Skip to content

Bump body-parser from 2.2.0 to 2.2.1 in the npm_and_yarn group across 1 directory #1

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
dependabot wants to merge 12 commits into
base: main
Choose a base branch
from
Open

Bump body-parser from 2.2.0 to 2.2.1 in the npm_and_yarn group across 1 directory #1

dependabot wants to merge 12 commits into from

Conversation

@dependabot
Copy link

@dependabot dependabot bot commented on behalf of github Dec 6, 2025

Bumps the npm_and_yarn group with 1 update in the / directory: body-parser.

Updates body-parser from 2.2.0 to 2.2.1

Release notes

Sourced from body-parser's releases.

v2.2.1

Important: Security

What's Changed

... (truncated)

Changelog

Sourced from body-parser's changelog.

2.2.1 / 2025-11-24

  • Security fix for GHSA-wqch-xfxh-vrr4
  • deps:
    • type-is@^2.0.1
    • iconv-lite@^0.7.0
      • Handle split surrogate pairs when encoding UTF-8
      • Avoid false positives in encodingExists by using prototype-less objects
    • raw-body@^3.0.1
    • debug@^4.4.3
Commits
  • d96b63d 2.2.1 (#659)
  • b204886 sec: security patch for CVE-2025-13466
  • e20e351 feat: remove history.md from being packaged on publish (#660)
  • 0d7ce71 docs: switch badges from badgen.net to shields.io (#661)
  • 168afff ci: also test on first supported node.js version (#646)
  • e539a71 build(deps): bump actions/setup-node from 5.0.0 to 6.0.0 (#654)
  • 9391612 build(deps): bump actions/upload-artifact from 4.6.2 to 5.0.0 (#655)
  • 57baafb build(deps): bump github/codeql-action from 3.30.5 to 4.31.2 (#656)
  • a6a088e build(deps): bump actions/download-artifact from 5.0.0 to 6.0.0 (#657)
  • 10a114d test: add test for urlencoded invalid defaultCharset (#643)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
    You can disable automated security fix PRs for this repo from the Security Alerts page.

yuito-it and others added 12 commits December 7, 2025 08:08
@yuito-it
公開用
36277f5
@yuito-it
Update README.md
6c18922
@yuito-it
バージョンにforkをつける
2230739
@yuito-it
Squashed commit of the following:
2eb039f 
commit 236df93
Author: Yuito Akatsuki (Tani Yutaka) <yuito@yuito-it.jp>
Date:   Wed Nov 19 16:10:49 2025 +0900

    Update src/server/api/items.ts

    Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>

commit efcc0a1
Author: Yuito Akatsuki (Tani Yutaka) <yuito@yuito-it.jp>
Date:   Wed Nov 19 16:10:31 2025 +0900

    Update src/client/components/SidebarArticles.tsx

    Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>

commit 2612b40
Author: Yuito Akatsuki (Tani Yutaka) <yuito@yuito-it.jp>
Date:   Wed Nov 19 16:09:41 2025 +0900

    Update src/client/components/SidebarArticles.tsx

    Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>

commit d53e280
Author: Yuito Akatsuki (Tani Yutaka) <yuito@yuito-it.jp>
Date:   Wed Nov 19 16:09:18 2025 +0900

    Update src/lib/file-system-repo.ts

    Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>

commit c8e8a16
Author: Yuito Akatsuki (Tani Yutaka) <yuito@yuito-it.jp>
Date:   Wed Nov 19 14:57:09 2025 +0900

    スタイルを調整し同階層を表す縦線を追加

commit 69c4050
Author: Yuito Akatsuki (Tani Yutaka) <yuito@yuito-it.jp>
Date:   Wed Nov 19 14:45:41 2025 +0900

    ディレクトリを一番最初に出すようにする

commit dda0e55
Author: Yuito Akatsuki (Tani Yutaka) <yuito@yuito-it.jp>
Date:   Wed Nov 19 14:41:59 2025 +0900

    再起的に階層構造として表示する

commit c841754
Author: Yuito Akatsuki (Tani Yutaka) <yuito@yuito-it.jp>
Date:   Wed Nov 19 14:14:53 2025 +0900

    ディレクトリ階層を表示するようにする

commit 1aa8894
Author: Yuito Akatsuki (Tani Yutaka) <yuito@yuito-it.jp>
Date:   Wed Nov 19 12:28:03 2025 +0900

    ディレクトリも含めるように変更

commit 55f88c7
Author: Yuito Akatsuki (Tani Yutaka) <yuito@yuito-it.jp>
Date:   Wed Nov 19 12:13:07 2025 +0900

    recursiveにファイル名を取得するように変更する

commit d8813e2
Author: Yuito Akatsuki (Tani Yutaka) <yuito@yuito-it.jp>
Date:   Wed Nov 19 12:01:36 2025 +0900

    開発用にwatchからnode_modulesとかをignoreしておく

commit 5a33c35
Author: Yuito Akatsuki (Tani Yutaka) <yuito@yuito-it.jp>
Date:   Wed Nov 19 11:59:39 2025 +0900

    update dependics
@yuito-it
trusted publishに対応する
19a03c6
@yuito-it
oidcの権限付与
2f47cdd
@yuito-it
最小権限の原則
93884f6
@yuito-it
miss
00e68fb
@yuito-it
1.7.0-fork.0
a593a29
@yuito-it
miss
0c90e24
@yuito-it
リポを移管する
0ac6932
@dependabot
Bump body-parser in the npm_and_yarn group across 1 directory
bc412c0 
Bumps the npm_and_yarn group with 1 update in the / directory: [body-parser](https://github.com/expressjs/body-parser).


Updates `body-parser` from 2.2.0 to 2.2.1
- [Release notes](https://github.com/expressjs/body-parser/releases)
- [Changelog](https://github.com/expressjs/body-parser/blob/master/HISTORY.md)
- [Commits](expressjs/body-parser@v2.2.0...v2.2.1)

---
updated-dependencies:
- dependency-name: body-parser
  dependency-version: 2.2.1
  dependency-type: indirect
  dependency-group: npm_and_yarn
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Dec 6, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@yuito-it