Skip to content

Bump http-proxy-middleware and @iobroker/dev-server#708

Open
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/npm_and_yarn/multi-d0794ab768
Open

Bump http-proxy-middleware and @iobroker/dev-server#708
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/npm_and_yarn/multi-d0794ab768

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 19, 2026

Copy link
Copy Markdown
Contributor

Bumps http-proxy-middleware to 3.0.7 and updates ancestor dependency @iobroker/dev-server. These dependencies need to be updated together.

Updates http-proxy-middleware from 2.0.6 to 3.0.7

Release notes

Sourced from http-proxy-middleware's releases.

v3.0.7

What's Changed

Full Changelog: chimurai/http-proxy-middleware@v3.0.6...v3.0.7

v3.0.6

What's Changed

... (truncated)

Changelog

Sourced from http-proxy-middleware's changelog.

v3.0.7

  • fix(fixRequestBody): harden form-data stringification

v3.0.6

  • fix(types): fix Logger type
  • fix(error-response-plugin): sanitize input
  • fix(router): harden proxy-table matching (exact host for host+path keys, prefix-only path matching) to prevent routing bypass

v3.0.5

  • fix(fixRequestBody): check readableLength (#1096)

v3.0.4

  • fix(fixRequestBody): handle invalid request (#1092)
  • fix(fixRequestBody): prevent multiple .write() calls (#1089)
  • fix(websocket): handle errors in handleUpgrade (#823)
  • ci(package): patch http-proxy (#1084)
  • fix(fixRequestBody): support multipart/form-data (#896)
  • feat(types): export Plugin type (#1071)

v3.0.3

  • fix(pathFilter): handle errors

v3.0.2

  • refactor(dependency): replace is-plain-obj with is-plain-object (#1031)
  • chore(package): upgrade to eslint v9 (#1032)
  • fix(logger-plugin): handle undefined protocol and hostname (#1036)

v3.0.1

  • fix(type): fix RequestHandler return type (#980)
  • refactor(errors): improve pathFilter error message (#987)
  • fix(logger-plugin): fix missing target port (#989)
  • ci(package): npm package provenance (#991)
  • fix(logger-plugin): log target port when router option is used (#1001)
  • refactor: fix circular dependencies (#1010)
  • fix(fix-request-body): support '+json' content-type suffix (#1015)

v3.0.0

This release contains some breaking changes.

Please read the V3 discussion chimurai/http-proxy-middleware#768 or follow the MIGRATION.md guide.

... (truncated)

Commits
  • 8cc4eba chore(package.json): v3.0.7 (#1261)
  • c13a99c fix(fixRequestBody): harden form-data stringification (#1259)
  • ea0bb98 chore(package.json): v3.0.6 (#1256)
  • f377520 fix(router): harden proxy-table matching (#1254)
  • f6be2c6 chore(yarn.lock): bump to follow-redirects 1.16.0
  • a36f009 ci(publish.yml): npm stage publish
  • 3471790 ci(github actions): update publish.yml for 3.x branch
  • bcf1864 build(vscode): use workspace version of TypeScript (#1173)
  • 48ed092 docs(examples): fix websocket example (#1170)
  • 0fe7c24 chore(package.json): bump dev-deps (#1171)
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for http-proxy-middleware since your current version.

Install script changes

This version modifies prepare script that runs during installation. Review the package contents before updating.


Updates @iobroker/dev-server from 0.6.0 to 0.8.0

Release notes

Sourced from @​iobroker/dev-server's releases.

Release v0.8.0

  • (@Apollon77/@​copilot) Fix git repository check to prevent errors in non-git directories
  • (@Apollon77/@​copilot) Fix version check to honor npm "latest" tag instead of jsDelivr
  • (@Apollon77/@​copilot) Add support for TypeScript-only adapters where main field points to .ts files
  • (@Apollon77/@​copilot) Add support for TypeScript-only adapters where main field points to .ts files
  • (@Apollon77/@​copilot) Add --no-browser-sync flag to run and watch commands for environments where BrowserSync causes issues
  • (@Apollon77/@​bolliy) Add support for ESM modules with .mjs file extensions

Release v0.7.8

Release v0.7.7

Release v0.7.6

Release v0.7.5

Release v0.7.4

Release v0.7.3

  • (foxriver76) set activeRepo as an array as it is intended

Release v0.7.2

  • (stevenengland) Add support for jsonconfig json5 files hot reload

Release v0.7.1

  • (Apollon77) downgrade boxen again to fix problems with it

Release v0.7.0

  • (AlCalzone/Garfonso) symlink the local adapter instead of pack/install on each change
  • (Apollon77) Update dependencies
Changelog

Sourced from @​iobroker/dev-server's changelog.

0.8.0 (2025-09-20)

  • (@Apollon77/@​copilot) Fix git repository check to prevent errors in non-git directories
  • (@Apollon77/@​copilot) Fix version check to honor npm "latest" tag instead of jsDelivr
  • (@Apollon77/@​copilot) Add support for TypeScript-only adapters where main field points to .ts files
  • (@Apollon77/@​copilot) Add support for TypeScript-only adapters where main field points to .ts files
  • (@Apollon77/@​copilot) Add --no-browser-sync flag to run and watch commands for environments where BrowserSync causes issues
  • (@Apollon77/@​bolliy) Add support for ESM modules with .mjs file extensions

0.7.8 (2025-01-29)

0.7.7 (2025-01-27)

0.7.6 (2025-01-25)

0.7.3 (2024-05-02)

  • (foxriver76) set activeRepo as an array as it is intended

0.7.2 (2024-03-26)

  • (stevenengland) Add support for jsonConfig json5 files hot reload

0.7.1 (2023-11-09)

  • (Apollon77) downgrade boxen again to fix problems with it

0.7.0 (2023-11-09)

  • (AlCalzone/Garfonso) symlink the local adapter instead of pack/install on each change
  • (Apollon77) Update dependencies
Commits
  • bfbaef5 chore: release v0.8.0
  • 3c5d412 prepare release
  • 7f746a5 Merge pull request #504 from ioBroker/copilot/fix-427
  • 51b9677 Simplify git repository check and add changelog entry
  • f6961ee Fix git repository check to prevent errors in non-git directories
  • 1f0b378 Initial plan
  • 9d8bf40 Merge pull request #502 from ioBroker/copilot/fix-501
  • 17b2da1 Update build output and package-lock after merge
  • 5721228 Merge main branch and resolve indentation conflicts
  • 99da4ab Delete .editorconfig
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

Bumps [http-proxy-middleware](https://github.com/chimurai/http-proxy-middleware) to 3.0.7 and updates ancestor dependency [@iobroker/dev-server](https://github.com/ioBroker/dev-server). These dependencies need to be updated together.


Updates `http-proxy-middleware` from 2.0.6 to 3.0.7
- [Release notes](https://github.com/chimurai/http-proxy-middleware/releases)
- [Changelog](https://github.com/chimurai/http-proxy-middleware/blob/v3.0.7/CHANGELOG.md)
- [Commits](chimurai/http-proxy-middleware@v2.0.6...v3.0.7)

Updates `@iobroker/dev-server` from 0.6.0 to 0.8.0
- [Release notes](https://github.com/ioBroker/dev-server/releases)
- [Changelog](https://github.com/ioBroker/dev-server/blob/main/CHANGELOG.md)
- [Commits](ioBroker/dev-server@v0.6.0...v0.8.0)

---
updated-dependencies:
- dependency-name: http-proxy-middleware
  dependency-version: 3.0.7
  dependency-type: indirect
- dependency-name: "@iobroker/dev-server"
  dependency-version: 0.8.0
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Jun 19, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants