\n
    \r\n
    • \r\n
  • Remove link renderization in html while using\r\nres.redirect
    • \r\n
  • deps: path-to-regexp@0.1.10\r\n
      \r\n
    • Adds support for named matching groups in the routes using a\r\nregex
      • \r\n
    • Adds backtracking protection to parameters without regexes\r\ndefined
      • \r\n
    \r\n
    • \r\n
  • deps: encodeurl@~2.0.0\r\n
      \r\n
    • Removes encoding of \\, |, and\r\n^ to align better with URL spec
      • \r\n
    \r\n
    • \r\n
  • Deprecate passing options.maxAge and\r\noptions.expires to res.clearCookie\r\n
      \r\n
    • Will be ignored in v5, clearCookie will set a cookie with an expires\r\nin the past to instruct clients to delete the cookie
      • \r\n
    \r\n
    • \r\n
\r\n
\r\n
\r\n
\r\nCommits\r\n\r\n
\r\n
\r\n\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\nYou can disable automated security fix PRs for this repo from the\r\n[Security Alerts\r\npage](https://github.com/marvinfriede/glueck-auf-ruegen/network/alerts).\r\n\r\n
\r\n\r\nSigned-off-by: dependabot[bot] \r\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>","shortMessageHtmlLink":"Bump send and express (#51)"}},{"before":null,"after":"878d2cd5ea4dba1f4ff925ff0ac375fefcb56f01","ref":"refs/heads/dependabot/npm_and_yarn/multi-cf87d80143","pushedAt":"2024-09-17T04:13:44.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump send and express\n\nBumps [send](https://github.com/pillarjs/send) and [express](https://github.com/expressjs/express). These dependencies needed to be updated together.\n\nUpdates `send` from 0.18.0 to 0.19.0\n- [Release notes](https://github.com/pillarjs/send/releases)\n- [Changelog](https://github.com/pillarjs/send/blob/master/HISTORY.md)\n- [Commits](https://github.com/pillarjs/send/compare/0.18.0...0.19.0)\n\nUpdates `express` from 4.19.2 to 4.21.0\n- [Release notes](https://github.com/expressjs/express/releases)\n- [Changelog](https://github.com/expressjs/express/blob/4.21.0/History.md)\n- [Commits](https://github.com/expressjs/express/compare/4.19.2...4.21.0)\n\n---\nupdated-dependencies:\n- dependency-name: send\n dependency-type: indirect\n- dependency-name: express\n dependency-type: indirect\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump send and express"}},{"before":null,"after":"1fbda199d04bc3b8e4abc4a9ad068b0403d3d24e","ref":"refs/heads/dependabot/npm_and_yarn/multi-d66d039ac5","pushedAt":"2024-09-17T03:46:53.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump serve-static and express\n\nBumps [serve-static](https://github.com/expressjs/serve-static) and [express](https://github.com/expressjs/express). These dependencies needed to be updated together.\n\nUpdates `serve-static` from 1.15.0 to 1.16.2\n- [Release notes](https://github.com/expressjs/serve-static/releases)\n- [Changelog](https://github.com/expressjs/serve-static/blob/v1.16.2/HISTORY.md)\n- [Commits](https://github.com/expressjs/serve-static/compare/v1.15.0...v1.16.2)\n\nUpdates `express` from 4.19.2 to 4.21.0\n- [Release notes](https://github.com/expressjs/express/releases)\n- [Changelog](https://github.com/expressjs/express/blob/4.21.0/History.md)\n- [Commits](https://github.com/expressjs/express/compare/4.19.2...4.21.0)\n\n---\nupdated-dependencies:\n- dependency-name: serve-static\n dependency-type: indirect\n- dependency-name: express\n dependency-type: indirect\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump serve-static and express"}},{"before":"5adbf4b60c15e01cc2f1ea75f725c8387d18adec","after":"12bf81148eef351f5f5f512c24bd56c5ab956054","ref":"refs/heads/gh-pages","pushedAt":"2024-08-30T13:11:39.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"github-actions[bot]","name":null,"path":"/apps/github-actions","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/15368?s=80&v=4"},"commit":{"message":"Deploying to gh-pages from @ marvinfriede/glueck-auf-ruegen@45490f1a70467bf1e9c2817050f839d3fec4b374 🚀","shortMessageHtmlLink":"Deploying to gh-pages from @ 45490f1 🚀"}},{"before":"34ccb14cfa3367ddceafa2ffa8fcee2a202c9d2b","after":null,"ref":"refs/heads/dependabot/npm_and_yarn/webpack-5.94.0","pushedAt":"2024-08-30T13:11:17.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"marvinfriede","name":"Marvin Friede","path":"/marvinfriede","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/51965259?s=80&v=4"}},{"before":"372eddf7aef02ab778d1bf75c150045fbf214e2f","after":"45490f1a70467bf1e9c2817050f839d3fec4b374","ref":"refs/heads/master","pushedAt":"2024-08-30T13:11:11.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"marvinfriede","name":"Marvin Friede","path":"/marvinfriede","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/51965259?s=80&v=4"},"commit":{"message":"Bump webpack from 5.76.0 to 5.94.0 (#49)","shortMessageHtmlLink":"Bump webpack from 5.76.0 to 5.94.0 (#49)"}},{"before":null,"after":"34ccb14cfa3367ddceafa2ffa8fcee2a202c9d2b","ref":"refs/heads/dependabot/npm_and_yarn/webpack-5.94.0","pushedAt":"2024-08-30T10:40:41.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump webpack from 5.76.0 to 5.94.0\n\nBumps [webpack](https://github.com/webpack/webpack) from 5.76.0 to 5.94.0.\n- [Release notes](https://github.com/webpack/webpack/releases)\n- [Commits](https://github.com/webpack/webpack/compare/v5.76.0...v5.94.0)\n\n---\nupdated-dependencies:\n- dependency-name: webpack\n dependency-type: direct:development\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump webpack from 5.76.0 to 5.94.0"}},{"before":"49d41eeab80549dcfb472aa2156ffd114ae024da","after":null,"ref":"refs/heads/dependabot/npm_and_yarn/socket.io-4.7.5","pushedAt":"2024-07-09T19:12:37.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"marvinfriede","name":"Marvin Friede","path":"/marvinfriede","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/51965259?s=80&v=4"}},{"before":"d3a142e5a733620d35faf7a6fd6cb29594443382","after":"372eddf7aef02ab778d1bf75c150045fbf214e2f","ref":"refs/heads/master","pushedAt":"2024-07-09T19:12:33.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"marvinfriede","name":"Marvin Friede","path":"/marvinfriede","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/51965259?s=80&v=4"},"commit":{"message":"Bump socket.io from 4.6.0 to 4.7.5 (#48)\n\nBumps [socket.io](https://github.com/socketio/socket.io) from 4.6.0 to\r\n4.7.5.\r\n
\r\nRelease notes\r\n

Sourced from socket.io's\r\nreleases.

\r\n
\r\n

4.7.5

\r\n

Bug Fixes

\r\n
    \r\n
  • close the adapters when the server is closed (bf64870)
    • \r\n
  • remove duplicate pipeline when serving bundle (e426f3e)
    • \r\n
\r\n

Links

\r\n
    \r\n
  • Diff: https://github.com/socketio/socket.io/compare/4.7.4...4.7.5
    • \r\n
  • Client release: 4.7.5
    • \r\n
  • engine.io@~6.5.2\r\n(no change)
    • \r\n
  • ws@~8.11.0\r\n(no change)
    • \r\n
\r\n

4.7.4

\r\n

Bug Fixes

\r\n
    \r\n
  • typings: calling io.emit with no arguments\r\nincorrectly errored (cb6d2e0),\r\ncloses #4914
    • \r\n
\r\n

Links

\r\n
    \r\n
  • Diff: https://github.com/socketio/socket.io/compare/4.7.3...4.7.4
    • \r\n
  • Client release: 4.7.4
    • \r\n
  • engine.io@~6.5.2\r\n(no change)
    • \r\n
  • ws@~8.11.0\r\n(no change)
    • \r\n
\r\n

4.7.3

\r\n

Bug Fixes

\r\n
    \r\n
  • return the first response when broadcasting to a single socket (#4878)\r\n(df8e70f)
    • \r\n
  • typings: allow to bind to a non-secure Http2Server\r\n(#4853)\r\n(8c9ebc3)
    • \r\n
\r\n

Links

\r\n
    \r\n
  • Diff: https://github.com/socketio/socket.io/compare/4.7.2...4.7.3
    • \r\n
  • Client release: 4.7.3
    • \r\n
  • engine.io@~6.5.2\r\n(no change)
    • \r\n
  • ws@~8.11.0\r\n(no change)
    • \r\n
\r\n

4.7.2

\r\n

Bug Fixes

\r\n
    \r\n
  • clean up child namespace when client is rejected in middleware (#4773)\r\n(0731c0d)
    • \r\n
  • webtransport: properly handle WebTransport-only\r\nconnections (3468a19)
    • \r\n
  • webtransport: add proper framing (a306db0)
    • \r\n
\r\n

Links

\r\n\r\n
\r\n

... (truncated)

\r\n
\r\n
\r\nChangelog\r\n

Sourced from socket.io's\r\nchangelog.

\r\n
\r\n

4.7.5\r\n(2024-03-14)

\r\n

Bug Fixes

\r\n
    \r\n
  • close the adapters when the server is closed (bf64870)
    • \r\n
  • remove duplicate pipeline when serving bundle (e426f3e)
    • \r\n
\r\n

Dependencies

\r\n
    \r\n
  • engine.io@~6.5.2\r\n(no change)
    • \r\n
  • ws@~8.11.0\r\n(no change)
    • \r\n
\r\n

4.7.4\r\n(2024-01-12)

\r\n

Bug Fixes

\r\n
    \r\n
  • typings: calling io.emit with no arguments\r\nincorrectly errored (cb6d2e0),\r\ncloses #4914
    • \r\n
\r\n

Dependencies

\r\n
    \r\n
  • engine.io@~6.5.2\r\n(no change)
    • \r\n
  • ws@~8.11.0\r\n(no change)
    • \r\n
\r\n

4.7.3\r\n(2024-01-03)

\r\n

Bug Fixes

\r\n
    \r\n
  • return the first response when broadcasting to a single socket (#4878)\r\n(df8e70f)
    • \r\n
  • typings: allow to bind to a non-secure Http2Server\r\n(#4853)\r\n(8c9ebc3)
    • \r\n
\r\n

Dependencies

\r\n
    \r\n
  • engine.io@~6.5.2\r\n(no change)
    • \r\n
  • ws@~8.11.0\r\n(no change)
    • \r\n
\r\n

4.7.2\r\n(2023-08-02)

\r\n\r\n
\r\n

... (truncated)

\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • 5017681\r\nchore(release): 4.7.5
    • \r\n
  • bf64870\r\nfix: close the adapters when the server is closed
    • \r\n
  • 748e18c\r\nci: test with older TypeScript version
    • \r\n
  • b9ce6a2\r\nrefactor: create specific adapter for parent namespaces (#4950)
    • \r\n
  • 54dabe5\r\nci: upgrade to actions/checkout@4 and actions/setup-node@4
    • \r\n
  • e426f3e\r\nfix: remove duplicate pipeline when serving bundle
    • \r\n
  • e36062c\r\ndocs: update the webtransport example
    • \r\n
  • 0bbe8ae\r\ndocs: only execute the passport middleware once
    • \r\n
  • 914a8bd\r\ndocs: add example with JWT
    • \r\n
  • d943c3e\r\ndocs: update the Passport.js example
    • \r\n
  • Additional commits viewable in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=socket.io&package-manager=npm_and_yarn&previous-version=4.6.0&new-version=4.7.5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\nYou can disable automated security fix PRs for this repo from the\r\n[Security Alerts\r\npage](https://github.com/marvinfriede/glueck-auf-ruegen/network/alerts).\r\n\r\n
\r\n\r\nSigned-off-by: dependabot[bot] \r\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>","shortMessageHtmlLink":"Bump socket.io from 4.6.0 to 4.7.5 (#48)"}},{"before":null,"after":"49d41eeab80549dcfb472aa2156ffd114ae024da","ref":"refs/heads/dependabot/npm_and_yarn/socket.io-4.7.5","pushedAt":"2024-07-09T19:11:34.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump socket.io from 4.6.0 to 4.7.5\n\nBumps [socket.io](https://github.com/socketio/socket.io) from 4.6.0 to 4.7.5.\n- [Release notes](https://github.com/socketio/socket.io/releases)\n- [Changelog](https://github.com/socketio/socket.io/blob/4.7.5/CHANGELOG.md)\n- [Commits](https://github.com/socketio/socket.io/compare/4.6.0...4.7.5)\n\n---\nupdated-dependencies:\n- dependency-name: socket.io\n dependency-type: indirect\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump socket.io from 4.6.0 to 4.7.5"}},{"before":"b12d0ec60987ee2d8e012f7a639513bc24a3300e","after":null,"ref":"refs/heads/dependabot/npm_and_yarn/braces-3.0.3","pushedAt":"2024-06-17T06:00:04.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"marvinfriede","name":"Marvin Friede","path":"/marvinfriede","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/51965259?s=80&v=4"}},{"before":"734b0005a4a4dc49d3f34c1ea374f7bab1f637ec","after":"d3a142e5a733620d35faf7a6fd6cb29594443382","ref":"refs/heads/master","pushedAt":"2024-06-17T06:00:00.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"marvinfriede","name":"Marvin Friede","path":"/marvinfriede","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/51965259?s=80&v=4"},"commit":{"message":"Bump braces from 3.0.2 to 3.0.3 (#47)\n\nBumps [braces](https://github.com/micromatch/braces) from 3.0.2 to\r\n3.0.3.\r\n
\r\nCommits\r\n
    \r\n
  • 74b2db2\r\n3.0.3
    • \r\n
  • 88f1429\r\nupdate eslint. lint, fix unit tests.
    • \r\n
  • 415d660\r\nSnyk js braces 6838727 (#40)
    • \r\n
  • 190510f\r\nfix tests, skip 1 test in test/braces.expand
    • \r\n
  • 716eb9f\r\nreadme bump
    • \r\n
  • a5851e5\r\nMerge pull request #37\r\nfrom coderaiser/fix/vulnerability
    • \r\n
  • 2092bd1\r\nfeature: braces: add maxSymbols (https://github.com/micromatch/braces/issues/...
    • \r\n
  • 9f5b4cf\r\nfix: vulnerability (https://security.snyk.io/vuln/SNYK-JS-BRACES-6838727)
    • \r\n
  • 98414f9\r\nremove funding file
    • \r\n
  • 665ab5d\r\nupdate keepEscaping doc (#27)
    • \r\n
  • Additional commits viewable in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=braces&package-manager=npm_and_yarn&previous-version=3.0.2&new-version=3.0.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\nYou can disable automated security fix PRs for this repo from the\r\n[Security Alerts\r\npage](https://github.com/marvinfriede/glueck-auf-ruegen/network/alerts).\r\n\r\n
\r\n\r\nSigned-off-by: dependabot[bot] \r\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>","shortMessageHtmlLink":"Bump braces from 3.0.2 to 3.0.3 (#47)"}},{"before":null,"after":"b12d0ec60987ee2d8e012f7a639513bc24a3300e","ref":"refs/heads/dependabot/npm_and_yarn/braces-3.0.3","pushedAt":"2024-06-16T20:15:49.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump braces from 3.0.2 to 3.0.3\n\nBumps [braces](https://github.com/micromatch/braces) from 3.0.2 to 3.0.3.\n- [Changelog](https://github.com/micromatch/braces/blob/master/CHANGELOG.md)\n- [Commits](https://github.com/micromatch/braces/compare/3.0.2...3.0.3)\n\n---\nupdated-dependencies:\n- dependency-name: braces\n dependency-type: indirect\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump braces from 3.0.2 to 3.0.3"}},{"before":"35543b227750d9cbe75629bd8e60eda4723c9090","after":null,"ref":"refs/heads/dependabot/npm_and_yarn/gh-pages-5.0.0","pushedAt":"2024-04-23T05:56:01.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"marvinfriede","name":"Marvin Friede","path":"/marvinfriede","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/51965259?s=80&v=4"}},{"before":"cd39a790c1cdeccec535faa7941dc28cf54ef646","after":"734b0005a4a4dc49d3f34c1ea374f7bab1f637ec","ref":"refs/heads/master","pushedAt":"2024-04-23T05:55:58.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"marvinfriede","name":"Marvin Friede","path":"/marvinfriede","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/51965259?s=80&v=4"},"commit":{"message":"Bump gh-pages from 3.2.3 to 5.0.0 (#46)\n\nBumps [gh-pages](https://github.com/tschaub/gh-pages) from 3.2.3 to\r\n5.0.0.\r\n
\r\nRelease notes\r\n

Sourced from gh-pages's\r\nreleases.

\r\n
\r\n

v5.0.0

\r\n

Potentially breaking change: the publish method now\r\nalways returns a promise. Previously, it did not return a promise in\r\nsome error cases. This should not impact most users.

\r\n

Updates to the development dependencies required a minimum Node\r\nversion of 14 for the tests. The library should still work on Node 12,\r\nbut tests are no longer run in CI for version 12. A future major version\r\nof the library may drop support for version 12 altogether.

\r\n

What's Changed

\r\n
    \r\n
  • Assorted updates by @​tschaub in tschaub/gh-pages#452
    • \r\n
  • Update README to clarify project site configuration requirements\r\nwith tools like CRA, webpack, Vite, etc. by @​Nezteb in tschaub/gh-pages#445
    • \r\n
  • Bump actions/checkout from 2 to 3 by @​dependabot in tschaub/gh-pages#453
    • \r\n
  • Bump actions/setup-node from 1 to 3 by @​dependabot in tschaub/gh-pages#455
    • \r\n
  • Bump email-addresses from 3.0.1 to 5.0.0 by @​dependabot in tschaub/gh-pages#454
    • \r\n
  • Bump async from 2.6.4 to 3.2.4 by @​dependabot in tschaub/gh-pages#459
    • \r\n
  • Remove quotation marks by @​Vicropht in tschaub/gh-pages#438
    • \r\n
\r\n

New Contributors

\r\n
    \r\n
  • @​Nezteb made\r\ntheir first contribution in tschaub/gh-pages#445
    • \r\n
  • @​Vicropht\r\nmade their first contribution in tschaub/gh-pages#438
    • \r\n
\r\n

Full Changelog: https://github.com/tschaub/gh-pages/compare/v4.0.0...v5.0.0

\r\n

v4.0.0

\r\n

This release doesn't include any breaking changes, but due to updated\r\ndevelopment dependencies, tests are no longer run on Node 10.

\r\n

What's Changed

\r\n
    \r\n
  • Bump minimist from 1.2.5 to 1.2.6 by @​dependabot in tschaub/gh-pages#423
    • \r\n
  • Bump async from 2.6.1 to 2.6.4 by @​dependabot in tschaub/gh-pages#427
    • \r\n
  • Bump path-parse from 1.0.6 to 1.0.7 by @​dependabot in tschaub/gh-pages#431
    • \r\n
  • Bump ansi-regex from 3.0.0 to 3.0.1 by @​dependabot in tschaub/gh-pages#430
    • \r\n
  • Updated dev dependencies and formatting by @​tschaub in tschaub/gh-pages#432
    • \r\n
\r\n

Full Changelog: https://github.com/tschaub/gh-pages/compare/v3.2.3...v4.0.0

\r\n
\r\n
\r\n
\r\nChangelog\r\n

Sourced from gh-pages's\r\nchangelog.

\r\n
\r\n

v5.0.0

\r\n

Potentially breaking change: the publish method now\r\nalways returns a promise. Previously, it did not return a promise in\r\nsome error cases. This should not impact most users.

\r\n

Updates to the development dependencies required a minimum Node\r\nversion of 14 for the tests. The library should still work on Node 12,\r\nbut tests are no longer run in CI for version 12. A future major version\r\nof the library may drop support for version 12 altogether.

\r\n
    \r\n
  • #438 -\r\nRemove quotation marks (@​Vicropht)
    • \r\n
  • #459 -\r\nBump async from 2.6.4 to 3.2.4 (@​tschaub)
    • \r\n
  • #454 -\r\nBump email-addresses from 3.0.1 to 5.0.0 (@​tschaub)
    • \r\n
  • #455 -\r\nBump actions/setup-node from 1 to 3 (@​tschaub)
    • \r\n
  • #453 -\r\nBump actions/checkout from 2 to 3 (@​tschaub)
    • \r\n
  • #445 -\r\nUpdate README to clarify project site configuration requirements with\r\ntools like CRA, webpack, Vite, etc. (@​Nezteb)
    • \r\n
  • #452 -\r\nAssorted updates (@​tschaub)
    • \r\n
\r\n

v4.0.0

\r\n

This release doesn't include any breaking changes, but due to updated\r\ndevelopment dependencies, tests are no longer run on Node 10.

\r\n
    \r\n
  • #432 -\r\nUpdated dev dependencies and formatting (@​tschaub)
    • \r\n
  • #430 -\r\nBump ansi-regex from 3.0.0 to 3.0.1 (@​tschaub)
    • \r\n
  • #431 -\r\nBump path-parse from 1.0.6 to 1.0.7 (@​tschaub)
    • \r\n
  • #427 -\r\nBump async from 2.6.1 to 2.6.4 (@​tschaub)
    • \r\n
  • #423 -\r\nBump minimist from 1.2.5 to 1.2.6 (@​tschaub)
    • \r\n
\r\n
\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • f729b97\r\n5.0.0
    • \r\n
  • 51534c7\r\nLog changes
    • \r\n
  • ace063b\r\nMerge pull request #438\r\nfrom Vicropht/patch-1
    • \r\n
  • 58e54be\r\nMerge pull request #459\r\nfrom tschaub/dependabot/npm_and_yarn/async-3.2.4
    • \r\n
  • 2189df3\r\nBump async from 2.6.4 to 3.2.4
    • \r\n
  • 051846e\r\nMerge pull request #454\r\nfrom tschaub/dependabot/npm_and_yarn/email-addresses-...
    • \r\n
  • 5c91c67\r\nMerge pull request #455\r\nfrom tschaub/dependabot/github_actions/actions/setup-...
    • \r\n
  • fe0ad83\r\nMerge pull request #453\r\nfrom tschaub/dependabot/github_actions/actions/checko...
    • \r\n
  • b89287d\r\nMerge pull request #445\r\nfrom Nezteb/patch-1
    • \r\n
  • e890bd1\r\nBump email-addresses from 3.0.1 to 5.0.0
    • \r\n
  • Additional commits viewable in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=gh-pages&package-manager=npm_and_yarn&previous-version=3.2.3&new-version=5.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\nYou can disable automated security fix PRs for this repo from the\r\n[Security Alerts\r\npage](https://github.com/marvinfriede/glueck-auf-ruegen/network/alerts).\r\n\r\n
\r\n\r\nSigned-off-by: dependabot[bot] \r\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>","shortMessageHtmlLink":"Bump gh-pages from 3.2.3 to 5.0.0 (#46)"}},{"before":null,"after":"35543b227750d9cbe75629bd8e60eda4723c9090","ref":"refs/heads/dependabot/npm_and_yarn/gh-pages-5.0.0","pushedAt":"2024-04-23T00:26:56.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump gh-pages from 3.2.3 to 5.0.0\n\nBumps [gh-pages](https://github.com/tschaub/gh-pages) from 3.2.3 to 5.0.0.\n- [Release notes](https://github.com/tschaub/gh-pages/releases)\n- [Changelog](https://github.com/tschaub/gh-pages/blob/main/changelog.md)\n- [Commits](https://github.com/tschaub/gh-pages/compare/v3.2.3...v5.0.0)\n\n---\nupdated-dependencies:\n- dependency-name: gh-pages\n dependency-type: direct:development\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump gh-pages from 3.2.3 to 5.0.0"}},{"before":"167e517c7e98dfb69ea29684362a257009623736","after":null,"ref":"refs/heads/dependabot/npm_and_yarn/express-4.19.2","pushedAt":"2024-03-29T08:36:36.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"marvinfriede","name":"Marvin Friede","path":"/marvinfriede","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/51965259?s=80&v=4"}},{"before":"fe334b6fa29b0a42bc42a81cb6139271e87da319","after":"cd39a790c1cdeccec535faa7941dc28cf54ef646","ref":"refs/heads/master","pushedAt":"2024-03-29T08:36:32.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"marvinfriede","name":"Marvin Friede","path":"/marvinfriede","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/51965259?s=80&v=4"},"commit":{"message":"Bump express from 4.18.2 to 4.19.2 (#45)\n\nBumps [express](https://github.com/expressjs/express) from 4.18.2 to\r\n4.19.2.\r\n
\r\nRelease notes\r\n

Sourced from express's\r\nreleases.

\r\n
\r\n

4.19.2

\r\n

What's Changed

\r\n
    \r\n
  • Improved\r\nfix for open redirect allow list bypass
    • \r\n
\r\n

Full Changelog: https://github.com/expressjs/express/compare/4.19.1...4.19.2

\r\n

4.19.1

\r\n

What's Changed

\r\n
    \r\n
  • Fix ci after location patch by @​wesleytodd in expressjs/express#5552
    • \r\n
  • fixed un-edited version in history.md for 4.19.0 by @​wesleytodd in expressjs/express#5556
    • \r\n
\r\n

Full Changelog: https://github.com/expressjs/express/compare/4.19.0...4.19.1

\r\n

4.19.0

\r\n

What's Changed

\r\n
    \r\n
  • fix typo in release date by @​UlisesGascon\r\nin expressjs/express#5527
    • \r\n
  • docs: nominating @​wesleytodd to be\r\nproject captian by @​wesleytodd in expressjs/express#5511
    • \r\n
  • docs: loosen TC activity rules by @​wesleytodd in expressjs/express#5510
    • \r\n
  • Add note on how to update docs for new release by @​crandmck in expressjs/express#5541
    • \r\n
  • Prevent\r\nopen redirect allow list bypass due to encodeurl
    • \r\n
  • Release 4.19.0 by @​wesleytodd in expressjs/express#5551
    • \r\n
\r\n

New Contributors

\r\n
    \r\n
  • @​crandmck\r\nmade their first contribution in expressjs/express#5541
    • \r\n
\r\n

Full Changelog: https://github.com/expressjs/express/compare/4.18.3...4.19.0

\r\n

4.18.3

\r\n

Main Changes

\r\n
    \r\n
  • Fix routing requests without method
    • \r\n
  • deps: body-parser@1.20.2\r\n
      \r\n
    • Fix strict json error message on Node.js 19+
      • \r\n
    • deps: content-type@~1.0.5
      • \r\n
    • deps: raw-body@2.5.2
      • \r\n
    \r\n
    • \r\n
\r\n

Other Changes

\r\n
    \r\n
  • Use https: protocol instead of deprecated git: protocol by @​vcsjones in expressjs/express#5032
    • \r\n
  • build: Node.js@16.18 and Node.js@18.12 by @​abenhamdine in\r\nexpressjs/express#5034
    • \r\n
  • ci: update actions/checkout to v3 by @​armujahid in expressjs/express#5027
    • \r\n
  • test: remove unused function arguments in params by @​raksbisht in expressjs/express#5124
    • \r\n
  • Remove unused originalIndex from acceptParams by @​raksbisht in expressjs/express#5119
    • \r\n
  • Fixed typos by @​raksbisht in expressjs/express#5117
    • \r\n
  • examples: remove unused params by @​raksbisht in expressjs/express#5113
    • \r\n
  • fix: parameter str is not described in JSDoc by @​raksbisht in expressjs/express#5130
    • \r\n
  • fix: typos in History.md by @​raksbisht in expressjs/express#5131
    • \r\n
  • build : add Node.js@19.7 by @​abenhamdine in\r\nexpressjs/express#5028
    • \r\n
  • test: remove unused function arguments in params by @​raksbisht in expressjs/express#5137
    • \r\n
\r\n\r\n
\r\n

... (truncated)

\r\n
\r\n
\r\nChangelog\r\n

Sourced from express's\r\nchangelog.

\r\n
\r\n

4.19.2 / 2024-03-25

\r\n
    \r\n
  • Improved fix for open redirect allow list bypass
    • \r\n
\r\n

4.19.1 / 2024-03-20

\r\n
    \r\n
  • Allow passing non-strings to res.location with new encoding handling\r\nchecks
    • \r\n
\r\n

4.19.0 / 2024-03-20

\r\n
    \r\n
  • Prevent open redirect allow list bypass due to encodeurl
    • \r\n
  • deps: cookie@0.6.0
    • \r\n
\r\n

4.18.3 / 2024-02-29

\r\n
    \r\n
  • Fix routing requests without method
    • \r\n
  • deps: body-parser@1.20.2\r\n
      \r\n
    • Fix strict json error message on Node.js 19+
      • \r\n
    • deps: content-type@~1.0.5
      • \r\n
    • deps: raw-body@2.5.2
      • \r\n
    \r\n
    • \r\n
  • deps: cookie@0.6.0\r\n
      \r\n
    • Add partitioned option
      • \r\n
    \r\n
    • \r\n
\r\n
\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • 04bc627\r\n4.19.2
    • \r\n
  • da4d763\r\nImproved fix for open redirect allow list bypass
    • \r\n
  • 4f0f6cc\r\n4.19.1
    • \r\n
  • a003cfa\r\nAllow passing non-strings to res.location with new encoding handling\r\nchecks f...
    • \r\n
  • a1fa90f\r\nfixed un-edited version in history.md for 4.19.0
    • \r\n
  • 11f2b1d\r\nbuild: fix build due to inconsistent supertest behavior in older\r\nversions
    • \r\n
  • 084e365\r\n4.19.0
    • \r\n
  • 0867302\r\nPrevent open redirect allow list bypass due to encodeurl
    • \r\n
  • 567c9c6\r\nAdd note on how to update docs for new release (#5541)
    • \r\n
  • 69a4cf2\r\ndeps: cookie@0.6.0
    • \r\n
  • Additional commits viewable in compare\r\nview
    • \r\n
\r\n
\r\n
\r\nMaintainer changes\r\n

This version was pushed to npm by wesleytodd, a new releaser\r\nfor express since your current version.

\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=express&package-manager=npm_and_yarn&previous-version=4.18.2&new-version=4.19.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\nYou can disable automated security fix PRs for this repo from the\r\n[Security Alerts\r\npage](https://github.com/marvinfriede/glueck-auf-ruegen/network/alerts).\r\n\r\n
\r\n\r\nSigned-off-by: dependabot[bot] \r\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>","shortMessageHtmlLink":"Bump express from 4.18.2 to 4.19.2 (#45)"}},{"before":null,"after":"167e517c7e98dfb69ea29684362a257009623736","ref":"refs/heads/dependabot/npm_and_yarn/express-4.19.2","pushedAt":"2024-03-29T00:15:56.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump express from 4.18.2 to 4.19.2\n\nBumps [express](https://github.com/expressjs/express) from 4.18.2 to 4.19.2.\n- [Release notes](https://github.com/expressjs/express/releases)\n- [Changelog](https://github.com/expressjs/express/blob/master/History.md)\n- [Commits](https://github.com/expressjs/express/compare/4.18.2...4.19.2)\n\n---\nupdated-dependencies:\n- dependency-name: express\n dependency-type: indirect\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump express from 4.18.2 to 4.19.2"}},{"before":"425add9fa1148a57691c781bd52008ee28f70d7f","after":null,"ref":"refs/heads/dependabot/npm_and_yarn/webpack-dev-middleware-5.3.4","pushedAt":"2024-03-23T08:06:55.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"marvinfriede","name":"Marvin Friede","path":"/marvinfriede","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/51965259?s=80&v=4"}},{"before":"611751c5e8f4ece5f4c5f04fb9e058aef39d1399","after":"fe334b6fa29b0a42bc42a81cb6139271e87da319","ref":"refs/heads/master","pushedAt":"2024-03-23T08:06:53.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"marvinfriede","name":"Marvin Friede","path":"/marvinfriede","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/51965259?s=80&v=4"},"commit":{"message":"Bump webpack-dev-middleware from 5.3.3 to 5.3.4 (#44)\n\nBumps\r\n[webpack-dev-middleware](https://github.com/webpack/webpack-dev-middleware)\r\nfrom 5.3.3 to 5.3.4.\r\n
\r\nRelease notes\r\n

Sourced from webpack-dev-middleware's\r\nreleases.

\r\n
\r\n

v5.3.4

\r\n

5.3.4\r\n(2024-03-20)

\r\n

Bug Fixes

\r\n
    \r\n
  • security: do not allow to read files above (#1779)\r\n(189c4ac)
    • \r\n
\r\n
\r\n
\r\n
\r\nChangelog\r\n

Sourced from webpack-dev-middleware's\r\nchangelog.

\r\n
\r\n

5.3.4\r\n(2024-03-20)

\r\n

Bug Fixes

\r\n
    \r\n
  • security: do not allow to read files above (#1779)\r\n(189c4ac)
    • \r\n
\r\n
\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • 86071ea\r\nchore(release): 5.3.4
    • \r\n
  • 189c4ac\r\nfix(security): do not allow to read files above (#1779)
    • \r\n
  • See full diff in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=webpack-dev-middleware&package-manager=npm_and_yarn&previous-version=5.3.3&new-version=5.3.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\nYou can disable automated security fix PRs for this repo from the\r\n[Security Alerts\r\npage](https://github.com/marvinfriede/glueck-auf-ruegen/network/alerts).\r\n\r\n
\r\n\r\nSigned-off-by: dependabot[bot] \r\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>","shortMessageHtmlLink":"Bump webpack-dev-middleware from 5.3.3 to 5.3.4 (#44)"}},{"before":null,"after":"425add9fa1148a57691c781bd52008ee28f70d7f","ref":"refs/heads/dependabot/npm_and_yarn/webpack-dev-middleware-5.3.4","pushedAt":"2024-03-23T06:37:53.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump webpack-dev-middleware from 5.3.3 to 5.3.4\n\nBumps [webpack-dev-middleware](https://github.com/webpack/webpack-dev-middleware) from 5.3.3 to 5.3.4.\n- [Release notes](https://github.com/webpack/webpack-dev-middleware/releases)\n- [Changelog](https://github.com/webpack/webpack-dev-middleware/blob/v5.3.4/CHANGELOG.md)\n- [Commits](https://github.com/webpack/webpack-dev-middleware/compare/v5.3.3...v5.3.4)\n\n---\nupdated-dependencies:\n- dependency-name: webpack-dev-middleware\n dependency-type: indirect\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump webpack-dev-middleware from 5.3.3 to 5.3.4"}},{"before":"db2676baacae2be9a64d9a9c3b0bfc3f31badc3e","after":null,"ref":"refs/heads/dependabot/npm_and_yarn/follow-redirects-1.15.6","pushedAt":"2024-03-17T06:17:37.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"marvinfriede","name":"Marvin Friede","path":"/marvinfriede","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/51965259?s=80&v=4"}},{"before":"a3a5d34a7af0c0e421b3a62e56933912b26a93c4","after":"611751c5e8f4ece5f4c5f04fb9e058aef39d1399","ref":"refs/heads/master","pushedAt":"2024-03-17T06:17:35.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"marvinfriede","name":"Marvin Friede","path":"/marvinfriede","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/51965259?s=80&v=4"},"commit":{"message":"Bump follow-redirects from 1.15.4 to 1.15.6 (#43)\n\nBumps\r\n[follow-redirects](https://github.com/follow-redirects/follow-redirects)\r\nfrom 1.15.4 to 1.15.6.\r\n
\r\nCommits\r\n
    \r\n
  • 35a517c\r\nRelease version 1.15.6 of the npm package.
    • \r\n
  • c4f847f\r\nDrop Proxy-Authorization across hosts.
    • \r\n
  • 8526b4a\r\nUse GitHub for disclosure.
    • \r\n
  • b1677ce\r\nRelease version 1.15.5 of the npm package.
    • \r\n
  • d8914f7\r\nPreserve fragment in responseUrl.
    • \r\n
  • See full diff in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=follow-redirects&package-manager=npm_and_yarn&previous-version=1.15.4&new-version=1.15.6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\nYou can disable automated security fix PRs for this repo from the\r\n[Security Alerts\r\npage](https://github.com/marvinfriede/glueck-auf-ruegen/network/alerts).\r\n\r\n
\r\n\r\nSigned-off-by: dependabot[bot] \r\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>","shortMessageHtmlLink":"Bump follow-redirects from 1.15.4 to 1.15.6 (#43)"}},{"before":null,"after":"db2676baacae2be9a64d9a9c3b0bfc3f31badc3e","ref":"refs/heads/dependabot/npm_and_yarn/follow-redirects-1.15.6","pushedAt":"2024-03-16T23:12:43.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump follow-redirects from 1.15.4 to 1.15.6\n\nBumps [follow-redirects](https://github.com/follow-redirects/follow-redirects) from 1.15.4 to 1.15.6.\n- [Release notes](https://github.com/follow-redirects/follow-redirects/releases)\n- [Commits](https://github.com/follow-redirects/follow-redirects/compare/v1.15.4...v1.15.6)\n\n---\nupdated-dependencies:\n- dependency-name: follow-redirects\n dependency-type: indirect\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump follow-redirects from 1.15.4 to 1.15.6"}},{"before":"fe0d0931c2f432c3193cde4b7c9fcfb55e9941e0","after":null,"ref":"refs/heads/dependabot/npm_and_yarn/follow-redirects-1.15.4","pushedAt":"2024-01-16T09:38:06.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"marvinfriede","name":"Marvin Friede","path":"/marvinfriede","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/51965259?s=80&v=4"}},{"before":"17e514489d071117119e2a0e004099044080c897","after":"a3a5d34a7af0c0e421b3a62e56933912b26a93c4","ref":"refs/heads/master","pushedAt":"2024-01-16T09:38:03.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"marvinfriede","name":"Marvin Friede","path":"/marvinfriede","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/51965259?s=80&v=4"},"commit":{"message":"Bump follow-redirects from 1.15.2 to 1.15.4 (#42)\n\nBumps\r\n[follow-redirects](https://github.com/follow-redirects/follow-redirects)\r\nfrom 1.15.2 to 1.15.4.\r\n
\r\nCommits\r\n
    \r\n
  • 6585820\r\nRelease version 1.15.4 of the npm package.
    • \r\n
  • 7a6567e\r\nDisallow bracketed hostnames.
    • \r\n
  • 05629af\r\nPrefer native URL instead of deprecated url.parse.
    • \r\n
  • 1cba8e8\r\nPrefer native URL instead of legacy url.resolve.
    • \r\n
  • 72bc2a4\r\nSimplify _processResponse error handling.
    • \r\n
  • 3d42aec\r\nAdd bracket tests.
    • \r\n
  • bcbb096\r\nDo not directly set Error properties.
    • \r\n
  • 192dbe7\r\nRelease version 1.15.3 of the npm package.
    • \r\n
  • bd8c81e\r\nFix resource leak on destroy.
    • \r\n
  • 9c728c3\r\nSplit linting and testing.
    • \r\n
  • Additional commits viewable in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=follow-redirects&package-manager=npm_and_yarn&previous-version=1.15.2&new-version=1.15.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\nYou can disable automated security fix PRs for this repo from the\r\n[Security Alerts\r\npage](https://github.com/marvinfriede/glueck-auf-ruegen/network/alerts).\r\n\r\n
\r\n\r\nSigned-off-by: dependabot[bot] \r\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>","shortMessageHtmlLink":"Bump follow-redirects from 1.15.2 to 1.15.4 (#42)"}}],"hasNextPage":true,"hasPreviousPage":false,"activityType":"all","actor":null,"timePeriod":"all","sort":"DESC","perPage":30,"startCursor":"Y3Vyc29yOnYyOpK7MjAyNC0wOS0xN1QxMzo0NDoxMS4wMDAwMDBazwAAAAS4lfCQ","endCursor":"Y3Vyc29yOnYyOpK7MjAyNC0wMS0xNlQwOTozODowMy4wMDAwMDBazwAAAAPg0aMi"}},"title":"Activity · marvinfriede/glueck-auf-ruegen"}