Skip to content

fix(deps): update dependency express to v5 #6

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 1 commit into from
Closed

fix(deps): update dependency express to v5 #6

wants to merge 1 commit into from

Conversation

descope[bot]
Copy link
Contributor

@descope descope bot commented Apr 8, 2025
edited
Loading

This PR contains the following updates:

Package Type Update Change Pending OpenSSF
express (source) dependencies major 4.21.2 -> 5.0.1 5.1.0 OpenSSF Scorecard

Release Notes

expressjs/express (express)

v5.0.1

Compare Source

==========

v5.0.0

Compare Source

=========================

  • remove:
    • path-is-absolute dependency - use path.isAbsolute instead
  • breaking:
    • res.status() accepts only integers, and input must be greater than 99 and less than 1000
      • will throw a RangeError: Invalid status code: ${code}. Status code must be greater than 99 and less than 1000. for inputs outside this range
      • will throw a TypeError: Invalid status code: ${code}. Status code must be an integer. for non integer inputs
    • deps: [email protected]
    • res.redirect('back') and res.location('back') is no longer a supported magic string, explicitly use req.get('Referrer') || '/'.
  • change:
    • res.clearCookie will ignore user provided maxAge and expires options
  • deps: cookie-signature@^1.2.1
  • deps: [email protected]
  • deps: merge-descriptors@^2.0.0
  • deps: serve-static@^2.1.0
  • deps: [email protected]
  • deps: accepts@^2.0.0
  • deps: mime-types@^3.0.0
    • application/javascript => text/javascript
  • deps: type-is@^2.0.0
  • deps: content-disposition@^1.0.0
  • deps: finalhandler@^2.0.0
  • deps: fresh@^2.0.0
  • deps: body-parser@^2.0.1
  • deps: send@^1.1.0

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by Renovate Bot.

@descope descope bot added the renovate label Apr 8, 2025
@descope descope bot force-pushed the renovate/express-5.x branch 5 times, most recently from f39ac45 to 4f39434 Compare April 9, 2025 18:58
@descope descope bot changed the title Update dependency express to v5 fix(deps): update dependency express to v5 Apr 9, 2025
@descope descope bot force-pushed the renovate/express-5.x branch 2 times, most recently from 131932a to 471aa22 Compare April 9, 2025 19:21
@descope descope bot force-pushed the renovate/express-5.x branch from 471aa22 to 376661c Compare April 9, 2025 19:30
@allenzhou101
Copy link
Contributor

allenzhou101 commented Apr 10, 2025
edited
Loading

The @modelcontextprotocol/sdk package throws an error due to a dependency path-to-regexp that is uses internally. Works fine on express 4.18.2 but not 5.1.0. Will close this for now until we can confirm things are fixed.

@descope
Copy link
Contributor Author

descope bot commented Apr 10, 2025

Renovate Ignore Notification

Because you closed this PR without merging, Renovate will ignore this update. You will not get PRs for any future 5.x releases. But if you manually upgrade to 5.x then Renovate will re-enable minor and patch updates automatically.

If you accidentally closed this PR, or if you changed your mind: rename this PR to get a fresh replacement PR.

@descope descope bot deleted the renovate/express-5.x branch April 10, 2025 21:14
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
renovate
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@allenzhou101