{"id":2299,"name":"node-fetch","ecosystem":"npm","repository_url":"https://github.com/bitinn/node-fetch","issues_count":1213,"created_at":"2025-06-06T15:02:01.576Z","updated_at":"2025-06-06T15:02:01.576Z","purl":"pkg:npm/node-fetch","metadata":{"id":2090691,"name":"node-fetch","ecosystem":"npm","description":"A light-weight module that brings window.fetch to node.js","homepage":"https://github.com/node-fetch/node-fetch","licenses":"MIT","normalized_licenses":["MIT"],"repository_url":"https://github.com/bitinn/node-fetch","keywords_array":["fetch","http","promise"],"namespace":null,"versions_count":96,"first_release_published_at":"2015-01-27T13:17:06.232Z","latest_release_published_at":"2023-07-25T11:50:17.626Z","latest_release_number":"3.3.2","last_synced_at":"2025-06-05T17:30:41.233Z","created_at":"2022-04-09T20:53:43.731Z","updated_at":"2025-06-05T17:30:41.233Z","registry_url":"https://www.npmjs.com/package/node-fetch","install_command":"npm install node-fetch","documentation_url":null,"metadata":{"funding":null,"dist-tags":{"latest":"3.3.2","next":"3.0.0-beta.10","cjs":"2.6.7","beta":"4.0.0-beta.4","release-2.x":"2.7.0"}},"repo_metadata":{"id":26400223,"uuid":"29849956","full_name":"node-fetch/node-fetch","owner":"node-fetch","description":"A light-weight module that brings the Fetch API to Node.js","archived":false,"fork":false,"pushed_at":"2024-03-06T13:24:32.000Z","size":1268,"stargazers_count":8646,"open_issues_count":206,"forks_count":1000,"subscribers_count":91,"default_branch":"main","last_synced_at":"2024-05-01T11:39:08.482Z","etag":null,"topics":["fetch","fetch-api","hacktoberfest","http","http-client","node-fetch","promise","spec-compliant","stream","whatwg","whatwg-fetch"],"latest_commit_sha":null,"homepage":"","language":"JavaScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/node-fetch.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":".github/FUNDING.yml","license":"LICENSE.md","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":"SECURITY.md","support":null,"governance":null,"roadmap":null,"authors":null,"dei":null},"funding":{"github":"node-fetch","patreon":null,"open_collective":"node-fetch","ko_fi":null,"tidelift":null,"community_bridge":null,"liberapay":null,"issuehunt":null,"otechie":null,"custom":null}},"created_at":"2015-01-26T07:29:26.000Z","updated_at":"2024-04-30T13:35:52.000Z","dependencies_parsed_at":"2023-09-29T08:54:24.080Z","dependency_job_id":"7e33693a-238c-4f0b-939f-0ec6afd5cb5e","html_url":"https://github.com/node-fetch/node-fetch","commit_stats":{"total_commits":596,"total_committers":121,"mean_commits":4.925619834710743,"dds":0.7600671140939598,"last_synced_commit":"8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f"},"previous_names":["bitinn/node-fetch"],"tags_count":76,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/node-fetch","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":218058123,"owners_count":16271746,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"},"owner_record":{"login":"node-fetch","name":"Node Fetch","uuid":"59502381","kind":"organization","description":"A light-weight module that brings Fetch API to Node.js","email":null,"website":null,"location":"USA, Poland, Sweden, China, New Zealand","twitter":null,"company":null,"icon_url":"https://avatars.githubusercontent.com/u/59502381?v=4","repositories_count":5,"last_synced_at":"2024-05-20T15:01:31.578Z","metadata":{"has_sponsors_listing":true},"html_url":"https://github.com/node-fetch","funding_links":["https://github.com/sponsors/node-fetch"],"total_stars":8735,"followers":43,"following":0,"created_at":"2022-11-02T16:17:01.408Z","updated_at":"2024-05-20T15:01:32.254Z","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/node-fetch","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/node-fetch/repositories"},"tags":[{"name":"v2.7.0","sha":"9b9d45881e5ca68757077726b3c0ecf8fdca1f29","kind":"commit","published_at":"2023-08-23T17:17:49.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v2.7.0","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v2.7.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.7.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.7.0/manifests"},{"name":"v2.6.13","sha":"65ae25a1da2834b046c218685f2085a06f679492","kind":"commit","published_at":"2023-08-18T20:23:31.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v2.6.13","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v2.6.13","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.6.13","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.6.13/manifests"},{"name":"v3.3.2","sha":"8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f","kind":"commit","published_at":"2023-07-25T11:49:44.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v3.3.2","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v3.3.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.3.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.3.2/manifests"},{"name":"v2.6.12","sha":"8bc3a7c85f67fb81bb3d71c8254e68f3b88e9169","kind":"commit","published_at":"2023-06-29T19:15:38.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v2.6.12","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v2.6.12","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.6.12","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.6.12/manifests"},{"name":"v2.6.11","sha":"afb36f6c178342488d71947dfc87e7ddd19fab9e","kind":"commit","published_at":"2023-05-09T11:05:46.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v2.6.11","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v2.6.11","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.6.11","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.6.11/manifests"},{"name":"v2.6.10","sha":"29909d75c62d51e0d1c23758e526dba74bfd463d","kind":"commit","published_at":"2023-05-08T16:19:42.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v2.6.10","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v2.6.10","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.6.10","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.6.10/manifests"},{"name":"v3.3.1","sha":"7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e","kind":"commit","published_at":"2023-03-11T10:47:05.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v3.3.1","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v3.3.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.3.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.3.1/manifests"},{"name":"v2.6.9","sha":"70f592d9d2da959df1cebc2dd2314286a4bcf345","kind":"commit","published_at":"2023-01-30T21:59:17.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v2.6.9","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v2.6.9","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.6.9","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.6.9/manifests"},{"name":"v2.6.8","sha":"6e9464d7e34dc323edf4dabad7615dd94ab847bd","kind":"commit","published_at":"2023-01-13T01:02:06.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v2.6.8","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v2.6.8","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.6.8","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.6.8/manifests"},{"name":"v3.3.0","sha":"55a4870ae5f805d8ff9a890ea2c652c9977e048e","kind":"commit","published_at":"2022-11-10T21:46:51.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v3.3.0","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v3.3.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.3.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.3.0/manifests"},{"name":"v3.2.10","sha":"28802387292baee467e042e168d92597b5bbbe3d","kind":"commit","published_at":"2022-07-31T08:01:29.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v3.2.10","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v3.2.10","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.2.10","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.2.10/manifests"},{"name":"v3.2.9","sha":"e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7","kind":"commit","published_at":"2022-07-18T15:20:30.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v3.2.9","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v3.2.9","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.2.9","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.2.9/manifests"},{"name":"v3.2.8","sha":"11b703361134340a8361f591d6e3a0bcf6a261fa","kind":"commit","published_at":"2022-07-12T16:31:49.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v3.2.8","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v3.2.8","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.2.8","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.2.8/manifests"},{"name":"v3.2.7","sha":"4f43c9ed63da98f4b5167f0a8e447cd0f0133cd3","kind":"commit","published_at":"2022-07-11T22:45:16.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v3.2.7","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v3.2.7","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.2.7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.2.7/manifests"},{"name":"v3.2.6","sha":"1c5ed6b981e6c5dd28bd50f5ab5418e5bd262b99","kind":"commit","published_at":"2022-06-09T10:55:02.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v3.2.6","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v3.2.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.2.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.2.6/manifests"},{"name":"v3.2.5","sha":"a92b5d5cf4457c2da95d8404b08cfd06a426a2fa","kind":"commit","published_at":"2022-06-01T19:43:48.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v3.2.5","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v3.2.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.2.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.2.5/manifests"},{"name":"v3.2.4","sha":"004b3ac8324e6cdbfb5d04b8bbdc6664ea48fbcf","kind":"commit","published_at":"2022-04-28T09:33:26.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v3.2.4","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v3.2.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.2.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.2.4/manifests"},{"name":"v3.2.3","sha":"6425e2021a7def096e13dbabcac2f10e6da83d11","kind":"commit","published_at":"2022-03-11T21:49:14.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v3.2.3","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v3.2.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.2.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.2.3/manifests"},{"name":"v3.2.2","sha":"a4ea5f9308f942400695cce261291d0a80cd1b02","kind":"commit","published_at":"2022-03-07T10:56:34.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v3.2.2","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v3.2.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.2.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.2.2/manifests"},{"name":"v3.2.1","sha":"61b3b5a06384003d332581080af6522bec19417f","kind":"commit","published_at":"2022-03-01T09:54:27.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v3.2.1","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v3.2.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.2.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.2.1/manifests"},{"name":"v4.0.0-beta.4","sha":"bd3c4844dae343977d4f240aa9d0f7a3c0a0da12","kind":"commit","published_at":"2022-01-27T22:44:41.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v4.0.0-beta.4","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v4.0.0-beta.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v4.0.0-beta.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v4.0.0-beta.4/manifests"},{"name":"v4.0.0-beta.3","sha":"fcd8bdd6d93402df728f90a8b67adec1ce5ea1ab","kind":"commit","published_at":"2022-01-27T22:42:22.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v4.0.0-beta.3","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v4.0.0-beta.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v4.0.0-beta.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v4.0.0-beta.3/manifests"},{"name":"v4.0.0-beta.2","sha":"1c775f16e50724ea6721e9f7482351341eb1b198","kind":"commit","published_at":"2022-01-27T22:39:33.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v4.0.0-beta.2","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v4.0.0-beta.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v4.0.0-beta.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v4.0.0-beta.2/manifests"},{"name":"v4.0.0-beta.1","sha":"8c1fe4141604793be82120520afc677c1454ed1b","kind":"commit","published_at":"2022-01-27T00:27:14.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v4.0.0-beta.1","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v4.0.0-beta.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v4.0.0-beta.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v4.0.0-beta.1/manifests"},{"name":"v3.2.0","sha":"81b1378bb3bda555d3d2114e7d3dfddbd91f210c","kind":"commit","published_at":"2022-01-20T20:42:44.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v3.2.0","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v3.2.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.2.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.2.0/manifests"},{"name":"v3.1.1","sha":"36e47e8a6406185921e4985dcbeff140d73eaa10","kind":"commit","published_at":"2022-01-16T12:24:18.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v3.1.1","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v3.1.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.1.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.1.1/manifests"},{"name":"v2.6.7","sha":"1ef4b560a17e644a02a3bfdea7631ffeee578b35","kind":"commit","published_at":"2022-01-16T11:45:33.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v2.6.7","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v2.6.7","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.6.7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.6.7/manifests"},{"name":"v3.1.0","sha":"109bd21313c277f043089f8c38b1a716c39ff86f","kind":"commit","published_at":"2021-11-08T18:13:47.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v3.1.0","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v3.1.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.1.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.1.0/manifests"},{"name":"v2.6.6","sha":"f56b0c66d3dd2ef185436de1f2fd40f66bfea8f4","kind":"commit","published_at":"2021-10-31T15:40:17.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v2.6.6","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v2.6.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.6.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.6.6/manifests"},{"name":"v2.6.5","sha":"b5417aea6a3275932283a200214522e6ab53f1ea","kind":"commit","published_at":"2021-09-22T09:16:53.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v2.6.5","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v2.6.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.6.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.6.5/manifests"},{"name":"v2.6.3","sha":"ace7536c955556be742d9910566738630cc3c2a6","kind":"commit","published_at":"2021-09-20T14:09:10.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v2.6.3","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v2.6.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.6.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.6.3/manifests"},{"name":"v2.6.2","sha":"152214ca2f6e2a5a17d71e4638114625d3be30c6","kind":"commit","published_at":"2021-09-06T12:58:28.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v2.6.2","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v2.6.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.6.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.6.2/manifests"},{"name":"v3.0.0","sha":"2603c67f1840fb4a43e0837099a3b2725e8f615e","kind":"commit","published_at":"2021-08-31T15:54:19.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v3.0.0","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v3.0.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.0.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.0.0/manifests"},{"name":"v3.0.0-beta.10","sha":"b50fbc105755123cad34fb0bc9d5653ecc693b8a","kind":"commit","published_at":"2021-07-18T20:15:19.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v3.0.0-beta.10","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v3.0.0-beta.10","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.0.0-beta.10","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.0.0-beta.10/manifests"},{"name":"fix-chunked-transfer-premature-close-1","sha":"dbcc481756ef6f18aa256ead06331e2c1e72d540","kind":"commit","published_at":"2021-01-04T03:39:28.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/fix-chunked-transfer-premature-close-1","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/fix-chunked-transfer-premature-close-1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/fix-chunked-transfer-premature-close-1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/fix-chunked-transfer-premature-close-1/manifests"},{"name":"v2.6.1","sha":"b5e2e41b2b50bf2997720d6125accaf0dd68c0ab","kind":"commit","published_at":"2020-09-05T12:58:33.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v2.6.1","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v2.6.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.6.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.6.1/manifests"},{"name":"v3.0.0-beta.9","sha":"38839c53bd417cef440757265f75c8371d4c51e6","kind":"commit","published_at":"2020-09-05T12:51:31.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v3.0.0-beta.9","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v3.0.0-beta.9","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.0.0-beta.9","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.0.0-beta.9/manifests"},{"name":"v3.0.0-beta.8","sha":"b7076bb24f75be688d8fc8b175f41b341e853f2b","kind":"commit","published_at":"2020-08-06T22:10:06.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v3.0.0-beta.8","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v3.0.0-beta.8","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.0.0-beta.8","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.0.0-beta.8/manifests"},{"name":"v3.0.0-beta.7","sha":"2c005872ae21eff6b11c9536a55e7b8091b96273","kind":"commit","published_at":"2020-06-11T09:29:21.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v3.0.0-beta.7","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v3.0.0-beta.7","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.0.0-beta.7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.0.0-beta.7/manifests"},{"name":"v3.0.0-beta.6-exportfix","sha":"d1691f990a0aa466bf5d1a6ae7d6081173d47114","kind":"commit","published_at":"2020-05-25T17:31:44.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v3.0.0-beta.6-exportfix","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v3.0.0-beta.6-exportfix","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.0.0-beta.6-exportfix","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.0.0-beta.6-exportfix/manifests"},{"name":"v3.0.0-beta.6","sha":"aab3c605eb8e1897dbcf105c43b00d31db754a4d","kind":"commit","published_at":"2020-05-25T15:20:25.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v3.0.0-beta.6","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v3.0.0-beta.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.0.0-beta.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.0.0-beta.6/manifests"},{"name":"v3.0.0-beta.5","sha":"2a61567ac3637a3332075c2c796286173ae7fd6a","kind":"commit","published_at":"2020-04-22T09:52:33.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v3.0.0-beta.5","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v3.0.0-beta.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.0.0-beta.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.0.0-beta.5/manifests"},{"name":"v3.0.0-beta.1","sha":"0959ca9739850bbd24e0721cc1296e7a0aa5c2bd","kind":"commit","published_at":"2020-03-13T15:06:25.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v3.0.0-beta.1","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v3.0.0-beta.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.0.0-beta.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v3.0.0-beta.1/manifests"},{"name":"v2.6.0","sha":"95286f52bb866283bc69521a04efe1de37b26a33","kind":"commit","published_at":"2019-05-16T06:38:28.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v2.6.0","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v2.6.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.6.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.6.0/manifests"},{"name":"v2.5.0","sha":"0c2294ec48fa5b84519f8bdd60f4e2672ebd9b06","kind":"commit","published_at":"2019-05-01T05:05:32.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v2.5.0","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v2.5.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.5.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.5.0/manifests"},{"name":"v2.4.1","sha":"b3ecba5e81016390eec57718636122459cc33a94","kind":"commit","published_at":"2019-04-27T06:50:25.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v2.4.1","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v2.4.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.4.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.4.1/manifests"},{"name":"v2.4.0","sha":"c9805a2868bb0896be126acefdc2c11c4c586bf9","kind":"commit","published_at":"2019-04-26T17:20:20.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v2.4.0","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v2.4.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.4.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.4.0/manifests"},{"name":"v2.3.0","sha":"5367fe6a978e01745e4264384a91140dc99a4bf8","kind":"commit","published_at":"2018-11-13T06:35:09.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v2.3.0","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v2.3.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.3.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.3.0/manifests"},{"name":"v2.2.1","sha":"1daae67e9e88f7c0a9bd56e38e5d5efe365fd411","kind":"commit","published_at":"2018-11-05T09:42:51.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v2.2.1","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v2.2.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.2.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.2.1/manifests"},{"name":"v2.2.0","sha":"09ef40e8a883344a38f8ebddc58ff0ac129a415c","kind":"tag","published_at":"2018-07-22T21:31:08.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v2.2.0","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v2.2.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.2.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.2.0/manifests"},{"name":"v2.1.2","sha":"b80c2f56a098fffbb3a5556b2034a3a35c37b2a7","kind":"tag","published_at":"2018-03-25T20:55:02.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v2.1.2","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v2.1.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.1.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.1.2/manifests"},{"name":"v2.1.1","sha":"fb86ab34a6e6f00bfae5fd8cbebda9af4a0f412f","kind":"tag","published_at":"2018-03-05T04:44:10.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v2.1.1","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v2.1.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.1.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.1.1/manifests"},{"name":"v2.1.0","sha":"ccaeae096f654a1df3d81c3a4e250aa859659d39","kind":"tag","published_at":"2018-03-05T04:42:06.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v2.1.0","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v2.1.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.1.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.1.0/manifests"},{"name":"v2.0.0","sha":"c0950b7b9f0720cc9a0915968d5585d87286fba1","kind":"tag","published_at":"2018-02-03T20:34:25.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v2.0.0","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v2.0.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.0.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.0.0/manifests"},{"name":"v2.0.0-alpha.9","sha":"d1a3b1ee34720b0d2674a21741264a888863cb3f","kind":"commit","published_at":"2017-09-24T05:46:17.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v2.0.0-alpha.9","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v2.0.0-alpha.9","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.0.0-alpha.9","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.0.0-alpha.9/manifests"},{"name":"1.7.3","sha":"16f33bf76f06afb58307a652ceb48f597e48a095","kind":"commit","published_at":"2017-09-08T06:27:20.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/1.7.3","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/1.7.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/1.7.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/1.7.3/manifests"},{"name":"v1.7.2","sha":"3c9b64caf5c84f96052078f18d91c9e12bd5f5c6","kind":"commit","published_at":"2017-08-08T11:20:38.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v1.7.2","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v1.7.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v1.7.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v1.7.2/manifests"},{"name":"v2.0.0-alpha.8","sha":"863449de2e5b14c128503dd1c425d5e0fd24d267","kind":"commit","published_at":"2017-07-26T17:09:52.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v2.0.0-alpha.8","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v2.0.0-alpha.8","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.0.0-alpha.8","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.0.0-alpha.8/manifests"},{"name":"v2.0.0-alpha.7","sha":"2edb4c026667e5c8e7c808a3973bd94d193b2d0f","kind":"commit","published_at":"2017-07-25T04:10:11.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v2.0.0-alpha.7","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v2.0.0-alpha.7","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.0.0-alpha.7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.0.0-alpha.7/manifests"},{"name":"v2.0.0-alpha.6","sha":"2b359c1ea161edf5778490b9303a40ee11fef7ea","kind":"commit","published_at":"2017-07-21T17:59:59.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v2.0.0-alpha.6","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v2.0.0-alpha.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.0.0-alpha.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.0.0-alpha.6/manifests"},{"name":"v2.0.0-alpha.5","sha":"fa58aa0ab152293066ea912d4abdaa877d72eb16","kind":"commit","published_at":"2017-06-03T12:21:46.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v2.0.0-alpha.5","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v2.0.0-alpha.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.0.0-alpha.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.0.0-alpha.5/manifests"},{"name":"v1.7.1","sha":"4bb15ce988bf614a2b1b72da1d6545b09ca6b4c6","kind":"commit","published_at":"2017-06-03T12:21:36.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v1.7.1","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v1.7.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v1.7.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v1.7.1/manifests"},{"name":"v1.7.0","sha":"cf71a1bc8badaebf0243748f66a719fe5e32cfdc","kind":"commit","published_at":"2017-05-23T08:22:40.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v1.7.0","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v1.7.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v1.7.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v1.7.0/manifests"},{"name":"v2.0.0-alpha.4","sha":"2d986a79996c0d19631405f25809cdf26dc65d4b","kind":"commit","published_at":"2017-05-15T11:47:12.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v2.0.0-alpha.4","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v2.0.0-alpha.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.0.0-alpha.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.0.0-alpha.4/manifests"},{"name":"v2.0.0-alpha.3","sha":"560d5d6a023f069c37497f633fe65955182fa3d5","kind":"tag","published_at":"2017-01-29T18:35:59.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v2.0.0-alpha.3","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v2.0.0-alpha.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.0.0-alpha.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.0.0-alpha.3/manifests"},{"name":"v2.0.0-alpha.1","sha":"908f661664e51fd847a5f69eb31724bbf2b3724b","kind":"tag","published_at":"2017-01-15T05:37:43.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v2.0.0-alpha.1","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v2.0.0-alpha.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.0.0-alpha.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v2.0.0-alpha.1/manifests"},{"name":"v1.6.3","sha":"3c053ce32760d2d5d6cb8712fb4115b44e4083d4","kind":"commit","published_at":"2016-09-26T06:16:41.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v1.6.3","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v1.6.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v1.6.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v1.6.3/manifests"},{"name":"v1.6.2","sha":"b2e6cca648bb5da176b6f4ab39dca6a33e992567","kind":"commit","published_at":"2016-09-24T09:53:11.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v1.6.2","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v1.6.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v1.6.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v1.6.2/manifests"},{"name":"v1.6.1","sha":"3e53f0c2c86078808508aa2ca11094bb45570548","kind":"commit","published_at":"2016-09-11T15:37:00.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v1.6.1","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v1.6.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v1.6.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v1.6.1/manifests"},{"name":"v1.6.0","sha":"4e455a4185da81abf814ccdb9c9e789691f7a349","kind":"commit","published_at":"2016-08-03T10:08:24.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v1.6.0","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v1.6.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v1.6.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v1.6.0/manifests"},{"name":"v1.5.3","sha":"b46c5ea9ee6692676a2824334e24f9d3b95d3b78","kind":"commit","published_at":"2016-05-25T18:54:22.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v1.5.3","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v1.5.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v1.5.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v1.5.3/manifests"},{"name":"v1.5.2","sha":"e1fcc2315acd9bcb211ca6c0b1e7218093289763","kind":"commit","published_at":"2016-05-06T12:02:14.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v1.5.2","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v1.5.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v1.5.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v1.5.2/manifests"},{"name":"v1.5.1","sha":"3f24c09005fe5c7e42c64c19a0ff57a8d0c43710","kind":"commit","published_at":"2016-04-12T18:58:35.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v1.5.1","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v1.5.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v1.5.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v1.5.1/manifests"},{"name":"v1.5.0","sha":"321d80075062a8bfaf917d9b562e748624325da0","kind":"commit","published_at":"2016-04-05T19:00:04.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v1.5.0","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v1.5.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v1.5.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v1.5.0/manifests"},{"name":"v1.4.1","sha":"98b167c35d4465bdff1c5760ad9676142e3eefc6","kind":"commit","published_at":"2016-03-23T07:33:01.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v1.4.1","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v1.4.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v1.4.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v1.4.1/manifests"},{"name":"v1.4.0","sha":"2dd4ee583867dabc0102b4391a7aa343fd366be2","kind":"commit","published_at":"2016-03-19T11:02:12.000Z","download_url":"https://codeload.github.com/node-fetch/node-fetch/tar.gz/v1.4.0","html_url":"https://github.com/node-fetch/node-fetch/releases/tag/v1.4.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v1.4.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-fetch%2Fnode-fetch/tags/v1.4.0/manifests"}]},"repo_metadata_updated_at":"2024-09-07T20:56:34.140Z","dependent_packages_count":34871,"downloads":290409504,"downloads_period":"last-month","dependent_repos_count":1817321,"rankings":{"downloads":0.0035867573632569288,"dependent_repos_count":0.017824267507482908,"dependent_packages_count":0.003148680128049976,"stargazers_count":1.0830090649131894,"forks_count":1.1423411504565313,"docker_downloads_count":0.01503152513303858,"average":0.3774902409169248},"purl":"pkg:npm/node-fetch","advisories":[{"uuid":"GSA_kwCzR0hTQS12cDU2LTZnMjYtNjgyN84AAtwJ","url":"https://github.com/advisories/GHSA-vp56-6g26-6827","title":"node-fetch Inefficient Regular Expression Complexity ","description":"[node-fetch](https://www.npmjs.com/package/node-fetch) is a light-weight module that brings window.fetch to node.js.\n\nAffected versions of this package are vulnerable to Regular Expression Denial of Service (ReDoS) in the `isOriginPotentiallyTrustworthy()` function in `referrer.js`, when processing a URL string with alternating letters and periods, such as `'http://' + 'a.a.'.repeat(i) + 'a'`.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2022-08-02T00:00:25.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":5.9,"cvss_vector":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H","references":["https://nvd.nist.gov/vuln/detail/CVE-2022-2596","https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d","https://huntr.dev/bounties/a7e6a136-0a4b-46c4-ad20-802f1dd60bf7","https://github.com/node-fetch/node-fetch/pull/1611","https://github.com/node-fetch/node-fetch/releases/tag/v3.2.10","https://github.com/advisories/GHSA-vp56-6g26-6827"],"source_kind":"github","identifiers":["GHSA-vp56-6g26-6827","CVE-2022-2596"],"repository_url":"https://github.com/node-fetch/node-fetch","blast_radius":36.93064670605054,"packages":[{"versions":[{"first_patched_version":"3.2.10","vulnerable_version_range":"\u003e= 3.0.0, \u003c 3.2.10"}],"ecosystem":"npm","package_name":"node-fetch"}],"created_at":"2022-12-21T16:12:09.189Z","updated_at":"2023-07-11T13:42:39.000Z","epss_percentage":0.00086,"epss_percentile":0.39226},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXc3cmMtcnd2Zi04cTVy","url":"https://github.com/advisories/GHSA-w7rc-rwvf-8q5r","title":"The `size` option isn't honored after following a redirect in node-fetch","description":"### Impact\nNode Fetch did not honor the `size` option after following a redirect, which means that when a content size was over the limit, a `FetchError` would never get thrown and the process would end without failure.\n\nFor most people, this fix will have a little or no impact. However, if you are relying on node-fetch to gate files above a size, the impact could be significant, for example: If you don't double-check the size of the data after `fetch()` has completed, your JS thread could get tied up doing work on a large file (DoS) and/or cost you money in computing.\n\n### Patches\nWe released patched versions for both stable and beta channels:\n\n- For `v2`: 2.6.1\n- For `v3`: 3.0.0-beta.9\n\n### Workarounds\nNone, it is strongly recommended to update as soon as possible.\n\n### For more information\nIf you have any questions or comments about this advisory:\n* Open an issue in [node-fetch](https://github.com/node-fetch/node-fetch/issues/new?assignees=\u0026labels=question\u0026template=support-or-usage.md\u0026title=Question%3A+)\n* Contact one of the core maintainers.","origin":"UNSPECIFIED","severity":"LOW","published_at":"2020-09-10T17:46:21.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":2.6,"cvss_vector":"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:L","references":["https://github.com/node-fetch/node-fetch/security/advisories/GHSA-w7rc-rwvf-8q5r","https://nvd.nist.gov/vuln/detail/CVE-2020-15168","https://github.com/node-fetch/node-fetch/commit/2358a6c2563d1730a0cdaccc197c611949f6a334","https://github.com/node-fetch/node-fetch/commit/eaff0094c4dfdd5b78711a8c4f1b61e33d282072","https://github.com/advisories/GHSA-w7rc-rwvf-8q5r"],"source_kind":"github","identifiers":["GHSA-w7rc-rwvf-8q5r","CVE-2020-15168"],"repository_url":"https://github.com/node-fetch/node-fetch","blast_radius":16.27452227724261,"packages":[{"versions":[{"first_patched_version":"2.6.1","vulnerable_version_range":"\u003e= 2.0.0, \u003c 2.6.1"},{"first_patched_version":"3.0.0-beta.9","vulnerable_version_range":"\u003e= 3.0.0-beta.1, \u003c= 3.0.0-beta.8"}],"ecosystem":"npm","package_name":"node-fetch"}],"created_at":"2022-12-21T16:13:14.056Z","updated_at":"2025-03-11T01:09:11.481Z","epss_percentage":0.00137,"epss_percentile":0.50492},{"uuid":"GSA_kwCzR0hTQS1yNjgzLWoyeDQtdjg3Z80j_w","url":"https://github.com/advisories/GHSA-r683-j2x4-v87g","title":"node-fetch forwards secure headers to untrusted sites","description":"node-fetch forwards secure headers such as `authorization`, `www-authenticate`, `cookie`, \u0026 `cookie2` when redirecting to a untrusted site.","origin":"UNSPECIFIED","severity":"HIGH","published_at":"2022-01-21T23:55:52.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":8.8,"cvss_vector":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","references":["https://nvd.nist.gov/vuln/detail/CVE-2022-0235","https://github.com/node-fetch/node-fetch/commit/36e47e8a6406185921e4985dcbeff140d73eaa10","https://huntr.dev/bounties/d26ab655-38d6-48b3-be15-f9ad6b6ae6f7","https://github.com/node-fetch/node-fetch/pull/1453","https://github.com/node-fetch/node-fetch/commit/5c32f002fdd65b1c6a8f1e3620210813d45c7e60","https://cert-portal.siemens.com/productcert/pdf/ssa-637483.pdf","https://lists.debian.org/debian-lts-announce/2022/12/msg00007.html","https://github.com/node-fetch/node-fetch/pull/1449/commits/5c32f002fdd65b1c6a8f1e3620210813d45c7e60","https://github.com/node-fetch/node-fetch/commit/1ef4b560a17e644a02a3bfdea7631ffeee578b35","https://github.com/advisories/GHSA-r683-j2x4-v87g"],"source_kind":"github","identifiers":["GHSA-r683-j2x4-v87g","CVE-2022-0235"],"repository_url":"https://github.com/node-fetch/node-fetch","blast_radius":55.082998476821146,"packages":[{"versions":[{"first_patched_version":"2.6.7","vulnerable_version_range":"\u003c 2.6.7"},{"first_patched_version":"3.1.1","vulnerable_version_range":"\u003e= 3.0.0, \u003c 3.1.1"}],"ecosystem":"npm","package_name":"node-fetch"}],"created_at":"2022-12-21T16:12:37.921Z","updated_at":"2023-11-29T22:08:39.000Z","epss_percentage":0.00134,"epss_percentile":0.4954}],"docker_usage_url":"https://docker.ecosyste.ms/usage/npm/node-fetch","docker_dependents_count":26640,"docker_downloads_count":6545971952,"usage_url":"https://repos.ecosyste.ms/usage/npm/node-fetch","dependent_repositories_url":"https://repos.ecosyste.ms/api/v1/usage/npm/node-fetch/dependencies","status":null,"funding_links":["https://github.com/sponsors/node-fetch","https://opencollective.com/node-fetch"],"critical":true,"versions_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/packages/node-fetch/versions","version_numbers_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/packages/node-fetch/version_numbers","dependent_packages_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/packages/node-fetch/dependent_packages","related_packages_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/packages/node-fetch/related_packages","maintainers":[{"uuid":"akepinski","login":"akepinski","name":null,"email":"npm@kepinski.ch","url":null,"packages_count":61,"html_url":"https://www.npmjs.com/~akepinski","role":null,"created_at":"2022-11-10T11:26:28.595Z","updated_at":"2022-11-10T11:26:28.595Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/maintainers/akepinski/packages"},{"uuid":"endless","login":"endless","name":null,"email":"jimmy@warting.se","url":null,"packages_count":38,"html_url":"https://www.npmjs.com/~endless","role":null,"created_at":"2022-11-10T11:26:28.588Z","updated_at":"2022-11-10T11:26:28.588Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/maintainers/endless/packages"},{"uuid":"timothygu","login":"timothygu","name":null,"email":"timothygu99@gmail.com","url":null,"packages_count":225,"html_url":"https://www.npmjs.com/~timothygu","role":null,"created_at":"2022-11-10T11:26:28.593Z","updated_at":"2022-11-10T11:26:28.593Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/maintainers/timothygu/packages"},{"uuid":"bitinn","login":"bitinn","name":null,"email":"bitinn@gmail.com","url":null,"packages_count":11,"html_url":"https://www.npmjs.com/~bitinn","role":null,"created_at":"2022-11-10T11:26:28.590Z","updated_at":"2022-11-10T11:26:28.590Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/maintainers/bitinn/packages"},{"uuid":"node-fetch-bot","login":"node-fetch-bot","name":null,"email":"jimmy+node-fetch@warting.se","url":null,"packages_count":1,"html_url":"https://www.npmjs.com/~node-fetch-bot","role":null,"created_at":"2022-11-10T11:26:28.597Z","updated_at":"2022-11-10T11:26:28.597Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/maintainers/node-fetch-bot/packages"}],"registry":{"name":"npmjs.org","url":"https://registry.npmjs.org","ecosystem":"npm","default":true,"packages_count":5005319,"maintainers_count":1012639,"namespaces_count":295318,"keywords_count":699769,"github":"npm","metadata":{"funded_packages_count":150180},"icon_url":"https://github.com/npm.png","created_at":"2022-04-04T15:19:23.081Z","updated_at":"2025-06-05T05:52:15.849Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/packages","maintainers_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/maintainers","namespaces_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/namespaces"}},"unique_repositories_count":863,"unique_repositories_count_past_30_days":7,"recent_issues":[{"uuid":"4670521730","node_id":"PR_kwDOS74NdM7m0OQk","number":1,"state":"open","title":"Bump node-fetch from 2.7.0 to 3.3.2","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-06-16T02:35:42.000Z","updated_at":"2026-06-16T02:36:07.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"node-fetch","old_version":"2.7.0","new_version":"3.3.2","repository_url":"https://github.com/node-fetch/node-fetch"}],"path":null,"ecosystem":"npm"},"body":"Bumps [node-fetch](https://github.com/node-fetch/node-fetch) from 2.7.0 to 3.3.2.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-fetch/node-fetch/releases\"\u003enode-fetch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.3.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.1...v3.3.2\"\u003e3.3.2\u003c/a\u003e (2023-07-25)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e8b3320d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1735\"\u003e#1735\u003c/a\u003e \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1473\"\u003e#1473\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.0...v3.3.1\"\u003e3.3.1\u003c/a\u003e (2023-03-11)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erelease \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e7b86e94\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.0\u003c/h2\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.10...v3.3.0\"\u003e3.3.0\u003c/a\u003e (2022-11-10)\u003c/h1\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd static Response.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1670\"\u003e#1670\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/55a4870ae5f805d8ff9a890ea2c652c9977e048e\"\u003e55a4870\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.10\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.9...v3.2.10\"\u003e3.2.10\u003c/a\u003e (2022-07-31)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDoS referrer (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1611\"\u003e#1611\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d\"\u003e2880238\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.9\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.8...v3.2.9\"\u003e3.2.9\u003c/a\u003e (2022-07-18)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHeaders:\u003c/strong\u003e don't forward secure headers on protocol change (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1599\"\u003e#1599\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7\"\u003ee87b093\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.8\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.7...v3.2.8\"\u003e3.2.8\u003c/a\u003e (2022-07-12)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003epossibly flaky test (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1523\"\u003e#1523\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/11b703361134340a8361f591d6e3a0bcf6a261fa\"\u003e11b7033\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e\u003ccode\u003e8b3320d\u003c/code\u003e\u003c/a\u003e fix: Remove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e\u003ccode\u003e7b86e94\u003c/code\u003e\u003c/a\u003e fix: release \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8ced5b941cf36d0d7e0c1017aa2a4abcb29ecd89\"\u003e\u003ccode\u003e8ced5b9\u003c/code\u003e\u003c/a\u003e docs: readme - non ESM example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1707\"\u003e#1707\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/71e376b0ca899a30bbda4d45f97ea87502956a62\"\u003e\u003ccode\u003e71e376b\u003c/code\u003e\u003c/a\u003e ci(release): use latest Node LTS (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1697\"\u003e#1697\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e093030b4a6625405a331ddf48bcfd82c079f43d\"\u003e\u003ccode\u003ee093030\u003c/code\u003e\u003c/a\u003e Allow URL class object as an argument for fetch() (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/55a4870ae5f805d8ff9a890ea2c652c9977e048e\"\u003e\u003ccode\u003e55a4870\u003c/code\u003e\u003c/a\u003e feat: add static Response.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1670\"\u003e#1670\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/c071406e193cce13959999982584ff27198e9e4a\"\u003e\u003ccode\u003ec071406\u003c/code\u003e\u003c/a\u003e (1138) - Fixed HTTPResponseError with correct constructor and usage (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1666\"\u003e#1666\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/6f72caa401a8ec574a22058431599ef47c222770\"\u003e\u003ccode\u003e6f72caa\u003c/code\u003e\u003c/a\u003e docs: fix missing comma in example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1623\"\u003e#1623\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d\"\u003e\u003ccode\u003e2880238\u003c/code\u003e\u003c/a\u003e fix: ReDoS referrer (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1611\"\u003e#1611\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7\"\u003e\u003ccode\u003ee87b093\u003c/code\u003e\u003c/a\u003e fix(Headers): don't forward secure headers on protocol change (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1599\"\u003e#1599\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v2.7.0...v3.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=node-fetch\u0026package-manager=npm_and_yarn\u0026previous-version=2.7.0\u0026new-version=3.3.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/Zane857/test/pull/1","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Zane857%2Ftest/issues/1","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1/packages"},{"uuid":"4634429526","node_id":"PR_kwDOIkFcGs7lA09Z","number":288,"state":"open","title":"build(deps-dev): bump node-fetch from 3.3.0 to 3.3.2","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-06-10T19:43:28.000Z","updated_at":"2026-06-10T19:45:59.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps-dev)","packages":[{"name":"node-fetch","old_version":"3.3.0","new_version":"3.3.2","repository_url":"https://github.com/node-fetch/node-fetch"}],"path":null,"ecosystem":"npm"},"body":"Bumps [node-fetch](https://github.com/node-fetch/node-fetch) from 3.3.0 to 3.3.2.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-fetch/node-fetch/releases\"\u003enode-fetch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.3.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.1...v3.3.2\"\u003e3.3.2\u003c/a\u003e (2023-07-25)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e8b3320d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1735\"\u003e#1735\u003c/a\u003e \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1473\"\u003e#1473\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.0...v3.3.1\"\u003e3.3.1\u003c/a\u003e (2023-03-11)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erelease \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e7b86e94\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e\u003ccode\u003e8b3320d\u003c/code\u003e\u003c/a\u003e fix: Remove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e\u003ccode\u003e7b86e94\u003c/code\u003e\u003c/a\u003e fix: release \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8ced5b941cf36d0d7e0c1017aa2a4abcb29ecd89\"\u003e\u003ccode\u003e8ced5b9\u003c/code\u003e\u003c/a\u003e docs: readme - non ESM example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1707\"\u003e#1707\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/71e376b0ca899a30bbda4d45f97ea87502956a62\"\u003e\u003ccode\u003e71e376b\u003c/code\u003e\u003c/a\u003e ci(release): use latest Node LTS (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1697\"\u003e#1697\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e093030b4a6625405a331ddf48bcfd82c079f43d\"\u003e\u003ccode\u003ee093030\u003c/code\u003e\u003c/a\u003e Allow URL class object as an argument for fetch() (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.0...v3.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=node-fetch\u0026package-manager=npm_and_yarn\u0026previous-version=3.3.0\u0026new-version=3.3.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/ilham1012/ecgbrin/pull/288","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/ilham1012%2Fecgbrin/issues/288","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/288/packages"},{"uuid":"4609474376","node_id":"PR_kwDOPiz4t87juhSC","number":37,"state":"open","title":"build(deps): Bump node-fetch from 2.7.0 to 3.3.2 in /it/typescript","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-06-08T01:52:50.000Z","updated_at":"2026-06-08T03:46:40.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): Bump","packages":[{"name":"node-fetch","old_version":"2.7.0","new_version":"3.3.2","repository_url":"https://github.com/node-fetch/node-fetch"}],"path":"/it/typescript","ecosystem":"npm"},"body":"Bumps [node-fetch](https://github.com/node-fetch/node-fetch) from 2.7.0 to 3.3.2.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-fetch/node-fetch/releases\"\u003enode-fetch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.3.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.1...v3.3.2\"\u003e3.3.2\u003c/a\u003e (2023-07-25)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e8b3320d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1735\"\u003e#1735\u003c/a\u003e \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1473\"\u003e#1473\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.0...v3.3.1\"\u003e3.3.1\u003c/a\u003e (2023-03-11)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erelease \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e7b86e94\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.0\u003c/h2\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.10...v3.3.0\"\u003e3.3.0\u003c/a\u003e (2022-11-10)\u003c/h1\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd static Response.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1670\"\u003e#1670\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/55a4870ae5f805d8ff9a890ea2c652c9977e048e\"\u003e55a4870\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.10\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.9...v3.2.10\"\u003e3.2.10\u003c/a\u003e (2022-07-31)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDoS referrer (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1611\"\u003e#1611\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d\"\u003e2880238\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.9\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.8...v3.2.9\"\u003e3.2.9\u003c/a\u003e (2022-07-18)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHeaders:\u003c/strong\u003e don't forward secure headers on protocol change (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1599\"\u003e#1599\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7\"\u003ee87b093\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.8\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.7...v3.2.8\"\u003e3.2.8\u003c/a\u003e (2022-07-12)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003epossibly flaky test (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1523\"\u003e#1523\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/11b703361134340a8361f591d6e3a0bcf6a261fa\"\u003e11b7033\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e\u003ccode\u003e8b3320d\u003c/code\u003e\u003c/a\u003e fix: Remove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e\u003ccode\u003e7b86e94\u003c/code\u003e\u003c/a\u003e fix: release \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8ced5b941cf36d0d7e0c1017aa2a4abcb29ecd89\"\u003e\u003ccode\u003e8ced5b9\u003c/code\u003e\u003c/a\u003e docs: readme - non ESM example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1707\"\u003e#1707\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/71e376b0ca899a30bbda4d45f97ea87502956a62\"\u003e\u003ccode\u003e71e376b\u003c/code\u003e\u003c/a\u003e ci(release): use latest Node LTS (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1697\"\u003e#1697\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e093030b4a6625405a331ddf48bcfd82c079f43d\"\u003e\u003ccode\u003ee093030\u003c/code\u003e\u003c/a\u003e Allow URL class object as an argument for fetch() (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/55a4870ae5f805d8ff9a890ea2c652c9977e048e\"\u003e\u003ccode\u003e55a4870\u003c/code\u003e\u003c/a\u003e feat: add static Response.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1670\"\u003e#1670\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/c071406e193cce13959999982584ff27198e9e4a\"\u003e\u003ccode\u003ec071406\u003c/code\u003e\u003c/a\u003e (1138) - Fixed HTTPResponseError with correct constructor and usage (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1666\"\u003e#1666\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/6f72caa401a8ec574a22058431599ef47c222770\"\u003e\u003ccode\u003e6f72caa\u003c/code\u003e\u003c/a\u003e docs: fix missing comma in example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1623\"\u003e#1623\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d\"\u003e\u003ccode\u003e2880238\u003c/code\u003e\u003c/a\u003e fix: ReDoS referrer (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1611\"\u003e#1611\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7\"\u003e\u003ccode\u003ee87b093\u003c/code\u003e\u003c/a\u003e fix(Headers): don't forward secure headers on protocol change (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1599\"\u003e#1599\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v2.7.0...v3.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n","html_url":"https://github.com/tabrezahmed51/microsoft_kiota_sdk_opensource_0118/pull/37","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/tabrezahmed51%2Fmicrosoft_kiota_sdk_opensource_0118/issues/37","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/37/packages"},{"uuid":"4566955041","node_id":"PR_kwDOFbEd8s7hjwNW","number":2,"state":"open","title":"Bump the npm_and_yarn group across 1 directory with 3 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-06-01T22:52:24.000Z","updated_at":"2026-06-01T22:55:29.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"npm_and_yarn","update_count":3,"packages":[{"name":"node-fetch","old_version":"2.6.1","new_version":"2.6.7","repository_url":"https://github.com/node-fetch/node-fetch"},{"name":"brace-expansion","old_version":"1.1.11","new_version":"1.1.15","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"minimatch","old_version":"3.0.4","new_version":"3.1.5","repository_url":"https://github.com/isaacs/minimatch"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 3 updates in the / directory: [node-fetch](https://github.com/node-fetch/node-fetch), [brace-expansion](https://github.com/juliangruber/brace-expansion) and [minimatch](https://github.com/isaacs/minimatch).\n\nUpdates `node-fetch` from 2.6.1 to 2.6.7\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-fetch/node-fetch/releases\"\u003enode-fetch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.6.7\u003c/h2\u003e\n\u003ch1\u003eSecurity patch release\u003c/h1\u003e\n\u003cp\u003eRecommended to upgrade, to not leak sensitive cookie and authentication header information to 3th party host while a redirect occurred\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: don't forward secure headers to 3th party by \u003ca href=\"https://github.com/jimmywarting\"\u003e\u003ccode\u003e@​jimmywarting\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/pull/1453\"\u003enode-fetch/node-fetch#1453\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v2.6.6...v2.6.7\"\u003ehttps://github.com/node-fetch/node-fetch/compare/v2.6.6...v2.6.7\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.6.6\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(URL): prefer built in URL version when available and fallback to whatwg by \u003ca href=\"https://github.com/jimmywarting\"\u003e\u003ccode\u003e@​jimmywarting\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/pull/1352\"\u003enode-fetch/node-fetch#1352\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v2.6.5...v2.6.6\"\u003ehttps://github.com/node-fetch/node-fetch/compare/v2.6.5...v2.6.6\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.6.2\u003c/h2\u003e\n\u003cp\u003efixed main path in package.json\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/1ef4b560a17e644a02a3bfdea7631ffeee578b35\"\u003e\u003ccode\u003e1ef4b56\u003c/code\u003e\u003c/a\u003e backport of \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1449\"\u003e#1449\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1453\"\u003e#1453\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8fe5c4ea66b9b8187600e6d5ec9b1b6781f44009\"\u003e\u003ccode\u003e8fe5c4e\u003c/code\u003e\u003c/a\u003e 2.x: Specify encoding as an optional peer dependency in package.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1310\"\u003e#1310\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/f56b0c66d3dd2ef185436de1f2fd40f66bfea8f4\"\u003e\u003ccode\u003ef56b0c6\u003c/code\u003e\u003c/a\u003e fix(URL): prefer built in URL version when available and fallback to whatwg (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/b5417aea6a3275932283a200214522e6ab53f1ea\"\u003e\u003ccode\u003eb5417ae\u003c/code\u003e\u003c/a\u003e fix: import whatwg-url in a way compatible with ESM Node (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1303\"\u003e#1303\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/18193c5922c64046b922e18faf41821290535f06\"\u003e\u003ccode\u003e18193c5\u003c/code\u003e\u003c/a\u003e fix v2.6.3 that did not sending query params (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1301\"\u003e#1301\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/ace7536c955556be742d9910566738630cc3c2a6\"\u003e\u003ccode\u003eace7536\u003c/code\u003e\u003c/a\u003e fix: properly encode url with unicode characters (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1291\"\u003e#1291\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/152214ca2f6e2a5a17d71e4638114625d3be30c6\"\u003e\u003ccode\u003e152214c\u003c/code\u003e\u003c/a\u003e Fix(package.json): Corrected main file path in package.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1274\"\u003e#1274\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v2.6.1...v2.6.7\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~endless\"\u003eendless\u003c/a\u003e, a new releaser for node-fetch since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 1.1.15\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.15\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport v5.0.6 change to v1 (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/111\"\u003e#111\u003c/a\u003e)  0b09384\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.14...v1.1.15\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.14...v1.1.15\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.1.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 1.x  c460dbd\u003c/li\u003e\n\u003cli\u003efmt  ccb8ac6\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  c3c73c8\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/2203f4f4895eba16c4d408b4219ce1b8e5f6ff24\"\u003e\u003ccode\u003e2203f4f\u003c/code\u003e\u003c/a\u003e 1.1.15\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/0b0938410732370559704230724ca4a44d1b29fd\"\u003e\u003ccode\u003e0b09384\u003c/code\u003e\u003c/a\u003e Backport v5.0.6 change to v1 (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/111\"\u003e#111\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/10c05fcf3699b1a29ef5e611c011af3d3c97e6e3\"\u003e\u003ccode\u003e10c05fc\u003c/code\u003e\u003c/a\u003e 1.1.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/1afa1b22ead12f6a7a02f25bf0f7d64c2439b007\"\u003e\u003ccode\u003e1afa1b2\u003c/code\u003e\u003c/a\u003e Add opt-in { max } mitigation to v1 legacy line (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/103\"\u003e#103\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/2fbb6a2aa0f984bb2fb5f60252ca6cba3e1368ec\"\u003e\u003ccode\u003e2fbb6a2\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;Backport fix for GHSA-7h2j-956f-4vf2 to v1 (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/101\"\u003e#101\u003c/a\u003e)\u0026quot; (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/102\"\u003e#102\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/0d7652e3093d3273151729812f9b0b79a17ecba6\"\u003e\u003ccode\u003e0d7652e\u003c/code\u003e\u003c/a\u003e Backport fix for GHSA-7h2j-956f-4vf2 to v1 (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/101\"\u003e#101\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/6c353caf23beb9644f858eb3fe38d43a68b82898\"\u003e\u003ccode\u003e6c353ca\u003c/code\u003e\u003c/a\u003e 1.1.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/7fd684f89fdde3549563d0a6522226a9189472a2\"\u003e\u003ccode\u003e7fd684f\u003c/code\u003e\u003c/a\u003e Backport fix for GHSA-f886-m6hf-6m8v (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/95\"\u003e#95\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/44f33b47c5c6a965d507421af43e86cf5971d711\"\u003e\u003ccode\u003e44f33b4\u003c/code\u003e\u003c/a\u003e 1.1.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c460dbd68e428d147b2080622d8ce126c7a08570\"\u003e\u003ccode\u003ec460dbd\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 1.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.15\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `minimatch` from 3.0.4 to 3.1.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/7bba97888a27a6162983056bcce2a6e28f668712\"\u003e\u003ccode\u003e7bba978\u003c/code\u003e\u003c/a\u003e 3.1.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/bd259425b2ca17b42897997f93e890314155522d\"\u003e\u003ccode\u003ebd25942\u003c/code\u003e\u003c/a\u003e docs: add warning about ReDoS\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/1a9c27c75725474dbde57db2995b6281b267756d\"\u003e\u003ccode\u003e1a9c27c\u003c/code\u003e\u003c/a\u003e fix partial matching of globstar patterns\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/1a2e084af579731af66c221214e3ca8222c9bf23\"\u003e\u003ccode\u003e1a2e084\u003c/code\u003e\u003c/a\u003e 3.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/ae24656237c3d58067442f790ce17eff84463a47\"\u003e\u003ccode\u003eae24656\u003c/code\u003e\u003c/a\u003e update lockfile\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/b1003749228b2a79e1f237963a0d559ef7a0941e\"\u003e\u003ccode\u003eb100374\u003c/code\u003e\u003c/a\u003e limit recursion for **, improve perf considerably\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/26ffeaa091b9f660833e23f42e07165b33e85c13\"\u003e\u003ccode\u003e26ffeaa\u003c/code\u003e\u003c/a\u003e lockfile update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/9eca892a4e5dbb20534f9f30483b85cdeee6c2eb\"\u003e\u003ccode\u003e9eca892\u003c/code\u003e\u003c/a\u003e lock node version to 14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/00c323b188b704e5d4bc534ecec2268cfa70a32a\"\u003e\u003ccode\u003e00c323b\u003c/code\u003e\u003c/a\u003e 3.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/30486b2048929264f44d18822891cfffa02af78b\"\u003e\u003ccode\u003e30486b2\u003c/code\u003e\u003c/a\u003e update CI matrix and actions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/minimatch/compare/v3.0.4...v3.1.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/geolonia/tile-gsi-dem/network/alerts).\n\n\u003c/details\u003e\n\n\u003c!-- This is an auto-generated comment: release notes by coderabbit.ai --\u003e\n\n## Summary by CodeRabbit\n\n## リリースノート\n\n* **Chores**\n  * 依存パッケージのバージョンを更新しました。これにより、アプリケーションの安定性と互換性が向上します。\n\n\u003c!-- end of auto-generated comment: release notes by coderabbit.ai --\u003e","html_url":"https://github.com/geolonia/tile-gsi-dem/pull/2","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/geolonia%2Ftile-gsi-dem/issues/2","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2/packages"},{"uuid":"4528246178","node_id":"PR_kwDOSFg5bs7fnQF2","number":5,"state":"closed","title":"Bump the npm_and_yarn group across 5 directories with 9 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-28T01:14:45.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-26T23:37:08.000Z","updated_at":"2026-05-28T01:14:47.000Z","time_to_close":92257,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"npm_and_yarn","update_count":9,"packages":[{"name":"yeoman-environment","old_version":"4.4.3","new_version":"6.0.1","repository_url":"https://github.com/yeoman/environment"},{"name":"form-data","old_version":"2.3.3","new_version":"2.5.5","repository_url":"https://github.com/form-data/form-data"},{"name":"aws-sdk","old_version":"2.1692.0","new_version":"2.1693.0","repository_url":"https://github.com/aws/aws-sdk-js"},{"name":"@xmldom/xmldom","old_version":"0.8.11","new_version":"0.8.13","repository_url":"https://github.com/xmldom/xmldom"},{"name":"ip-address","old_version":"10.1.0","new_version":"10.2.0"},{"name":"tar","old_version":"6.2.1","new_version":"7.5.15"},{"name":"form-data","old_version":"4.0.0","new_version":"4.0.4","repository_url":"https://github.com/form-data/form-data"},{"name":"lodash","old_version":"4.17.23","new_version":"4.18.1","repository_url":"https://github.com/lodash/lodash"},{"name":"node-fetch","old_version":"1.7.1","new_version":"2.6.7","repository_url":"https://github.com/node-fetch/node-fetch"},{"name":"async","old_version":"2.4.1","new_version":"2.6.4","repository_url":"https://github.com/caolan/async"},{"name":"yeoman-environment","old_version":"4.4.3","new_version":"6.0.1","repository_url":"https://github.com/yeoman/environment"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 4 updates in the / directory: [yeoman-environment](https://github.com/yeoman/environment), [form-data](https://github.com/form-data/form-data), [aws-sdk](https://github.com/aws/aws-sdk-js) and [@xmldom/xmldom](https://github.com/xmldom/xmldom).\nBumps the npm_and_yarn group with 1 update in the /example-apps/files directory: [form-data](https://github.com/form-data/form-data).\nBumps the npm_and_yarn group with 3 updates in the /example-apps/onedrive directory: [lodash](https://github.com/lodash/lodash), [node-fetch](https://github.com/node-fetch/node-fetch) and [async](https://github.com/caolan/async).\nBumps the npm_and_yarn group with 1 update in the /packages/cli directory: [yeoman-environment](https://github.com/yeoman/environment).\nBumps the npm_and_yarn group with 2 updates in the /packages/legacy-scripting-runner directory: [form-data](https://github.com/form-data/form-data) and [@xmldom/xmldom](https://github.com/xmldom/xmldom).\n\nUpdates `yeoman-environment` from 4.4.3 to 6.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/yeoman/environment/releases\"\u003eyeoman-environment's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: ask before installing local packages by \u003ca href=\"https://github.com/mshima\"\u003e\u003ccode\u003e@​mshima\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yeoman/environment/pull/753\"\u003eyeoman/environment#753\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(release): bump version to v6.0.1 by \u003ca href=\"https://github.com/github-actions\"\u003e\u003ccode\u003e@​github-actions\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/yeoman/environment/pull/757\"\u003eyeoman/environment#757\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/yeoman/environment/compare/v6.0.0...v6.0.1\"\u003ehttps://github.com/yeoman/environment/compare/v6.0.0...v6.0.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch3\u003e🚀 yeoman-environment v6 – Release Notes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSwitch to \u003ccode\u003e@​yeoman/adapter\u003c/code\u003e v4 (and inquirer v13) by default.\nSome behavior changes may happen.\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/yeoman/environment/compare/v5.1.3...v6.0.0\"\u003ehttps://github.com/yeoman/environment/compare/v5.1.3...v6.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.1.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: only fallback to import if requiring fails with esm/async error (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/716\"\u003e#716\u003c/a\u003e)  e4fb745\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/yeoman/environment/compare/v5.1.2...v5.1.3\"\u003ehttps://github.com/yeoman/environment/compare/v5.1.2...v5.1.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.1.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: use globbySync to resolve PNPM global node_modules paths (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/692\"\u003e#692\u003c/a\u003e)  4317fef\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/yeoman/environment/compare/v5.1.1...v5.1.2\"\u003ehttps://github.com/yeoman/environment/compare/v5.1.1...v5.1.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.1.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: lookup for generators in pnpm global folder (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/680\"\u003e#680\u003c/a\u003e)  2fcd028\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/yeoman/environment/compare/v5.1.0...v5.1.1\"\u003ehttps://github.com/yeoman/environment/compare/v5.1.0...v5.1.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.1.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump globby from 15.0.0 to 16.0.0 (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/676\"\u003e#676\u003c/a\u003e)  cd962ec\u003c/li\u003e\n\u003cli\u003echore(deps): bump \u003ccode\u003e@​yeoman/conflicter\u003c/code\u003e from 3.0.0 to 4.0.0 (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/677\"\u003e#677\u003c/a\u003e)  04a104b\u003c/li\u003e\n\u003cli\u003echore(deps): bump globby from 14.1.0 to 15.0.0 (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/662\"\u003e#662\u003c/a\u003e)  5d39217\u003c/li\u003e\n\u003cli\u003efeat: add generatorLookupOptions option (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/674\"\u003e#674\u003c/a\u003e)  a301ab8\u003c/li\u003e\n\u003cli\u003efix: expose missing types (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/673\"\u003e#673\u003c/a\u003e)  4de747f\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/yeoman/environment/compare/v5.0.0...v5.1.0\"\u003ehttps://github.com/yeoman/environment/compare/v5.0.0...v5.1.0\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/yeoman/environment/blob/main/CHANGELOG.md\"\u003eyeoman-environment's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/yeoman/environment/compare/v6.0.1...v6.1.0\"\u003e6.1.0\u003c/a\u003e (2026-04-29)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd support to ask customInstallTask (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/770\"\u003e#770\u003c/a\u003e) (\u003ca href=\"https://github.com/yeoman/environment/commit/136e4f49b2593bf3a45296c4a47dd9a282be4deb\"\u003e136e4f4\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump \u003ccode\u003e@​yeoman/namespace\u003c/code\u003e from 1.0.1 to 2.1.0 (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/766\"\u003e#766\u003c/a\u003e) (\u003ca href=\"https://github.com/yeoman/environment/commit/4a3ae84caaa70ae41cf8630d4907f144e3cec7a3\"\u003e4a3ae84\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eextract getFeaturesFromGenerator (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/769\"\u003e#769\u003c/a\u003e) (\u003ca href=\"https://github.com/yeoman/environment/commit/d244f0ca18f1f83ed18320a2eabdcc0f70cec780\"\u003ed244f0c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yeoman/environment/commit/a838fa6668dd34865c6f9b87455275672ee21b97\"\u003e\u003ccode\u003ea838fa6\u003c/code\u003e\u003c/a\u003e chore(release): bump version to v6.0.1 (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/757\"\u003e#757\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yeoman/environment/commit/d4227d858b8ce63de0eab918e8ca7fe52f1691dc\"\u003e\u003ccode\u003ed4227d8\u003c/code\u003e\u003c/a\u003e chore: workflow adjusts (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/756\"\u003e#756\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yeoman/environment/commit/6384bf26d1428d6cba75de79c2fea97ba7981477\"\u003e\u003ccode\u003e6384bf2\u003c/code\u003e\u003c/a\u003e chore: Remove npm caching in Node.js setup (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/755\"\u003e#755\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yeoman/environment/commit/efd8eab924bcfdf49f44666d9ba5993c15d83ab2\"\u003e\u003ccode\u003eefd8eab\u003c/code\u003e\u003c/a\u003e chore: update dependencies (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yeoman/environment/commit/78d2af7e60294784b8a8b3b3b5099c6874b6a1fa\"\u003e\u003ccode\u003e78d2af7\u003c/code\u003e\u003c/a\u003e fix: ask before installing local packages. (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yeoman/environment/commit/dccfd126c313afa2b33ea0c4cc39a2c242fedcd8\"\u003e\u003ccode\u003edccfd12\u003c/code\u003e\u003c/a\u003e chore: add publish workflow (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/752\"\u003e#752\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yeoman/environment/commit/1b2d34a79349eab20d2a551b223d18f5322e84bb\"\u003e\u003ccode\u003e1b2d34a\u003c/code\u003e\u003c/a\u003e chore: remove package-lock.json (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/751\"\u003e#751\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yeoman/environment/commit/32abbfaffc1d9849d040053984048da61e5f29e0\"\u003e\u003ccode\u003e32abbfa\u003c/code\u003e\u003c/a\u003e chore(deps): bump github/codeql-action from 4.32.6 to 4.35.1 (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/745\"\u003e#745\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yeoman/environment/commit/d092613b46147d419ba37894a9cc71fbdfa64211\"\u003e\u003ccode\u003ed092613\u003c/code\u003e\u003c/a\u003e chore(deps): bump picomatch (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/743\"\u003e#743\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yeoman/environment/commit/ec98f75639c8dac2e687af7b29942879946e2c18\"\u003e\u003ccode\u003eec98f75\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump flatted from 3.3.3 to 3.4.2 (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/740\"\u003e#740\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/yeoman/environment/compare/v4.4.3...v6.0.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for yeoman-environment since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `form-data` from 2.3.3 to 2.5.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/form-data/form-data/releases\"\u003eform-data's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.5.2\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eBuffer.from\u003c/code\u003e and \u003ccode\u003eBuffer.alloc\u003c/code\u003e require node 4+\u003c/li\u003e\n\u003cli\u003enpmignore temporary build files (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/532\"\u003e#532\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emove util.isArray to Array.isArray (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/564\"\u003e#564\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eTests\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emigrate from travis to GHA\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDev Improvements\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed error in the documentations as indicated in \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/439\"\u003e#439\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded remaining combined-stream options to typedef\u003c/li\u003e\n\u003cli\u003eBumped rimraf to 2.7.1 (dev-dep)\u003c/li\u003e\n\u003cli\u003eAdded constructor options to TypeScript defs\u003c/li\u003e\n\u003cli\u003eFixed error in callback signatures\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAdded Types\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded TS types\u003c/li\u003e\n\u003cli\u003eImproved documentation\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAdded getBuffer method\u003c/h2\u003e\n\u003cp\u003eUpdated test builds to support node10 and 12.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/form-data/form-data/blob/master/CHANGELOG.md\"\u003eform-data's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v2.5.4...v2.5.5\"\u003ev2.5.5\u003c/a\u003e - 2025-07-18\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[meta] actually ensure the readme backup isn’t published \u003ca href=\"https://github.com/form-data/form-data/commit/10626c0a9b78c7d3fcaa51772265015ee0afc25c\"\u003e\u003ccode\u003e10626c0\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] use proper dependency \u003ca href=\"https://github.com/form-data/form-data/commit/026abe5c5c0489d8a2ccb59d5cfd14fb63078377\"\u003e\u003ccode\u003e026abe5\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v2.5.3...v2.5.4\"\u003ev2.5.4\u003c/a\u003e - 2025-07-17\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eappend\u003c/code\u003e: avoid a crash on nullish values \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/577\"\u003e\u003ccode\u003e[#577](https://github.com/form-data/form-data/issues/577)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[eslint] update linting config \u003ca href=\"https://github.com/form-data/form-data/commit/8bf2492e0555d41ff58fa04c91593af998f87a3c\"\u003e\u003ccode\u003e8bf2492\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/b5101ad3d5f73cfd0143aae3735b92826fd731ea\"\u003e\u003ccode\u003eb5101ad\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] handle predict-v8-randomness failures in node \u0026lt; 17 and node \u0026gt; 23 \u003ca href=\"https://github.com/form-data/form-data/commit/0e93122358414942393d9c2dc434ae69e58be7c8\"\u003e\u003ccode\u003e0e93122\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] Switch to using \u003ccode\u003ecrypto\u003c/code\u003e random for boundary values \u003ca href=\"https://github.com/form-data/form-data/commit/b88316c94bb004323669cd3639dc8bb8262539eb\"\u003e\u003ccode\u003eb88316c\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] validate boundary type in \u003ccode\u003esetBoundary()\u003c/code\u003e method \u003ca href=\"https://github.com/form-data/form-data/commit/131ae5efa30b9c608add4faef3befb38aa2e1bf1\"\u003e\u003ccode\u003e131ae5e\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] Switch to newer v8 prediction library; enable node 24 testing \u003ca href=\"https://github.com/form-data/form-data/commit/c97cfbed9eb6d2d4b5d53090f69ded4bf9fd8a21\"\u003e\u003ccode\u003ec97cfbe\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Refactor] use \u003ccode\u003ehasown\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/97ac9c208be0b83faeee04bb3faef1ed3474ee4c\"\u003e\u003ccode\u003e97ac9c2\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] remove local commit hooks \u003ca href=\"https://github.com/form-data/form-data/commit/be99d4eea5ce47139c23c1f0914596194019d7fb\"\u003e\u003ccode\u003ebe99d4e\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] remove unused deps \u003ca href=\"https://github.com/form-data/form-data/commit/ddbc89b6d6d64f730bcb27cb33b7544068466a05\"\u003e\u003ccode\u003eddbc89b\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix scripts to use prepublishOnly \u003ca href=\"https://github.com/form-data/form-data/commit/e351a97e9f6c57c74ffd01625e83b09de805d08a\"\u003e\u003ccode\u003ee351a97\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] remove unused script \u003ca href=\"https://github.com/form-data/form-data/commit/8f233664842da5bd605ce85541defc713d1d1e0a\"\u003e\u003ccode\u003e8f23366\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] add missing peer dep \u003ca href=\"https://github.com/form-data/form-data/commit/02ff026fda71f9943cfdd5754727c628adb8d135\"\u003e\u003ccode\u003e02ff026\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix readme capitalization \u003ca href=\"https://github.com/form-data/form-data/commit/2fd5f61ebfb526cd015fb8e7b8b8c1add4a38872\"\u003e\u003ccode\u003e2fd5f61\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v2.5.2...v2.5.3\"\u003ev2.5.3\u003c/a\u003e - 2025-02-14\u003c/h2\u003e\n\u003ch3\u003eMerged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/573\"\u003e\u003ccode\u003e[#573](https://github.com/form-data/form-data/issues/573)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/573\"\u003e#573\u003c/a\u003e) \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Refactor] use \u003ccode\u003eObject.prototype.hasOwnProperty.call\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/6e682d4bd41de7e80de41e3c4ee10f23fcc3dd00\"\u003e\u003ccode\u003e6e682d4\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003e@types/node\u003c/code\u003e, \u003ccode\u003ebrowserify\u003c/code\u003e, \u003ccode\u003ecoveralls\u003c/code\u003e, \u003ccode\u003eeslint\u003c/code\u003e, \u003ccode\u003eformidable\u003c/code\u003e, \u003ccode\u003ein-publish\u003c/code\u003e, \u003ccode\u003ephantomjs-prebuilt\u003c/code\u003e, \u003ccode\u003epkgfiles\u003c/code\u003e, \u003ccode\u003epre-commit\u003c/code\u003e, \u003ccode\u003erequest\u003c/code\u003e, \u003ccode\u003etape\u003c/code\u003e, \u003ccode\u003etypescript\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/819f6b7a543306a891fca37c3a06d0ff4a734422\"\u003e\u003ccode\u003e819f6b7\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOnly apps should have lockfiles \u003ca href=\"https://github.com/form-data/form-data/commit/b170ee2b22b4c695c363b811c0c553d2fb1bbd79\"\u003e\u003ccode\u003eb170ee2\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Deps] update \u003ccode\u003ecombined-stream\u003c/code\u003e, \u003ccode\u003emime-types\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/6b1ca1dc7362a1b1c3a99a885516cca4b7eb817f\"\u003e\u003ccode\u003e6b1ca1d\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBumped version 2.5.3 \u003ca href=\"https://github.com/form-data/form-data/commit/9457283e1dce6122adc908fdd7442cfc54cabe7a\"\u003e\u003ccode\u003e9457283\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] pin \u003ccode\u003erequest\u003c/code\u003e which via \u003ccode\u003etough-cookie\u003c/code\u003e ^2.4 depends on \u003ccode\u003epsl\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/9dbe192be3db215eac4d9c0b980470a5c2c030c6\"\u003e\u003ccode\u003e9dbe192\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v2.5.1...v2.5.2\"\u003ev2.5.2\u003c/a\u003e - 2024-10-10\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/form-data/form-data/commits/v2.5.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~ljharb\"\u003eljharb\u003c/a\u003e, a new releaser for form-data since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version modifies \u003ccode\u003eprepublish\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `aws-sdk` from 2.1692.0 to 2.1693.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-sdk-js/releases\"\u003eaws-sdk's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease v2.1693.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/9d3c66eca8c4416a9d347d0703f27b65775d65ef\"\u003e\u003ccode\u003e9d3c66e\u003c/code\u003e\u003c/a\u003e Updates SDK to v2.1693.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/c039567cee58b50a44f53f30318fa21f36c42ecc\"\u003e\u003ccode\u003ec039567\u003c/code\u003e\u003c/a\u003e test(client-elastictranscoder): remove feature test (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4711\"\u003e#4711\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/f5b1a6f0aebb477204d979091d654649f29ad9ce\"\u003e\u003ccode\u003ef5b1a6f\u003c/code\u003e\u003c/a\u003e docs: end-of-support (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4706\"\u003e#4706\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/657d6feb00447c8be1d65158a0ecc0585b70ed60\"\u003e\u003ccode\u003e657d6fe\u003c/code\u003e\u003c/a\u003e chore: use ssh private key for git sync (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4705\"\u003e#4705\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/c12585baeb9197158cd50975af66856617732aea\"\u003e\u003ccode\u003ec12585b\u003c/code\u003e\u003c/a\u003e chore: remove regression label management (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4699\"\u003e#4699\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/aws/aws-sdk-js/compare/v2.1692.0...v2.1693.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@xmldom/xmldom` from 0.8.11 to 0.8.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/xmldom/xmldom/releases\"\u003e@​xmldom/xmldom's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.8.13\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.12...0.8.13\"\u003eCommits\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity: \u003ccode\u003eXMLSerializer.serializeToString()\u003c/code\u003e (and \u003ccode\u003eNode.toString()\u003c/code\u003e, \u003ccode\u003eNodeList.toString()\u003c/code\u003e) now accept a \u003ccode\u003erequireWellFormed\u003c/code\u003e option (fourth argument, after \u003ccode\u003eisHtml\u003c/code\u003e and \u003ccode\u003enodeFilter\u003c/code\u003e). When \u003ccode\u003e{ requireWellFormed: true }\u003c/code\u003e is passed, the serializer throws \u003ccode\u003eInvalidStateError\u003c/code\u003e for injection-prone node content, preventing XML injection via attacker-controlled node data. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-j759-j44w-7fr8\"\u003e\u003ccode\u003eGHSA-j759-j44w-7fr8\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-x6wf-f3px-wcqx\"\u003e\u003ccode\u003eGHSA-x6wf-f3px-wcqx\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-f6ww-3ggp-fr8h\"\u003e\u003ccode\u003eGHSA-f6ww-3ggp-fr8h\u003c/code\u003e\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003eComment: throws when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e--\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eProcessingInstruction: throws when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e?\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eDocumentType: throws when \u003ccode\u003epublicId\u003c/code\u003e fails \u003ccode\u003ePubidLiteral\u003c/code\u003e, \u003ccode\u003esystemId\u003c/code\u003e fails \u003ccode\u003eSystemLiteral\u003c/code\u003e, or \u003ccode\u003einternalSubset\u003c/code\u003e contains \u003ccode\u003e]\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eSecurity: DOM traversal operations (\u003ccode\u003eXMLSerializer.serializeToString()\u003c/code\u003e, \u003ccode\u003eNode.prototype.normalize()\u003c/code\u003e, \u003ccode\u003eNode.prototype.cloneNode(true)\u003c/code\u003e, \u003ccode\u003eDocument.prototype.importNode(node, true)\u003c/code\u003e, \u003ccode\u003enode.textContent\u003c/code\u003e getter, \u003ccode\u003egetElementsByTagName()\u003c/code\u003e / \u003ccode\u003egetElementsByTagNameNS()\u003c/code\u003e / \u003ccode\u003egetElementsByClassName()\u003c/code\u003e / \u003ccode\u003egetElementById()\u003c/code\u003e) are now iterative. Previously, deeply nested DOM trees would exhaust the JavaScript call stack and throw an unrecoverable \u003ccode\u003eRangeError\u003c/code\u003e. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-2v35-w6hq-6mfw\"\u003e\u003ccode\u003eGHSA-2v35-w6hq-6mfw\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThank you,\n\u003ca href=\"https://github.com/Jvr2022\"\u003e\u003ccode\u003e@​Jvr2022\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/praveen-kv\"\u003e\u003ccode\u003e@​praveen-kv\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/decsecre583\"\u003e\u003ccode\u003e@​decsecre583\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/tlsbollei\"\u003e\u003ccode\u003e@​tlsbollei\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/KarimTantawey\"\u003e\u003ccode\u003e@​KarimTantawey\u003c/code\u003e\u003c/a\u003e,\nfor your contributions\u003c/p\u003e\n\u003ch2\u003e0.8.12\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.11...0.8.12\"\u003eCommits\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003epreserve trailing whitespace in ProcessingInstruction data \u003ca href=\"https://redirect.github.com/xmldom/xmldom/pull/962\"\u003e\u003ccode\u003e[#962](https://github.com/xmldom/xmldom/issues/962)\u003c/code\u003e\u003c/a\u003e / \u003ca href=\"https://redirect.github.com/xmldom/xmldom/issues/42\"\u003e\u003ccode\u003e[#42](https://github.com/xmldom/xmldom/issues/42)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSecurity: \u003ccode\u003ecreateCDATASection\u003c/code\u003e now throws \u003ccode\u003eInvalidCharacterError\u003c/code\u003e when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e, as required by the \u003ca href=\"https://dom.spec.whatwg.org/#dom-document-createcdatasection\"\u003eWHATWG DOM spec\u003c/a\u003e. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-wh4c-j3r5-mjhp\"\u003e\u003ccode\u003eGHSA-wh4c-j3r5-mjhp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSecurity: \u003ccode\u003eXMLSerializer\u003c/code\u003e now splits CDATASection nodes whose data contains \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e into adjacent CDATA sections at serialization time, preventing XML injection via mutation methods (\u003ccode\u003eappendData\u003c/code\u003e, \u003ccode\u003ereplaceData\u003c/code\u003e, \u003ccode\u003e.data =\u003c/code\u003e, \u003ccode\u003e.textContent =\u003c/code\u003e). \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-wh4c-j3r5-mjhp\"\u003e\u003ccode\u003eGHSA-wh4c-j3r5-mjhp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eCode that passes a string containing \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e to \u003ccode\u003ecreateCDATASection\u003c/code\u003e and relied on the previously unsafe behavior will now receive \u003ccode\u003eInvalidCharacterError\u003c/code\u003e. Use a mutation method such as \u003ccode\u003eappendData\u003c/code\u003e if you intentionally need \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e in a CDATASection node's data.\u003c/p\u003e\n\u003cp\u003eThank you,\n\u003ca href=\"https://github.com/thesmartshadow\"\u003e\u003ccode\u003e@​thesmartshadow\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/stevenobiajulu\"\u003e\u003ccode\u003e@​stevenobiajulu\u003c/code\u003e\u003c/a\u003e,\nfor your contributions\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/xmldom/xmldom/discussions/357\"\u003ehttps://github.com/xmldom/xmldom/discussions/357\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/xmldom/xmldom/blob/master/CHANGELOG.md\"\u003e@​xmldom/xmldom's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.12...0.8.13\"\u003e0.8.13\u003c/a\u003e\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity: \u003ccode\u003eXMLSerializer.serializeToString()\u003c/code\u003e (and \u003ccode\u003eNode.toString()\u003c/code\u003e, \u003ccode\u003eNodeList.toString()\u003c/code\u003e) now accept a \u003ccode\u003erequireWellFormed\u003c/code\u003e option (fourth argument, after \u003ccode\u003eisHtml\u003c/code\u003e and \u003ccode\u003enodeFilter\u003c/code\u003e). When \u003ccode\u003e{ requireWellFormed: true }\u003c/code\u003e is passed, the serializer throws \u003ccode\u003eInvalidStateError\u003c/code\u003e for injection-prone node content, preventing XML injection via attacker-controlled node data. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-j759-j44w-7fr8\"\u003e\u003ccode\u003eGHSA-j759-j44w-7fr8\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-x6wf-f3px-wcqx\"\u003e\u003ccode\u003eGHSA-x6wf-f3px-wcqx\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-f6ww-3ggp-fr8h\"\u003e\u003ccode\u003eGHSA-f6ww-3ggp-fr8h\u003c/code\u003e\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003eComment: throws when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e--\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eProcessingInstruction: throws when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e?\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eDocumentType: throws when \u003ccode\u003epublicId\u003c/code\u003e fails \u003ccode\u003ePubidLiteral\u003c/code\u003e, \u003ccode\u003esystemId\u003c/code\u003e fails \u003ccode\u003eSystemLiteral\u003c/code\u003e, or \u003ccode\u003einternalSubset\u003c/code\u003e contains \u003ccode\u003e]\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eSecurity: DOM traversal operations (\u003ccode\u003eXMLSerializer.serializeToString()\u003c/code\u003e, \u003ccode\u003eNode.prototype.normalize()\u003c/code\u003e, \u003ccode\u003eNode.prototype.cloneNode(true)\u003c/code\u003e, \u003ccode\u003eDocument.prototype.importNode(node, true)\u003c/code\u003e, \u003ccode\u003enode.textContent\u003c/code\u003e getter, \u003ccode\u003egetElementsByTagName()\u003c/code\u003e / \u003ccode\u003egetElementsByTagNameNS()\u003c/code\u003e / \u003ccode\u003egetElementsByClassName()\u003c/code\u003e / \u003ccode\u003egetElementById()\u003c/code\u003e) are now iterative. Previously, deeply nested DOM trees would exhaust the JavaScript call stack and throw an unrecoverable \u003ccode\u003eRangeError\u003c/code\u003e. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-2v35-w6hq-6mfw\"\u003e\u003ccode\u003eGHSA-2v35-w6hq-6mfw\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThank you,\n\u003ca href=\"https://github.com/Jvr2022\"\u003e\u003ccode\u003e@​Jvr2022\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/praveen-kv\"\u003e\u003ccode\u003e@​praveen-kv\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/decsecre583\"\u003e\u003ccode\u003e@​decsecre583\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/tlsbollei\"\u003e\u003ccode\u003e@​tlsbollei\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/KarimTantawey\"\u003e\u003ccode\u003e@​KarimTantawey\u003c/code\u003e\u003c/a\u003e,\nfor your contributions\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.9.8...0.9.9\"\u003e0.9.9\u003c/a\u003e\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimplement \u003ccode\u003eParentNode.children\u003c/code\u003e getter \u003ca href=\"https://redirect.github.com/xmldom/xmldom/pull/960\"\u003e\u003ccode\u003e[#960](https://github.com/xmldom/xmldom/issues/960)\u003c/code\u003e\u003c/a\u003e / \u003ca href=\"https://redirect.github.com/xmldom/xmldom/issues/410\"\u003e\u003ccode\u003e[#410](https://github.com/xmldom/xmldom/issues/410)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity: \u003ccode\u003ecreateCDATASection\u003c/code\u003e now throws \u003ccode\u003eInvalidCharacterError\u003c/code\u003e when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e, as required by the \u003ca href=\"https://dom.spec.whatwg.org/#dom-document-createcdatasection\"\u003eWHATWG DOM spec\u003c/a\u003e. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-wh4c-j3r5-mjhp\"\u003e\u003ccode\u003eGHSA-wh4c-j3r5-mjhp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSecurity: \u003ccode\u003eXMLSerializer\u003c/code\u003e now splits CDATASection nodes whose data contains \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e into adjacent CDATA sections at serialization time, preventing XML injection via mutation methods (\u003ccode\u003eappendData\u003c/code\u003e, \u003ccode\u003ereplaceData\u003c/code\u003e, \u003ccode\u003e.data =\u003c/code\u003e, \u003ccode\u003e.textContent =\u003c/code\u003e). \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-wh4c-j3r5-mjhp\"\u003e\u003ccode\u003eGHSA-wh4c-j3r5-mjhp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecorrectly traverse ancestor chain in \u003ccode\u003eNode.contains\u003c/code\u003e \u003ca href=\"https://redirect.github.com/xmldom/xmldom/pull/931\"\u003e\u003ccode\u003e[#931](https://github.com/xmldom/xmldom/issues/931)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eCode that passes a string containing \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e to \u003ccode\u003ecreateCDATASection\u003c/code\u003e and relied on the previously unsafe behavior will now receive \u003ccode\u003eInvalidCharacterError\u003c/code\u003e. Use a mutation method such as \u003ccode\u003eappendData\u003c/code\u003e if you intentionally need \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e in a CDATASection node's data.\u003c/p\u003e\n\u003ch3\u003eChore\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdated dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThank you,\n\u003ca href=\"https://github.com/stevenobiajulu\"\u003e\u003ccode\u003e@​stevenobiajulu\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/yoshi389111\"\u003e\u003ccode\u003e@​yoshi389111\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/thesmartshadow\"\u003e\u003ccode\u003e@​thesmartshadow\u003c/code\u003e\u003c/a\u003e,\nfor your contributions\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.11...0.8.12\"\u003e0.8.12\u003c/a\u003e\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003epreserve trailing whitespace in ProcessingInstruction data \u003ca href=\"https://redirect.github.com/xmldom/xmldom/pull/962\"\u003e\u003ccode\u003e[#962](https://github.com/xmldom/xmldom/issues/962)\u003c/code\u003e\u003c/a\u003e / \u003ca href=\"https://redirect.github.com/xmldom/xmldom/issues/42\"\u003e\u003ccode\u003e[#42](https://github.com/xmldom/xmldom/issues/42)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/e5c14802592685bb872c042c54c3f73758875c85\"\u003e\u003ccode\u003ee5c1480\u003c/code\u003e\u003c/a\u003e 0.8.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/9611e20d75f059dc377f806a8f7ee7d1eaeaeb7c\"\u003e\u003ccode\u003e9611e20\u003c/code\u003e\u003c/a\u003e style: drop unused import in test file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/dc4dff3d1d0b5a6b97c52fcc1823a735b8821e62\"\u003e\u003ccode\u003edc4dff3\u003c/code\u003e\u003c/a\u003e docs: add 0.8.13 changelog entry\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/842fa38deedd2d9a9c90d0ad54aa1be75d2a41bc\"\u003e\u003ccode\u003e842fa38\u003c/code\u003e\u003c/a\u003e fix: prevent stack overflow in normalize (GHSA-2v35-w6hq-6mfw)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/aeff69f5a32e8c1bd540683da9e10718f84f595c\"\u003e\u003ccode\u003eaeff69f\u003c/code\u003e\u003c/a\u003e test: add normalize behavioral coverage to node.test.js\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/cbdb0d7db8ae70760bd4cc181cb8f30bb0cd9d88\"\u003e\u003ccode\u003ecbdb0d7\u003c/code\u003e\u003c/a\u003e fix: make walkDOM iterative to prevent stack overflow (GHSA-2v35-w6hq-6mfw)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/0b543d31794dc198c86a0358574cb5dec29674c5\"\u003e\u003ccode\u003e0b543d3\u003c/code\u003e\u003c/a\u003e test: assert namespace declarations are isolated between siblings in serializ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/c007c51909587990c962cf3d5c2acadf4c897b87\"\u003e\u003ccode\u003ec007c51\u003c/code\u003e\u003c/a\u003e refactor: migrate serializeToString to walkDOM\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/2bb3899074820089d9e76ce28a5edfdacf425025\"\u003e\u003ccode\u003e2bb3899\u003c/code\u003e\u003c/a\u003e test: add serializeToString coverage for uncovered branches\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/e69f38d0a58731152d300e8c8eb29506f5f488fe\"\u003e\u003ccode\u003ee69f38d\u003c/code\u003e\u003c/a\u003e refactor: migrate importNode to walkDOM\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.11...0.8.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~karfau\"\u003ekarfau\u003c/a\u003e, a new releaser for \u003ccode\u003e@​xmldom/xmldom\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ip-address` from 10.1.0 to 10.2.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/beaugunderson/ip-address/commit/80fccaae984618f35dc941efab55cf2440ab37e8\"\u003e\u003ccode\u003e80fccaa\u003c/code\u003e\u003c/a\u003e 10.2.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/beaugunderson/ip-address/commit/abaeb4d817cab16d3a1a78abd249d1f116bd302e\"\u003e\u003ccode\u003eabaeb4d\u003c/code\u003e\u003c/a\u003e Type Address4.addressMinusSuffix as non-nilable (closes \u003ca href=\"https://redirect.github.com/beaugunderson/ip-address/issues/143\"\u003e#143\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/beaugunderson/ip-address/commit/2878c294e1216f9a0b69ad1d3c57a3790a7d5e8e\"\u003e\u003ccode\u003e2878c29\u003c/code\u003e\u003c/a\u003e Preserve subnet prefix through Address6.to4() (closes \u003ca href=\"https://redirect.github.com/beaugunderson/ip-address/issues/123\"\u003e#123\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/beaugunderson/ip-address/issues/203\"\u003e#203\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/beaugunderson/ip-address/commit/586666ee9e666464071761d7a453715f98b6caee\"\u003e\u003ccode\u003e586666e\u003c/code\u003e\u003c/a\u003e Reject trailing junk in Address6.fromURL (closes \u003ca href=\"https://redirect.github.com/beaugunderson/ip-address/issues/158\"\u003e#158\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/beaugunderson/ip-address/issues/202\"\u003e#202\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/beaugunderson/ip-address/commit/80bc76eddf63df38db60defd5004bea919adf7ac\"\u003e\u003ccode\u003e80bc76e\u003c/code\u003e\u003c/a\u003e Validate static factories instead of silently overflowing (\u003ca href=\"https://redirect.github.com/beaugunderson/ip-address/issues/201\"\u003e#201\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/beaugunderson/ip-address/commit/98927be9ef0c09f8ffcaf30b297405c9eff0a520\"\u003e\u003ccode\u003e98927be\u003c/code\u003e\u003c/a\u003e Clarify isValid() accepts CIDRs with host bits set (\u003ca href=\"https://redirect.github.com/beaugunderson/ip-address/issues/81\"\u003e#81\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/beaugunderson/ip-address/commit/a0eb0732d6ac3088daa1106f4933eade41fd364a\"\u003e\u003ccode\u003ea0eb073\u003c/code\u003e\u003c/a\u003e Fix getScope() and broaden getType() classification (closes \u003ca href=\"https://redirect.github.com/beaugunderson/ip-address/issues/122\"\u003e#122\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/beaugunderson/ip-address/issues/200\"\u003e#200\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/beaugunderson/ip-address/commit/ec52105c87179129b9f091e97581e87b007824c7\"\u003e\u003ccode\u003eec52105\u003c/code\u003e\u003c/a\u003e Add networkForm() for CIDR network-address strings (\u003ca href=\"https://redirect.github.com/beaugunderson/ip-address/issues/199\"\u003e#199\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/beaugunderson/ip-address/commit/a9443a72215b21a1e692be75cd3e18e8aa2262cb\"\u003e\u003ccode\u003ea9443a7\u003c/code\u003e\u003c/a\u003e Add isMapped4() predicate for IPv4-mapped IPv6 addresses (closes \u003ca href=\"https://redirect.github.com/beaugunderson/ip-address/issues/62\"\u003e#62\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/beaugunderson/ip-address/issues/198\"\u003e#198\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/beaugunderson/ip-address/commit/f01d74267ed39f84521157e5f199edade9809f1e\"\u003e\u003ccode\u003ef01d742\u003c/code\u003e\u003c/a\u003e Add address-property predicates (private, ULA, loopback, link-local, etc.) (#...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/beaugunderson/ip-address/compare/v10.1.0...v10.2.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 6.2.1 to 7.5.15\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md\"\u003etar's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e7.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003ezstd\u003c/code\u003e compression support.\u003c/li\u003e\n\u003cli\u003eConsistent TOCTOU behavior in sync t.list\u003c/li\u003e\n\u003cli\u003eOnly read from ustar block if not specified in Pax\u003c/li\u003e\n\u003cli\u003eFix sync tar.list when file size reduces while reading\u003c/li\u003e\n\u003cli\u003eSanitize absolute linkpaths properly\u003c/li\u003e\n\u003cli\u003ePrevent writing hardlink entries to the archive ahead of their\nfile target\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eonentry\u003c/code\u003e in favor of \u003ccode\u003eonReadEntry\u003c/code\u003e for clarity.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eonWriteEntry\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDRY the command definitions into a single \u003ccode\u003emakeCommand\u003c/code\u003e method,\nand update the type signatures to more appropriately infer the\nreturn type from the options and arguments provided.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate minipass to v7.1.0\u003c/li\u003e\n\u003cli\u003eUpdate the type definitions of \u003ccode\u003ewrite()\u003c/code\u003e and \u003ccode\u003eend()\u003c/code\u003e methods on\n\u003ccode\u003eUnpack\u003c/code\u003e and \u003ccode\u003eParser\u003c/code\u003e classes to be compatible with the\nNodeJS.WritableStream type in the latest versions of\n\u003ccode\u003e@types/node\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node \u0026lt;18\u003c/li\u003e\n\u003cli\u003eRewrite in TypeScript, provide ESM and CommonJS hybrid\ninterface\u003c/li\u003e\n\u003cli\u003eAdd tree-shake friendly exports, like \u003ccode\u003eimport('tar/create')\u003c/code\u003e\nand \u003ccode\u003eimport('tar/read-entry')\u003c/code\u003e to get individual functions or\nclasses.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003echmod\u003c/code\u003e option that defaults to false, and deprecate\n\u003ccode\u003enoChmod\u003c/code\u003e. That is, reverse the default option regarding\nexplicitly setting file system modes to match tar entry\nsettings.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eprocessUmask\u003c/code\u003e option to avoid having to call\n\u003ccode\u003eprocess.umask()\u003c/code\u003e when \u003ccode\u003echmod: true\u003c/code\u003e (or \u003ccode\u003enoChmod: false\u003c/code\u003e) is\nset.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/87cc309f13c21d598b0b833235d387a252455058\"\u003e\u003ccode\u003e87cc309\u003c/code\u003e\u003c/a\u003e 7.5.15\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/7aef486f0d21c10fd7790b16b1b28f04648cf334\"\u003e\u003ccode\u003e7aef486\u003c/code\u003e\u003c/a\u003e fix: regression in pending links detection\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/6244eb33846bbd407443f5d0e339bd8c91663cd6\"\u003e\u003ccode\u003e6244eb3\u003c/code\u003e\u003c/a\u003e 7.5.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/9704d8c6f639573775133cbbd541aba83cb46c9c\"\u003e\u003ccode\u003e9704d8c\u003c/code\u003e\u003c/a\u003e stricter protection against hardlinks preempting their targets\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/700734f9aeb113bcc5f1400d81b8be7d499e54a2\"\u003e\u003ccode\u003e700734f\u003c/code\u003e\u003c/a\u003e update workflows and deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/d6611ae951056addb77c6e11baf7bcc9d7648e46\"\u003e\u003ccode\u003ed6611ae\u003c/code\u003e\u003c/a\u003e 7.5.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/119c401f4f7efbeb112d28f9dfc9c489674c9a79\"\u003e\u003ccode\u003e119c401\u003c/code\u003e\u003c/a\u003e fix(extract): prevent raced symlink writes outside cwd\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/2a294d3fbb24c18dc80f31059f49dd9af15653fe\"\u003e\u003ccode\u003e2a294d3\u003c/code\u003e\u003c/a\u003e 7.5.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/01082a42c3256ca6054f9627911cce4dbfe00d92\"\u003e\u003ccode\u003e01082a4\u003c/code\u003e\u003c/a\u003e fix: reject top promise on floating addFilesAsync rejections\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/dd1c36ab7acff26e5a34935d17f27a45bb088db3\"\u003e\u003ccode\u003edd1c36a\u003c/code\u003e\u003c/a\u003e linting\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-tar/compare/v6.2.1...v7.5.15\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for tar since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `form-data` from 4.0.0 to 4.0.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/form-data/form-data/releases\"\u003eform-data's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.5.2\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eBuffer.from\u003c/code\u003e and \u003ccode\u003eBuffer.alloc\u003c/code\u003e require node 4+\u003c/li\u003e\n\u003cli\u003enpmignore temporary build files (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/532\"\u003e#532\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emove util.isArray to Array.isArray (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/564\"\u003e#564\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eTests\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emigrate from travis to GHA\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDev Improvements\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed error in the documentations as indicated in \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/439\"\u003e#439\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded remaining combined-stream options to typedef\u003c/li\u003e\n\u003cli\u003eBumped rimraf to 2.7.1 (dev-dep)\u003c/li\u003e\n\u003cli\u003eAdded constructor options to TypeScript defs\u003c/li\u003e\n\u003cli\u003eFixed error in callback signatures\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAdded Types\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded TS types\u003c/li\u003e\n\u003cli\u003eImproved documentation\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAdded getBuffer method\u003c/h2\u003e\n\u003cp\u003eUpdated test builds to support node10 and 12.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/form-data/form-data/blob/master/CHANGELOG.md\"\u003eform-data's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v2.5.4...v2.5.5\"\u003ev2.5.5\u003c/a\u003e - 2025-07-18\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[meta] actually ensure the readme backup isn’t published \u003ca href=\"https://github.com/form-data/form-data/commit/10626c0a9b78c7d3fcaa51772265015ee0afc25c\"\u003e\u003ccode\u003e10626c0\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] use proper dependency \u003ca href=\"https://github.com/form-data/form-data/commit/026abe5c5c0489d8a2ccb59d5cfd14fb63078377\"\u003e\u003ccode\u003e026abe5\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v2.5.3...v2.5.4\"\u003ev2.5.4\u003c/a\u003e - 2025-07-17\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eappend\u003c/code\u003e: avoid a crash on nullish values \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/577\"\u003e\u003ccode\u003e[#577](https://github.com/form-data/form-data/issues/577)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[eslint] update linting config \u003ca href=\"https://github.com/form-data/form-data/commit/8bf2492e0555d41ff58fa04c91593af998f87a3c\"\u003e\u003ccode\u003e8bf2492\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/b5101ad3d5f73cfd0143aae3735b92826fd731ea\"\u003e\u003ccode\u003eb5101ad\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] handle predict-v8-randomness failures in node \u0026lt; 17 and node \u0026gt; 23 \u003ca href=\"https://github.com/form-data/form-data/commit/0e93122358414942393d9c2dc434ae69e58be7c8\"\u003e\u003ccode\u003e0e93122\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] Switch to using \u003ccode\u003ecrypto\u003c/code\u003e random for boundary values \u003ca href=\"https://github.com/form-data/form-data/commit/b88316c94bb004323669cd3639dc8bb8262539eb\"\u003e\u003ccode\u003eb88316c\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] validate boundary type in \u003ccode\u003esetBoundary()\u003c/code\u003e method \u003ca href=\"https://github.com/form-data/form-data/commit/131ae5efa30b9c608add4faef3befb38aa2e1bf1\"\u003e\u003ccode\u003e131ae5e\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] Switch to newer v8 prediction library; enable node 24 testing \u003ca href=\"https://github.com/form-data/form-data/commit/c97cfbed9eb6d2d4b5d53090f69ded4bf9fd8a21\"\u003e\u003ccode\u003ec97cfbe\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Refactor] use \u003ccode\u003ehasown\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/97ac9c208be0b83faeee04bb3faef1ed3474ee4c\"\u003e\u003ccode\u003e97ac9c2\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] remove local commit hooks \u003ca href=\"https://github.com/form-data/form-data/commit/be99d4eea5ce47139c23c1f0914596194019d7fb\"\u003e\u003ccode\u003ebe99d4e\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] remove unused deps \u003ca href=\"https://github.com/form-data/form-data/commit/ddbc89b6d6d64f730bcb27cb33b7544068466a05\"\u003e\u003ccode\u003eddbc89b\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix scripts to use prepublishOnly \u003ca href=\"https://github.com/form-data/form-data/commit/e351a97e9f6c57c74ffd01625e83b09de805d08a\"\u003e\u003ccode\u003ee351a97\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] remove unused script \u003ca href=\"https://github.com/form-data/form-data/commit/8f233664842da5bd605ce85541defc713d1d1e0a\"\u003e\u003ccode\u003e8f23366\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] add missing peer dep \u003ca href=\"https://github.com/form-data/form-data/commit/02ff026fda71f9943cfdd5754727c628adb8d135\"\u003e\u003ccode\u003e02ff026\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix readme capitalization \u003ca href=\"https://github.com/form-data/form-data/commit/2fd5f61ebfb526cd015fb8e7b8b8c1add4a38872\"\u003e\u003ccode\u003e2fd5f61\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v2.5.2...v2.5.3\"\u003ev2.5.3\u003c/a\u003e - 2025-02-14\u003c/h2\u003e\n\u003ch3\u003eMerged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/573\"\u003e\u003ccode\u003e[#573](https://github.com/form-data/form-data/issues/573)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/573\"\u003e#573\u003c/a\u003e) \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Refactor] use \u003ccode\u003eObject.prototype.hasOwnProperty.call\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/6e682d4bd41de7e80de41e3c4ee10f23fcc3dd00\"\u003e\u003ccode\u003e6e682d4\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003e@types/node\u003c/code\u003e, \u003ccode\u003ebrowserify\u003c/code\u003e, \u003ccode\u003ecoveralls\u003c/code\u003e, \u003ccode\u003eeslint\u003c/code\u003e, \u003ccode\u003eformidable\u003c/code\u003e, \u003ccode\u003ein-publish\u003c/code\u003e, \u003ccode\u003ephantomjs-prebuilt\u003c/code\u003e, \u003ccode\u003epkgfiles\u003c/code\u003e, \u003ccode\u003epre-commit\u003c/code\u003e, \u003ccode\u003erequest\u003c/code\u003e, \u003ccode\u003etape\u003c/code\u003e, \u003ccode\u003etypescript\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/819f6b7a543306a891fca37c3a06d0ff4a734422\"\u003e\u003ccode\u003e819f6b7\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOnly apps should have lockfiles \u003ca href=\"https://github.com/form-data/form-data/commit/b170ee2b22b4c695c363b811c0c553d2fb1bbd79\"\u003e\u003ccode\u003eb170ee2\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Deps] update \u003ccode\u003ecombined-stream\u003c/code\u003e, \u003ccode\u003emime-types\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/6b1ca1dc7362a1b1c3a99a885516cca4b7eb817f\"\u003e\u003ccode\u003e6b1ca1d\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBumped version 2.5.3 \u003ca href=\"https://github.com/form-data/form-data/commit/9457283e1dce6122adc908fdd7442cfc54cabe7a\"\u003e\u003ccode\u003e9457283\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] pin \u003ccode\u003erequest\u003c/code\u003e which via \u003ccode\u003etough-cookie\u003c/code\u003e ^2.4 depends on \u003ccode\u003epsl\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/9dbe192be3db215eac4d9c0b980470a5c2c030c6\"\u003e\u003ccode\u003e9dbe192\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v2.5.1...v2.5.2\"\u003ev2.5.2\u003c/a\u003e - 2024-10-10\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/form-data/form-data/commits/v2.5.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~ljharb\"\u003eljharb\u003c/a\u003e, a new releaser for form-data since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version modifies \u003ccode\u003eprepublish\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.23 to 4.18.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lodash/lodash/releases\"\u003elodash's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.18.1\u003c/h2\u003e\n\u003ch2\u003eBugs\u003c/h2\u003e\n\u003cp\u003eFixes a \u003ccode\u003eReferenceError\u003c/code\u003e issue in \u003ccode\u003elodash\u003c/code\u003e \u003ccode\u003elodash-es\u003c/code\u003e \u003ccode\u003elodash-amd\u003c/code\u003e and \u003ccode\u003elodash.template\u003c/code\u003e when using the \u003ccode\u003etemplate\u003c/code\u003e and \u003ccode\u003efromPairs\u003c/code\u003e functions from the modular builds. See \u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6167#issuecomment-4165269769\"\u003elodash/lodash#6167\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eThese defects were related to how lodash distributions are built from the main branch using \u003ca href=\"https://github.com/lodash-archive/lodash-cli\"\u003ehttps://github.com/lodash-archive/lodash-cli\u003c/a\u003e. When internal dependencies change inside lodash functions, equivalent updates need to be made to a mapping in the lodash-cli. (hey, it was ahead of its time once upon a time!). We know this, but we missed it in the last release. It's the kind of thing that passes in CI, but fails bc the build is not the same thing you tested.\u003c/p\u003e\n\u003cp\u003eThere is no diff on main for this, but you can see the diffs for each of the npm packages on their respective branches:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003elodash\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-es\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-amd\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash.template\u003c/code\u003e\u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.18.0\u003c/h2\u003e\n\u003ch2\u003ev4.18.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.23...4.18.0\"\u003ehttps://github.com/lodash/lodash/compare/4.17.23...4.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.unset\u003c/code\u003e / \u003ccode\u003e_.omit\u003c/code\u003e\u003c/strong\u003e: Fixed prototype pollution via \u003ccode\u003econstructor\u003c/code\u003e/\u003ccode\u003eprototype\u003c/code\u003e path traversal (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-f23m-r3pf-42rh\"\u003eGHSA-f23m-r3pf-42rh\u003c/a\u003e, \u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003efe8d32e\u003c/a\u003e). Previously, array-wrapped path segments and primitive roots could bypass the existing guards, allowing deletion of properties from built-in prototypes. Now \u003ccode\u003econstructor\u003c/code\u003e and \u003ccode\u003eprototype\u003c/code\u003e are blocked unconditionally as non-terminal path keys, matching \u003ccode\u003ebaseSet\u003c/code\u003e. Calls that previously returned \u003ccode\u003etrue\u003c/code\u003e and deleted the property now return \u003ccode\u003efalse\u003c/code\u003e and leave the target untouched.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.template\u003c/code\u003e\u003c/strong\u003e: Fixed code injection via \u003ccode\u003eimports\u003c/code\u003e keys (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-r5fr-rjxr-66jc\"\u003eGHSA-r5fr-rjxr-66jc\u003c/a\u003e, CVE-2026-4800, \u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e879aaa9\u003c/a\u003e). Fixes an incomplete patch for CVE-2021-23337. The \u003ccode\u003evariable\u003c/code\u003e option was validated against \u003ccode\u003ereForbiddenIdentifierChars\u003c/code\u003e but \u003ccode\u003eimportsKeys\u003c/code\u003e was left unguarded, allowing code injection via the same \u003ccode\u003eFunction()\u003c/code\u003e constructor sink. \u003ccode\u003eimports\u003c/code\u003e keys containing forbidden identifier characters now throw \u003ccode\u003e\u0026quot;Invalid imports option passed into _.template\u0026quot;\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eDocs\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd security notice for \u003ccode\u003e_.template\u003c/code\u003e in threat model and API docs (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6099\"\u003e#6099\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDocument \u003ccode\u003elower \u0026gt; upper\u003c/code\u003e behavior in \u003ccode\u003e_.random\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6115\"\u003e#6115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix quotes in \u003ccode\u003e_.compact\u003c/code\u003e jsdoc (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6090\"\u003e#6090\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ccode\u003elodash.*\u003c/code\u003e modular packages\u003c/h3\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6157\"\u003eDiff\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eWe have also regenerated and published a select number of the \u003ccode\u003elodash.*\u003c/code\u003e modular packages.\u003c/p\u003e\n\u003cp\u003eThese modular packages had fallen out of sync significantly from the minor/patch updates to lodash. Specifically, we have brought the following packages up to parity w/ the latest lodash release because they have had CVEs on them in the past:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.orderby\"\u003elodash.orderby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.tonumber\"\u003elodash.tonumber\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trim\"\u003elodash.trim\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trimend\"\u003elodash.trimend\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.sortedindexby\"\u003elodash.sortedindexby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.zipobjectdeep\"\u003elodash.zipobjectdeep\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.unset\"\u003elodash.unset\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.omit\"\u003elodash.omit\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.template\"\u003elodash.template\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/cb0b9b9212521c08e3eafe7c8cb0af1b42b6649e\"\u003e\u003ccode\u003ecb0b9b9\u003c/code\u003e\u003c/a\u003e release(patch): bump main to 4.18.1 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6177\"\u003e#6177\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/75535f57883b7225adb96de1cfc1cd4169cfcb51\"\u003e\u003ccode\u003e75535f5\u003c/code\u003e\u003c/a\u003e chore: prune stale advisory refs (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6170\"\u003e#6170\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/62e91bc6a39c98d85b9ada8c44d40593deaf82a4\"\u003e\u003ccode\u003e62e91bc\u003c/code\u003e\u003c/a\u003e docs: remove n_ Node.js \u0026lt; 6 REPL note from README (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6165\"\u003e#6165\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/59be2de61f8aa9461c7856533b51d31b7d8babc4\"\u003e\u003ccode\u003e59be2de\u003c/code\u003e\u003c/a\u003e release(minor): bump to 4.18.0 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6161\"\u003e#6161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/af634573030f979194871da7c68f79420992f53d\"\u003e\u003ccode\u003eaf63457\u003c/code\u003e\u003c/a\u003e fix: broken tests for _.template 879aaa9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/1073a7693e1727e0cf3641e5f71f75ddcf8de7c0\"\u003e\u003ccode\u003e1073a76\u003c/code\u003e\u003c/a\u003e fix: linting issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e\u003ccode\u003e879aaa9\u003c/code\u003e\u003c/a\u003e fix: validate imports keys in _.template\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003e\u003ccode\u003efe8d32e\u003c/code\u003e\u003c/a\u003e fix: block prototype pollution in baseUnset via constructor/prototype traversal\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/18ba0a32f42fd02117f096b032f89c984173462d\"\u003e\u003ccode\u003e18ba0a3\u003c/code\u003e\u003c/a\u003e refactor(fromPairs): use baseAssignValue for consistent assignment (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6153\"\u003e#6153\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b8190803d48d60b8c80ad45d39125f32fa618cb2\"\u003e\u003ccode\u003eb819080\u003c/code\u003e\u003c/a\u003e ci: add dist sync validation workflow (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6137\"\u003e#6137\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.23...4.18.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `node-fetch` from 1.7.1 to 2.6.7\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-fetch/node-fetch/releases\"\u003enode-fetch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.6.7\u003c/h2\u003e\n\u003ch1\u003eSecurity patch release\u003c/h1\u003e\n\u003cp\u003eRecommended to upgrade, to not leak sensitive cookie and authentication header information to 3th party host while a redirect occurred\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: don't forward secure headers to 3th party by \u003ca href=\"https://github.com/jimmywarting\"\u003e\u003ccode\u003e@​jimmywarting\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/pull/1453\"\u003enode-fetch/node-fetch#1453\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v2.6.6...v2.6.7\"\u003ehttps://github.com/node-fetch/node-fetch/compare/v2.6.6...v2.6.7\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.6.6\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(URL): prefer built in URL version when available and fallback to whatwg by \u003ca href=\"https://github.com/jimmywarting\"\u003e\u003ccode\u003e@​jimmywarting\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/pull/1352\"\u003enode-fetch/node-fetch#1352\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v2.6.5...v2.6.6\"\u003ehttps://github.com/node-fetch/node-fetch/compare/v2.6.5...v2.6.6\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.6.2\u003c/h2\u003e\n\u003cp\u003efixed main path in package.json\u003c/p\u003e\n\u003ch2\u003ev2.6.1\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eThis is an important security release. It is strongly recommended to update as soon as possible.\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/node-fetch/node-fetch/blob/master/docs/CHANGELOG.md#v261\"\u003eCHANGELOG\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev2.6.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/bitinn/node-fetch/blob/v2.6.0/CHANGELOG.md#v260\"\u003eCHANGELOG\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev2.5.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/bitinn/node-fetch/blob/v2.5.0/CHANGELOG.md#v250\"\u003eCHANGELOG\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev2.4.1\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/bitinn/node-fetch/blob/v2.4.1/CHANGELOG.md#v241\"\u003eCHANGELOG\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev2.4.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/bitinn/node-fetch/blob/v2.4.0/CHANGELOG.md#v240\"\u003eCHANGELOG\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev2.3.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/bitinn/node-fetch/blob/v2.3.0/CHANGELOG.md#v230\"\u003eCHANGELOG\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev2.2.1\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/bitinn/node-fetch/blob/v2.2.1/CHANGELOG.md#v221\"\u003eCHANGELOG\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003eVersion 2.1.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix: allow \u003ccode\u003eBody\u003c/code\u003e methods to work on ArrayBuffer\u003ccode\u003e-backed \u003c/code\u003eBody` objects\u003c/li\u003e\n\u003cli\u003eFix: reject promise returned by \u003ccode\u003eBody\u003c/code\u003e methods when the accumulated \u003ccode\u003eBuffer\u003c/code\u003e exceeds the maximum size\u003c/li\u003e\n\u003cli\u003eFix: support custom \u003ccode\u003eHost\u003c/code\u003e headers with any casing\u003c/li\u003e\n\u003cli\u003eFix: support importing \u003ccode\u003efetch()\u003c/code\u003e from TypeScript in \u003ccode\u003ebrowser.js\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFix: handle the redirect response body properly\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/1ef4b560a17e644a02a3bfdea7631ffeee578b35\"\u003e\u003ccode\u003e1ef4b56\u003c/code\u003e\u003c/a\u003e backport of \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1449\"\u003e#1449\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1453\"\u003e#1453\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8fe5c4ea66b9b8187600e6d5ec9b1b6781f44009\"\u003e\u003ccode\u003e8fe5c4e\u003c/code\u003e\u003c/a\u003e 2.x: Specify encoding as an optional peer dependency in package.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1310\"\u003e#1310\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/f56b0c66d3dd2ef185436de1f2fd40f66bfea8f4\"\u003e\u003ccode\u003ef56b0c6\u003c/code\u003e\u003c/a\u003e fix(URL): prefer built in URL version when available and fallback to whatwg (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/b5417aea6a3275932283a200214522e6ab53f1ea\"\u003e\u003ccode\u003eb5417ae\u003c/code\u003e\u003c/a\u003e fix: import whatwg-url in a way compatible with ESM Node (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1303\"\u003e#1303\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/18193c5922c64046b922e18faf41821290535f06\"\u003e\u003ccode\u003e18193c5\u003c/code\u003e\u003c/a\u003e fix v2.6.3 that did not sending query params (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1301\"\u003e#1301\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/ace7536c955556be742d9910566738630cc3c2a6\"\u003e\u003ccode\u003eace7536\u003c/code\u003e\u003c/a\u003e fix: properly encode url with unicode characters (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1291\"\u003e#1291\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/152214ca2f6e2a5a17d71e4638114625d3be30c6\"\u003e\u003ccode\u003e152214c\u003c/code\u003e\u003c/a\u003e Fix(package.json): Corrected main file path in package.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1274\"\u003e#1274\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/b5e2e41b2b50bf2997720d6125accaf0dd68c0ab\"\u003e\u003ccode\u003eb5e2e41\u003c/code\u003e\u003c/a\u003e update version number\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/2358a6c2563d1730a0cdaccc197c611949f6a334\"\u003e\u003ccode\u003e2358a6c\u003c/code\u003e\u003c/a\u003e Honor the \u003ccode\u003esize\u003c/code\u003e option after following a redirect and revert data uri support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8c197f8982a238b3c345c64b17bfa92e16b4f7c4\"\u003e\u003ccode\u003e8c197f8\u003c/code\u003e\u003c/a\u003e docs: Fix typos and grammatical errors in README.md (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/686\"\u003e#686\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v1.7.1...v2.6.7\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~endless\"\u003eendless\u003c/a\u003e, a new releaser for node-fetch since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `async` from 2.4.1 to 2.6.4\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/caolan/async/blob/v2.6.4/CHANGELOG.md\"\u003easync's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003ev2.6.4\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix potential prototype pollution exploit (\u003ca href=\"https://redirect.github.com/caolan/async/issues/1828\"\u003e#1828\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ev2.6.3\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated lodash to squelch a security warning (\u003ca href=\"https://redirect.github.com/caolan/async/issues/1675\"\u003e#1675\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ev2.6.2\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated lodash to squelch a security warning (\u003ca href=\"https://redirect.github.com/caolan/async/issues/1620\"\u003e#1620\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ev2.6.1\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated lodash to prevent \u003ccode\u003enpm audit\u003c/code\u003e warnings. (\u003ca href=\"https://redirect.github.com/caolan/async/issues/1532\"\u003e#1532\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/caolan/async/issues/1533\"\u003e#1533\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMade \u003ccode\u003easync-es\u003c/code\u003e more optimized for webpack users (\u003ca href=\"https://redirect.github.com/caolan/async/issues/1517\"\u003e#1517\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFixed a stack overflow with large collections and a synchronous iterator (\u003ca href=\"https://redirect.github.com/caolan/async/issues/1514\"\u003e#1514\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eVarious small fixes/chores (\u003ca href=\"https://redirect.github.com/caolan/async/issues/1505\"\u003e#1505\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/caolan/async/issues/1511\"\u003e#1511\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/caolan/async/issues/1527\"\u003e#1527\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/caolan/async/issues/1530\"\u003e#1530\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ev2.6.0\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eAdded missing aliases for many methods.  Previously, you could not (e.g.) \u003ccode\u003erequire('async/find')\u003c/code\u003e or use \u003ccode\u003easync.anyLimit\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/caolan/async/issues/1483\"\u003e#1483\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImproved \u003ccode\u003equeue\u003c/code\u003e performance. (\u003ca href=\"https://redirect.github.com/caolan/async/issues/1448\"\u003e#1448\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/caolan/async/issues/1454\"\u003e#1454\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd missing sourcemap (\u003ca href=\"https://redirect.github.com/caolan/async/issues/1452\"\u003e#1452\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/caolan/async/issues/1453\"\u003e#1453\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eVarious doc updates (\u003ca href=\"https://redirect.github.com/caolan/async/issues/1448\"\u003e#1448\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/caolan/async/issues/1471\"\u003e#1471\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/caolan/async/issues/1483\"\u003e#1483\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ev2.5.0\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003econcatLimit\u003c/code\u003e, the \u003ccode\u003eLimit\u003c/code\u003e equivalent of \u003ca href=\"https://caolan.github.io/async/docs.html#concat\"\u003e\u003ccode\u003econcat\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/caolan/async/issues/1426\"\u003e#1426\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/caolan/async/pull/1430\"\u003e#1430\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003econcat\u003c/code\u003e improvements: it now preserves order, handles falsy values and the \u003ccode\u003eiteratee\u003c/code\u003e callback takes a variable number of arguments (\u003ca href=\"https://redirect.github.com/caolan/async/issues/1437\"\u003e#1437\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/caolan/async/pull/1436\"\u003e#1436\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFixed an issue in \u003ccode\u003equeue\u003c/code\u003e  where there was a size discrepancy between \u003ccode\u003eworkersList().length\u003c/code\u003e and \u003ccode\u003erunning()\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/caolan/async/issues/1428\"\u003e#1428\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/caolan/async/pull/1429\"\u003e#1429\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eVarious doc fixes (\u003ca href=\"https://redirect.github.com/caolan/async/issues/1422\"\u003e#1422\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/caolan/async/pull/1424\"\u003e#1424\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/caolan/async/commit/c6bdaca4f9175c14fc655d3783c6af6a883e6514\"\u003e\u003ccode\u003ec6bdaca\u003c/code\u003e\u003c/a\u003e Version 2.6.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/caolan/async/commit/8870da9d5022bab310413041b4079e10db3980b7\"\u003e\u003ccode\u003e8870da9\u003c/code\u003e\u003c/a\u003e Update built files\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/caolan/async/commit/4df6754ef4e96a742956df8782fee27242a2ea12\"\u003e\u003ccode\u003e4df6754\u003c/code\u003e\u003c/a\u003e update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/caolan/async/commit/8f7f90342a6571ba1c197d747ebed30c368096d2\"\u003e\u003ccode\u003e8f7f903\u003c/code\u003e\u003c/a\u003e Fix prototype pollution vulnerability (\u003ca href=\"https://redirect.github.com/caolan/async/issues/1828\"\u003e#1828\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/caolan/async/commit/f1d8383bb118366f652f26a5096f106b88344ceb\"\u003e\u003ccode\u003ef1d8383\u003c/code\u003e\u003c/a\u003e Version 2.6.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/caolan/async/commit/2b674c198962e6716b5b9974f79456faa03a0d95\"\u003e\u003ccode\u003e2b674c1\u003c/code\u003e\u003c/a\u003e update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/caolan/async/commit/eab740f7bd2c8a065b5d7c886bf678873a356103\"\u003e\u003ccode\u003eeab740f\u003c/code\u003e\u003c/a\u003e fix: udpate lodash.  closes \u003ca href=\"https://redirect.github.com/caolan/async/issues/1675\"\u003e#1675\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/caolan/async/commit/eaf32be0e94f62fddc83d8550814e30a4be66a3c\"\u003e\u003ccode\u003eeaf32be\u003c/code\u003e\u003c/a\u003e Version 2.6.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/caolan/async/commit/684b42e695222de079029f52dcc1afe69751e5f4\"\u003e\u003ccode\u003e684b42e\u003c/code\u003e\u003c/a\u003e Update built files\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/caolan/async/commit/e1bd3da9e644d5a09e553f9b913cc4f029733bff\"\u003e\u003ccode\u003ee1bd3da\u003c/code\u003e\u003c/a\u003e update changelog\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/caolan/async/compare/v2.4.1...v2.6.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~hargasinski\"\u003ehargasinski\u003c/a\u003e, a new releaser for async since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `yeoman-environment` from 4.4.3 to 6.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/yeoman/environment/releases\"\u003eyeoman-environment's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: ask before installing local packages by \u003ca href=\"https://github.com/mshima\"\u003e\u003ccode\u003e@​mshima\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yeoman/environment/pull/753\"\u003eyeoman/environment#753\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(release): bump version to v6.0.1 by \u003ca href=\"https://github.com/github-actions\"\u003e\u003ccode\u003e@​github-actions\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/yeoman/environment/pull/757\"\u003eyeoman/environment#757\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/yeoman/environment/compare/v6.0.0...v6.0.1\"\u003ehttps://github.com/yeoman/environment/compare/v6.0.0...v6.0.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch3\u003e🚀 yeoman-environment v6 – Release Notes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSwitch to \u003ccode\u003e@​yeoman/adapter\u003c/code\u003e v4 (and inquirer v13) by default.\nSome behavior changes may happen.\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/yeoman/environment/compare/v5.1.3...v6.0.0\"\u003ehttps://github.com/yeoman/environment/compare/v5.1.3...v6.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.1.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: only fallback to import if requiring fails with esm/async error (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/716\"\u003e#716\u003c/a\u003e)  e4fb745\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/yeoman/environment/compare/v5.1.2...v5.1.3\"\u003ehttps://github.com/yeoman/environment/compare/v5.1.2...v5.1.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.1.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: use globbySync to resolve PNPM global node_modules paths (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/69...\n\n_Description has been truncated_","html_url":"https://github.com/PCWProps/zapier-platform/pull/5","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/PCWProps%2Fzapier-platform/issues/5","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/5/packages"},{"uuid":"4513524316","node_id":"PR_kwDOCeNfHs7e3lar","number":9,"state":"closed","title":"Bump the npm_and_yarn group across 13 directories with 15 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-25T06:12:31.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-25T00:52:45.000Z","updated_at":"2026-05-25T06:12:33.000Z","time_to_close":19186,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"npm_and_yarn","update_count":15,"packages":[{"name":"axios","old_version":"0.18.1","new_version":"1.16.1","repository_url":"https://github.com/axios/axios"},{"name":"shelljs","old_version":"0.7.8","new_version":"0.10.0","repository_url":"https://github.com/shelljs/shelljs"},{"name":"node-fetch","old_version":"1.7.3","new_version":"3.3.2","repository_url":"https://github.com/node-fetch/node-fetch"},{"name":"uuid","old_version":"3.4.0","new_version":"14.0.0","repository_url":"https://github.com/uuidjs/uuid"},{"name":"node-sass","old_version":"4.14.1","new_version":"9.0.0","repository_url":"https://github.com/sass/node-sass"},{"name":"webpack-bundle-analyzer","old_version":"2.13.1","new_version":"5.3.0","repository_url":"https://github.com/webpack/webpack-bundle-analyzer"},{"name":"webpack-dev-middleware","old_version":"1.12.2","new_version":"8.0.3","repository_url":"https://github.com/webpack/webpack-dev-middleware"},{"name":"knex","old_version":"0.13.0","new_version":"3.2.10","repository_url":"https://github.com/knex/knex"},{"name":"mongoose","old_version":"5.13.23","new_version":"9.6.2","repository_url":"https://github.com/Automattic/mongoose"},{"name":"showdown","old_version":"1.9.1","new_version":"2.1.0","repository_url":"https://github.com/showdownjs/showdown"},{"name":"path-to-regexp","old_version":"2.4.0","new_version":"8.4.2","repository_url":"https://github.com/pillarjs/path-to-regexp"},{"name":"swagger-ui-dist","old_version":"3.52.5","new_version":"5.32.6","repository_url":"https://github.com/swagger-api/swagger-ui"},{"name":"jsonwebtoken","old_version":"8.5.1","new_version":"9.0.3","repository_url":"https://github.com/auth0/node-jsonwebtoken"},{"name":"cloudinary","old_version":"1.41.3","new_version":"2.10.0","repository_url":"https://github.com/cloudinary/cloudinary_npm"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 14 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [axios](https://github.com/axios/axios) | `0.18.1` | `1.16.1` |\n| [shelljs](https://github.com/shelljs/shelljs) | `0.7.8` | `0.10.0` |\n| [node-fetch](https://github.com/node-fetch/node-fetch) | `1.7.3` | `3.3.2` |\n| [uuid](https://github.com/uuidjs/uuid) | `3.4.0` | `14.0.0` |\n| [node-sass](https://github.com/sass/node-sass) | `4.14.1` | `9.0.0` |\n| [webpack-bundle-analyzer](https://github.com/webpack/webpack-bundle-analyzer) | `2.13.1` | `5.3.0` |\n| [webpack-dev-middleware](https://github.com/webpack/webpack-dev-middleware) | `1.12.2` | `8.0.3` |\n| [knex](https://github.com/knex/knex) | `0.13.0` | `3.2.10` |\n| [mongoose](https://github.com/Automattic/mongoose) | `5.13.23` | `9.6.2` |\n| [showdown](https://github.com/showdownjs/showdown) | `1.9.1` | `2.1.0` |\n| [path-to-regexp](https://github.com/pillarjs/path-to-regexp) | `2.4.0` | `8.4.2` |\n| [swagger-ui-dist](https://github.com/swagger-api/swagger-ui) | `3.52.5` | `5.32.6` |\n| [jsonwebtoken](https://github.com/auth0/node-jsonwebtoken) | `8.5.1` | `9.0.3` |\n| [cloudinary](https://github.com/cloudinary/cloudinary_npm) | `1.41.3` | `2.10.0` |\n\nBumps the npm_and_yarn group with 1 update in the /packages/strapi directory: [node-fetch](https://github.com/node-fetch/node-fetch).\nBumps the npm_and_yarn group with 1 update in the /packages/strapi-admin directory: [shelljs](https://github.com/shelljs/shelljs).\nBumps the npm_and_yarn group with 1 update in the /packages/strapi-generate-admin directory: [strapi-admin](https://github.com/strapi/strapi).\nBumps the npm_and_yarn group with 1 update in the /packages/strapi-generate-new directory: [uuid](https://github.com/uuidjs/uuid).\nBumps the npm_and_yarn group with 4 updates in the /packages/strapi-helper-plugin directory: [shelljs](https://github.com/shelljs/shelljs), [node-sass](https://github.com/sass/node-sass), [webpack-bundle-analyzer](https://github.com/webpack/webpack-bundle-analyzer) and [webpack-dev-middleware](https://github.com/webpack/webpack-dev-middleware).\nBumps the npm_and_yarn group with 1 update in the /packages/strapi-hook-knex directory: [knex](https://github.com/knex/knex).\nBumps the npm_and_yarn group with 1 update in the /packages/strapi-hook-mongoose directory: [mongoose](https://github.com/Automattic/mongoose).\nBumps the npm_and_yarn group with 1 update in the /packages/strapi-plugin-content-manager directory: [showdown](https://github.com/showdownjs/showdown).\nBumps the npm_and_yarn group with 2 updates in the /packages/strapi-plugin-documentation directory: [path-to-regexp](https://github.com/pillarjs/path-to-regexp) and [swagger-ui-dist](https://github.com/swagger-api/swagger-ui).\nBumps the npm_and_yarn group with 2 updates in the /packages/strapi-plugin-users-permissions directory: [uuid](https://github.com/uuidjs/uuid) and [jsonwebtoken](https://github.com/auth0/node-jsonwebtoken).\nBumps the npm_and_yarn group with 1 update in the /packages/strapi-provider-upload-cloudinary directory: [cloudinary](https://github.com/cloudinary/cloudinary_npm).\nBumps the npm_and_yarn group with 2 updates in the /packages/strapi-utils directory: [shelljs](https://github.com/shelljs/shelljs) and [knex](https://github.com/knex/knex).\n\nUpdates `axios` from 0.18.1 to 1.16.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.16.1 — May 13, 2026\u003c/h2\u003e\n\u003cp\u003eThis release ships a defence-in-depth fix for prototype pollution in \u003ccode\u003eformDataToJSON\u003c/code\u003e, hardens proxy and CI workflows, restores Webpack 4 compatibility for the fetch adapter, and includes several small bug fixes and maintenance improvements.\u003c/p\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ePrototype Pollution Defence-in-Depth:\u003c/strong\u003e Hardened \u003ccode\u003eformDataToJSON\u003c/code\u003e against already-polluted \u003ccode\u003eObject.prototype\u003c/code\u003e by walking own properties only, so attacker-controlled keys inherited from a poisoned prototype cannot propagate through deserialization. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7413\"\u003e#7413\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eProxy Cleartext Leak:\u003c/strong\u003e Fixed an issue where HTTPS request data could be transmitted in cleartext to an HTTP proxy under certain configurations. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10858\"\u003e#10858\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eCI Cache Removal:\u003c/strong\u003e Removed all GitHub Actions caches as a defence-in-depth measure against cache poisoning vectors in the build pipeline. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10882\"\u003e#10882\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eData URI Parsing:\u003c/strong\u003e Updated the \u003ccode\u003efromDataURI\u003c/code\u003e regex to match RFC 2397 more strictly, fixing edge cases in \u003ccode\u003edata:\u003c/code\u003e URL handling. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10829\"\u003e#10829\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eUnicode Headers:\u003c/strong\u003e Preserved Unicode header values when running through request interceptors, so non-ASCII header content is no longer corrupted before dispatch. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10850\"\u003e#10850\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eXHR Upload Progress:\u003c/strong\u003e Guarded against malformed \u003ccode\u003eProgressEvent\u003c/code\u003e payloads emitted by some environments during XHR upload, preventing crashes when \u003ccode\u003eloaded\u003c/code\u003e / \u003ccode\u003etotal\u003c/code\u003e are missing or invalid. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10868\"\u003e#10868\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eWebpack 4 Fetch Adapter:\u003c/strong\u003e Fixed an \u0026quot;unexpected token\u0026quot; error caused by syntax in the fetch adapter that Webpack 4 could not parse, restoring compatibility for legacy bundler users. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10864\"\u003e#10864\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eType Definitions:\u003c/strong\u003e Made \u003ccode\u003eparseReviver\u003c/code\u003e \u003ccode\u003econtext.source\u003c/code\u003e optional in the type definitions to align with the ES2023 specification. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10837\"\u003e#10837\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eURL Object Support Reverted:\u003c/strong\u003e Reverted the change that allowed passing a \u003ccode\u003eURL\u003c/code\u003e object as \u003ccode\u003econfig.url\u003c/code\u003e (originally \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10866\"\u003e#10866\u003c/a\u003e\u003c/strong\u003e) due to regressions; this support will be reintroduced in a later release once the underlying issues are addressed. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10874\"\u003e#10874\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eCycle Detection Refactor:\u003c/strong\u003e Replaced the array-based cycle tracker in \u003ccode\u003etoJSONObject\u003c/code\u003e with a \u003ccode\u003eWeakSet\u003c/code\u003e, improving performance and memory behaviour on large nested structures. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10832\"\u003e#10832\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ecomposeSignals Cleanup:\u003c/strong\u003e Refactored \u003ccode\u003ecomposeSignals\u003c/code\u003e to use a clearer early-return structure, simplifying the cancellation/abort composition path. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10844\"\u003e#10844\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eAI Readiness \u0026amp; Repo Docs:\u003c/strong\u003e Added \u003ccode\u003eAGENTS.md\u003c/code\u003e and related contributor-guide updates for both human and AI agents, plus post-release documentation improvements. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10835\"\u003e#10835\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10841\"\u003e#10841\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDocs Improvements:\u003c/strong\u003e Clarified the GET request example, fixed the interceptor \u003ccode\u003eeject\u003c/code\u003e example to reference the correct instance, and corrected the Buzzoid sponsor description in the README. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10836\"\u003e#10836\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10853\"\u003e#10853\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10856\"\u003e#10856\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eSponsorship Tooling:\u003c/strong\u003e Fixed empty sponsor arrays in the sponsor processing script, added the ability to inject additional sponsors, updated the sponsorship link, and added a Twicsy advertisement entry. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10843\"\u003e#10843\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10859\"\u003e#10859\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10869\"\u003e#10869\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDependencies:\u003c/strong\u003e Bumped \u003ccode\u003e@commitlint/cli\u003c/code\u003e from 20.5.0 to 20.5.2. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10846\"\u003e#10846\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🌟 New Contributors\u003c/h2\u003e\n\u003cp\u003eWe are thrilled to welcome our new contributors. Thank you for helping improve axios:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/hpinmetaverse\"\u003e\u003ccode\u003e@​hpinmetaverse\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10836\"\u003e#10836\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/tommyhgunz14\"\u003e\u003ccode\u003e@​tommyhgunz14\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7413\"\u003e#7413\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/abhu85\"\u003e\u003ccode\u003e@​abhu85\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10829\"\u003e#10829\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/divyanshuraj1095\"\u003e\u003ccode\u003e@​divyanshuraj1095\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10853\"\u003e#10853\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/sagodi97\"\u003e\u003ccode\u003e@​sagodi97\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10856\"\u003e#10856\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/rkdfx\"\u003e\u003ccode\u003e@​rkdfx\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10868\"\u003e#10868\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/Liuwei1125\"\u003e\u003ccode\u003e@​Liuwei1125\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10866\"\u003e#10866\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/axios/axios/compare/v1.16.0...v1.16.1\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.16.0 — May 2, 2026\u003c/h2\u003e\n\u003cp\u003eThis release adds support for the QUERY HTTP method and a new \u003ccode\u003eECONNREFUSED\u003c/code\u003e error constant, lands a substantial wave of HTTP, fetch, and XHR adapter bug fixes around redirects, aborts, headers, and timeouts, and welcomes 23 new contributors.\u003c/p\u003e\n\u003ch2\u003e⚠️ Notable Changes\u003c/h2\u003e\n\u003cp\u003eA handful of fixes in this release are either security-adjacent or change observable behaviour. Please review before upgrading:\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/blob/v1.x/CHANGELOG.md\"\u003eaxios's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.16.1 — May 13, 2026\u003c/h2\u003e\n\u003cp\u003eThis release ships a defence-in-depth fix for prototype pollution in \u003ccode\u003eformDataToJSON\u003c/code\u003e, hardens proxy and CI workflows, restores Webpack 4 compatibility for the fetch adapter, and includes several small bug fixes and maintenance improvements.\u003c/p\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ePrototype Pollution Defence-in-Depth:\u003c/strong\u003e Hardened \u003ccode\u003eformDataToJSON\u003c/code\u003e against already-polluted \u003ccode\u003eObject.prototype\u003c/code\u003e by walking own properties only, so attacker-controlled keys inherited from a poisoned prototype cannot propagate through deserialization. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7413\"\u003e#7413\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eProxy Cleartext Leak:\u003c/strong\u003e Fixed an issue where HTTPS request data could be transmitted in cleartext to an HTTP proxy under certain configurations. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10858\"\u003e#10858\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eCI Cache Removal:\u003c/strong\u003e Removed all GitHub Actions caches as a defence-in-depth measure against cache poisoning vectors in the build pipeline. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10882\"\u003e#10882\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eData URI Parsing:\u003c/strong\u003e Updated the \u003ccode\u003efromDataURI\u003c/code\u003e regex to match RFC 2397 more strictly, fixing edge cases in \u003ccode\u003edata:\u003c/code\u003e URL handling. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10829\"\u003e#10829\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eUnicode Headers:\u003c/strong\u003e Preserved Unicode header values when running through request interceptors, so non-ASCII header content is no longer corrupted before dispatch. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10850\"\u003e#10850\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eXHR Upload Progress:\u003c/strong\u003e Guarded against malformed \u003ccode\u003eProgressEvent\u003c/code\u003e payloads emitted by some environments during XHR upload, preventing crashes when \u003ccode\u003eloaded\u003c/code\u003e / \u003ccode\u003etotal\u003c/code\u003e are missing or invalid. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10868\"\u003e#10868\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eWebpack 4 Fetch Adapter:\u003c/strong\u003e Fixed an \u0026quot;unexpected token\u0026quot; error caused by syntax in the fetch adapter that Webpack 4 could not parse, restoring compatibility for legacy bundler users. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10864\"\u003e#10864\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eType Definitions:\u003c/strong\u003e Made \u003ccode\u003eparseReviver\u003c/code\u003e \u003ccode\u003econtext.source\u003c/code\u003e optional in the type definitions to align with the ES2023 specification. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10837\"\u003e#10837\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eURL Object Support Reverted:\u003c/strong\u003e Reverted the change that allowed passing a \u003ccode\u003eURL\u003c/code\u003e object as \u003ccode\u003econfig.url\u003c/code\u003e (originally \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10866\"\u003e#10866\u003c/a\u003e\u003c/strong\u003e) due to regressions; this support will be reintroduced in a later release once the underlying issues are addressed. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10874\"\u003e#10874\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eCycle Detection Refactor:\u003c/strong\u003e Replaced the array-based cycle tracker in \u003ccode\u003etoJSONObject\u003c/code\u003e with a \u003ccode\u003eWeakSet\u003c/code\u003e, improving performance and memory behaviour on large nested structures. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10832\"\u003e#10832\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ecomposeSignals Cleanup:\u003c/strong\u003e Refactored \u003ccode\u003ecomposeSignals\u003c/code\u003e to use a clearer early-return structure, simplifying the cancellation/abort composition path. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10844\"\u003e#10844\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eAI Readiness \u0026amp; Repo Docs:\u003c/strong\u003e Added \u003ccode\u003eAGENTS.md\u003c/code\u003e and related contributor-guide updates for both human and AI agents, plus post-release documentation improvements. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10835\"\u003e#10835\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10841\"\u003e#10841\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDocs Improvements:\u003c/strong\u003e Clarified the GET request example, fixed the interceptor \u003ccode\u003eeject\u003c/code\u003e example to reference the correct instance, and corrected the Buzzoid sponsor description in the README. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10836\"\u003e#10836\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10853\"\u003e#10853\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10856\"\u003e#10856\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eSponsorship Tooling:\u003c/strong\u003e Fixed empty sponsor arrays in the sponsor processing script, added the ability to inject additional sponsors, updated the sponsorship link, and added a Twicsy advertisement entry. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10843\"\u003e#10843\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10859\"\u003e#10859\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10869\"\u003e#10869\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDependencies:\u003c/strong\u003e Bumped \u003ccode\u003e@commitlint/cli\u003c/code\u003e from 20.5.0 to 20.5.2. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10846\"\u003e#10846\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🌟 New Contributors\u003c/h2\u003e\n\u003cp\u003eWe are thrilled to welcome our new contributors. Thank you for helping improve axios:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/hpinmetaverse\"\u003e\u003ccode\u003e@​hpinmetaverse\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10836\"\u003e#10836\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/tommyhgunz14\"\u003e\u003ccode\u003e@​tommyhgunz14\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7413\"\u003e#7413\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/abhu85\"\u003e\u003ccode\u003e@​abhu85\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10829\"\u003e#10829\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/divyanshuraj1095\"\u003e\u003ccode\u003e@​divyanshuraj1095\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10853\"\u003e#10853\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/sagodi97\"\u003e\u003ccode\u003e@​sagodi97\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10856\"\u003e#10856\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/rkdfx\"\u003e\u003ccode\u003e@​rkdfx\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10868\"\u003e#10868\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/Liuwei1125\"\u003e\u003ccode\u003e@​Liuwei1125\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10866\"\u003e#10866\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/axios/axios/compare/v1.16.0...v1.16.1\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.16.0 — May 2, 2026\u003c/h2\u003e\n\u003cp\u003eThis release adds support for the QUERY HTTP method and a new \u003ccode\u003eECONNREFUSED\u003c/code\u003e error constant, lands a substantial wave of HTTP, fetch, and XHR adapter bug fixes around redirects, aborts, headers, and timeouts, and welcomes 23 new contributors.\u003c/p\u003e\n\u003ch2\u003e⚠️ Notable Changes\u003c/h2\u003e\n\u003cp\u003eA handful of fixes in this release are either security-adjacent or change observable behaviour. Please review before upgrading:\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/1337d6b537afb2d3f501074c8ac4ef4308221197\"\u003e\u003ccode\u003e1337d6b\u003c/code\u003e\u003c/a\u003e chore(release): prepare release 1.16.1 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10877\"\u003e#10877\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/858a790cec06054547d0d3f941916d6fb2a4d18e\"\u003e\u003ccode\u003e858a790\u003c/code\u003e\u003c/a\u003e fix: remove all caches (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10882\"\u003e#10882\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/34adfd90efc9c145488399e1cf7fa96de67080fa\"\u003e\u003ccode\u003e34adfd9\u003c/code\u003e\u003c/a\u003e revert: \u0026quot;fix: support URL object as config.url input (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10866\"\u003e#10866\u003c/a\u003e)\u0026quot; (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10874\"\u003e#10874\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/847d89b43654405d9a231e0b669832c2092b621f\"\u003e\u003ccode\u003e847d89b\u003c/code\u003e\u003c/a\u003e fix: support URL object as config.url input (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10866\"\u003e#10866\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/40948863677bb793bfff0293cce7e7b4f8a1b212\"\u003e\u003ccode\u003e4094886\u003c/code\u003e\u003c/a\u003e fix(progress): guard malformed XHR upload events (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10868\"\u003e#10868\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/44f0c5bf73c45df6009365141faa394d73596bd7\"\u003e\u003ccode\u003e44f0c5b\u003c/code\u003e\u003c/a\u003e chore: change sponsorship link and add Twicsy advertisement (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10869\"\u003e#10869\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/64e1095efedc64c9fecf5176bd9cf2e5e93140d6\"\u003e\u003ccode\u003e64e1095\u003c/code\u003e\u003c/a\u003e chore: update PR and issue template to use h2 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10865\"\u003e#10865\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/3e6b4e1f311b43aa1dc77d78150a601d9fe4b280\"\u003e\u003ccode\u003e3e6b4e1\u003c/code\u003e\u003c/a\u003e fix: error unexpected token in fetch JS compatibility issue with Webpack 4 (#...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/c4453bab70f53575175903aee60810c821f72129\"\u003e\u003ccode\u003ec4453ba\u003c/code\u003e\u003c/a\u003e fix: add the ability to add additional sponsors to the process sponsors scrip...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/caa00a90b524bb67ed033474abcf4d8645ced793\"\u003e\u003ccode\u003ecaa00a9\u003c/code\u003e\u003c/a\u003e fix: https data in cleartext to proxy (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10858\"\u003e#10858\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/axios/axios/compare/v0.18.1...v1.16.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for axios since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `shelljs` from 0.7.8 to 0.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/shelljs/shelljs/releases\"\u003eshelljs's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.10.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: update deps by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1201\"\u003eshelljs/shelljs#1201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: rename master -\u0026gt; main by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1203\"\u003eshelljs/shelljs#1203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: avoid dependency cycle by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1204\"\u003eshelljs/shelljs#1204\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnforce single quotes by \u003ca href=\"https://github.com/abluescarab\"\u003e\u003ccode\u003e@​abluescarab\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1207\"\u003eshelljs/shelljs#1207\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update deps by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1209\"\u003eshelljs/shelljs#1209\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: use require instead of import by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1212\"\u003eshelljs/shelljs#1212\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: use promises for utils.runScript by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1211\"\u003eshelljs/shelljs#1211\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: use expectations for t.throws by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1213\"\u003eshelljs/shelljs#1213\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: prefer promises over test.cb by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1214\"\u003eshelljs/shelljs#1214\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: allow es6 language features by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1215\"\u003eshelljs/shelljs#1215\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: use es6 class syntax for CommandError by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1217\"\u003eshelljs/shelljs#1217\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update ava by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1218\"\u003eshelljs/shelljs#1218\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: cmd is compatible with node 22.10 by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1219\"\u003eshelljs/shelljs#1219\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: explicit handling for execa errors by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1220\"\u003eshelljs/shelljs#1220\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd -B, -A, and -C options to grep by \u003ca href=\"https://github.com/abluescarab\"\u003e\u003ccode\u003e@​abluescarab\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1206\"\u003eshelljs/shelljs#1206\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: change how internal errors are handled by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1222\"\u003eshelljs/shelljs#1222\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate the shjs binary by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1225\"\u003eshelljs/shelljs#1225\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebump execa dependency version by \u003ca href=\"https://github.com/y-nk\"\u003e\u003ccode\u003e@​y-nk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1216\"\u003eshelljs/shelljs#1216\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/abluescarab\"\u003e\u003ccode\u003e@​abluescarab\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1207\"\u003eshelljs/shelljs#1207\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/y-nk\"\u003e\u003ccode\u003e@​y-nk\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1216\"\u003eshelljs/shelljs#1216\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/shelljs/shelljs/compare/v0.9.2...v0.10.0\"\u003ehttps://github.com/shelljs/shelljs/compare/v0.9.2...v0.10.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.9.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003etest: add tests for shelljs glob expansion by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1198\"\u003eshelljs/shelljs#1198\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: remove unused env var by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1199\"\u003eshelljs/shelljs#1199\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: add package.json to exports list by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1200\"\u003eshelljs/shelljs#1200\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/shelljs/shelljs/compare/v0.9.1...v0.9.2\"\u003ehttps://github.com/shelljs/shelljs/compare/v0.9.1...v0.9.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.9.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: add global.js and plugin.js to exports list by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1196\"\u003eshelljs/shelljs#1196\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/shelljs/shelljs/compare/v0.9.0...v0.9.1\"\u003ehttps://github.com/shelljs/shelljs/compare/v0.9.0...v0.9.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: Exit 1 with empty string if no match by \u003ca href=\"https://github.com/wyardley\"\u003e\u003ccode\u003e@​wyardley\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/901\"\u003eshelljs/shelljs#901\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(cp): support update flag when recursing by \u003ca href=\"https://github.com/joshi-sh\"\u003e\u003ccode\u003e@​joshi-sh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/889\"\u003eshelljs/shelljs#889\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: change language to node_js and remove obsolete scripts by \u003ca href=\"https://github.com/DanielRuf\"\u003e\u003ccode\u003e@​DanielRuf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/910\"\u003eshelljs/shelljs#910\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: remove gitter integration by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/907\"\u003eshelljs/shelljs#907\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(npm): remove lockfile by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/911\"\u003eshelljs/shelljs#911\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/shelljs/shelljs/blob/main/CHANGELOG.md\"\u003eshelljs's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChange Log\u003c/h1\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/shelljs/shelljs/tree/v0.8.5\"\u003ev0.8.5\u003c/a\u003e (2022-01-13)\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/shelljs/shelljs/compare/v0.8.4...v0.8.5\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eThis was a small security fix for \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/1058\"\u003e#1058\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/shelljs/shelljs/tree/v0.8.4\"\u003ev0.8.4\u003c/a\u003e (2020-04-24)\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/shelljs/shelljs/compare/v0.8.3...v0.8.4\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eSmall patch release to fix a circular dependency warning in node v14. See \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/973\"\u003e#973\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/shelljs/shelljs/tree/v0.8.3\"\u003ev0.8.3\u003c/a\u003e (2018-11-13)\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/shelljs/shelljs/compare/v0.8.2...v0.8.3\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eClosed issues:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eShelljs print stderr to console even if exec-only \u0026quot;silent\u0026quot; is true \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/905\"\u003e#905\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: remove common.state.tempDir \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/902\"\u003e#902\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCan't suppress stdout for echo \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/899\"\u003e#899\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eexec() doesn't apply the arguments correctly \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/895\"\u003e#895\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eshell.exec('npm pack') painfully slow \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/885\"\u003e#885\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eshelljs.exec cannot find app.asar/node_modules/shelljs/src/exec-child.js \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/881\"\u003e#881\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest infra: mocks and skipOnWin conflict \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/862\"\u003e#862\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport for shell function completion on IDE \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/859\"\u003e#859\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eecho command shows options in stdout \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/855\"\u003e#855\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esilent does not always work \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/851\"\u003e#851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAppveyor installs the latest npm, instead of the latest compatible npm \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/844\"\u003e#844\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eForce symbolic link (ln -sf) does not overwrite/recreate existing destination \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/830\"\u003e#830\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003einconsistent result when trying to echo to a file \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/798\"\u003e#798\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrevent require()ing executable-only files \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/789\"\u003e#789\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCannot set property to of [object String] which has only a getter \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/752\"\u003e#752\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ewhich() should check executability before returning a value \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/657\"\u003e#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBad encoding experience \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/456\"\u003e#456\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ephpcs very slow \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/440\"\u003e#440\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eError shown when triggering a sigint during shelljs.exec if process.on sigint is defined \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/254\"\u003e#254\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e.to\\(file\\)\u003c/code\u003e does not mute STDIO output \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/146\"\u003e#146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEscaping shell arguments to exec() \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/143\"\u003e#143\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAllow multiple string arguments for exec() \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/103\"\u003e#103\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecp does not recursively copy from readonly location  \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/98\"\u003e#98\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHandling permissions errors on file I/O \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/64\"\u003e#64\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eMerged pull requests:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd test case for sed on empty file \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/904\"\u003e#904\u003c/a\u003e (\u003ca href=\"https://github.com/wyardley\"\u003ewyardley\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor: don't expose tempdir in common.state \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/903\"\u003e#903\u003c/a\u003e (\u003ca href=\"https://github.com/nfischer\"\u003enfischer\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore(ci): fix codecov on travis \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/897\"\u003e#897\u003c/a\u003e (\u003ca href=\"https://github.com/nfischer\"\u003enfischer\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore(npm): add ci-or-install script \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/896\"\u003e#896\u003c/a\u003e (\u003ca href=\"https://github.com/nfischer\"\u003enfischer\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix silent exec \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/892\"\u003e#892\u003c/a\u003e (\u003ca href=\"https://github.com/nfischer\"\u003enfischer\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore(appveyor): run entire test matrix \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/886\"\u003e#886\u003c/a\u003e (\u003ca href=\"https://github.com/nfischer\"\u003enfischer\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shelljs/shelljs/commit/4580c00398982618ff075dd4354b0234a1d679dc\"\u003e\u003ccode\u003e4580c00\u003c/code\u003e\u003c/a\u003e 0.10.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shelljs/shelljs/commit/9a06336bc15ea36597054be5dacf6f8259ea6520\"\u003e\u003ccode\u003e9a06336\u003c/code\u003e\u003c/a\u003e Deprecate the shjs binary\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shelljs/shelljs/commit/3b03c85ef6442a1ebafca99db606c6c851215e9b\"\u003e\u003ccode\u003e3b03c85\u003c/code\u003e\u003c/a\u003e chore: remove accidental audit dep\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shelljs/shelljs/commit/33db5147e23f8d76e768eefc2f1d4a82da449ed3\"\u003e\u003ccode\u003e33db514\u003c/code\u003e\u003c/a\u003e Regenerate package-lock.json with npm 9.2.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shelljs/shelljs/commit/6577d5490f4737b1aa0a6c6db2c2ff0693531a90\"\u003e\u003ccode\u003e6577d54\u003c/code\u003e\u003c/a\u003e Merge branch 'y-nk-main'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shelljs/shelljs/commit/e48e9195438e10f06273734d3ab67d941eeaecc8\"\u003e\u003ccode\u003ee48e919\u003c/code\u003e\u003c/a\u003e bump execa (\u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/1216\"\u003e#1216\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shelljs/shelljs/commit/67a26e2ccc2c5ffa2610912621ad4de26c93c6cb\"\u003e\u003ccode\u003e67a26e2\u003c/code\u003e\u003c/a\u003e refactor: change how internal errors are handled\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shelljs/shelljs/commit/bfd06fa0967b441c5aecfcb992500b9ee240a267\"\u003e\u003ccode\u003ebfd06fa\u003c/code\u003e\u003c/a\u003e Add -B, -A, and -C options to grep (\u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/1206\"\u003e#1206\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shelljs/shelljs/commit/3149e09d5fb1c6af74ffc0128f0f7daf18d3c858\"\u003e\u003ccode\u003e3149e09\u003c/code\u003e\u003c/a\u003e refactor: explicit handling for execa errors\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shelljs/shelljs/commit/75d26de5b31f71bc8784e3d9329375e83c7b6d49\"\u003e\u003ccode\u003e75d26de\u003c/code\u003e\u003c/a\u003e fix: cmd is compatible with node 22.10\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/shelljs/shelljs/compare/v0.7.8...v0.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `node-fetch` from 1.7.3 to 3.3.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-fetch/node-fetch/releases\"\u003enode-fetch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.3.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.1...v3.3.2\"\u003e3.3.2\u003c/a\u003e (2023-07-25)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e8b3320d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1735\"\u003e#1735\u003c/a\u003e \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1473\"\u003e#1473\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.0...v3.3.1\"\u003e3.3.1\u003c/a\u003e (2023-03-11)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erelease \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e7b86e94\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.0\u003c/h2\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.10...v3.3.0\"\u003e3.3.0\u003c/a\u003e (2022-11-10)\u003c/h1\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd static Response.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1670\"\u003e#1670\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/55a4870ae5f805d8ff9a890ea2c652c9977e048e\"\u003e55a4870\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.10\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.9...v3.2.10\"\u003e3.2.10\u003c/a\u003e (2022-07-31)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDoS referrer (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1611\"\u003e#1611\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d\"\u003e2880238\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.9\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.8...v3.2.9\"\u003e3.2.9\u003c/a\u003e (2022-07-18)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHeaders:\u003c/strong\u003e don't forward secure headers on protocol change (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1599\"\u003e#1599\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7\"\u003ee87b093\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.8\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.7...v3.2.8\"\u003e3.2.8\u003c/a\u003e (2022-07-12)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003epossibly flaky test (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1523\"\u003e#1523\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/11b703361134340a8361f591d6e3a0bcf6a261fa\"\u003e11b7033\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e\u003ccode\u003e8b3320d\u003c/code\u003e\u003c/a\u003e fix: Remove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e\u003ccode\u003e7b86e94\u003c/code\u003e\u003c/a\u003e fix: release \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8ced5b941cf36d0d7e0c1017aa2a4abcb29ecd89\"\u003e\u003ccode\u003e8ced5b9\u003c/code\u003e\u003c/a\u003e docs: readme - non ESM example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1707\"\u003e#1707\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/71e376b0ca899a30bbda4d45f97ea87502956a62\"\u003e\u003ccode\u003e71e376b\u003c/code\u003e\u003c/a\u003e ci(release): use latest Node LTS (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1697\"\u003e#1697\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e093030b4a6625405a331ddf48bcfd82c079f43d\"\u003e\u003ccode\u003ee093030\u003c/code\u003e\u003c/a\u003e Allow URL class object as an argument for fetch() (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/55a4870ae5f805d8ff9a890ea2c652c9977e048e\"\u003e\u003ccode\u003e55a4870\u003c/code\u003e\u003c/a\u003e feat: add static Response.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1670\"\u003e#1670\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/c071406e193cce13959999982584ff27198e9e4a\"\u003e\u003ccode\u003ec071406\u003c/code\u003e\u003c/a\u003e (1138) - Fixed HTTPResponseError with correct constructor and usage (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1666\"\u003e#1666\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/6f72caa401a8ec574a22058431599ef47c222770\"\u003e\u003ccode\u003e6f72caa\u003c/code\u003e\u003c/a\u003e docs: fix missing comma in example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1623\"\u003e#1623\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d\"\u003e\u003ccode\u003e2880238\u003c/code\u003e\u003c/a\u003e fix: ReDoS referrer (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1611\"\u003e#1611\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7\"\u003e\u003ccode\u003ee87b093\u003c/code\u003e\u003c/a\u003e fix(Headers): don't forward secure headers on protocol change (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1599\"\u003e#1599\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/1.7.3...v3.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~node-fetch-bot\"\u003enode-fetch-bot\u003c/a\u003e, a new releaser for node-fetch since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `uuid` from 3.4.0 to 14.0.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/uuidjs/uuid/releases\"\u003euuid's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev14.0.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.0...v14.0.0\"\u003e14.0.0\u003c/a\u003e (2026-04-19)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eexpect \u003ccode\u003ecrypto\u003c/code\u003e to be global everywhere (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003edrop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/dc4ddb87272ed2843faccd130bcc41d492688bd3\"\u003edc4ddb8\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eexpect \u003ccode\u003ecrypto\u003c/code\u003e to be global everywhere (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/f2c235f93059325fa43e1106e624b5291bb523c4\"\u003ef2c235f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse GITHUB_TOKEN for release-please and enable npm provenance (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/925\"\u003e#925\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/ffa31383e8e4e1f0b4e22e504561272041b8738c\"\u003effa3138\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev13.0.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.1...v13.0.2\"\u003e13.0.2\u003c/a\u003e (2026-05-04)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ererelease to fix provenance. (\u003ca href=\"https://github.com/uuidjs/uuid/commit/49ccb35f78c0c4ce1409dd2f1d89f83caadba10b\"\u003e49ccb35\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev13.0.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.0...v13.0.1\"\u003e13.0.1\u003c/a\u003e (2026-04-27)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebackport fix for GHSA-w5hq-g745-h8pq (\u003ca href=\"https://github.com/uuidjs/uuid/commit/9d27ddf7046ce496ef39569ff84d948eeff9cb2a\"\u003e9d27ddf\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev13.0.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v12.0.0...v13.0.0\"\u003e13.0.0\u003c/a\u003e (2025-09-08)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/bce9d72a3ae5b9a3dcd8eb21ef6d1820288a427a\"\u003ebce9d72\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev12.0.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v12.0.0...v12.0.1\"\u003e12.0.1\u003c/a\u003e (2026-04-29)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/uuidjs/uuid/blob/main/CHANGELOG.md\"\u003euuid's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.0...v14.0.0\"\u003e14.0.0\u003c/a\u003e (2026-04-19)\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixes \u003ca href=\"https://github.com/uuidjs/uuid/security/advisories/GHSA-w5hq-g745-h8pq\"\u003eGHSA-w5hq-g745-h8pq\u003c/a\u003e: \u003ccode\u003ev3()\u003c/code\u003e, \u003ccode\u003ev5()\u003c/code\u003e, and \u003ccode\u003ev6()\u003c/code\u003e did not validate that writes would remain within the bounds of a caller-supplied buffer, allowing out-of-bounds writes when an invalid \u003ccode\u003eoffset\u003c/code\u003e was provided. A \u003ccode\u003eRangeError\u003c/code\u003e is now thrown if \u003ccode\u003eoffset \u0026lt; 0\u003c/code\u003e or \u003ccode\u003eoffset + 16 \u0026gt; buf.length\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ecrypto\u003c/code\u003e is now expected to be globally defined (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupgrade minimum supported TypeScript version to 5.4.3, in keeping with the project's policy of supporting TypeScript versions released within the last two years\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v12.0.0...v13.0.0\"\u003e13.0.0\u003c/a\u003e (2025-09-08)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/bce9d72a3ae5b9a3dcd8eb21ef6d1820288a427a\"\u003ebce9d72\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.1.0...v12.0.0\"\u003e12.0.0\u003c/a\u003e (2025-09-05)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdate to typescript@5.2 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/887\"\u003e#887\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove CommonJS support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/886\"\u003e#886\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@16 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/883\"\u003e#883\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd node@24 to ci matrix (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/879\"\u003e#879\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/42b6178aa21a593257f0a72abacd220f0b7b8a92\"\u003e42b6178\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@16 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/883\"\u003e#883\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/0f38cf10366ab074f9328ae2021eea04d5f2e530\"\u003e0f38cf1\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove CommonJS support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/886\"\u003e#886\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/ae786e27265f50bcf7cead196c29f1869297c42f\"\u003eae786e2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate to typescript@5.2 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/887\"\u003e#887\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/c7ee40598ed78584d81ab78dffded9fe5ff20b01\"\u003ec7ee405\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimprove v4() performance (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/894\"\u003e#894\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/5fd974c12718c8848035650b69b8948f12ace197\"\u003e5fd974c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erestore node: prefix (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/889\"\u003e#889\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/e1f42a354593093ba0479f0b4047dae82d28c507\"\u003ee1f42a3\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.0.5...v11.1.0\"\u003e11.1.0\u003c/a\u003e (2025-02-19)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/7c1ea087a8149b57380fc8bb7f68c3a215cb6e4b\"\u003e\u003ccode\u003e7c1ea08\u003c/code\u003e\u003c/a\u003e chore(main): release 14.0.0 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/926\"\u003e#926\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/3d2c5b0342f0fcb52a5ac681c3d47c13e7444b34\"\u003e\u003ccode\u003e3d2c5b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/f2c235f93059325fa43e1106e624b5291bb523c4\"\u003e\u003ccode\u003ef2c235f\u003c/code\u003e\u003c/a\u003e fix!: expect \u003ccode\u003ecrypto\u003c/code\u003e to be global everywhere (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/529ef0899f5dd503d2ee90d690585d63d78bc212\"\u003e\u003ccode\u003e529ef08\u003c/code\u003e\u003c/a\u003e chore: upgrade TypeScript and fixup types (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/927\"\u003e#927\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/086fd7976f11433edf9ac80be876b3ad243fe087\"\u003e\u003ccode\u003e086fd79\u003c/code\u003e\u003c/a\u003e chore: update dependencies (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/933\"\u003e#933\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/dc4ddb87272ed2843faccd130bcc41d492688bd3\"\u003e\u003ccode\u003edc4ddb8\u003c/code\u003e\u003c/a\u003e feat!: drop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/0f1f9c9c9cedbae5a1d363d5406c5dfbabe81404\"\u003e\u003ccode\u003e0f1f9c9\u003c/code\u003e\u003c/a\u003e chore: switch to Biome for parsing and linting (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/932\"\u003e#932\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/e2879e64bf125add903c1eff6e0860542c605013\"\u003e\u003ccode\u003ee2879e6\u003c/code\u003e\u003c/a\u003e chore: use maintained version of npm-run-all (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/930\"\u003e#930\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/ffa31383e8e4e1f0b4e22e504561272041b8738c\"\u003e\u003ccode\u003effa3138\u003c/code\u003e\u003c/a\u003e fix: Use GITHUB_TOKEN for release-please and enable npm provenance (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/925\"\u003e#925\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/0423d49df2dc8efc300c804731d25f4d7e0fccc4\"\u003e\u003ccode\u003e0423d49\u003c/code\u003e\u003c/a\u003e docs: remove obsolete v1 option notes (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/915\"\u003e#915\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/uuidjs/uuid/compare/v3.4.0...v14.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for uuid since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `node-sass` from 4.14.1 to 9.0.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sass/node-sass/releases\"\u003enode-sass's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev9.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNode 20 support by \u003ca href=\"https://github.com/nschonni\"\u003e\u003ccode\u003e@​nschonni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/sass/node-sass/pull/3355\"\u003esass/node-sass#3355\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBreaking changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for Node 14 (\u003ca href=\"https://github.com/nschonni\"\u003e\u003ccode\u003e@​nschonni\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eSupported Environments\u003c/h2\u003e\n\u003ctable\u003e\n\u003cthead\u003e\n\u003ctr\u003e\n\u003cth\u003eOS\u003c/th\u003e\n\u003cth\u003eArchitecture\u003c/th\u003e\n\u003cth\u003eNode\u003c/th\u003e\n\u003c/tr\u003e\n\u003c/thead\u003e\n\u003ctbody\u003e\n\u003ctr\u003e\n\u003ctd\u003eWindows\u003c/td\u003e\n\u003ctd\u003ex86 \u0026amp; x64\u003c/td\u003e\n\u003ctd\u003e16, 18, 19, 20\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003eOSX\u003c/td\u003e\n\u003ctd\u003ex64\u003c/td\u003e\n\u003ctd\u003e16, 18, 19, 20\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003eLinux*\u003c/td\u003e\n\u003ctd\u003ex64\u003c/td\u003e\n\u003ctd\u003e16, 18, 19, 20\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003eAlpine Linux\u003c/td\u003e\n\u003ctd\u003ex64\u003c/td\u003e\n\u003ctd\u003e16, 18, 19, 20\u003c/td\u003e\n\u003c/tr\u003e\n\u003c/tbody\u003e\n\u003c/table\u003e\n\u003cp\u003e*Linux support refers to major distributions like Ubuntu, and Debian\u003c/p\u003e\n\u003ch2\u003ev8.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix binaries being partially downloaded by \u003ca href=\"https://github.com/xzyfer\"\u003e\u003ccode\u003e@​xzyfer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/sass/node-sass/pull/3313\"\u003esass/node-sass#3313\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump node-gyp and nan for node 19 support by \u003ca href=\"https://github.com/xzyfer\"\u003e\u003ccode\u003e@​xzyfer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/sass/node-sass/pull/3314\"\u003esass/node-sass#3314\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: Node 18 and 19 support and drop Node 17 by \u003ca href=\"https://github.com/nschonni\"\u003e\u003ccode\u003e@​nschonni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/sass/node-sass/pull/3257\"\u003esass/node-sass#3257\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBreaking changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for Node 12 (\u003ca href=\"https://github.com/nschonni\"\u003e\u003ccode\u003e@​nschonni\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDrop support for Node 17 (\u003ca href=\"https://github.com/nschonni\"\u003e\u003ccode\u003e@​nschonni\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSet \u003ccode\u003erejectUnauthorized\u003c/code\u003e to \u003ccode\u003etrue\u003c/code\u003e by default (\u003ca href=\"https://github.com/scott-ut\"\u003e\u003ccode\u003e@​scott-ut\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/sass/node-sass/issues/3149\"\u003e#3149\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for Node 18 (\u003ca href=\"https://github.com/nschonni\"\u003e\u003ccode\u003e@​nschonni\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for Node 19 (\u003ca href=\"https://github.com/nschonni\"\u003e\u003ccode\u003e@​nschonni\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReplace \u003ccode\u003erequest\u003c/code\u003e with \u003ccode\u003emake-fetch-happen\u003c/code\u003e (\u003ca href=\"https://github.com/CamilleDrapier\"\u003e\u003ccode\u003e@​CamilleDrapier\u003c/code\u003e\u003c/a\u003e  \u003ca href=\"https://github.com/xzyfer\"\u003e\u003ccode\u003e@​xzyfer\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/sass/node-sass/issues/3193\"\u003e#3193\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/sass/node-sass/issues/3313\"\u003e#3313\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump true-case-path@2.2.1\u003c/li\u003e\n\u003cli\u003eBump node-gyp \u003ca href=\"https://github.com/9\"\u003e\u003ccode\u003e@​9\u003c/code\u003e\u003c/a\u003e.0.0\u003c/li\u003e\n\u003cli\u003eBump nan@^2.17.0\u003c/li\u003e\n\u003cli\u003eBump sass-graph@^4.0.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eMisc\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump various GitHub Actions dependencies (\u003ca href=\"https://github.com/nschonni\"\u003e\u003ccode\u003e@​nschonni\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/node-sass/commit/87f38998da059d13a87a7fc9f3d29d5728128e2c\"\u003e\u003ccode\u003e87f3899\u003c/code\u003e\u003c/a\u003e feat: Node 20 support (\u003ca href=\"https://redirect.github.com/sass/node-sass/issues/3355\"\u003e#3355\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/node-sass/commit/06ae4c70f792287c28bb765811014c7c56012d72\"\u003e\u003ccode\u003e06ae4c7\u003c/code\u003e\u003c/a\u003e build(deps): bump coverallsapp/github-action from 2.0.0 to 2.1.0 (\u003ca href=\"https://redirect.github.com/sass/node-sass/issues/3350\"\u003e#3350\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/node-sass/commit/e069f7356b76b286a51d0c4a48f93fb14bd0bdfc\"\u003e\u003ccode\u003ee069f73\u003c/code\u003e\u003c/a\u003e build(deps): bump coverallsapp/github-action from 1.2.0 to 2.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/node-sass/commit/c34837d7bfab1ef86a8d9989e83602895373a0a0\"\u003e\u003ccode\u003ec34837d\u003c/code\u003e\u003c/a\u003e build(deps): bump coverallsapp/github-action from 1.1.3 to 1.2.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/node-sass/commit/ee13eb9c62449d1e535189a063cbdd15583ebf32\"\u003e\u003ccode\u003eee13eb9\u003c/code\u003e\u003c/a\u003e 8.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/node-sass/commit/98e75b39e22ba2fdf7726eefa23ba5f7247540c4\"\u003e\u003ccode\u003e98e75b3\u003c/code\u003e\u003c/a\u003e feat: Node 18 and 19 support and drop Node 17 (\u003ca href=\"https://redirect.github.com/sass/node-sass/issues/3257\"\u003e#3257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/node-sass/commit/e9bb866b0cfec9f9f98c370be325289d25be5c62\"\u003e\u003ccode\u003ee9bb866\u003c/code\u003e\u003c/a\u003e Bump node-gyp and nan for node 19 support (\u003ca href=\"https://redirect.github.com/sass/node-sass/issues/3314\"\u003e#3314\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/node-sass/commit/ab7840b335d58f59731315354f2ea18d6bdf8fd6\"\u003e\u003ccode\u003eab7840b\u003c/code\u003e\u003c/a\u003e Fix binaries being partially downloaded (\u003ca href=\"https://redirect.github.com/sass/node-sass/issues/3313\"\u003e#3313\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/node-sass/commit/d595abf2ed3e8013509c04b1205005e95d3fcc2e\"\u003e\u003ccode\u003ed595abf\u003c/code\u003e\u003c/a\u003e 7.0.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/node-sass/commit/3b556c1c9a79e87fd54fdaa9a1a18741a7616025\"\u003e\u003ccode\u003e3b556c1\u003c/code\u003e\u003c/a\u003e 7.0.2\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sass/node-sass/compare/v4.14.1...v9.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `webpack-bundle-analyzer` from 2.13.1 to 5.3.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/webpack/webpack-bundle-analyzer/releases\"\u003ewebpack-bundle-analyzer's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.3.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eUse new ECMA features in code. (by \u003ca href=\"https://github.com/alexander-akait\"\u003e\u003ccode\u003e@​alexander-akait\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/713\"\u003e#713\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded \u003ccode\u003epropTypes\u003c/code\u003e to client components. (by \u003ca href=\"https://github.com/alexander-akait\"\u003e\u003ccode\u003e@​alexander-akait\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/713\"\u003e#713\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix a race condition in \u003ccode\u003ewriteStats\u003c/code\u003e that could lead to incorrect content in \u003ccode\u003estats.json\u003c/code\u003e. (by \u003ca href=\"https://github.com/alexander-akait\"\u003e\u003ccode\u003e@​alexander-akait\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/713\"\u003e#713\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eApply \u003ccode\u003eprettier\u003c/code\u003e and update dependencies. (by \u003ca href=\"https://github.com/alexander-akait\"\u003e\u003ccode\u003e@​alexander-akait\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/713\"\u003e#713\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/webpack/webpack-bundle-analyzer/blob/main/CHANGELOG.md\"\u003ewebpack-bundle-analyzer's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.3.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eUse new ECMA features in code. (by \u003ca href=\"https://github.com/alexander-akait\"\u003e\u003ccode\u003e@​alexander-akait\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/713\"\u003e#713\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded \u003ccode\u003epropTypes\u003c/code\u003e to client components. (by \u003ca href=\"https://github.com/alexander-akait\"\u003e\u003ccode\u003e@​alexander-akait\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/713\"\u003e#713\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix a race condition in \u003ccode\u003ewriteStats\u003c/code\u003e that could lead to incorrect content in \u003ccode\u003estats.json\u003c/code\u003e. (by \u003ca href=\"https://github.com/alexander-akait\"\u003e\u003ccode\u003e@​alexander-akait\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/713\"\u003e#713\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eApply \u003ccode\u003eprettier\u003c/code\u003e and update dependencies. (by \u003ca href=\"https://github.com/alexander-akait\"\u003e\u003ccode\u003e@​alexander-akait\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/713\"\u003e#713\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.2.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eNew Feature\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for Zstandard compression (\u003ca href=\"https://redirect.github.com/webpack-contrib/webpack-bundle-analyzer/pull/693\"\u003e#693\u003c/a\u003e by \u003ca href=\"https://github.com/bjohansebas\"\u003e\u003ccode\u003e@​bjohansebas\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eInternal\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ePrettier applied to the code base (\u003ca href=\"https://redirect.github.com/webpack-contrib/webpack-bundle-analyzer/pull/694\"\u003e#693\u003c/a\u003e by \u003ca href=\"https://github.com/alexander-akait\"\u003e\u003ccode\u003e@​alexander-akait\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdate \u003ccode\u003esirv\u003c/code\u003e dependency (\u003ca href=\"https://redirect.github.com/webpack-contrib/webpack-bundle-analyzer/pull/692\"\u003e#692\u003c/a\u003e by \u003ca href=\"https://github.com/bjohansebas\"\u003e\u003ccode\u003e@​bjohansebas\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdate \u003ccode\u003ews\u003c/code\u003e dependency (\u003ca href=\"https://redirect.github.com/webpack-contrib/webpack-bundle-analyzer/pull/691\"\u003e#691\u003c/a\u003e by \u003ca href=\"https://github.com/bjohansebas\"\u003e\u003ccode\u003e@​bjohansebas\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.1.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBug Fix\u003c/strong\u003e\n\u003cul\u003e\n\u003cli\u003eFix tooltip styling in dark mode when using CSS Modules (\u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/688\"\u003e#688\u003c/a\u003e by \u003ca href=\"https://github.com/theEquinoxDev\"\u003e\u003ccode\u003e@​theEquinoxDev\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAvoid parse failures for bundles with IIFE (\u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/685\"\u003e#685\u003c/a\u003e by \u003ca href=\"https://github.com/hai-x\"\u003e\u003ccode\u003e@​hai-x\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.1.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eBug Fix\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ePrevent \u003ccode\u003eTypeError\u003c/code\u003e when \u003ccode\u003eassets\u003c/code\u003e or \u003ccode\u003emodules\u003c/code\u003e are undefined in \u003ccode\u003eanalyzer.js\u003c/code\u003e\n(\u003ca href=\"https://redirect.github.com/webpack-contrib/webpack-bundle-analyzer/pull/679\"\u003e#679\u003c/a\u003e by \u003ca href=\"https://github.com/Srushti-33\"\u003e\u003ccode\u003e@​Srushti-33\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eNew Feature\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd optional dark/light mode toggle (\u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/683\"\u003e#683\u003c/a\u003e by \u003ca href=\"https://github.com/theEquinoxDev\"\u003e\u003ccode\u003e@​theEquinoxDev\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBug Fix\u003c/strong\u003e\n\u003cul\u003e\n\u003cli\u003eRestore \u003ccode\u003e@babel/plugin-transform-class-properties\u003c/code\u003e to fix HTML report (\u003ca href=\"https://redirect.github.com/webpack-contrib/webpack-bundle-analyzer/pull/682\"\u003e#682\u003c/a\u003e by \u003ca href=\"https://github.com/valscion\"\u003e\u003ccode\u003e@​valscion\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eBreaking Change\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRemove explicit support for Node versions below 20.9.0 (\u003ca href=\"https://redirect.github.com/webpack-contrib/webpack-bundle-analyzer/pull/676\"\u003e#676\u003c/a\u003e by \u003ca href=\"https://github.com/valscion\"\u003e\u003ccode\u003e@​valscion\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eImprovement\u003c/strong\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/webpack/webpack-bundle-analyzer/commit/9ba43c79a0113d3fd35dbcc55a637ffebaad7581\"\u003e\u003ccode\u003e9ba43c7\u003c/code\u003e\u003c/a\u003e chore(release): new release (\u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/issues/714\"\u003e#714\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/webpack/webpack-bundle-analyzer/commit/8a91940b09aee67718c26cb57e4f0f10d37ba243\"\u003e\u003ccode\u003e8a91940\u003c/code\u003e\u003c/a\u003e ci: trusted publishers (\u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/issues/713\"\u003e#713\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/webpack/webpack-bundle-analyzer/commit/b3f44b0de81eb7109f1691a1258fa781f0b0e193\"\u003e\u003ccode\u003eb3f44b0\u003c/code\u003e\u003c/a\u003e fix: race condition in \u003ccode\u003ewriteStats\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/issues/711\"\u003e#711\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/webpack/webpack-bundle-analyzer/commit/3710653b4e928cfa52fe510f29b9fe0cd2cd6812\"\u003e\u003ccode\u003e3710653\u003c/code\u003e\u003c/a\u003e refactor: adding typescript jsdocs types (\u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/issues/710\"\u003e#710\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/webpack/webpack-bundle-analyzer/commit/77599a400605587eb4c27d946a1830060cad7c96\"\u003e\u003ccode\u003e77599a4\u003c/code\u003e\u003c/a\u003e refactor: improve prop types and fix mobx (\u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/issues/709\"\u003e#709\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/webpack/webpack-bundle-analyzer/commit/26b83f6d9ead2670ee8282160e9caf80fc4b8feb\"\u003e\u003ccode\u003e26b83f6\u003c/code\u003e\u003c/a\u003e test: refactor infra (\u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/issues/708\"\u003e#708\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/webpack/webpack-bundle-analyzer/commit/2588e54b3313d61e15589ae04ac87894137a2730\"\u003e\u003ccode\u003e2588e54\u003c/code\u003e\u003c/a\u003e ci: add codecov and fix test (\u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/issues/705\"\u003e#705\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/webpack/webpack-bundle-analyzer/commit/be761ef6da0f3aa937e0cfff7178670d4bea3c7c\"\u003e\u003ccode\u003ebe761ef\u003c/code\u003e\u003c/a\u003e update eslint and apply \u003ccode\u003eeslint-config-webpack\u003c/code\u003e  (\u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/issues/701\"\u003e#701\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/webpack/webpack-bundle-analyzer/commit/1c23a2a5781471f725ec08598785c89e1f003927\"\u003e\u003ccode\u003e1c23a2a\u003c/code\u003e\u003c/a\u003e refactor: more ES6 code and code improvements (\u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/issues/700\"\u003e#700\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/webpack/webpack-bundle-analyzer/commit/4af64e39bf3a756910eeab777c6d93bb7e491672\"\u003e\u003ccode\u003e4af64e3\u003c/code\u003e\u003c/a\u003e chore: improve package.json (\u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/issues/695\"\u003e#695\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/webpack/webpack-bundle-analyzer/compare/v2.13.1...v5.3.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for webpack-bundle-analyzer since your current version....\n\n_Description has been truncated_","html_url":"https://github.com/sumonst21/strapi/pull/9","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/sumonst21%2Fstrapi/issues/9","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/9/packages"},{"uuid":"4490304592","node_id":"PR_kwDORy1ZM87duEds","number":8,"state":"closed","title":"chore(deps): Bump the npm-production group across 1 directory with 22 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-20T22:35:35.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-20T22:23:01.000Z","updated_at":"2026-05-20T22:35:37.000Z","time_to_close":754,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): Bump","group_name":"npm-production","update_count":22,"packages":[{"name":"@tanstack/react-virtual","old_version":"3.13.23","new_version":"3.13.25","repository_url":"https://github.com/TanStack/virtual"},{"name":"@typescript-eslint/eslint-plugin","old_version":"6.21.0","new_version":"8.59.4","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"@typescript-eslint/parser","old_version":"6.21.0","new_version":"8.59.4","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"@vscode/ripgrep","old_version":"1.17.1","new_version":"1.18.0","repository_url":"https://github.com/microsoft/vscode-ripgrep"},{"name":"axios","old_version":"1.13.2","new_version":"1.16.1","repository_url":"https://github.com/axios/axios"},{"name":"chalk","old_version":"4.1.2","new_version":"5.6.2","repository_url":"https://github.com/chalk/chalk"},{"name":"commander","old_version":"12.1.0","new_version":"14.0.3","repository_url":"https://github.com/tj/commander.js"},{"name":"diff","old_version":"5.2.0","new_version":"9.0.0","repository_url":"https://github.com/kpdecker/jsdiff"},{"name":"electron-log","old_version":"5.4.3","new_version":"5.4.4","repository_url":"https://github.com/megahertz/electron-log"},{"name":"electron-updater","old_version":"6.6.2","new_version":"6.8.3","repository_url":"https://github.com/electron-userland/electron-builder"},{"name":"eslint","old_version":"8.57.1","new_version":"10.4.0","repository_url":"https://github.com/eslint/eslint"},{"name":"lucide-react","old_version":"0.468.0","new_version":"1.16.0","repository_url":"https://github.com/lucide-icons/lucide"},{"name":"mammoth","old_version":"1.11.0","new_version":"1.12.0","repository_url":"https://github.com/mwilliamson/mammoth.js"},{"name":"node-fetch","old_version":"2.7.0","new_version":"3.3.2","repository_url":"https://github.com/node-fetch/node-fetch"},{"name":"playwright","old_version":"1.58.2","new_version":"1.60.0","repository_url":"https://github.com/microsoft/playwright"},{"name":"react","old_version":"18.3.1","new_version":"19.2.6","repository_url":"https://github.com/facebook/react"},{"name":"react-dom","old_version":"18.3.1","new_version":"19.2.6","repository_url":"https://github.com/facebook/react"},{"name":"react-virtuoso","old_version":"4.18.3","new_version":"4.18.7","repository_url":"https://github.com/petyosi/react-virtuoso"},{"name":"tinyglobby","old_version":"0.2.15","new_version":"0.2.16","repository_url":"https://github.com/SuperchupuDev/tinyglobby"},{"name":"ws","old_version":"8.19.0","new_version":"8.20.1","repository_url":"https://github.com/websockets/ws"},{"name":"yaml","old_version":"2.8.4","new_version":"2.9.0","repository_url":"https://github.com/eemeli/yaml"},{"name":"zod","old_version":"3.25.76","new_version":"4.4.3","repository_url":"https://github.com/colinhacks/zod"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm-production group with 22 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [@tanstack/react-virtual](https://github.com/TanStack/virtual/tree/HEAD/packages/react-virtual) | `3.13.23` | `3.13.25` |\n| [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) | `6.21.0` | `8.59.4` |\n| [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser) | `6.21.0` | `8.59.4` |\n| [@vscode/ripgrep](https://github.com/microsoft/vscode-ripgrep) | `1.17.1` | `1.18.0` |\n| [axios](https://github.com/axios/axios) | `1.13.2` | `1.16.1` |\n| [chalk](https://github.com/chalk/chalk) | `4.1.2` | `5.6.2` |\n| [commander](https://github.com/tj/commander.js) | `12.1.0` | `14.0.3` |\n| [diff](https://github.com/kpdecker/jsdiff) | `5.2.0` | `9.0.0` |\n| [electron-log](https://github.com/megahertz/electron-log) | `5.4.3` | `5.4.4` |\n| [electron-updater](https://github.com/electron-userland/electron-builder/tree/HEAD/packages/electron-updater) | `6.6.2` | `6.8.3` |\n| [eslint](https://github.com/eslint/eslint) | `8.57.1` | `10.4.0` |\n| [lucide-react](https://github.com/lucide-icons/lucide/tree/HEAD/packages/lucide-react) | `0.468.0` | `1.16.0` |\n| [mammoth](https://github.com/mwilliamson/mammoth.js) | `1.11.0` | `1.12.0` |\n| [node-fetch](https://github.com/node-fetch/node-fetch) | `2.7.0` | `3.3.2` |\n| [playwright](https://github.com/microsoft/playwright) | `1.58.2` | `1.60.0` |\n| [react](https://github.com/facebook/react/tree/HEAD/packages/react) | `18.3.1` | `19.2.6` |\n| [react-dom](https://github.com/facebook/react/tree/HEAD/packages/react-dom) | `18.3.1` | `19.2.6` |\n| [react-virtuoso](https://github.com/petyosi/react-virtuoso/tree/HEAD/packages/react-virtuoso) | `4.18.3` | `4.18.7` |\n| [tinyglobby](https://github.com/SuperchupuDev/tinyglobby) | `0.2.15` | `0.2.16` |\n| [ws](https://github.com/websockets/ws) | `8.19.0` | `8.20.1` |\n| [yaml](https://github.com/eemeli/yaml) | `2.8.4` | `2.9.0` |\n| [zod](https://github.com/colinhacks/zod) | `3.25.76` | `4.4.3` |\n\n\nUpdates `@tanstack/react-virtual` from 3.13.23 to 3.13.25\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/TanStack/virtual/releases\"\u003e@​tanstack/react-virtual's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-virtual\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.25\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReplace the \u003ccode\u003euseReducer(() =\u0026gt; ({}), {})\u003c/code\u003e force-rerender pattern with an (\u003ca href=\"https://redirect.github.com/TanStack/virtual/pull/1168\"\u003e#1168\u003c/a\u003e)\nincrementing number counter. Same semantics (every dispatch changes the\nreducer state, forcing a render); zero per-dispatch object allocation.\nTrivial individual cost, but eliminates one steady-state GC source on\nscroll-heavy apps.\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/virtual/commit/99355ad1eceee6270efaa26e51f535d8d7c31ac2\"\u003e\u003ccode\u003e99355ad\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/TanStack/virtual/commit/99355ad1eceee6270efaa26e51f535d8d7c31ac2\"\u003e\u003ccode\u003e99355ad\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/TanStack/virtual/commit/99355ad1eceee6270efaa26e51f535d8d7c31ac2\"\u003e\u003ccode\u003e99355ad\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/TanStack/virtual/commit/99355ad1eceee6270efaa26e51f535d8d7c31ac2\"\u003e\u003ccode\u003e99355ad\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/TanStack/virtual/commit/99355ad1eceee6270efaa26e51f535d8d7c31ac2\"\u003e\u003ccode\u003e99355ad\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/TanStack/virtual/commit/99355ad1eceee6270efaa26e51f535d8d7c31ac2\"\u003e\u003ccode\u003e99355ad\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/TanStack/virtual/commit/99355ad1eceee6270efaa26e51f535d8d7c31ac2\"\u003e\u003ccode\u003e99355ad\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/virtual-core\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.15.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-virtual\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.24\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/virtual/commit/97a204dc5526669114458685552b7569b60d2940\"\u003e\u003ccode\u003e97a204d\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/virtual-core\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.14.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/TanStack/virtual/blob/main/packages/react-virtual/CHANGELOG.md\"\u003e@​tanstack/react-virtual's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.13.25\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReplace the \u003ccode\u003euseReducer(() =\u0026gt; ({}), {})\u003c/code\u003e force-rerender pattern with an (\u003ca href=\"https://redirect.github.com/TanStack/virtual/pull/1168\"\u003e#1168\u003c/a\u003e)\nincrementing number counter. Same semantics (every dispatch changes the\nreducer state, forcing a render); zero per-dispatch object allocation.\nTrivial individual cost, but eliminates one steady-state GC source on\nscroll-heavy apps.\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/virtual/commit/99355ad1eceee6270efaa26e51f535d8d7c31ac2\"\u003e\u003ccode\u003e99355ad\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/TanStack/virtual/commit/99355ad1eceee6270efaa26e51f535d8d7c31ac2\"\u003e\u003ccode\u003e99355ad\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/TanStack/virtual/commit/99355ad1eceee6270efaa26e51f535d8d7c31ac2\"\u003e\u003ccode\u003e99355ad\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/TanStack/virtual/commit/99355ad1eceee6270efaa26e51f535d8d7c31ac2\"\u003e\u003ccode\u003e99355ad\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/TanStack/virtual/commit/99355ad1eceee6270efaa26e51f535d8d7c31ac2\"\u003e\u003ccode\u003e99355ad\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/TanStack/virtual/commit/99355ad1eceee6270efaa26e51f535d8d7c31ac2\"\u003e\u003ccode\u003e99355ad\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/TanStack/virtual/commit/99355ad1eceee6270efaa26e51f535d8d7c31ac2\"\u003e\u003ccode\u003e99355ad\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/virtual-core\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.15.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.13.24\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/virtual/commit/97a204dc5526669114458685552b7569b60d2940\"\u003e\u003ccode\u003e97a204d\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/virtual-core\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.14.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/virtual/commit/949180be8adf66ea8428b326db72ebad42d5b4c3\"\u003e\u003ccode\u003e949180b\u003c/code\u003e\u003c/a\u003e ci: Version Packages (\u003ca href=\"https://github.com/TanStack/virtual/tree/HEAD/packages/react-virtual/issues/1169\"\u003e#1169\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/virtual/commit/99355ad1eceee6270efaa26e51f535d8d7c31ac2\"\u003e\u003ccode\u003e99355ad\u003c/code\u003e\u003c/a\u003e perf: virtual-core rewrite for mount/measure-storm, plus iOS Safari handling ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/virtual/commit/3374977c623cd95eb4cdb44ad44eb94677d65c1e\"\u003e\u003ccode\u003e3374977\u003c/code\u003e\u003c/a\u003e chore(angular-virtual)!: upgrade Angular to v19 (\u003ca href=\"https://github.com/TanStack/virtual/tree/HEAD/packages/react-virtual/issues/1158\"\u003e#1158\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/virtual/commit/c3d4cd4f63d9c314ac6ec0ee7885a93a14ae52f9\"\u003e\u003ccode\u003ec3d4cd4\u003c/code\u003e\u003c/a\u003e ci: Version Packages (\u003ca href=\"https://github.com/TanStack/virtual/tree/HEAD/packages/react-virtual/issues/1157\"\u003e#1157\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/TanStack/virtual/commits/@tanstack/react-virtual@3.13.25/packages/react-virtual\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@typescript-eslint/eslint-plugin` from 6.21.0 to 8.59.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases\"\u003e@​typescript-eslint/eslint-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.59.4\u003c/h2\u003e\n\u003ch2\u003e8.59.4 (2026-05-18)\u003c/h2\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eeslint-plugin:\u003c/strong\u003e [no-floating-promises] stack overflow when using recursive types (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12294\"\u003e#12294\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eproject-service:\u003c/strong\u003e throw error cause in \u003ccode\u003egetParsedConfigFileFromTSServer\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12321\"\u003e#12321\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypescript-eslint:\u003c/strong\u003e export Compatible* types from typescript-eslint to resolve pnpm TS error (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12340\"\u003e#12340\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Thank You\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEvyatar Daud \u003ca href=\"https://github.com/StyleShit\"\u003e\u003ccode\u003e@​StyleShit\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKirk Waiblinger \u003ca href=\"https://github.com/kirkwaiblinger\"\u003e\u003ccode\u003e@​kirkwaiblinger\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003elumir\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.59.4\"\u003eGitHub Releases\u003c/a\u003e for more information.\u003c/p\u003e\n\u003cp\u003eYou can read about our \u003ca href=\"https://typescript-eslint.io/users/versioning\"\u003eversioning strategy\u003c/a\u003e and \u003ca href=\"https://typescript-eslint.io/users/releases\"\u003ereleases\u003c/a\u003e on our website.\u003c/p\u003e\n\u003ch2\u003ev8.59.3\u003c/h2\u003e\n\u003ch2\u003e8.59.3 (2026-05-11)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only, there were no code changes.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.59.3\"\u003eGitHub Releases\u003c/a\u003e for more information.\u003c/p\u003e\n\u003cp\u003eYou can read about our \u003ca href=\"https://typescript-eslint.io/users/versioning\"\u003eversioning strategy\u003c/a\u003e and \u003ca href=\"https://typescript-eslint.io/users/releases\"\u003ereleases\u003c/a\u003e on our website.\u003c/p\u003e\n\u003ch2\u003ev8.59.2\u003c/h2\u003e\n\u003ch2\u003e8.59.2 (2026-05-04)\u003c/h2\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eeslint-plugin:\u003c/strong\u003e [no-unsafe-type-assertion] handle crash on recursive template literal types (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12150\"\u003e#12150\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eeslint-plugin:\u003c/strong\u003e [no-deprecated] object destructuring values should be treated as declarations (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12292\"\u003e#12292\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003erule-tester:\u003c/strong\u003e add TypeScript as a peer dependency (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12288\"\u003e#12288\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Thank You\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDariusz Czajkowski\u003c/li\u003e\n\u003cli\u003eDima Barabash\u003c/li\u003e\n\u003cli\u003eKirk Waiblinger \u003ca href=\"https://github.com/kirkwaiblinger\"\u003e\u003ccode\u003e@​kirkwaiblinger\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.59.2\"\u003eGitHub Releases\u003c/a\u003e for more information.\u003c/p\u003e\n\u003cp\u003eYou can read about our \u003ca href=\"https://typescript-eslint.io/users/versioning\"\u003eversioning strategy\u003c/a\u003e and \u003ca href=\"https://typescript-eslint.io/users/releases\"\u003ereleases\u003c/a\u003e on our website.\u003c/p\u003e\n\u003ch2\u003ev8.59.1\u003c/h2\u003e\n\u003ch2\u003e8.59.1 (2026-04-27)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md\"\u003e@​typescript-eslint/eslint-plugin's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.59.4 (2026-05-18)\u003c/h2\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eeslint-plugin:\u003c/strong\u003e [no-floating-promises] stack overflow when using recursive types (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12294\"\u003e#12294\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Thank You\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEvyatar Daud \u003ca href=\"https://github.com/StyleShit\"\u003e\u003ccode\u003e@​StyleShit\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.59.4\"\u003eGitHub Releases\u003c/a\u003e for more information.\u003c/p\u003e\n\u003cp\u003eYou can read about our \u003ca href=\"https://typescript-eslint.io/users/versioning\"\u003eversioning strategy\u003c/a\u003e and \u003ca href=\"https://typescript-eslint.io/users/releases\"\u003ereleases\u003c/a\u003e on our website.\u003c/p\u003e\n\u003ch2\u003e8.59.3 (2026-05-11)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for eslint-plugin to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.59.3\"\u003eGitHub Releases\u003c/a\u003e for more information.\u003c/p\u003e\n\u003cp\u003eYou can read about our \u003ca href=\"https://typescript-eslint.io/users/versioning\"\u003eversioning strategy\u003c/a\u003e and \u003ca href=\"https://typescript-eslint.io/users/releases\"\u003ereleases\u003c/a\u003e on our website.\u003c/p\u003e\n\u003ch2\u003e8.59.2 (2026-05-04)\u003c/h2\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eeslint-plugin:\u003c/strong\u003e [no-deprecated] object destructuring values should be treated as declarations (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12292\"\u003e#12292\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eeslint-plugin:\u003c/strong\u003e [no-unsafe-type-assertion] handle crash on recursive template literal types (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12150\"\u003e#12150\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Thank You\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDima Barabash\u003c/li\u003e\n\u003cli\u003eKirk Waiblinger \u003ca href=\"https://github.com/kirkwaiblinger\"\u003e\u003ccode\u003e@​kirkwaiblinger\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.59.2\"\u003eGitHub Releases\u003c/a\u003e for more information.\u003c/p\u003e\n\u003cp\u003eYou can read about our \u003ca href=\"https://typescript-eslint.io/users/versioning\"\u003eversioning strategy\u003c/a\u003e and \u003ca href=\"https://typescript-eslint.io/users/releases\"\u003ereleases\u003c/a\u003e on our website.\u003c/p\u003e\n\u003ch2\u003e8.59.1 (2026-04-27)\u003c/h2\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eeslint-plugin:\u003c/strong\u003e [no-unnecessary-condition] treat void as nullish in no-unnecessary-condition (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12241\"\u003e#12241\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eeslint-plugin:\u003c/strong\u003e [no-unnecessary-type-arguments] handle instantiation expressions (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12220\"\u003e#12220\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eeslint-plugin:\u003c/strong\u003e [no-unnecessary-type-assertion] avoid false positive in logical assignment assertions (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12278\"\u003e#12278\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eeslint-plugin:\u003c/strong\u003e [no-unnecessary-type-assertion] preserve phantom type arguments in generic inference (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12269\"\u003e#12269\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eeslint-plugin:\u003c/strong\u003e [no-unnecessary-type-assertion] preserve index signatures in undefined unions (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12257\"\u003e#12257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eeslint-plugin:\u003c/strong\u003e [no-unnecessary-type-assertion] fix crash \u0026quot;TypeError: checker.getTypeArguments is not a function\u0026quot; (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12246\"\u003e#12246\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Thank You\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/ca6ca1431b6d18235297a7e29feb5d98f012dff2\"\u003e\u003ccode\u003eca6ca14\u003c/code\u003e\u003c/a\u003e chore(release): publish 8.59.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/4302433ae6bf93d4ddc35264ad1b951254758566\"\u003e\u003ccode\u003e4302433\u003c/code\u003e\u003c/a\u003e fix(eslint-plugin): [no-floating-promises] stack overflow when using recursiv...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/10b79f1ba8e98610a3af85152a1b3b406f91e633\"\u003e\u003ccode\u003e10b79f1\u003c/code\u003e\u003c/a\u003e chore(deps): update dependency eslint to v10.4.0 (\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin/issues/12339\"\u003e#12339\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/2a6765d9628dc776f8127c96f088bb807c0bcab2\"\u003e\u003ccode\u003e2a6765d\u003c/code\u003e\u003c/a\u003e chore: clenaup \u003ccode\u003egetAwaitedType\u003c/code\u003e from \u003ccode\u003etypescript.d.ts\u003c/code\u003e (\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin/issues/12302\"\u003e#12302\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/48e13c0261e3cb1bf4f4dfaa462cdb3a56ef7383\"\u003e\u003ccode\u003e48e13c0\u003c/code\u003e\u003c/a\u003e chore(release): publish 8.59.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/e26dc8003ababf078aad4df17765ee4cea30644c\"\u003e\u003ccode\u003ee26dc80\u003c/code\u003e\u003c/a\u003e docs: update stale links to latest (\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin/issues/12313\"\u003e#12313\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/44f9625336841a8ee3eb01a9e02e49b1d7b12648\"\u003e\u003ccode\u003e44f9625\u003c/code\u003e\u003c/a\u003e chore(deps): update vitest monorepo to v4.1.5 (\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin/issues/12307\"\u003e#12307\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/2ec35f1760aade4df4c631d76d78c7ed5e136333\"\u003e\u003ccode\u003e2ec35f1\u003c/code\u003e\u003c/a\u003e chore(release): publish 8.59.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/ec3ef25390f7daf5a9ff33a60282bdbbb49ab0f3\"\u003e\u003ccode\u003eec3ef25\u003c/code\u003e\u003c/a\u003e test: make no-useless-empty-export tests fully static (\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin/issues/12260\"\u003e#12260\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/60d0a513870d833617374ff8ea256d86ca3cbbbb\"\u003e\u003ccode\u003e60d0a51\u003c/code\u003e\u003c/a\u003e chore(eslint-plugin): switch auto-generated test cases to hand-written in no-...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commits/v8.59.4/packages/eslint-plugin\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for \u003ccode\u003e@​typescript-eslint/eslint-plugin\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@typescript-eslint/parser` from 6.21.0 to 8.59.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases\"\u003e@​typescript-eslint/parser's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.59.4\u003c/h2\u003e\n\u003ch2\u003e8.59.4 (2026-05-18)\u003c/h2\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eeslint-plugin:\u003c/strong\u003e [no-floating-promises] stack overflow when using recursive types (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12294\"\u003e#12294\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eproject-service:\u003c/strong\u003e throw error cause in \u003ccode\u003egetParsedConfigFileFromTSServer\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12321\"\u003e#12321\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypescript-eslint:\u003c/strong\u003e export Compatible* types from typescript-eslint to resolve pnpm TS error (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12340\"\u003e#12340\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Thank You\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEvyatar Daud \u003ca href=\"https://github.com/StyleShit\"\u003e\u003ccode\u003e@​StyleShit\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKirk Waiblinger \u003ca href=\"https://github.com/kirkwaiblinger\"\u003e\u003ccode\u003e@​kirkwaiblinger\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003elumir\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.59.4\"\u003eGitHub Releases\u003c/a\u003e for more information.\u003c/p\u003e\n\u003cp\u003eYou can read about our \u003ca href=\"https://typescript-eslint.io/users/versioning\"\u003eversioning strategy\u003c/a\u003e and \u003ca href=\"https://typescript-eslint.io/users/releases\"\u003ereleases\u003c/a\u003e on our website.\u003c/p\u003e\n\u003ch2\u003ev8.59.3\u003c/h2\u003e\n\u003ch2\u003e8.59.3 (2026-05-11)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only, there were no code changes.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.59.3\"\u003eGitHub Releases\u003c/a\u003e for more information.\u003c/p\u003e\n\u003cp\u003eYou can read about our \u003ca href=\"https://typescript-eslint.io/users/versioning\"\u003eversioning strategy\u003c/a\u003e and \u003ca href=\"https://typescript-eslint.io/users/releases\"\u003ereleases\u003c/a\u003e on our website.\u003c/p\u003e\n\u003ch2\u003ev8.59.2\u003c/h2\u003e\n\u003ch2\u003e8.59.2 (2026-05-04)\u003c/h2\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eeslint-plugin:\u003c/strong\u003e [no-unsafe-type-assertion] handle crash on recursive template literal types (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12150\"\u003e#12150\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eeslint-plugin:\u003c/strong\u003e [no-deprecated] object destructuring values should be treated as declarations (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12292\"\u003e#12292\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003erule-tester:\u003c/strong\u003e add TypeScript as a peer dependency (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12288\"\u003e#12288\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Thank You\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDariusz Czajkowski\u003c/li\u003e\n\u003cli\u003eDima Barabash\u003c/li\u003e\n\u003cli\u003eKirk Waiblinger \u003ca href=\"https://github.com/kirkwaiblinger\"\u003e\u003ccode\u003e@​kirkwaiblinger\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.59.2\"\u003eGitHub Releases\u003c/a\u003e for more information.\u003c/p\u003e\n\u003cp\u003eYou can read about our \u003ca href=\"https://typescript-eslint.io/users/versioning\"\u003eversioning strategy\u003c/a\u003e and \u003ca href=\"https://typescript-eslint.io/users/releases\"\u003ereleases\u003c/a\u003e on our website.\u003c/p\u003e\n\u003ch2\u003ev8.59.1\u003c/h2\u003e\n\u003ch2\u003e8.59.1 (2026-04-27)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md\"\u003e@​typescript-eslint/parser's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.59.4 (2026-05-18)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for parser to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.59.4\"\u003eGitHub Releases\u003c/a\u003e for more information.\u003c/p\u003e\n\u003cp\u003eYou can read about our \u003ca href=\"https://typescript-eslint.io/users/versioning\"\u003eversioning strategy\u003c/a\u003e and \u003ca href=\"https://typescript-eslint.io/users/releases\"\u003ereleases\u003c/a\u003e on our website.\u003c/p\u003e\n\u003ch2\u003e8.59.3 (2026-05-11)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for parser to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.59.3\"\u003eGitHub Releases\u003c/a\u003e for more information.\u003c/p\u003e\n\u003cp\u003eYou can read about our \u003ca href=\"https://typescript-eslint.io/users/versioning\"\u003eversioning strategy\u003c/a\u003e and \u003ca href=\"https://typescript-eslint.io/users/releases\"\u003ereleases\u003c/a\u003e on our website.\u003c/p\u003e\n\u003ch2\u003e8.59.2 (2026-05-04)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for parser to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.59.2\"\u003eGitHub Releases\u003c/a\u003e for more information.\u003c/p\u003e\n\u003cp\u003eYou can read about our \u003ca href=\"https://typescript-eslint.io/users/versioning\"\u003eversioning strategy\u003c/a\u003e and \u003ca href=\"https://typescript-eslint.io/users/releases\"\u003ereleases\u003c/a\u003e on our website.\u003c/p\u003e\n\u003ch2\u003e8.59.1 (2026-04-27)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for parser to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.59.1\"\u003eGitHub Releases\u003c/a\u003e for more information.\u003c/p\u003e\n\u003cp\u003eYou can read about our \u003ca href=\"https://typescript-eslint.io/users/versioning\"\u003eversioning strategy\u003c/a\u003e and \u003ca href=\"https://typescript-eslint.io/users/releases\"\u003ereleases\u003c/a\u003e on our website.\u003c/p\u003e\n\u003ch2\u003e8.59.0 (2026-04-20)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for parser to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.59.0\"\u003eGitHub Releases\u003c/a\u003e for more information.\u003c/p\u003e\n\u003cp\u003eYou can read about our \u003ca href=\"https://typescript-eslint.io/users/versioning\"\u003eversioning strategy\u003c/a\u003e and \u003ca href=\"https://typescript-eslint.io/users/releases\"\u003ereleases\u003c/a\u003e on our website.\u003c/p\u003e\n\u003ch2\u003e8.58.2 (2026-04-13)\u003c/h2\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eremove tsbuildinfo cache file from published packages (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12187\"\u003e#12187\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Thank You\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAbhijeet Singh \u003ca href=\"https://github.com/cseas\"\u003e\u003ccode\u003e@​cseas\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/ca6ca1431b6d18235297a7e29feb5d98f012dff2\"\u003e\u003ccode\u003eca6ca14\u003c/code\u003e\u003c/a\u003e chore(release): publish 8.59.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/48e13c0261e3cb1bf4f4dfaa462cdb3a56ef7383\"\u003e\u003ccode\u003e48e13c0\u003c/code\u003e\u003c/a\u003e chore(release): publish 8.59.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/44f9625336841a8ee3eb01a9e02e49b1d7b12648\"\u003e\u003ccode\u003e44f9625\u003c/code\u003e\u003c/a\u003e chore(deps): update vitest monorepo to v4.1.5 (\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser/issues/12307\"\u003e#12307\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/2ec35f1760aade4df4c631d76d78c7ed5e136333\"\u003e\u003ccode\u003e2ec35f1\u003c/code\u003e\u003c/a\u003e chore(release): publish 8.59.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/52457932e5507b5ca01e720a541f3f8d01e09b9d\"\u003e\u003ccode\u003e5245793\u003c/code\u003e\u003c/a\u003e chore(release): publish 8.59.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/ea9ae4f8817873480e3501145059f63e39e8d8a1\"\u003e\u003ccode\u003eea9ae4f\u003c/code\u003e\u003c/a\u003e chore(release): publish 8.59.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/90c2803a4c250e0343598d41e973f95e743bf4ce\"\u003e\u003ccode\u003e90c2803\u003c/code\u003e\u003c/a\u003e chore(release): publish 8.58.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/be6b49a02d68db9bdc8985e7e9e1598700fda2fa\"\u003e\u003ccode\u003ebe6b49a\u003c/code\u003e\u003c/a\u003e fix: remove tsbuildinfo cache file from published packages (\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser/issues/12187\"\u003e#12187\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/5311ed312eadf4e238324f2726ae0b1f3f2206e6\"\u003e\u003ccode\u003e5311ed3\u003c/code\u003e\u003c/a\u003e chore(release): publish 8.58.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/493341709fe7d1d6433332b7bd2724e3332c7cdf\"\u003e\u003ccode\u003e4933417\u003c/code\u003e\u003c/a\u003e chore(release): publish 8.58.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commits/v8.59.4/packages/parser\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for \u003ccode\u003e@​typescript-eslint/parser\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@vscode/ripgrep` from 1.17.1 to 1.18.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/microsoft/vscode-ripgrep/releases\"\u003e@​vscode/ripgrep's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.18.0\u003c/h2\u003e\n\u003ch2\u003eChanges:\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/microsoft/vscode-ripgrep/issues/90\"\u003e#90\u003c/a\u003e: Adds \u003ccode\u003e@​vscode/ripgrep-universal\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThis list of changes was \u003ca href=\"https://dev.azure.com/monacotools/Monaco/_build/results?buildId=438342\u0026amp;view=logs\"\u003eauto generated\u003c/a\u003e.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/microsoft/vscode-ripgrep/commit/d22dec46c67fc8c5d307c9b18dba2792efd1f016\"\u003e\u003ccode\u003ed22dec4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/microsoft/vscode-ripgrep/issues/89\"\u003e#89\u003c/a\u003e from microsoft/per-platform-packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/microsoft/vscode-ripgrep/commit/381ba266ab972fc2e252cda16103c887a2102de9\"\u003e\u003ccode\u003e381ba26\u003c/code\u003e\u003c/a\u003e Fix zip extraction on Linux CI hosts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/microsoft/vscode-ripgrep/commit/62b2b26e53ba520308a3fa6faed14cd0c9004a1d\"\u003e\u003ccode\u003e62b2b26\u003c/code\u003e\u003c/a\u003e Migrate to per-platform npm packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/microsoft/vscode-ripgrep/commit/6be5ab7cdaf1d55c2d1b429b7f7c77cfb96044f1\"\u003e\u003ccode\u003e6be5ab7\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/microsoft/vscode-ripgrep/issues/86\"\u003e#86\u003c/a\u003e from microsoft/dependabot/npm_and_yarn/yauzl-3.2.1\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/microsoft/vscode-ripgrep/compare/v1.17.1...v1.18.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `axios` from 1.13.2 to 1.16.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.16.1 — May 13, 2026\u003c/h2\u003e\n\u003cp\u003eThis release ships a defence-in-depth fix for prototype pollution in \u003ccode\u003eformDataToJSON\u003c/code\u003e, hardens proxy and CI workflows, restores Webpack 4 compatibility for the fetch adapter, and includes several small bug fixes and maintenance improvements.\u003c/p\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ePrototype Pollution Defence-in-Depth:\u003c/strong\u003e Hardened \u003ccode\u003eformDataToJSON\u003c/code\u003e against already-polluted \u003ccode\u003eObject.prototype\u003c/code\u003e by walking own properties only, so attacker-controlled keys inherited from a poisoned prototype cannot propagate through deserialization. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7413\"\u003e#7413\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eProxy Cleartext Leak:\u003c/strong\u003e Fixed an issue where HTTPS request data could be transmitted in cleartext to an HTTP proxy under certain configurations. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10858\"\u003e#10858\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eCI Cache Removal:\u003c/strong\u003e Removed all GitHub Actions caches as a defence-in-depth measure against cache poisoning vectors in the build pipeline. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10882\"\u003e#10882\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eData URI Parsing:\u003c/strong\u003e Updated the \u003ccode\u003efromDataURI\u003c/code\u003e regex to match RFC 2397 more strictly, fixing edge cases in \u003ccode\u003edata:\u003c/code\u003e URL handling. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10829\"\u003e#10829\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eUnicode Headers:\u003c/strong\u003e Preserved Unicode header values when running through request interceptors, so non-ASCII header content is no longer corrupted before dispatch. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10850\"\u003e#10850\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eXHR Upload Progress:\u003c/strong\u003e Guarded against malformed \u003ccode\u003eProgressEvent\u003c/code\u003e payloads emitted by some environments during XHR upload, preventing crashes when \u003ccode\u003eloaded\u003c/code\u003e / \u003ccode\u003etotal\u003c/code\u003e are missing or invalid. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10868\"\u003e#10868\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eWebpack 4 Fetch Adapter:\u003c/strong\u003e Fixed an \u0026quot;unexpected token\u0026quot; error caused by syntax in the fetch adapter that Webpack 4 could not parse, restoring compatibility for legacy bundler users. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10864\"\u003e#10864\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eType Definitions:\u003c/strong\u003e Made \u003ccode\u003eparseReviver\u003c/code\u003e \u003ccode\u003econtext.source\u003c/code\u003e optional in the type definitions to align with the ES2023 specification. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10837\"\u003e#10837\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eURL Object Support Reverted:\u003c/strong\u003e Reverted the change that allowed passing a \u003ccode\u003eURL\u003c/code\u003e object as \u003ccode\u003econfig.url\u003c/code\u003e (originally \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10866\"\u003e#10866\u003c/a\u003e\u003c/strong\u003e) due to regressions; this support will be reintroduced in a later release once the underlying issues are addressed. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10874\"\u003e#10874\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eCycle Detection Refactor:\u003c/strong\u003e Replaced the array-based cycle tracker in \u003ccode\u003etoJSONObject\u003c/code\u003e with a \u003ccode\u003eWeakSet\u003c/code\u003e, improving performance and memory behaviour on large nested structures. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10832\"\u003e#10832\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ecomposeSignals Cleanup:\u003c/strong\u003e Refactored \u003ccode\u003ecomposeSignals\u003c/code\u003e to use a clearer early-return structure, simplifying the cancellation/abort composition path. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10844\"\u003e#10844\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eAI Readiness \u0026amp; Repo Docs:\u003c/strong\u003e Added \u003ccode\u003eAGENTS.md\u003c/code\u003e and related contributor-guide updates for both human and AI agents, plus post-release documentation improvements. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10835\"\u003e#10835\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10841\"\u003e#10841\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDocs Improvements:\u003c/strong\u003e Clarified the GET request example, fixed the interceptor \u003ccode\u003eeject\u003c/code\u003e example to reference the correct instance, and corrected the Buzzoid sponsor description in the README. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10836\"\u003e#10836\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10853\"\u003e#10853\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10856\"\u003e#10856\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eSponsorship Tooling:\u003c/strong\u003e Fixed empty sponsor arrays in the sponsor processing script, added the ability to inject additional sponsors, updated the sponsorship link, and added a Twicsy advertisement entry. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10843\"\u003e#10843\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10859\"\u003e#10859\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10869\"\u003e#10869\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDependencies:\u003c/strong\u003e Bumped \u003ccode\u003e@commitlint/cli\u003c/code\u003e from 20.5.0 to 20.5.2. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10846\"\u003e#10846\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🌟 New Contributors\u003c/h2\u003e\n\u003cp\u003eWe are thrilled to welcome our new contributors. Thank you for helping improve axios:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/hpinmetaverse\"\u003e\u003ccode\u003e@​hpinmetaverse\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10836\"\u003e#10836\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/tommyhgunz14\"\u003e\u003ccode\u003e@​tommyhgunz14\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7413\"\u003e#7413\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/abhu85\"\u003e\u003ccode\u003e@​abhu85\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10829\"\u003e#10829\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/divyanshuraj1095\"\u003e\u003ccode\u003e@​divyanshuraj1095\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10853\"\u003e#10853\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/sagodi97\"\u003e\u003ccode\u003e@​sagodi97\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10856\"\u003e#10856\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/rkdfx\"\u003e\u003ccode\u003e@​rkdfx\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10868\"\u003e#10868\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/Liuwei1125\"\u003e\u003ccode\u003e@​Liuwei1125\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10866\"\u003e#10866\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/axios/axios/compare/v1.16.0...v1.16.1\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.16.0 — May 2, 2026\u003c/h2\u003e\n\u003cp\u003eThis release adds support for the QUERY HTTP method and a new \u003ccode\u003eECONNREFUSED\u003c/code\u003e error constant, lands a substantial wave of HTTP, fetch, and XHR adapter bug fixes around redirects, aborts, headers, and timeouts, and welcomes 23 new contributors.\u003c/p\u003e\n\u003ch2\u003e⚠️ Notable Changes\u003c/h2\u003e\n\u003cp\u003eA handful of fixes in this release are either security-adjacent or change observable behaviour. Please review before upgrading:\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/blob/v1.x/CHANGELOG.md\"\u003eaxios's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.16.1 — May 13, 2026\u003c/h2\u003e\n\u003cp\u003eThis release ships a defence-in-depth fix for prototype pollution in \u003ccode\u003eformDataToJSON\u003c/code\u003e, hardens proxy and CI workflows, restores Webpack 4 compatibility for the fetch adapter, and includes several small bug fixes and maintenance improvements.\u003c/p\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ePrototype Pollution Defence-in-Depth:\u003c/strong\u003e Hardened \u003ccode\u003eformDataToJSON\u003c/code\u003e against already-polluted \u003ccode\u003eObject.prototype\u003c/code\u003e by walking own properties only, so attacker-controlled keys inherited from a poisoned prototype cannot propagate through deserialization. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7413\"\u003e#7413\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eProxy Cleartext Leak:\u003c/strong\u003e Fixed an issue where HTTPS request data could be transmitted in cleartext to an HTTP proxy under certain configurations. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10858\"\u003e#10858\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eCI Cache Removal:\u003c/strong\u003e Removed all GitHub Actions caches as a defence-in-depth measure against cache poisoning vectors in the build pipeline. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10882\"\u003e#10882\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eData URI Parsing:\u003c/strong\u003e Updated the \u003ccode\u003efromDataURI\u003c/code\u003e regex to match RFC 2397 more strictly, fixing edge cases in \u003ccode\u003edata:\u003c/code\u003e URL handling. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10829\"\u003e#10829\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eUnicode Headers:\u003c/strong\u003e Preserved Unicode header values when running through request interceptors, so non-ASCII header content is no longer corrupted before dispatch. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10850\"\u003e#10850\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eXHR Upload Progress:\u003c/strong\u003e Guarded against malformed \u003ccode\u003eProgressEvent\u003c/code\u003e payloads emitted by some environments during XHR upload, preventing crashes when \u003ccode\u003eloaded\u003c/code\u003e / \u003ccode\u003etotal\u003c/code\u003e are missing or invalid. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10868\"\u003e#10868\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eWebpack 4 Fetch Adapter:\u003c/strong\u003e Fixed an \u0026quot;unexpected token\u0026quot; error caused by syntax in the fetch adapter that Webpack 4 could not parse, restoring compatibility for legacy bundler users. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10864\"\u003e#10864\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eType Definitions:\u003c/strong\u003e Made \u003ccode\u003eparseReviver\u003c/code\u003e \u003ccode\u003econtext.source\u003c/code\u003e optional in the type definitions to align with the ES2023 specification. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10837\"\u003e#10837\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eURL Object Support Reverted:\u003c/strong\u003e Reverted the change that allowed passing a \u003ccode\u003eURL\u003c/code\u003e object as \u003ccode\u003econfig.url\u003c/code\u003e (originally \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10866\"\u003e#10866\u003c/a\u003e\u003c/strong\u003e) due to regressions; this support will be reintroduced in a later release once the underlying issues are addressed. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10874\"\u003e#10874\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eCycle Detection Refactor:\u003c/strong\u003e Replaced the array-based cycle tracker in \u003ccode\u003etoJSONObject\u003c/code\u003e with a \u003ccode\u003eWeakSet\u003c/code\u003e, improving performance and memory behaviour on large nested structures. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10832\"\u003e#10832\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ecomposeSignals Cleanup:\u003c/strong\u003e Refactored \u003ccode\u003ecomposeSignals\u003c/code\u003e to use a clearer early-return structure, simplifying the cancellation/abort composition path. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10844\"\u003e#10844\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eAI Readiness \u0026amp; Repo Docs:\u003c/strong\u003e Added \u003ccode\u003eAGENTS.md\u003c/code\u003e and related contributor-guide updates for both human and AI agents, plus post-release documentation improvements. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10835\"\u003e#10835\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10841\"\u003e#10841\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDocs Improvements:\u003c/strong\u003e Clarified the GET request example, fixed the interceptor \u003ccode\u003eeject\u003c/code\u003e example to reference the correct instance, and corrected the Buzzoid sponsor description in the README. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10836\"\u003e#10836\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10853\"\u003e#10853\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10856\"\u003e#10856\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eSponsorship Tooling:\u003c/strong\u003e Fixed empty sponsor arrays in the sponsor processing script, added the ability to inject additional sponsors, updated the sponsorship link, and added a Twicsy advertisement entry. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10843\"\u003e#10843\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10859\"\u003e#10859\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10869\"\u003e#10869\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDependencies:\u003c/strong\u003e Bumped \u003ccode\u003e@commitlint/cli\u003c/code\u003e from 20.5.0 to 20.5.2. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10846\"\u003e#10846\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🌟 New Contributors\u003c/h2\u003e\n\u003cp\u003eWe are thrilled to welcome our new contributors. Thank you for helping improve axios:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/hpinmetaverse\"\u003e\u003ccode\u003e@​hpinmetaverse\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10836\"\u003e#10836\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/tommyhgunz14\"\u003e\u003ccode\u003e@​tommyhgunz14\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7413\"\u003e#7413\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/abhu85\"\u003e\u003ccode\u003e@​abhu85\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10829\"\u003e#10829\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/divyanshuraj1095\"\u003e\u003ccode\u003e@​divyanshuraj1095\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10853\"\u003e#10853\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/sagodi97\"\u003e\u003ccode\u003e@​sagodi97\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10856\"\u003e#10856\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/rkdfx\"\u003e\u003ccode\u003e@​rkdfx\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10868\"\u003e#10868\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/Liuwei1125\"\u003e\u003ccode\u003e@​Liuwei1125\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10866\"\u003e#10866\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/axios/axios/compare/v1.16.0...v1.16.1\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.16.0 — May 2, 2026\u003c/h2\u003e\n\u003cp\u003eThis release adds support for the QUERY HTTP method and a new \u003ccode\u003eECONNREFUSED\u003c/code\u003e error constant, lands a substantial wave of HTTP, fetch, and XHR adapter bug fixes around redirects, aborts, headers, and timeouts, and welcomes 23 new contributors.\u003c/p\u003e\n\u003ch2\u003e⚠️ Notable Changes\u003c/h2\u003e\n\u003cp\u003eA handful of fixes in this release are either security-adjacent or change observable behaviour. Please review before upgrading:\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/1337d6b537afb2d3f501074c8ac4ef4308221197\"\u003e\u003ccode\u003e1337d6b\u003c/code\u003e\u003c/a\u003e chore(release): prepare release 1.16.1 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10877\"\u003e#10877\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/858a790cec06054547d0d3f941916d6fb2a4d18e\"\u003e\u003ccode\u003e858a790\u003c/code\u003e\u003c/a\u003e fix: remove all caches (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10882\"\u003e#10882\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/34adfd90efc9c145488399e1cf7fa96de67080fa\"\u003e\u003ccode\u003e34adfd9\u003c/code\u003e\u003c/a\u003e revert: \u0026quot;fix: support URL object as config.url input (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10866\"\u003e#10866\u003c/a\u003e)\u0026quot; (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10874\"\u003e#10874\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/847d89b43654405d9a231e0b669832c2092b621f\"\u003e\u003ccode\u003e847d89b\u003c/code\u003e\u003c/a\u003e fix: support URL object as config.url input (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10866\"\u003e#10866\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/40948863677bb793bfff0293cce7e7b4f8a1b212\"\u003e\u003ccode\u003e4094886\u003c/code\u003e\u003c/a\u003e fix(progress): guard malformed XHR upload events (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10868\"\u003e#10868\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/44f0c5bf73c45df6009365141faa394d73596bd7\"\u003e\u003ccode\u003e44f0c5b\u003c/code\u003e\u003c/a\u003e chore: change sponsorship link and add Twicsy advertisement (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10869\"\u003e#10869\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/64e1095efedc64c9fecf5176bd9cf2e5e93140d6\"\u003e\u003ccode\u003e64e1095\u003c/code\u003e\u003c/a\u003e chore: update PR and issue template to use h2 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10865\"\u003e#10865\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/3e6b4e1f311b43aa1dc77d78150a601d9fe4b280\"\u003e\u003ccode\u003e3e6b4e1\u003c/code\u003e\u003c/a\u003e fix: error unexpected token in fetch JS compatibility issue with Webpack 4 (#...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/c4453bab70f53575175903aee60810c821f72129\"\u003e\u003ccode\u003ec4453ba\u003c/code\u003e\u003c/a\u003e fix: add the ability to add additional sponsors to the process sponsors scrip...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/caa00a90b524bb67ed033474abcf4d8645ced793\"\u003e\u003ccode\u003ecaa00a9\u003c/code\u003e\u003c/a\u003e fix: https data in cleartext to proxy (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10858\"\u003e#10858\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/axios/axios/compare/v1.13.2...v1.16.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for axios since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version modifies \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `chalk` from 4.1.2 to 5.6.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/chalk/chalk/releases\"\u003echalk's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.6.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix vulnerability in 5.6.1, see: \u003ca href=\"https://redirect.github.com/chalk/chalk/issues/656\"\u003echalk/chalk#656\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev5.6.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMake WezTerm terminal use true color  a8f5bf7\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/chalk/chalk/compare/v5.5.0...v5.6.0\"\u003ehttps://github.com/chalk/chalk/compare/v5.5.0...v5.6.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.5.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMake Ghostty terminal use true color (\u003ca href=\"https://redirect.github.com/chalk/chalk/issues/653\"\u003e#653\u003c/a\u003e)  79ee2d3\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/chalk/chalk/compare/v5.4.1...v5.5.0\"\u003ehttps://github.com/chalk/chalk/compare/v5.4.1...v5.5.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.4.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ccode\u003enavigator\u003c/code\u003e not defined \u003ccode\u003eReferenceError\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/chalk/chalk/issues/642\"\u003e#642\u003c/a\u003e)  4ebb62d\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/chalk/chalk/compare/v5.4.0...v5.4.1\"\u003ehttps://github.com/chalk/chalk/compare/v5.4.0...v5.4.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.4.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate \u003ccode\u003eCIRCLECI\u003c/code\u003e environments to return level 3 color support  f838120\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/chalk/chalk/compare/v5.3.0...v5.4.0\"\u003ehttps://github.com/chalk/chalk/compare/v5.3.0...v5.4.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.3.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003esideEffects\u003c/code\u003e field to package.json  5aafc0a\u003c/li\u003e\n\u003cli\u003eAdd support for Gitea Actions (\u003ca href=\"https://redirect.github.com/chalk/chalk/issues/603\"\u003e#603\u003c/a\u003e)  29b8569\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/chalk/chalk/compare/v5.2.0...v5.3.0\"\u003ehttps://github.com/chalk/chalk/compare/v5.2.0...v5.3.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.2.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImprove Deno compatibility (\u003ca href=\"https://redirect.github.com/chalk/chalk/issues/579\"\u003e#579\u003c/a\u003e)  7443e9f\u003c/li\u003e\n\u003cli\u003eDetect true-color support for GitHub Actions (\u003ca href=\"https://redirect.github.com/chalk/chalk/issues/579\"\u003e#579\u003c/a\u003e)  7443e9f\u003c/li\u003e\n\u003cli\u003eDetect true-color support for Kitty terminal (\u003ca href=\"https://redirect.github.com/chalk/chalk/issues/579\"\u003e#579\u003c/a\u003e)  7443e9f\u003c/li\u003e\n\u003cli\u003eFix test for Azure DevOps environment (\u003ca href=\"https://redirect.github.com/chalk/chalk/issues/579\"\u003e#579\u003c/a\u003e)  7443e9f\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/chalk/chalk/compare/v5.1.2...v5.2.0\"\u003ehttps://github.com/chalk/chalk/compare/v5.1.2...v5.2.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.1.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix exported styles names (\u003ca href=\"https://redirect.github.com/chalk/chalk/issues/569\"\u003e#569\u003c/a\u003e)  a34bcf6\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/chalk/chalk/compare/v5.1.1...v5.1.2\"\u003ehttps://github.com/chalk/chalk/compare/v5.1.1...v5.1.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.1.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImproved the names of exports introduced in 5.1.0 (\u003ca href=\"https://redirect.github.com/chalk/chalk/issues/567\"\u003e#567\u003c/a\u003e)  6e0df05\n\u003cul\u003e\n\u003cli\u003eWe of course preserved the old names.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chalk/chalk/commit/51557784b829c87ff8d138206598764f2eb957b1\"\u003e\u003ccode\u003e5155778\u003c/code\u003e\u003c/a\u003e 5.6.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chalk/chalk/commit/5c91505e184aff4609c0a7fb235770c2f71db4a3\"\u003e\u003ccode\u003e5c91505\u003c/code\u003e\u003c/a\u003e 5.6.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chalk/chalk/commit/a8f5bf7a6733b1e2a356d5cccea6a45d80cf16c7\"\u003e\u003ccode\u003ea8f5bf7\u003c/code\u003e\u003c/a\u003e Make WezTerm terminal use true color\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chalk/chalk/commit/67db246ae0a2bbcc57c190d641c5d767e5275160\"\u003e\u003ccode\u003e67db246\u003c/code\u003e\u003c/a\u003e 5.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chalk/chalk/commit/79ee2d386c58ae3863c28a01f5f86b04c78adfc1\"\u003e\u003ccode\u003e79ee2d3\u003c/code\u003e\u003c/a\u003e Make Ghostty terminal use true color (\u003ca href=\"https://redirect.github.com/chalk/chalk/issues/653\"\u003e#653\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chalk/chalk/commit/5dbc1e2633f3874f43c144fa4919934bc934c495\"\u003e\u003ccode\u003e5dbc1e2\u003c/code\u003e\u003c/a\u003e 5.4.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chalk/chalk/commit/4ebb62d1ca70c122674558a88932ddf6545fe9ef\"\u003e\u003ccode\u003e4ebb62d\u003c/code\u003e\u003c/a\u003e Fix \u003ccode\u003enavigator\u003c/code\u003e not defined \u003ccode\u003eReferenceError\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/chalk/chalk/issues/642\"\u003e#642\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chalk/chalk/commit/fc809b686d5048d56fec3a5d96d1ad57dee193bf\"\u003e\u003ccode\u003efc809b6\u003c/code\u003e\u003c/a\u003e Readme tweak\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chalk/chalk/commit/83acfcf8cb17437b63beceb027180399da74f0a7\"\u003e\u003ccode\u003e83acfcf\u003c/code\u003e\u003c/a\u003e 5.4.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chalk/chalk/commit/f8381204fb096207074089f5ab265fffff6bc341\"\u003e\u003ccode\u003ef838120\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003eCIRCLECI\u003c/code\u003e environments to return level 3 color support\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/chalk/chalk/compare/v4.1.2...v5.6.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `commander` from 12.1.0 to 14.0.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tj/commander.js/releases\"\u003ecommander's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev14.0.3\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRelease Policy document (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2462\"\u003e#2462\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eold major versions now supported for 12 months instead of just previous major version, to give predictable end-of-life\ndate (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2462\"\u003e#2462\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eclarify typing for deprecated callback parameter to \u003ccode\u003e.outputHelp()\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2427\"\u003e#2427\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esimple readability improvements to README (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2465\"\u003e#2465\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev14.0.2\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimprove negative number auto-detection test (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2428\"\u003e#2428\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate (dev) dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev14.0.1\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebroken markdown link in README (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2369\"\u003e#2369\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimprove code readability by using optional chaining (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2394\"\u003e#2394\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003euse more idiomatic code with object spread instead of \u003ccode\u003eObject.assign()\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2395\"\u003e#2395\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eimprove code readability using \u003ccode\u003estring.endsWith()\u003c/code\u003e instead of \u003ccode\u003estring.slice()\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2396\"\u003e#2396\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor \u003ccode\u003e.parseOptions()\u003c/code\u003e to process args array in-place (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2409\"\u003e#2409\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echange private variadic support routines from \u003ccode\u003e._concatValue()\u003c/code\u003e to \u003ccode\u003e._collectValue()\u003c/code\u003e (change code from \u003ccode\u003earray.concat()\u003c/code\u003e to \u003ccode\u003earray.push()\u003c/code\u003e) (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2410\"\u003e#2410\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate (dev) dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev14.0.0\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esupport for groups of options and commands in the help using low-level \u003ccode\u003e.helpGroup()\u003c/code\u003e on \u003ccode\u003eOption\u003c/code\u003e and \u003ccode\u003eCommand\u003c/code\u003e, and higher\n-level \u003ccode\u003e.optionsGroup()\u003c/code\u003e and \u003ccode\u003e.commandsGroup()\u003c/code\u003e which can be used in chaining way to specify group title for following option\ns/commands (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2328\"\u003e#2328\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport for unescaped negative numbers as option-arguments and command-arguments (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2339\"\u003e#2339\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTypeScript: add \u003ccode\u003eparseArg\u003c/code\u003e property to \u003ccode\u003eArgument\u003c/code\u003e class (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2359\"\u003e#2359\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eremove bogus leading space in help when option has default value but not a description (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2348\"\u003e#2348\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e.configureOutput()\u003c/code\u003e now makes copy of settings instead of modifying in-place, fixing side-effects (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2350\"\u003e#2350\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003eBreaking:\u003c/em\u003e Commander 14 requires Node.js v20 or higher\u003c/li\u003e\n\u003cli\u003einternal refactor of \u003ccode\u003eHelp\u003c/code\u003e class adding \u003ccode\u003e.formatItemList()\u003c/code\u003e and \u003ccode\u003e.groupItems()\u003c/code\u003e methods (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2328\"\u003e#2328\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tj/commander.js/blob/master/CHANGELOG.md\"\u003ecommander's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[14.0.3] (2026-01-31)\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRelease Policy document (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2462\"\u003e#2462\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eold major versions now supported for 12 months instead of just previous major version, to give predictable end-of-life date (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2462\"\u003e#2462\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eclarify typing for deprecated callback parameter to \u003ccode\u003e.outputHelp()\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2427\"\u003e#2427\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esimple readability improvements to README (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2465\"\u003e#2465\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[14.0.2] (2025-10-25)\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimprove negative number auto-detection test (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2428\"\u003e#2428\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate (dev) dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[14.0.1] (2025-09-12)\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebroken markdown link in README (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2369\"\u003e#2369\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimprove code readability by using optional chaining (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2394\"\u003e#2394\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003euse more idiomatic code with object spread instead of \u003ccode\u003eObject.assign()\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2395\"\u003e#2395\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eimprove code readability using \u003ccode\u003estring.endsWith()\u003c/code\u003e instead of \u003ccode\u003estring.slice()\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2396\"\u003e#2396\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor \u003ccode\u003e.parseOptions()\u003c/code\u003e to process args array in-place (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2409\"\u003e#2409\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echange private variadic support routines from \u003ccode\u003e._concatValue()\u003c/code\u003e to \u003ccode\u003e._collectValue()\u003c/code\u003e (change code from \u003ccode\u003earray.concat()\u003c/code\u003e to \u003ccode\u003earray.push()\u003c/code\u003e) (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2410\"\u003e#2410\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate (dev) dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[14.0.0] (2025-05-18)\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esupport for groups of options and commands in the help using low-level \u003ccode\u003e.helpGroup()\u003c/code\u003e on \u003ccode\u003eOption\u003c/code\u003e and \u003ccode\u003eCommand\u003c/code\u003e, and higher-level \u003ccode\u003e.optionsGroup()\u003c/code\u003e and \u003ccode\u003e.commandsGroup()\u003c/code\u003e which can be used in chaining way to specify group title for following options/commands (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2328\"\u003e#2328\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport for unescaped negative numbers as option-arguments and command-arguments (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2339\"\u003e#2339\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTypeScript: add \u003ccode\u003eparseArg\u003c/code\u003e property to \u003ccode\u003eArgument\u003c/code\u003e class (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2359\"\u003e#2359\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eremove bogus leading space in help when option has default value but not a description (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2348\"\u003e#2348\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e.configureOutput()\u003c/code\u003e now makes copy of settings instead of modifying in-place, fixing side-effects (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2350\"\u003e#2350\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003eBreaking:\u003c/em\u003e Commander 14 requires Node.js v20 or higher\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tj/commander.js/commit/8247364da749736570161e95682b07fc2d72497b\"\u003e\u003ccode\u003e8247364\u003c/code\u003e\u003c/a\u003e 14.0.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tj/commander.js/commit/e281fe3e8c63c2518cdd7f3f1966ad2a0fbd1258\"\u003e\u003ccode\u003ee281fe3\u003c/code\u003e\u003c/a\u003e Update docs for 14.0.3 (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2474\"\u003e#2474\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tj/commander.js/commit/7357ddafe2cb7f6eed09217d77db4201e22aad83\"\u003e\u003ccode\u003e7357dda\u003c/code\u003e\u003c/a\u003e Separate out a more detailed release policy document (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2462\"\u003e#2462\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tj/commander.js/commit/b6e2e3a1ebe1751224a5c19778332df93caf0dea\"\u003e\u003ccode\u003eb6e2e3a\u003c/code\u003e\u003c/a\u003e Bump eslint from 9.39.1 to 9.39.2 (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2470\"\u003e#2470\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tj/commander.js/commit/d6f63a7b33716da842e9b67433147150fb9059cd\"\u003e\u003ccode\u003ed6f63a7\u003c/code\u003e\u003c/a\u003e Bump ts-jest from 29.4.5 to 29.4.6 (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2467\"\u003e#2467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tj/commander.js/commit/2a9768aea01e6d8caa5d55b70d3ad53a35e47288\"\u003e\u003ccode\u003e2a9768a\u003c/code\u003e\u003c/a\u003e Bump prettier from 3.6.2 to 3.7.4 (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2466\"\u003e#2466\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tj/commander.js/commit/921191868b3cb935908256d4655b7bb9c6ad90bc\"\u003e\u003ccode\u003e9211918\u003c/code\u003e\u003c/a\u003e docs(README): Tweak formatting, punctuation for clarity (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2465\"\u003e#2465\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tj/commander.js/commit/4208a96ee7533b7ee5fa10123d169bc8c631b83c\"\u003e\u003ccode\u003e4208a96\u003c/code\u003e\u003c/a\u003e Bump typescript-eslint from 8.46.2 to 8.48.0 (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2458\"\u003e#2458\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tj/commander.js/commit/03308ceb50c8b508abcfc3b34c36daa2e7b813d2\"\u003e\u003ccode\u003e03308ce\u003c/code\u003e\u003c/a\u003e Bump eslint-plugin-jest from 29.0.1 to 29.2.1 (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2457\"\u003e#2457\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tj/commander.js/commit/4d2db1f287112f37e0f9bfac54d5d7d981c5ec01\"\u003e\u003ccode\u003e4d2db1f\u003c/code\u003e\u003c/a\u003e Bump globals from 16.4.0 to 16.5.0 (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2456\"\u003e#2456\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tj/commander.js/compare/v12.1.0...v14.0.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `diff` from 5.2.0 to 9.0.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kpdecker/jsdiff/blob/master/release-notes.md\"\u003ediff's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e9.0.0\u003c/h2\u003e\n\u003cp\u003e(All changes part of PR \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/672\"\u003e#672\u003c/a\u003e.)\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eES5 support is dropped\u003c/strong\u003e. \u003ccode\u003eparsePatch\u003c/code\u003e now uses \u003ccode\u003eTextDecoder\u003c/code\u003e and \u003ccode\u003eUint8Array\u003c/code\u003e, which are not available in ES5, and TypeScript is now compiled with the \u0026quot;es6\u0026quot; \u003ccode\u003etarget\u003c/code\u003e. From now on, I intend to freely use any features that are deemed \u0026quot;Widely available\u0026quot; by \u003ca href=\"https://web.dev/baseline\"\u003eBaseline\u003c/a\u003e. Users who need ES5 support should stick to version 8.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eC-style quoted strings in filename headers are now properly supported\u003c/strong\u003e.\u003c/p\u003e\n\u003cp\u003eWhen the name of either the old or new file in a patch contains \u0026quot;special characters\u0026quot;, both GNU \u003ccode\u003ediff\u003c/code\u003e and Git quote the filename in the patch's headers and escape special characters using the same escape sequences that are used in string literals in C, including octal escapes for all non-ASCII characters. Previously, jsdiff had very little support for this; \u003ccode\u003eparsePatch\u003c/code\u003e would remove the quotes, and unescape any escaped backslashes, but would not unescape other escape sequences. \u003ccode\u003eformatPatch\u003c/code\u003e, meanwhile, did not quote or escape special characters at all.\u003c/p\u003e\n\u003cp\u003eNow, \u003ccode\u003eparsePatch\u003c/code\u003e parses all the possible escape sequences that GNU diff (or Git) ever output, and \u003ccode\u003eformatPatch\u003c/code\u003e quotes and escapes filenames containing special characters in the same way GNU diff does.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003eformatPatch\u003c/code\u003e now omits file headers when \u003ccode\u003eoldFileName\u003c/code\u003e or \u003ccode\u003enewFileName\u003c/code\u003e in the provided patch object are \u003ccode\u003eundefined\u003c/code\u003e\u003c/strong\u003e, regardless of the \u003ccode\u003eheaderOptions\u003c/code\u003e parameter. (Previously, it would treat the absence of \u003ccode\u003eoldFileName\u003c/code\u003e or \u003ccode\u003enewFileName\u003c/code\u003e as indicating the filename was the word \u0026quot;undefined\u0026quot; and emit headers \u003ccode\u003e--- undefined\u003c/code\u003e / \u003ccode\u003e+++ undefined\u003c/code\u003e.)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003eformatPatch\u003c/code\u003e no longer outputs trailing tab characters at the end of \u003ccode\u003e---\u003c/code\u003e/\u003ccode\u003e+++\u003c/code\u003e headers.\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003ePreviously, if \u003ccode\u003eformatPatch\u003c/code\u003e was passed a patch object to serialize that had empty strings for the \u003ccode\u003eoldHeader\u003c/code\u003e or \u003ccode\u003enewHeader\u003c/code\u003e property, it would include a trailing tab character after the filename in the \u003ccode\u003e---\u003c/code\u003e and/or \u003ccode\u003e+++\u003c/code\u003e file header. Now, this scenario is treated the same as when \u003ccode\u003eoldHeader\u003c/code\u003e/\u003ccode\u003enewHeader\u003c/code\u003e is \u003ccode\u003eundefined\u003c/code\u003e - i.e. the trailing tab is omitted.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003eformatPatch\u003c/code\u003e no longer mutates its input\u003c/strong\u003e when serializing a patch containing a hunk where either the old or new content contained zero lines. (Such a hunk occurs only when the hunk has no context lines and represents a pure insertion or pure deletion, which for instance will occur whenever one of the two files being diffed is completely empty.) Previously \u003ccode\u003eformatPatch\u003c/code\u003e would provide the correct output but also mutate the \u003ccode\u003eoldLines\u003c/code\u003e or \u003ccode\u003enewLines\u003c/code\u003e property on the hunk, changing the meaning of the underlying patch.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eGit-style patches are now supported by \u003ccode\u003eparsePatch\u003c/code\u003e, \u003ccode\u003eformatPatch\u003c/code\u003e, and \u003ccode\u003ereversePatch\u003c/code\u003e\u003c/strong\u003e.\u003c/p\u003e\n\u003cp\u003ePatches output by \u003ccode\u003egit diff\u003c/code\u003e can include some features that are unlike those output by GNU \u003ccode\u003ediff\u003c/code\u003e, and therefore not handled by an ordinary unified diff format parser. An ordinary diff simply describes the differences between the \u003cem\u003econtent\u003c/em\u003e of two files, but Git diffs can also indicate, via \u0026quot;extended headers\u0026quot...\n\n_Description has been truncated_","html_url":"https://github.com/AaronGrace978/AgentPrime/pull/8","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/AaronGrace978%2FAgentPrime/issues/8","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/8/packages"},{"uuid":"4450720138","node_id":"PR_kwDOSd7uYM7bwRLD","number":3,"state":"open","title":"Bump node-fetch from 3.3.1 to 3.3.2","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-15T02:21:55.000Z","updated_at":"2026-05-15T02:21:59.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"node-fetch","old_version":"3.3.1","new_version":"3.3.2","repository_url":"https://github.com/node-fetch/node-fetch"}],"path":null,"ecosystem":"npm"},"body":"Bumps [node-fetch](https://github.com/node-fetch/node-fetch) from 3.3.1 to 3.3.2.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-fetch/node-fetch/releases\"\u003enode-fetch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.3.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.1...v3.3.2\"\u003e3.3.2\u003c/a\u003e (2023-07-25)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e8b3320d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1735\"\u003e#1735\u003c/a\u003e \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1473\"\u003e#1473\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e\u003ccode\u003e8b3320d\u003c/code\u003e\u003c/a\u003e fix: Remove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.1...v3.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=node-fetch\u0026package-manager=npm_and_yarn\u0026previous-version=3.3.1\u0026new-version=3.3.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/nguyenngocson109205/chat-box-cua-tui/pull/3","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/nguyenngocson109205%2Fchat-box-cua-tui/issues/3","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/3/packages"},{"uuid":"4444534534","node_id":"PR_kwDOEzH_b87bckQr","number":2132,"state":"closed","title":"Bump the npm_and_yarn group across 2 directories with 26 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-15T01:09:55.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-14T08:49:09.000Z","updated_at":"2026-05-15T01:09:57.000Z","time_to_close":58846,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"npm_and_yarn","update_count":26,"packages":[{"name":"body-parser","old_version":"1.19.1","new_version":"1.20.5","repository_url":"https://github.com/expressjs/body-parser"},{"name":"express","old_version":"4.17.2","new_version":"4.22.2","repository_url":"https://github.com/expressjs/express"},{"name":"ejs","old_version":"3.1.6","new_version":"3.1.10","repository_url":"https://github.com/mde/ejs"},{"name":"esbuild","old_version":"0.18.13","new_version":"0.25.0","repository_url":"https://github.com/evanw/esbuild"},{"name":"jsonwebtoken","old_version":"8.5.1","new_version":"9.0.3","repository_url":"https://github.com/auth0/node-jsonwebtoken"},{"name":"semver","old_version":"7.3.5","new_version":"7.8.0","repository_url":"https://github.com/npm/node-semver"},{"name":"semver","old_version":"6.3.0","new_version":"6.3.1","repository_url":"https://github.com/npm/node-semver"},{"name":"semver","old_version":"5.7.1","new_version":"5.7.2","repository_url":"https://github.com/npm/node-semver"},{"name":"@babel/runtime","old_version":"7.12.13","new_version":"7.29.2","repository_url":"https://github.com/babel/babel"},{"name":"brace-expansion","old_version":"1.1.11","new_version":"1.1.14","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"braces","old_version":"3.0.2","new_version":"3.0.3","repository_url":"https://github.com/micromatch/braces"},{"name":"flatted","old_version":"3.2.5","new_version":"3.4.2","repository_url":"https://github.com/WebReflection/flatted"},{"name":"got","old_version":"9.6.0","new_version":"removed","repository_url":"https://github.com/sindresorhus/got"},{"name":"js-yaml","old_version":"3.14.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"json5","old_version":"1.0.1","new_version":"1.0.2","repository_url":"https://github.com/json5/json5"},{"name":"minimist","old_version":"1.2.5","new_version":"1.2.8","repository_url":"https://github.com/minimistjs/minimist"},{"name":"node-fetch","old_version":"2.6.1","new_version":"2.7.0","repository_url":"https://github.com/node-fetch/node-fetch"},{"name":"picomatch","old_version":"2.3.1","new_version":"2.3.2","repository_url":"https://github.com/micromatch/picomatch"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 16 updates in the /samples/tab-staggered-permission/nodejs directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [body-parser](https://github.com/expressjs/body-parser) | `1.19.1` | `1.20.5` |\n| [express](https://github.com/expressjs/express) | `4.17.2` | `4.22.2` |\n| [ejs](https://github.com/mde/ejs) | `3.1.6` | `3.1.10` |\n| [esbuild](https://github.com/evanw/esbuild) | `0.18.13` | `0.25.0` |\n| [jsonwebtoken](https://github.com/auth0/node-jsonwebtoken) | `8.5.1` | `9.0.3` |\n| [semver](https://github.com/npm/node-semver) | `7.3.5` | `7.8.0` |\n| [semver](https://github.com/npm/node-semver) | `6.3.0` | `6.3.1` |\n| [semver](https://github.com/npm/node-semver) | `5.7.1` | `5.7.2` |\n| [@babel/runtime](https://github.com/babel/babel/tree/HEAD/packages/babel-runtime) | `7.12.13` | `7.29.2` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.14` |\n| [braces](https://github.com/micromatch/braces) | `3.0.2` | `3.0.3` |\n| [flatted](https://github.com/WebReflection/flatted) | `3.2.5` | `3.4.2` |\n| [got](https://github.com/sindresorhus/got) | `9.6.0` | `removed` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [json5](https://github.com/json5/json5) | `1.0.1` | `1.0.2` |\n| [minimist](https://github.com/minimistjs/minimist) | `1.2.5` | `1.2.8` |\n| [node-fetch](https://github.com/node-fetch/node-fetch) | `2.6.1` | `2.7.0` |\n| [picomatch](https://github.com/micromatch/picomatch) | `2.3.1` | `2.3.2` |\n\nBumps the npm_and_yarn group with 15 updates in the /samples/tab-stage-view/nodejs directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [body-parser](https://github.com/expressjs/body-parser) | `1.19.0` | `1.20.5` |\n| [express](https://github.com/expressjs/express) | `4.17.1` | `4.22.2` |\n| [ejs](https://github.com/mde/ejs) | `3.1.9` | `3.1.10` |\n| [esbuild](https://github.com/evanw/esbuild) | `0.18.14` | `0.25.0` |\n| [semver](https://github.com/npm/node-semver) | `7.3.5` | `7.8.0` |\n| [semver](https://github.com/npm/node-semver) | `5.7.1` | `5.7.2` |\n| [semver](https://github.com/npm/node-semver) | `6.3.0` | `6.3.1` |\n| [@babel/runtime](https://github.com/babel/babel/tree/HEAD/packages/babel-runtime) | `7.14.8` | `7.29.2` |\n| [axios](https://github.com/axios/axios) | `0.21.4` | `1.16.1` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `2.0.1` | `2.1.0` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.14` |\n| [braces](https://github.com/micromatch/braces) | `3.0.2` | `3.0.3` |\n| [flatted](https://github.com/WebReflection/flatted) | `3.2.2` | `3.4.2` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [json5](https://github.com/json5/json5) | `2.2.0` | `2.2.3` |\n| [minimatch](https://github.com/isaacs/minimatch) | `5.1.6` | `5.1.9` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `3.1.5` |\n| [minimist](https://github.com/minimistjs/minimist) | `1.2.5` | `1.2.8` |\n| [picomatch](https://github.com/micromatch/picomatch) | `2.3.1` | `2.3.2` |\n\n\nUpdates `body-parser` from 1.19.1 to 1.20.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/expressjs/body-parser/releases\"\u003ebody-parser's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.20.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eThe reason for this release is a fix to the extended urlencoded parser returning objects instead of arrays for large array inputs (\u0026gt; 100) on qs@6.14.2+. (\u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/716\"\u003eexpressjs/body-parser#716\u003c/a\u003e)\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003erefactor(json): simplify strict mode error string construction by \u003ca href=\"https://github.com/jonchurch\"\u003e\u003ccode\u003e@​jonchurch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/692\"\u003eexpressjs/body-parser#692\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: correct off-by-one error in parameterCount by \u003ca href=\"https://github.com/abhu85\"\u003e\u003ccode\u003e@​abhu85\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/716\"\u003eexpressjs/body-parser#716\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edeps(qs): bump qs to 6.15.1 by \u003ca href=\"https://github.com/jonchurch\"\u003e\u003ccode\u003e@​jonchurch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/722\"\u003eexpressjs/body-parser#722\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease: 1.20.5 by \u003ca href=\"https://github.com/jonchurch\"\u003e\u003ccode\u003e@​jonchurch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/721\"\u003eexpressjs/body-parser#721\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/abhu85\"\u003e\u003ccode\u003e@​abhu85\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/716\"\u003eexpressjs/body-parser#716\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSpecial thanks to triager \u003ca href=\"https://github.com/krzysdz\"\u003e\u003ccode\u003e@​krzysdz\u003c/code\u003e\u003c/a\u003e for keeping this on our radar and effectively triaging the specific issue!\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/expressjs/body-parser/compare/1.20.4...1.20.5\"\u003ehttps://github.com/expressjs/body-parser/compare/1.20.4...1.20.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e1.20.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove redundant depth check by \u003ca href=\"https://github.com/blakeembrey\"\u003e\u003ccode\u003e@​blakeembrey\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/538\"\u003eexpressjs/body-parser#538\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: add support for Node.js v23 by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/553\"\u003eexpressjs/body-parser#553\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: restore CI for 1.x branch by \u003ca href=\"https://github.com/bjohansebas\"\u003e\u003ccode\u003e@​bjohansebas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/665\"\u003eexpressjs/body-parser#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edeps: qs@^6.14.0 by \u003ca href=\"https://github.com/bjohansebas\"\u003e\u003ccode\u003e@​bjohansebas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/664\"\u003eexpressjs/body-parser#664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edeps: use tilde notation and update certain dependencies by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/668\"\u003eexpressjs/body-parser#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: remove SECURITY.md by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/669\"\u003eexpressjs/body-parser#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: add CodeQL (SAST) by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/670\"\u003eexpressjs/body-parser#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease: 1.20.4 by \u003ca href=\"https://github.com/UlisesGascon\"\u003e\u003ccode\u003e@​UlisesGascon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/672\"\u003eexpressjs/body-parser#672\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/expressjs/body-parser/compare/1.20.3...1.20.4\"\u003ehttps://github.com/expressjs/body-parser/compare/1.20.3...1.20.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e1.20.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eImportant\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003edeps: qs@6.13.0\u003c/li\u003e\n\u003cli\u003eadd \u003ccode\u003edepth\u003c/code\u003e option to customize the depth level in the parser\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eIMPORTANT:\u003c/strong\u003e The default \u003ccode\u003edepth\u003c/code\u003e level for parsing URL-encoded data is now \u003ccode\u003e32\u003c/code\u003e (previously was \u003ccode\u003eInfinity\u003c/code\u003e). \u003ca href=\"https://github.com/expressjs/body-parser/blob/17529513673e39ba79886a7ce3363320cf1c0c50/README.md#depth\"\u003eDocumentation\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003echore: add support for OSSF scorecard reporting by \u003ca href=\"https://github.com/inigomarquinez\"\u003e\u003ccode\u003e@​inigomarquinez\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/522\"\u003eexpressjs/body-parser#522\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: fix errors in ci github action for node 8 and 9 by \u003ca href=\"https://github.com/inigomarquinez\"\u003e\u003ccode\u003e@​inigomarquinez\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/523\"\u003eexpressjs/body-parser#523\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: pin to node@22.4.1 by \u003ca href=\"https://github.com/wesleytodd\"\u003e\u003ccode\u003e@​wesleytodd\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/527\"\u003eexpressjs/body-parser#527\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edeps: qs@6.12.3 by \u003ca href=\"https://github.com/melikhov-dev\"\u003e\u003ccode\u003e@​melikhov-dev\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/521\"\u003eexpressjs/body-parser#521\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd OSSF Scorecard badge by \u003ca href=\"https://github.com/bjohansebas\"\u003e\u003ccode\u003e@​bjohansebas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/531\"\u003eexpressjs/body-parser#531\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLinter by \u003ca href=\"https://github.com/UlisesGascon\"\u003e\u003ccode\u003e@​UlisesGascon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/534\"\u003eexpressjs/body-parser#534\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease: 1.20.3 by \u003ca href=\"https://github.com/UlisesGascon\"\u003e\u003ccode\u003e@​UlisesGascon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/535\"\u003eexpressjs/body-parser#535\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/expressjs/body-parser/blob/1.20.5/HISTORY.md\"\u003ebody-parser's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.20.5 / 2026-04-24\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003erefactor(json): simplify strict mode error string construction\u003c/li\u003e\n\u003cli\u003efix: extended urlencoded parsing of arrays with \u0026gt;100 elements (\u003ca href=\"https://redirect.github.com/expressjs/body-parser/issues/716\"\u003e#716\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edeps: qs@~6.15.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.20.4 / 2025-12-01\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003edeps: qs@~6.14.0\u003c/li\u003e\n\u003cli\u003edeps: use tilde notation for dependencies\u003c/li\u003e\n\u003cli\u003edeps: http-errors@~2.0.1\u003c/li\u003e\n\u003cli\u003edeps: raw-body@~2.5.3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.20.3 / 2024-09-10\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003edeps: qs@6.13.0\u003c/li\u003e\n\u003cli\u003eadd \u003ccode\u003edepth\u003c/code\u003e option to customize the depth level in the parser\u003c/li\u003e\n\u003cli\u003eIMPORTANT: The default \u003ccode\u003edepth\u003c/code\u003e level for parsing URL-encoded data is now \u003ccode\u003e32\u003c/code\u003e (previously was \u003ccode\u003eInfinity\u003c/code\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.20.2 / 2023-02-21\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix strict json error message on Node.js 19+\u003c/li\u003e\n\u003cli\u003edeps: content-type@~1.0.5\n\u003cul\u003e\n\u003cli\u003eperf: skip value escaping when unnecessary\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003edeps: raw-body@2.5.2\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.20.1 / 2022-10-06\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003edeps: qs@6.11.0\u003c/li\u003e\n\u003cli\u003eperf: remove unnecessary object clone\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.20.0 / 2022-04-02\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix error message for json parse whitespace in \u003ccode\u003estrict\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFix internal error when inflated body exceeds limit\u003c/li\u003e\n\u003cli\u003ePrevent loss of async hooks context\u003c/li\u003e\n\u003cli\u003ePrevent hanging when request already read\u003c/li\u003e\n\u003cli\u003edeps: depd@2.0.0\n\u003cul\u003e\n\u003cli\u003eReplace internal \u003ccode\u003eeval\u003c/code\u003e usage with \u003ccode\u003eFunction\u003c/code\u003e constructor\u003c/li\u003e\n\u003cli\u003eUse instance methods on \u003ccode\u003eprocess\u003c/code\u003e to check for listeners\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003edeps: http-errors@2.0.0\n\u003cul\u003e\n\u003cli\u003edeps: depd@2.0.0\u003c/li\u003e\n\u003cli\u003edeps: statuses@2.0.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003edeps: on-finished@2.4.1\u003c/li\u003e\n\u003cli\u003edeps: qs@6.10.3\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/body-parser/commit/0defdbe7f95ad0d3bc007d3a7c59c8c0ab9e6575\"\u003e\u003ccode\u003e0defdbe\u003c/code\u003e\u003c/a\u003e release(patch): 1.20.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/body-parser/commit/cd0e7a000c53e7be7262d303e57a352b6a00db7f\"\u003e\u003ccode\u003ecd0e7a0\u003c/code\u003e\u003c/a\u003e deps(qs): bump qs to 6.15.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/body-parser/commit/6f24d7e8bcd9860b136920926ce86da1a7dd1d51\"\u003e\u003ccode\u003e6f24d7e\u003c/code\u003e\u003c/a\u003e fix: correct off-by-one error in parameterCount (\u003ca href=\"https://redirect.github.com/expressjs/body-parser/issues/716\"\u003e#716\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/body-parser/commit/b849bd533d8b4abf5576a3e301f28d9befa05ddd\"\u003e\u003ccode\u003eb849bd5\u003c/code\u003e\u003c/a\u003e deps: qs@~6.14.1 (\u003ca href=\"https://redirect.github.com/expressjs/body-parser/issues/690\"\u003e#690\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/body-parser/commit/2c55e2f712f320a8e8d0f9fcb1d06526d0e401c9\"\u003e\u003ccode\u003e2c55e2f\u003c/code\u003e\u003c/a\u003e refactor(json): simplify strict mode error string construction (\u003ca href=\"https://redirect.github.com/expressjs/body-parser/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/body-parser/commit/7db202cac84a001e6566c2dc6516b44db98beff3\"\u003e\u003ccode\u003e7db202c\u003c/code\u003e\u003c/a\u003e 1.20.4 (\u003ca href=\"https://redirect.github.com/expressjs/body-parser/issues/672\"\u003e#672\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/body-parser/commit/d8f8adb898676dfdf997b4455e5f9b689b53e989\"\u003e\u003ccode\u003ed8f8adb\u003c/code\u003e\u003c/a\u003e ci: add CodeQL (SAST) (\u003ca href=\"https://redirect.github.com/expressjs/body-parser/issues/670\"\u003e#670\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/body-parser/commit/6d133c19b3e7c0bb8301959ca1dba283d23d23c3\"\u003e\u003ccode\u003e6d133c1\u003c/code\u003e\u003c/a\u003e chore: remove SECURITY.md (\u003ca href=\"https://redirect.github.com/expressjs/body-parser/issues/669\"\u003e#669\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/body-parser/commit/fcd15355041ada6f37288dd13858d50429016b66\"\u003e\u003ccode\u003efcd1535\u003c/code\u003e\u003c/a\u003e deps: use tilde notation and update certain dependencies (\u003ca href=\"https://redirect.github.com/expressjs/body-parser/issues/668\"\u003e#668\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/body-parser/commit/ec5fa290d25d85e0049757e240249072331eaee6\"\u003e\u003ccode\u003eec5fa29\u003c/code\u003e\u003c/a\u003e deps: qs@~6.14.0 (\u003ca href=\"https://redirect.github.com/expressjs/body-parser/issues/664\"\u003e#664\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/expressjs/body-parser/compare/1.19.1...1.20.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~jonchurch\"\u003ejonchurch\u003c/a\u003e, a new releaser for body-parser since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `express` from 4.17.2 to 4.22.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/expressjs/express/releases\"\u003eexpress's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.22.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: restore \u0026gt;20 array parsing for \u003ccode\u003ereq.query\u003c/code\u003e repeated keys (\u003ca href=\"https://github.com/expressjs/express/commit/8d09bfe6d88983da5c3e12cfdd54782c4dc675db\"\u003e\u003ccode\u003e8d09bfe6\u003c/code\u003e\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eThis also unifies array-cap behavior across notations. Indexed notation (\u003ccode\u003ea[0]=...\u003c/code\u003e) was historically capped at qs's default \u003ccode\u003earrayLimit\u003c/code\u003e of 20 even in older qs versions; after this change it also allows up to 1000 items.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003edeps: qs@~6.15.1\u003c/li\u003e\n\u003cli\u003edeps: body-parser@~1.20.5\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/suuuuuuminnnnnn\"\u003e\u003ccode\u003e@​suuuuuuminnnnnn\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/7021\"\u003eexpressjs/express#7021\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/SAY-5\"\u003e\u003ccode\u003e@​SAY-5\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/7181\"\u003eexpressjs/express#7181\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/expressjs/express/compare/v4.22.1...v4.22.2\"\u003ehttps://github.com/expressjs/express/compare/v4.22.1...v4.22.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.22.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!IMPORTANT]\u003cbr /\u003e\nThe prior release (4.22.0) included an erroneous breaking change related to the extended query parser. There is no actual security vulnerability associated with this behavior (CVE-2024-51999 has been rejected). The change has been fully reverted in this release.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cul\u003e\n\u003cli\u003eRelease: 4.22.1 by \u003ca href=\"https://github.com/UlisesGascon\"\u003e\u003ccode\u003e@​UlisesGascon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6934\"\u003eexpressjs/express#6934\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/expressjs/express/compare/4.22.0...v4.22.1\"\u003ehttps://github.com/expressjs/express/compare/4.22.0...v4.22.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e4.22.0\u003c/h2\u003e\n\u003ch2\u003eImportant: Security\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity fix for \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2024-51999\"\u003eCVE-2024-51999\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/express/security/advisories/GHSA-pj86-cfqh-vqx6\"\u003eGHSA-pj86-cfqh-vqx6\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRefactor: improve readability by \u003ca href=\"https://github.com/sazk07\"\u003e\u003ccode\u003e@​sazk07\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6190\"\u003eexpressjs/express#6190\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: add support for Node.js@23.0 by \u003ca href=\"https://github.com/UlisesGascon\"\u003e\u003ccode\u003e@​UlisesGascon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6080\"\u003eexpressjs/express#6080\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMethod functions with no path should error by \u003ca href=\"https://github.com/wesleytodd\"\u003e\u003ccode\u003e@​wesleytodd\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/5957\"\u003eexpressjs/express#5957\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: updated github actions ci workflow by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6323\"\u003eexpressjs/express#6323\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: reorder \u003ccode\u003enpm i\u003c/code\u003e steps to fix ci for older node versions by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6336\"\u003eexpressjs/express#6336\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackport: ci: add node.js 24 to test matrix by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6506\"\u003eexpressjs/express#6506\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(4.x): wider range for query test skip by \u003ca href=\"https://github.com/jonchurch\"\u003e\u003ccode\u003e@​jonchurch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6513\"\u003eexpressjs/express#6513\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003euse tilde notation for certain dependencies by \u003ca href=\"https://github.com/UlisesGascon\"\u003e\u003ccode\u003e@​UlisesGascon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6905\"\u003eexpressjs/express#6905\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edeps: qs@6.14.0 by \u003ca href=\"https://github.com/UlisesGascon\"\u003e\u003ccode\u003e@​UlisesGascon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6909\"\u003eexpressjs/express#6909\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edeps: use tilde notation for \u003ccode\u003eqs\u003c/code\u003e by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6919\"\u003eexpressjs/express#6919\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease: 4.22.0 by \u003ca href=\"https://github.com/UlisesGascon\"\u003e\u003ccode\u003e@​UlisesGascon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6921\"\u003eexpressjs/express#6921\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/expressjs/express/compare/4.21.2...4.22.0\"\u003ehttps://github.com/expressjs/express/compare/4.21.2...4.22.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e4.21.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/expressjs/express/blob/v4.22.2/History.md\"\u003eexpress's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e4.22.2 / 2026-05-011\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix: restore \u0026gt;20 array parsing for \u003ccode\u003ereq.query\u003c/code\u003e repeated keys (\u003ca href=\"https://github.com/expressjs/express/commit/8d09bfe6d88983da5c3e12cfdd54782c4dc675db\"\u003e\u003ccode\u003e8d09bfe6\u003c/code\u003e\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eThis also unifies array-cap behavior across notations. Indexed notation (\u003ccode\u003ea[0]=...\u003c/code\u003e) was historically capped at qs's default \u003ccode\u003earrayLimit\u003c/code\u003e of 20 even in older qs versions; after this change it also allows up to 1000 items.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003edeps: qs@~6.15.1\u003c/li\u003e\n\u003cli\u003edeps: body-parser@~1.20.5\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e4.22.1 / 2025-12-01\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eRevert security fix for \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2024-51999\"\u003eCVE-2024-51999\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/express/security/advisories/GHSA-pj86-cfqh-vqx6\"\u003eGHSA-pj86-cfqh-vqx6\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eThe prior release (4.22.0) included an erroneous breaking change related to the extended query parser. There is no actual security vulnerability associated with this behavior (CVE-2024-51999 has been rejected). The change has been fully reverted in this release.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e4.22.0 / 2025-12-01\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity fix for \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2024-51999\"\u003eCVE-2024-51999\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/express/security/advisories/GHSA-pj86-cfqh-vqx6\"\u003eGHSA-pj86-cfqh-vqx6\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edeps: use tilde notation for dependencies\u003c/li\u003e\n\u003cli\u003edeps: qs@6.14.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e4.21.2 / 2024-11-06\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003edeps: path-to-regexp@0.1.12\n\u003cul\u003e\n\u003cli\u003eFix backtracking protection\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003edeps: path-to-regexp@0.1.11\n\u003cul\u003e\n\u003cli\u003eThrows an error on invalid path values\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e4.21.1 / 2024-10-08\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBackported a fix for \u003ca href=\"https://nvd.nist.gov/vuln/detail/CVE-2024-47764\"\u003eCVE-2024-47764\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e4.21.0 / 2024-09-11\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eres.location(\u0026quot;back\u0026quot;)\u003c/code\u003e and \u003ccode\u003eres.redirect(\u0026quot;back\u0026quot;)\u003c/code\u003e magic string\u003c/li\u003e\n\u003cli\u003edeps: serve-static@1.16.2\n\u003cul\u003e\n\u003cli\u003eincludes send@0.19.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003edeps: finalhandler@1.3.1\u003c/li\u003e\n\u003cli\u003edeps: qs@6.13.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e4.20.0 / 2024-09-10\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003edeps: serve-static@0.16.0\n\u003cul\u003e\n\u003cli\u003eRemove link renderization in html while redirecting\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003edeps: send@0.19.0\n\u003cul\u003e\n\u003cli\u003eRemove link renderization in html while redirecting\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003edeps: body-parser@0.6.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/df0abc9333a3398b97b71f6ea7cd77d5ea3e9f97\"\u003e\u003ccode\u003edf0abc9\u003c/code\u003e\u003c/a\u003e 4.22.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/836d36668ea750f78b4373b4de79bbd22634e6ec\"\u003e\u003ccode\u003e836d366\u003c/code\u003e\u003c/a\u003e \u003ccode\u003e4.x\u003c/code\u003e update qs to 6.15.1, body-parser 1.20.5 (\u003ca href=\"https://redirect.github.com/expressjs/express/issues/7224\"\u003e#7224\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/8d09bfe6d88983da5c3e12cfdd54782c4dc675db\"\u003e\u003ccode\u003e8d09bfe\u003c/code\u003e\u003c/a\u003e fix: restore array parsing for req.query repeated keys (\u003ca href=\"https://redirect.github.com/expressjs/express/issues/7181\"\u003e#7181\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/d39e8ad1778a0b8a606a5a7b17096d0cc5ec722d\"\u003e\u003ccode\u003ed39e8ad\u003c/code\u003e\u003c/a\u003e deps: body-parser@~1.20.4 (\u003ca href=\"https://redirect.github.com/expressjs/express/issues/7021\"\u003e#7021\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/efe85d9fdc9e3a62f7a1121b4f5f484862298b48\"\u003e\u003ccode\u003eefe85d9\u003c/code\u003e\u003c/a\u003e deps: qs@^6.14.1 (\u003ca href=\"https://redirect.github.com/expressjs/express/issues/6972\"\u003e#6972\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/f62378e1bc776259c0a471476c2dc043a02ac762\"\u003e\u003ccode\u003ef62378e\u003c/code\u003e\u003c/a\u003e 📝 add note to history\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/12fae14531a78f19a2caaa5d4f58d9b01eaf3194\"\u003e\u003ccode\u003e12fae14\u003c/code\u003e\u003c/a\u003e 4.22.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/5ddf311af32e772a77fd48b6266ce2f1ba330e1a\"\u003e\u003ccode\u003e5ddf311\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;sec: security patch for CVE-2024-51999\u0026quot;\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/49744abd1120484fe64d7bde1cd3197c32523b6e\"\u003e\u003ccode\u003e49744ab\u003c/code\u003e\u003c/a\u003e 4.22.0 (\u003ca href=\"https://redirect.github.com/expressjs/express/issues/6921\"\u003e#6921\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/6e97452f600a3b01719fbc5517d833c7646b0bb7\"\u003e\u003ccode\u003e6e97452\u003c/code\u003e\u003c/a\u003e sec: security patch for CVE-2024-51999\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/expressjs/express/compare/4.17.2...v4.22.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~jonchurch\"\u003ejonchurch\u003c/a\u003e, a new releaser for express since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ejs` from 3.1.6 to 3.1.10\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/mde/ejs/releases\"\u003eejs's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.1.10\u003c/h2\u003e\n\u003cp\u003eVersion 3.1.10\u003c/p\u003e\n\u003ch2\u003ev3.1.9\u003c/h2\u003e\n\u003cp\u003eVersion 3.1.9\u003c/p\u003e\n\u003ch2\u003ev3.1.8\u003c/h2\u003e\n\u003cp\u003eVersion 3.1.8\u003c/p\u003e\n\u003ch2\u003ev3.1.7\u003c/h2\u003e\n\u003cp\u003eVersion 3.1.7\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mde/ejs/commit/d3f807dea9ce904e20a47a661f2310ce9134dc2a\"\u003e\u003ccode\u003ed3f807d\u003c/code\u003e\u003c/a\u003e Version 3.1.10\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mde/ejs/commit/9ee26dde5d7015d9c0e2ff87314cabeac5247c02\"\u003e\u003ccode\u003e9ee26dd\u003c/code\u003e\u003c/a\u003e Mocha TDD\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mde/ejs/commit/e469741dca7df2eb400199e1cdb74621e3f89aa5\"\u003e\u003ccode\u003ee469741\u003c/code\u003e\u003c/a\u003e Basic pollution protection\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mde/ejs/commit/715e9507fa3e6122dc6430fe0f25a6e6ded300c1\"\u003e\u003ccode\u003e715e950\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/mde/ejs/issues/756\"\u003e#756\u003c/a\u003e from Jeffrey-mu/main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mde/ejs/commit/cabe3146ad964a1e98db7742abf435906ca79406\"\u003e\u003ccode\u003ecabe314\u003c/code\u003e\u003c/a\u003e Include advanced usage examples\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mde/ejs/commit/29b076cdbbf3eb1b4323b33299ab6d79391b2c33\"\u003e\u003ccode\u003e29b076c\u003c/code\u003e\u003c/a\u003e Added header\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mde/ejs/commit/11503c79af882e3635b513d57c7f1813792eb127\"\u003e\u003ccode\u003e11503c7\u003c/code\u003e\u003c/a\u003e Merge branch 'main' of github.com:mde/ejs into main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mde/ejs/commit/7690404e2fc1688756938e4d2fc19e0fac77d736\"\u003e\u003ccode\u003e7690404\u003c/code\u003e\u003c/a\u003e Added security banner to README\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mde/ejs/commit/f47d7aedd51a983e4f73045f962b1209096b5800\"\u003e\u003ccode\u003ef47d7ae\u003c/code\u003e\u003c/a\u003e Update SECURITY.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mde/ejs/commit/828cea1687e3db459ab09d2f405d2444c7580b90\"\u003e\u003ccode\u003e828cea1\u003c/code\u003e\u003c/a\u003e Update SECURITY.md\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/mde/ejs/compare/v3.1.6...v3.1.10\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `express` from 4.17.2 to 4.22.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/expressjs/express/releases\"\u003eexpress's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.22.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: restore \u0026gt;20 array parsing for \u003ccode\u003ereq.query\u003c/code\u003e repeated keys (\u003ca href=\"https://github.com/expressjs/express/commit/8d09bfe6d88983da5c3e12cfdd54782c4dc675db\"\u003e\u003ccode\u003e8d09bfe6\u003c/code\u003e\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eThis also unifies array-cap behavior across notations. Indexed notation (\u003ccode\u003ea[0]=...\u003c/code\u003e) was historically capped at qs's default \u003ccode\u003earrayLimit\u003c/code\u003e of 20 even in older qs versions; after this change it also allows up to 1000 items.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003edeps: qs@~6.15.1\u003c/li\u003e\n\u003cli\u003edeps: body-parser@~1.20.5\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/suuuuuuminnnnnn\"\u003e\u003ccode\u003e@​suuuuuuminnnnnn\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/7021\"\u003eexpressjs/express#7021\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/SAY-5\"\u003e\u003ccode\u003e@​SAY-5\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/7181\"\u003eexpressjs/express#7181\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/expressjs/express/compare/v4.22.1...v4.22.2\"\u003ehttps://github.com/expressjs/express/compare/v4.22.1...v4.22.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.22.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!IMPORTANT]\u003cbr /\u003e\nThe prior release (4.22.0) included an erroneous breaking change related to the extended query parser. There is no actual security vulnerability associated with this behavior (CVE-2024-51999 has been rejected). The change has been fully reverted in this release.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cul\u003e\n\u003cli\u003eRelease: 4.22.1 by \u003ca href=\"https://github.com/UlisesGascon\"\u003e\u003ccode\u003e@​UlisesGascon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6934\"\u003eexpressjs/express#6934\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/expressjs/express/compare/4.22.0...v4.22.1\"\u003ehttps://github.com/expressjs/express/compare/4.22.0...v4.22.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e4.22.0\u003c/h2\u003e\n\u003ch2\u003eImportant: Security\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity fix for \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2024-51999\"\u003eCVE-2024-51999\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/express/security/advisories/GHSA-pj86-cfqh-vqx6\"\u003eGHSA-pj86-cfqh-vqx6\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRefactor: improve readability by \u003ca href=\"https://github.com/sazk07\"\u003e\u003ccode\u003e@​sazk07\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6190\"\u003eexpressjs/express#6190\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: add support for Node.js@23.0 by \u003ca href=\"https://github.com/UlisesGascon\"\u003e\u003ccode\u003e@​UlisesGascon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6080\"\u003eexpressjs/express#6080\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMethod functions with no path should error by \u003ca href=\"https://github.com/wesleytodd\"\u003e\u003ccode\u003e@​wesleytodd\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/5957\"\u003eexpressjs/express#5957\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: updated github actions ci workflow by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6323\"\u003eexpressjs/express#6323\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: reorder \u003ccode\u003enpm i\u003c/code\u003e steps to fix ci for older node versions by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6336\"\u003eexpressjs/express#6336\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackport: ci: add node.js 24 to test matrix by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6506\"\u003eexpressjs/express#6506\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(4.x): wider range for query test skip by \u003ca href=\"https://github.com/jonchurch\"\u003e\u003ccode\u003e@​jonchurch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6513\"\u003eexpressjs/express#6513\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003euse tilde notation for certain dependencies by \u003ca href=\"https://github.com/UlisesGascon\"\u003e\u003ccode\u003e@​UlisesGascon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6905\"\u003eexpressjs/express#6905\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edeps: qs@6.14.0 by \u003ca href=\"https://github.com/UlisesGascon\"\u003e\u003ccode\u003e@​UlisesGascon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6909\"\u003eexpressjs/express#6909\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edeps: use tilde notation for \u003ccode\u003eqs\u003c/code\u003e by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6919\"\u003eexpressjs/express#6919\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease: 4.22.0 by \u003ca href=\"https://github.com/UlisesGascon\"\u003e\u003ccode\u003e@​UlisesGascon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6921\"\u003eexpressjs/express#6921\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/expressjs/express/compare/4.21.2...4.22.0\"\u003ehttps://github.com/expressjs/express/compare/4.21.2...4.22.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e4.21.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/expressjs/express/blob/v4.22.2/History.md\"\u003eexpress's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e4.22.2 / 2026-05-011\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix: restore \u0026gt;20 array parsing for \u003ccode\u003ereq.query\u003c/code\u003e repeated keys (\u003ca href=\"https://github.com/expressjs/express/commit/8d09bfe6d88983da5c3e12cfdd54782c4dc675db\"\u003e\u003ccode\u003e8d09bfe6\u003c/code\u003e\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eThis also unifies array-cap behavior across notations. Indexed notation (\u003ccode\u003ea[0]=...\u003c/code\u003e) was historically capped at qs's default \u003ccode\u003earrayLimit\u003c/code\u003e of 20 even in older qs versions; after this change it also allows up to 1000 items.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003edeps: qs@~6.15.1\u003c/li\u003e\n\u003cli\u003edeps: body-parser@~1.20.5\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e4.22.1 / 2025-12-01\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eRevert security fix for \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2024-51999\"\u003eCVE-2024-51999\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/express/security/advisories/GHSA-pj86-cfqh-vqx6\"\u003eGHSA-pj86-cfqh-vqx6\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eThe prior release (4.22.0) included an erroneous breaking change related to the extended query parser. There is no actual security vulnerability associated with this behavior (CVE-2024-51999 has been rejected). The change has been fully reverted in this release.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e4.22.0 / 2025-12-01\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity fix for \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2024-51999\"\u003eCVE-2024-51999\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/express/security/advisories/GHSA-pj86-cfqh-vqx6\"\u003eGHSA-pj86-cfqh-vqx6\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edeps: use tilde notation for dependencies\u003c/li\u003e\n\u003cli\u003edeps: qs@6.14.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e4.21.2 / 2024-11-06\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003edeps: path-to-regexp@0.1.12\n\u003cul\u003e\n\u003cli\u003eFix backtracking protection\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003edeps: path-to-regexp@0.1.11\n\u003cul\u003e\n\u003cli\u003eThrows an error on invalid path values\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e4.21.1 / 2024-10-08\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBackported a fix for \u003ca href=\"https://nvd.nist.gov/vuln/detail/CVE-2024-47764\"\u003eCVE-2024-47764\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e4.21.0 / 2024-09-11\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eres.location(\u0026quot;back\u0026quot;)\u003c/code\u003e and \u003ccode\u003eres.redirect(\u0026quot;back\u0026quot;)\u003c/code\u003e magic string\u003c/li\u003e\n\u003cli\u003edeps: serve-static@1.16.2\n\u003cul\u003e\n\u003cli\u003eincludes send@0.19.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003edeps: finalhandler@1.3.1\u003c/li\u003e\n\u003cli\u003edeps: qs@6.13.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e4.20.0 / 2024-09-10\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003edeps: serve-static@0.16.0\n\u003cul\u003e\n\u003cli\u003eRemove link renderization in html while redirecting\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003edeps: send@0.19.0\n\u003cul\u003e\n\u003cli\u003eRemove link renderization in html while redirecting\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003edeps: body-parser@0.6.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/df0abc9333a3398b97b71f6ea7cd77d5ea3e9f97\"\u003e\u003ccode\u003edf0abc9\u003c/code\u003e\u003c/a\u003e 4.22.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/836d36668ea750f78b4373b4de79bbd22634e6ec\"\u003e\u003ccode\u003e836d366\u003c/code\u003e\u003c/a\u003e \u003ccode\u003e4.x\u003c/code\u003e update qs to 6.15.1, body-parser 1.20.5 (\u003ca href=\"https://redirect.github.com/expressjs/express/issues/7224\"\u003e#7224\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/8d09bfe6d88983da5c3e12cfdd54782c4dc675db\"\u003e\u003ccode\u003e8d09bfe\u003c/code\u003e\u003c/a\u003e fix: restore array parsing for req.query repeated keys (\u003ca href=\"https://redirect.github.com/expressjs/express/issues/7181\"\u003e#7181\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/d39e8ad1778a0b8a606a5a7b17096d0cc5ec722d\"\u003e\u003ccode\u003ed39e8ad\u003c/code\u003e\u003c/a\u003e deps: body-parser@~1.20.4 (\u003ca href=\"https://redirect.github.com/expressjs/express/issues/7021\"\u003e#7021\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/efe85d9fdc9e3a62f7a1121b4f5f484862298b48\"\u003e\u003ccode\u003eefe85d9\u003c/code\u003e\u003c/a\u003e deps: qs@^6.14.1 (\u003ca href=\"https://redirect.github.com/expressjs/express/issues/6972\"\u003e#6972\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/f62378e1bc776259c0a471476c2dc043a02ac762\"\u003e\u003ccode\u003ef62378e\u003c/code\u003e\u003c/a\u003e 📝 add note to history\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/12fae14531a78f19a2caaa5d4f58d9b01eaf3194\"\u003e\u003ccode\u003e12fae14\u003c/code\u003e\u003c/a\u003e 4.22.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/5ddf311af32e772a77fd48b6266ce2f1ba330e1a\"\u003e\u003ccode\u003e5ddf311\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;sec: security patch for CVE-2024-51999\u0026quot;\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/49744abd1120484fe64d7bde1cd3197c32523b6e\"\u003e\u003ccode\u003e49744ab\u003c/code\u003e\u003c/a\u003e 4.22.0 (\u003ca href=\"https://redirect.github.com/expressjs/express/issues/6921\"\u003e#6921\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/6e97452f600a3b01719fbc5517d833c7646b0bb7\"\u003e\u003ccode\u003e6e97452\u003c/code\u003e\u003c/a\u003e sec: security patch for CVE-2024-51999\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/expressjs/express/compare/4.17.2...v4.22.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~jonchurch\"\u003ejonchurch\u003c/a\u003e, a new releaser for express since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `esbuild` from 0.18.13 to 0.25.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/evanw/esbuild/releases\"\u003eesbuild's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.25.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eThis release deliberately contains backwards-incompatible changes.\u003c/strong\u003e To avoid automatically picking up releases like this, you should either be pinning the exact version of \u003ccode\u003eesbuild\u003c/code\u003e in your \u003ccode\u003epackage.json\u003c/code\u003e file (recommended) or be using a version range syntax that only accepts patch upgrades such as \u003ccode\u003e^0.24.0\u003c/code\u003e or \u003ccode\u003e~0.24.0\u003c/code\u003e. See npm's documentation about \u003ca href=\"https://docs.npmjs.com/cli/v6/using-npm/semver/\"\u003esemver\u003c/a\u003e for more information.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eRestrict access to esbuild's development server (\u003ca href=\"https://github.com/evanw/esbuild/security/advisories/GHSA-67mh-4wv8-2f99\"\u003eGHSA-67mh-4wv8-2f99\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eThis change addresses esbuild's first security vulnerability report. Previously esbuild set the \u003ccode\u003eAccess-Control-Allow-Origin\u003c/code\u003e header to \u003ccode\u003e*\u003c/code\u003e to allow esbuild's development server to be flexible in how it's used for development. However, this allows the websites you visit to make HTTP requests to esbuild's local development server, which gives read-only access to your source code if the website were to fetch your source code's specific URL. You can read more information in \u003ca href=\"https://github.com/evanw/esbuild/security/advisories/GHSA-67mh-4wv8-2f99\"\u003ethe report\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003eStarting with this release, \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/HTTP/CORS\"\u003eCORS\u003c/a\u003e will now be disabled, and requests will now be denied if the host does not match the one provided to \u003ccode\u003e--serve=\u003c/code\u003e. The default host is \u003ccode\u003e0.0.0.0\u003c/code\u003e, which refers to all of the IP addresses that represent the local machine (e.g. both \u003ccode\u003e127.0.0.1\u003c/code\u003e and \u003ccode\u003e192.168.0.1\u003c/code\u003e). If you want to customize anything about esbuild's development server, you can \u003ca href=\"https://esbuild.github.io/api/#serve-proxy\"\u003eput a proxy in front of esbuild\u003c/a\u003e and modify the incoming and/or outgoing requests.\u003c/p\u003e\n\u003cp\u003eIn addition, the \u003ccode\u003eserve()\u003c/code\u003e API call has been changed to return an array of \u003ccode\u003ehosts\u003c/code\u003e instead of a single \u003ccode\u003ehost\u003c/code\u003e string. This makes it possible to determine all of the hosts that esbuild's development server will accept.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/sapphi-red\"\u003e\u003ccode\u003e@​sapphi-red\u003c/code\u003e\u003c/a\u003e for reporting this issue.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDelete output files when a build fails in watch mode (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/3643\"\u003e#3643\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eIt has been requested for esbuild to delete files when a build fails in watch mode. Previously esbuild left the old files in place, which could cause people to not immediately realize that the most recent build failed. With this release, esbuild will now delete all output files if a rebuild fails. Fixing the build error and triggering another rebuild will restore all output files again.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix correctness issues with the CSS nesting transform (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/3620\"\u003e#3620\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/3877\"\u003e#3877\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/3933\"\u003e#3933\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/3997\"\u003e#3997\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4005\"\u003e#4005\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/evanw/esbuild/pull/4037\"\u003e#4037\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/evanw/esbuild/pull/4038\"\u003e#4038\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eThis release fixes the following problems:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eNaive expansion of CSS nesting can result in an exponential blow-up of generated CSS if each nesting level has multiple selectors. Previously esbuild sometimes collapsed individual nesting levels using \u003ccode\u003e:is()\u003c/code\u003e to limit expansion. However, this collapsing wasn't correct in some cases, so it has been removed to fix correctness issues.\u003c/p\u003e\n\u003cpre lang=\"css\"\u003e\u003ccode\u003e/* Original code */\r\n.parent {\r\n  \u0026gt; .a,\r\n  \u0026gt; .b1 \u0026gt; .b2 {\r\n    color: red;\r\n  }\r\n}\r\n\u003cp\u003e/* Old output (with --supported:nesting=false) */\u003cbr /\u003e\n.parent \u0026gt; :is(.a, .b1 \u0026gt; .b2) {\u003cbr /\u003e\ncolor: red;\u003cbr /\u003e\n}\u003c/p\u003e\n\u003cp\u003e/* New output (with --supported:nesting=false) */\u003cbr /\u003e\n.parent \u0026gt; .a,\u003cbr /\u003e\n.parent \u0026gt; .b1 \u0026gt; .b2 {\u003cbr /\u003e\ncolor: red;\u003cbr /\u003e\n}\u003cbr /\u003e\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/tim-we\"\u003e\u003ccode\u003e@​tim-we\u003c/code\u003e\u003c/a\u003e for working on a fix.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eThe \u003ccode\u003e\u0026amp;\u003c/code\u003e CSS nesting selector can be repeated multiple times to increase CSS specificity. Previously esbuild ignored this possibility and incorrectly considered \u003ccode\u003e\u0026amp;\u0026amp;\u003c/code\u003e to have the same specificity as \u003ccode\u003e\u0026amp;\u003c/code\u003e. With this release, this should now work correctly:\u003c/p\u003e\n\u003cpre lang=\"css\"\u003e\u003ccode\u003e/* Original code (color should be red) */\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/evanw/esbuild/blob/main/CHANGELOG-2023.md\"\u003eesbuild's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog: 2023\u003c/h1\u003e\n\u003cp\u003eThis changelog documents all esbuild versions published in the year 2023 (versions 0.16.13 through 0.19.11).\u003c/p\u003e\n\u003ch2\u003e0.19.11\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix TypeScript-specific class transform edge case (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/3559\"\u003e#3559\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eThe previous release introduced an optimization that avoided transforming \u003ccode\u003esuper()\u003c/code\u003e in the class constructor for TypeScript code compiled with \u003ccode\u003euseDefineForClassFields\u003c/code\u003e set to \u003ccode\u003efalse\u003c/code\u003e if all class instance fields have no initializers. The rationale was that in this case, all class instance fields are omitted in the output so no changes to the constructor are needed. However, if all of this is the case \u003cem\u003eand\u003c/em\u003e there are \u003ccode\u003e#private\u003c/code\u003e instance fields with initializers, those private instance field initializers were still being moved into the constructor. This was problematic because they were being inserted before the call to \u003ccode\u003esuper()\u003c/code\u003e (since \u003ccode\u003esuper()\u003c/code\u003e is now no longer transformed in that case). This release introduces an additional optimization that avoids moving the private instance field initializers into the constructor in this edge case, which generates smaller code, matches the TypeScript compiler's output more closely, and avoids this bug:\u003c/p\u003e\n\u003cpre lang=\"ts\"\u003e\u003ccode\u003e// Original code\nclass Foo extends Bar {\n  #private = 1;\n  public: any;\n  constructor() {\n    super();\n  }\n}\n\u003cp\u003e// Old output (with esbuild v0.19.9)\u003cbr /\u003e\nclass Foo extends Bar {\u003cbr /\u003e\nconstructor() {\u003cbr /\u003e\nsuper();\u003cbr /\u003e\nthis.#private = 1;\u003cbr /\u003e\n}\u003cbr /\u003e\n#private;\u003cbr /\u003e\n}\u003c/p\u003e\n\u003cp\u003e// Old output (with esbuild v0.19.10)\u003cbr /\u003e\nclass Foo extends Bar {\u003cbr /\u003e\nconstructor() {\u003cbr /\u003e\nthis.#private = 1;\u003cbr /\u003e\nsuper();\u003cbr /\u003e\n}\u003cbr /\u003e\n#private;\u003cbr /\u003e\n}\u003c/p\u003e\n\u003cp\u003e// New output\u003cbr /\u003e\nclass Foo extends Bar {\u003cbr /\u003e\n#private = 1;\u003cbr /\u003e\nconstructor() {\u003cbr /\u003e\nsuper();\u003cbr /\u003e\n}\u003cbr /\u003e\n}\u003cbr /\u003e\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eMinifier: allow reording a primitive past a side-effect (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/3568\"\u003e#3568\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eThe minifier previously allowed reordering a side-effect past a primitive, but didn't handle the case of reordering a primitive past a side-effect. This additional case is now handled:\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/e9174d671b1882758cd32ac5e146200f5bee3e45\"\u003e\u003ccode\u003ee9174d6\u003c/code\u003e\u003c/a\u003e publish 0.25.0 to npm\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/c27dbebb9e7a55dd9a084dd151dddd840787490e\"\u003e\u003ccode\u003ec27dbeb\u003c/code\u003e\u003c/a\u003e fix \u003ccode\u003ehosts\u003c/code\u003e in \u003ccode\u003eplugin-tests.js\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/6794f602a453cf0255bcae245871de120a89a559\"\u003e\u003ccode\u003e6794f60\u003c/code\u003e\u003c/a\u003e fix \u003ccode\u003ehosts\u003c/code\u003e in \u003ccode\u003enode-unref-tests.js\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/de85afd65edec9ebc44a11e245fd9e9a2e99760d\"\u003e\u003ccode\u003ede85afd\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/da1de1bf77a65f06654b49878d9ec4747ddaa21f\"\u003e\u003ccode\u003eda1de1b\u003c/code\u003e\u003c/a\u003e fix \u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4065\"\u003e#4065\u003c/a\u003e: bitwise operators can return bigints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/f4e9d19fb20095a98bf40634f0380f6a16be91e7\"\u003e\u003ccode\u003ef4e9d19\u003c/code\u003e\u003c/a\u003e switch case liveness: \u003ccode\u003edefault\u003c/code\u003e is always last\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/7aa47c3e778ea04849f97f18dd9959df88fa0886\"\u003e\u003ccode\u003e7aa47c3\u003c/code\u003e\u003c/a\u003e fix \u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4028\"\u003e#4028\u003c/a\u003e: minify live/dead \u003ccode\u003eswitch\u003c/code\u003e cases better\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/22ecd306190b8971ec4474b5485266c20350e266\"\u003e\u003ccode\u003e22ecd30\u003c/code\u003e\u003c/a\u003e minify: more constant folding for strict equality\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/4cdf03c03697128044fa8fb76e5c478e9765b353\"\u003e\u003ccode\u003e4cdf03c\u003c/code\u003e\u003c/a\u003e fix \u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4053\"\u003e#4053\u003c/a\u003e: reordering of \u003ccode\u003e.tsx\u003c/code\u003e in \u003ccode\u003enode_modules\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/dc719775b7140120916bd9e6777ca1cb8a1cdc0e\"\u003e\u003ccode\u003edc71977\u003c/code\u003e\u003c/a\u003e fix \u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/3692\"\u003e#3692\u003c/a\u003e: \u003ccode\u003e0\u003c/code\u003e now picks a random ephemeral port\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/evanw/esbuild/compare/v0.18.13...v0.25.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `jsonwebtoken` from 8.5.1 to 9.0.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/auth0/node-jsonwebtoken/blob/master/CHANGELOG.md\"\u003ejsonwebtoken's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e9.0.3 - 2025-12-04\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eupdates jws version to 4.0.1.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e9.0.2 - 2023-08-30\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esecurity: updating semver to 7.5.4 to resolve CVE-2022-25883, closes \u003ca href=\"https://redirect.github.com/auth0/node-jsonwebtoken/issues/921\"\u003e#921\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003erefactor: reduce library size by using lodash specific dependencies, closes \u003ca href=\"https://redirect.github.com/auth0/node-jsonwebtoken/issues/878\"\u003e#878\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e9.0.1 - 2023-07-05\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(stubs): allow decode method to be stubbed\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e9.0.0 - 2022-12-21\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eBreaking changes: See \u003ca href=\"https://github.com/auth0/node-jsonwebtoken/wiki/Migration-Notes:-v8-to-v9\"\u003eMigration from v8 to v9\u003c/a\u003e\u003c/strong\u003e\u003c/p\u003e\n\u003ch3\u003eBreaking changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemoved support for Node versions 11 and below.\u003c/li\u003e\n\u003cli\u003eThe verify() function no longer accepts unsigned tokens by default. ([834503079514b72264fd13023a3b8d648afd6a16]\u003ca href=\"https://github.com/auth0/node-jsonwebtoken/commit/834503079514b72264fd13023a3b8d648afd6a16\"\u003ehttps://github.com/auth0/node-jsonwebtoken/commit/834503079514b72264fd13023a3b8d648afd6a16\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRSA key size must be 2048 bits or greater. ([ecdf6cc6073ea13a7e71df5fad043550f08d0fa6]\u003ca href=\"https://github.com/auth0/node-jsonwebtoken/commit/ecdf6cc6073ea13a7e71df5fad043550f08d0fa6\"\u003ehttps://github.com/auth0/node-jsonwebtoken/commit/ecdf6cc6073ea13a7e71df5fad043550f08d0fa6\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eKey types must be valid for the signing / verification algorithm\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eSecurity fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esecurity: fixes \u003ccode\u003eArbitrary File Write via verify function\u003c/code\u003e - CVE-2022-23529\u003c/li\u003e\n\u003cli\u003esecurity: fixes \u003ccode\u003eInsecure default algorithm in jwt.verify() could lead to signature validation bypass\u003c/code\u003e - CVE-2022-23540\u003c/li\u003e\n\u003cli\u003esecurity: fixes \u003ccode\u003eInsecure implementation of key retrieval function could lead to Forgeable Public/Private Tokens from RSA to HMAC\u003c/code\u003e - CVE-2022-23541\u003c/li\u003e\n\u003cli\u003esecurity: fixes \u003ccode\u003eUnrestricted key type could lead to legacy keys usage\u003c/code\u003e - CVE-2022-23539\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jsonwebtoken/commit/ed59e76ea37a80f54b833668c02a5271984dcba3\"\u003e\u003ccode\u003eed59e76\u003c/code\u003e\u003c/a\u003e chore: bump jws to 4.0.1 (\u003ca href=\"https://redirect.github.com/auth0/node-jsonwebtoken/issues/1007\"\u003e#1007\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jsonwebtoken/commit/bc28861f1fa981ed9c009e29c044a19760a0b128\"\u003e\u003ccode\u003ebc28861\u003c/code\u003e\u003c/a\u003e Release 9.0.2  (\u003ca href=\"https://redirect.github.com/auth0/node-jsonwebtoken/issues/935\"\u003e#935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jsonwebtoken/commit/96b89060cfc19272a7d853f53cb28c42580a6a67\"\u003e\u003ccode\u003e96b8906\u003c/code\u003e\u003c/a\u003e refactor: use specific lodash packages (\u003ca href=\"https://redirect.github.com/auth0/node-jsonwebtoken/issues/933\"\u003e#933\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jsonwebtoken/commit/ed35062239c0195d4341025d4699cc39608b435e\"\u003e\u003ccode\u003eed35062\u003c/code\u003e\u003c/a\u003e security: Updating semver to 7.5.4 to resolve CVE-2022-25883 (\u003ca href=\"https://redirect.github.com/auth0/node-jsonwebtoken/issues/932\"\u003e#932\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jsonwebtoken/commit/84539b29e17fd40ed25c53fc28db8ae41a34aff8\"\u003e\u003ccode\u003e84539b2\u003c/code\u003e\u003c/a\u003e Updating package version to 9.0.1 (\u003ca href=\"https://redirect.github.com/auth0/node-jsonwebtoken/issues/920\"\u003e#920\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jsonwebtoken/commit/a99fd4b473e257c2f50ff69c716db1c520bf9a78\"\u003e\u003ccode\u003ea99fd4b\u003c/code\u003e\u003c/a\u003e fix(stubs): allow decode method to be stubbed (\u003ca href=\"https://redirect.github.com/auth0/node-jsonwebtoken/issues/876\"\u003e#876\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jsonwebtoken/commit/e1fa9dcc12054a8681db4e6373da1b30cf7016e3\"\u003e\u003ccode\u003ee1fa9dc\u003c/code\u003e\u003c/a\u003e Merge pull request from GHSA-8cf7-32gw-wr33\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jsonwebtoken/commit/5eaedbf2b01676d952336e73b4d2efba847d2d1b\"\u003e\u003ccode\u003e5eaedbf\u003c/code\u003e\u003c/a\u003e chore(ci): remove github test actions job (\u003ca href=\"https://redirect.github.com/auth0/node-jsonwebtoken/issues/861\"\u003e#861\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jsonwebtoken/commit/cd4163eb1407aab0b3148f91b0b9c26276b96c6b\"\u003e\u003ccode\u003ecd4163e\u003c/code\u003e\u003c/a\u003e chore(ci): configure Github Actions jobs for Tests \u0026amp; Security Scanning (\u003ca href=\"https://redirect.github.com/auth0/node-jsonwebtoken/issues/856\"\u003e#856\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jsonwebtoken/commit/ecdf6cc6073ea13a7e71df5fad043550f08d0fa6\"\u003e\u003ccode\u003eecdf6cc\u003c/code\u003e\u003c/a\u003e fix!: Prevent accidental use of insecure key sizes \u0026amp; misconfiguration of secr...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/auth0/node-jsonwebtoken/compare/v8.5.1...v9.0.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~julien.wollscheid\"\u003ejulien.wollscheid\u003c/a\u003e, a new releaser for jsonwebtoken since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `semver` from 7.3.5 to 7.8.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/npm/node-semver/releases\"\u003esemver's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.8.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/npm/node-semver/compare/v7.7.4...v7.8.0\"\u003e7.8.0\u003c/a\u003e (2026-05-08)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/0d0a0a2582fb1486bc6cd255ba18819c441ed149\"\u003e\u003ccode\u003e0d0a0a2\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/855\"\u003e#855\u003c/a\u003e Add \u003ccode\u003etruncate\u003c/code\u003e function (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/855\"\u003e#855\u003c/a\u003e) (\u003ca href=\"https://github.com/pjohnmeyer\"\u003e\u003ccode\u003e@​pjohnmeyer\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/owlstronaut\"\u003e\u003ccode\u003e@​owlstronaut\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/3905343045dc293c3694d5e46170b1bb1fb5cf58\"\u003e\u003ccode\u003e3905343\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/859\"\u003e#859\u003c/a\u003e Warn when defaulting to --inc=patch in CLI (\u003ca href=\"https://github.com/pjohnmeyer\"\u003e\u003ccode\u003e@​pjohnmeyer\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/c368af612e521767e960419e6388c5129c857984\"\u003e\u003ccode\u003ec368af6\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/853\"\u003e#853\u003c/a\u003e fix typos in documentation (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/853\"\u003e#853\u003c/a\u003e) (\u003ca href=\"https://github.com/ankitkumar572005\"\u003e\u003ccode\u003e@​ankitkumar572005\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/37776c31e2f3448fd852c975888e37b03efe9afe\"\u003e\u003ccode\u003e37776c3\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/846\"\u003e#846\u003c/a\u003e fix BNF grammar to distinguish prerelease from build identifiers (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/846\"\u003e#846\u003c/a\u003e) (\u003ca href=\"https://github.com/abhu85\"\u003e\u003ccode\u003e@​abhu85\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/claude\"\u003e\u003ccode\u003e@​claude\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/9542e09ebcd89e916777d35eba868061dad9ed7d\"\u003e\u003ccode\u003e9542e09\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/860\"\u003e#860\u003c/a\u003e template-oss-apply (\u003ca href=\"https://github.com/owlstronaut\"\u003e\u003ccode\u003e@​owlstronaut\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/937bc2cd8721db14745c9be123078c44e77a86ef\"\u003e\u003ccode\u003e937bc2c\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/860\"\u003e#860\u003c/a\u003e \u003ccode\u003etemplate-oss-apply@5.0.0\u003c/code\u003e (\u003ca href=\"https://github.com/owlstronaut\"\u003e\u003ccode\u003e@​owlstronaut\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/6946fefa57bd5e191871a4738b28ca673e003527\"\u003e\u003ccode\u003e6946fef\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/852\"\u003e#852\u003c/a\u003e bump \u003ccode\u003e@​npmcli/template-oss\u003c/code\u003e from 4.29.0 to 4.30.0 (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/852\"\u003e#852\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot], \u003ca href=\"https://github.com/npm-cli-bot\"\u003e\u003ccode\u003e@​npm-cli-bot\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.7.4\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/npm/node-semver/compare/v7.7.3...v7.7.4\"\u003e7.7.4\u003c/a\u003e (2026-01-16)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/a29faa5f3309a01c8e5aeb965fb5c02c4c4e80e2\"\u003e\u003ccode\u003ea29faa5\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/835\"\u003e#835\u003c/a\u003e cli: pass options to semver.valid() for loose version validation (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/835\"\u003e#835\u003c/a\u003e) (\u003ca href=\"https://github.com/mldangelo\"\u003e\u003ccode\u003e@​mldangelo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/1d28d5e82de16163daf721a7c76fff93e0d333ab\"\u003e\u003ccode\u003e1d28d5e\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/836\"\u003e#836\u003c/a\u003e fix typos and update -n CLI option documentation (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/836\"\u003e#836\u003c/a\u003e) (\u003ca href=\"https://github.com/mldangelo\"\u003e\u003ccode\u003e@​mldangelo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/120968b76760cb0db85a72bde2adedd0e9628793\"\u003e\u003ccode\u003e120968b\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/840\"\u003e#840\u003c/a\u003e \u003ccode\u003e@npmcli/template-oss@4.29.0\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/840\"\u003e#840\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/44d7130c60cedd3703048aa671bb1d659b79ab07\"\u003e\u003ccode\u003e44d7130\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/824\"\u003e#824\u003c/a\u003e bump \u003ccode\u003e@​npmcli/eslint-config\u003c/code\u003e from 5.1.0 to 6.0.0 (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/824\"\u003e#824\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/70735767b68a1775eb67ac816b183b4a422101f4\"\u003e\u003ccode\u003e7073576\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/820\"\u003e#820\u003c/a\u003e reorder parameters in invalid-versions.js test (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/820\"\u003e#820\u003c/a\u003e) (\u003ca href=\"https://github.com/reggi\"\u003e\u003ccode\u003e@​reggi\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/5816d4cfd6d85169527a2bc22fbd5bf4c64f34e3\"\u003e\u003ccode\u003e5816d4c\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/829\"\u003e#829\u003c/a\u003e bump \u003ccode\u003e@​npmcli/template-oss\u003c/code\u003e from 4.28.0 to 4.28.1 (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/829\"\u003e#829\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot], \u003ca href=\"https://github.com/npm-cli-bot\"\u003e\u003ccode\u003e@​npm-cli-bot\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.7.3\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/npm/node-semver/compare/v7.7.2...v7.7.3\"\u003e7.7.3\u003c/a\u003e (2025-10-06)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/e37e0ca0b5fc910d2b1948d25dbc83cc3a0921ea\"\u003e\u003ccode\u003ee37e0ca\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/813\"\u003e#813\u003c/a\u003e faster paths for compare (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/813\"\u003e#813\u003c/a\u003e) (\u003ca href=\"https://github.com/H4ad\"\u003e\u003ccode\u003e@​H4ad\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/2471d7543e2e63d9d95358e2405e7e1cde926c36\"\u003e\u003ccode\u003e2471d75\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/811\"\u003e#811\u003c/a\u003e x-range build metadata support (i529015)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/8f05c87f56a4123259b8c6d9324f53eadb02e48f\"\u003e\u003ccode\u003e8f05c87\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/807\"\u003e#807\u003c/a\u003e bump \u003ccode\u003e@​npmcli/template-oss\u003c/code\u003e from 4.25.0 to 4.25.1 (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/807\"\u003e#807\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot], \u003ca href=\"https://github.com/owlstronaut\"\u003e\u003ccode\u003e@​owlstronaut\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.7.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/npm/node-semver/compare/v7.7.1...v7.7.2\"\u003e7.7.2\u003c/a\u003e (2025-05-12)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/fcafb61ed566ff8ccf24818dd94b76738f037aa4\"\u003e\u003ccode\u003efcafb61\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/780\"\u003e#780\u003c/a\u003e add missing \u003ccode\u003e'use strict'\u003c/code\u003e directives (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/780\"\u003e#780\u003c/a\u003e) (\u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/c99f336fa3bdff465652f9041eab2127d2f52eb2\"\u003e\u003ccode\u003ec99f336\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/781\"\u003e#781\u003c/a\u003e prerelease identifier starting with digits (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/781\"\u003e#781\u003c/a\u003e) (\u003ca href=\"https://github.com/mbtools\"\u003e\u003ccode\u003e@​mbtools\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/c760403b935d3ad35f83e9bbe5ebe1badef2fc71\"\u003e\u003ccode\u003ec760403\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/784\"\u003e#784\u003c/a\u003e template-oss-apply for workflow permissions (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/784\"\u003e#784\u003c/a\u003e) (\u003ca href=\"https://github.com/wraithgar\"\u003e\u003ccode\u003e@​wraithgar\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/2677f2a88334b0e728dbfe9ad9f5f57458437c87\"\u003e\u003ccode\u003e2677f2a\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/778\"\u003e#778\u003c/a\u003e bump \u003ccode\u003e@​npmcli/template-oss\u003c/code\u003e from 4.23.6 to 4.24.3 (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/778\"\u003e#778\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot], \u003ca href=\"https://github.com/npm-cli-bot\"\u003e\u003ccode\u003e@​npm-cli-bot\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.7.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/npm/node-semver/compare/v7.7.0...v7.7.1\"\u003e7.7.1\u003c/a\u003e (2025-02-03)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/af761c05bd53eef83b5e20f8b09360b0e70557dc\"\u003e\u003ccode\u003eaf761c0\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/764\"\u003e#764\u003c/a\u003e inc: fully capture prerelease identifier (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/764\"\u003e#764\u003c/a\u003e) (\u003ca href=\"https://github.com/wraithgar\"\u003e\u003ccode\u003e@​wraithgar\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.7.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/npm/node-semver/blob/main/CHANGELOG.md\"\u003esemver's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/npm/node-semver/compare/v7.7.4...v7.8.0\"\u003e7.8.0\u003c/a\u003e (2026-05-08)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/0d0a0a2582fb1486bc6cd255ba18819c441ed149\"\u003e\u003ccode\u003e0d0a0a2\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/855\"\u003e#855\u003c/a\u003e Add \u003ccode\u003etruncate\u003c/code\u003e function (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/855\"\u003e#855\u003c/a\u003e) (\u003ca href=\"https://github.com/pjohnmeyer\"\u003e\u003ccode\u003e@​pjohnmeyer\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/owlstronaut\"\u003e\u003ccode\u003e@​owlstronaut\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/3905343045dc293c3694d5e46170b1bb1fb5cf58\"\u003e\u003ccode\u003e3905343\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/859\"\u003e#859\u003c/a\u003e Warn when defaulting to --inc=patch in CLI (\u003ca href=\"https://github.com/pjohnmeyer\"\u003e\u003ccode\u003e@​pjohnmeyer\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/c368af612e521767e960419e6388c5129c857984\"\u003e\u003ccode\u003ec368af6\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/853\"\u003e#853\u003c/a\u003e fix typos in documentation (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/853\"\u003e#853\u003c/a\u003e) (\u003ca href=\"https://github.com/ankitkumar572005\"\u003e\u003ccode\u003e@​ankitkumar572005\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/37776c31e2f3448fd852c975888e37b03efe9afe\"\u003e\u003ccode\u003e37776c3\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/846\"\u003e#846\u003c/a\u003e fix BNF grammar to distinguish prerelease from build identifiers (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/846\"\u003e#846\u003c/a\u003e) (\u003ca href=\"https://github.com/abhu85\"\u003e\u003ccode\u003e@​abhu85\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/claude\"\u003e\u003ccode\u003e@​claude\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/9542e09ebcd89e916777d35eba868061dad9ed7d\"\u003e\u003ccode\u003e9542e09\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/860\"\u003e#860\u003c/a\u003e template-oss-apply (\u003ca href=\"https://github.com/owlstronaut\"\u003e\u003ccode\u003e@​owlstronaut\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/937bc2cd8721db14745c9be123078c44e77a86ef\"\u003e\u003ccode\u003e937bc2c\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/860\"\u003e#860\u003c/a\u003e \u003ccode\u003etemplate-oss-apply@5.0.0\u003c/code\u003e (\u003ca href=\"https://github.com/owlstronaut\"\u003e\u003ccode\u003e@​owlstronaut\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/6946fefa57bd5e191871a4738b28ca673e003527\"\u003e\u003ccode\u003e6946fef\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/852\"\u003e#852\u003c/a\u003e bump \u003ccode\u003e@​npmcli/template-oss\u003c/code\u003e from 4.29.0 to 4.30.0 (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/852\"\u003e#852\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot], \u003ca href=\"https://github.com/npm-cli-bot\"\u003e\u003ccode\u003e@​npm-cli-bot\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/npm/node-semver/compare/v7.7.3...v7.7.4\"\u003e7.7.4\u003c/a\u003e (2026-01-16)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/a29faa5f3309a01c8e5aeb965fb5c02c4c4e80e2\"\u003e\u003ccode\u003ea29faa5\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/835\"\u003e#835\u003c/a\u003e cli: pass options to semver.valid() for loose version validation (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/835\"\u003e#835\u003c/a\u003e) (\u003ca href=\"https://github.com/mldangelo\"\u003e\u003ccode\u003e@​mldangelo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/1d28d5e82de16163daf721a7c76fff93e0d333ab\"\u003e\u003ccode\u003e1d28d5e\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/836\"\u003e#836\u003c/a\u003e fix typos and update -n CLI option documentation (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/836\"\u003e#836\u003c/a\u003e) (\u003ca href=\"https://github.com/mldangelo\"\u003e\u003ccode\u003e@​mldangelo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/120968b76760cb0db85a72bde2adedd0e9628793\"\u003e\u003ccode\u003e120968b\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/840\"\u003e#840\u003c/a\u003e \u003ccode\u003e@npmcli/template-oss@4.29.0\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/840\"\u003e#840\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/44d7130c60cedd3703048aa671bb1d659b79ab07\"\u003e\u003ccode\u003e44d7130\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pu...\n\n_Description has been truncated_","html_url":"https://github.com/OfficeDev/Microsoft-Teams-Samples/pull/2132","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/OfficeDev%2FMicrosoft-Teams-Samples/issues/2132","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2132/packages"},{"uuid":"4444170780","node_id":"PR_kwDOEzH_b87bbYUY","number":2018,"state":"closed","title":"Bump the all-dependencies group across 1 directory with 6 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-22T05:20:58.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-14T07:45:55.000Z","updated_at":"2026-05-22T05:21:08.000Z","time_to_close":682503,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"all-dependencies","update_count":6,"packages":[{"name":"@azure/msal-node","old_version":"1.17.3","new_version":"5.2.2","repository_url":"https://github.com/AzureAD/microsoft-authentication-library-for-js"},{"name":"dotenv","old_version":"8.6.0","new_version":"17.4.2","repository_url":"https://github.com/motdotla/dotenv"},{"name":"express","old_version":"4.18.2","new_version":"5.2.1","repository_url":"https://github.com/expressjs/express"},{"name":"jwt-decode","old_version":"2.2.0","new_version":"4.0.0","repository_url":"https://github.com/auth0/jwt-decode"},{"name":"node-fetch","old_version":"2.6.12","new_version":"3.3.2","repository_url":"https://github.com/node-fetch/node-fetch"},{"name":"esbuild","old_version":"0.18.11","new_version":"0.28.0","repository_url":"https://github.com/evanw/esbuild"}],"path":null,"ecosystem":"npm"},"body":"Bumps the all-dependencies group with 6 updates in the /samples/TeamsJS/tab-multi-hub/ts/api-server directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [@azure/msal-node](https://github.com/AzureAD/microsoft-authentication-library-for-js) | `1.17.3` | `5.2.2` |\n| [dotenv](https://github.com/motdotla/dotenv) | `8.6.0` | `17.4.2` |\n| [express](https://github.com/expressjs/express) | `4.18.2` | `5.2.1` |\n| [jwt-decode](https://github.com/auth0/jwt-decode) | `2.2.0` | `4.0.0` |\n| [node-fetch](https://github.com/node-fetch/node-fetch) | `2.6.12` | `3.3.2` |\n| [esbuild](https://github.com/evanw/esbuild) | `0.18.11` | `0.28.0` |\n\n\nUpdates `@azure/msal-node` from 1.17.3 to 5.2.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/AzureAD/microsoft-authentication-library-for-js/releases\"\u003e@​azure/msal-node's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ccode\u003e@​azure/msal-angular\u003c/code\u003e v5.2.2\u003c/h2\u003e\n\u003ch2\u003e5.2.2\u003c/h2\u003e\n\u003cp\u003eTue, 28 Apr 2026 21:30:33 GMT\u003c/p\u003e\n\u003ch3\u003ePatches\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump \u003ccode\u003e@​azure/msal-browser\u003c/code\u003e to v5.9.0 (beachball)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​azure/msal-node-extensions\u003c/code\u003e v5.2.2\u003c/h2\u003e\n\u003ch2\u003e5.2.2\u003c/h2\u003e\n\u003cp\u003eTue, 19 May 2026 19:29:14 GMT\u003c/p\u003e\n\u003ch3\u003ePatches\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump \u003ccode\u003e@​azure/msal-common\u003c/code\u003e to v16.6.2 (beachball)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​azure/msal-node\u003c/code\u003e v5.2.2\u003c/h2\u003e\n\u003ch2\u003e5.2.2\u003c/h2\u003e\n\u003cp\u003eTue, 19 May 2026 19:29:14 GMT\u003c/p\u003e\n\u003ch3\u003ePatches\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump \u003ccode\u003e@​azure/msal-common\u003c/code\u003e to v16.6.2 (beachball)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​azure/msal-react\u003c/code\u003e v5.2.1\u003c/h2\u003e\n\u003ch2\u003e5.2.1\u003c/h2\u003e\n\u003cp\u003eWed, 01 Apr 2026 20:09:00 GMT\u003c/p\u003e\n\u003ch3\u003ePatches\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eImprove compatibility with \u003ccode\u003eReact.StrictMode\u003c/code\u003e \u003ca href=\"https://redirect.github.com/AzureAD/microsoft-authentication-library-for-js/pull/8383\"\u003e#8383\u003c/a\u003e (\u003ca href=\"mailto:herman.jensen@intility.no\"\u003eherman.jensen@intility.no\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​azure/msal-browser\u003c/code\u003e to v5.6.3 (beachball)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​azure/msal-angular\u003c/code\u003e v5.2.1\u003c/h2\u003e\n\u003ch2\u003e5.2.1\u003c/h2\u003e\n\u003cp\u003eTue, 21 Apr 2026 22:41:19 GMT\u003c/p\u003e\n\u003ch3\u003ePatches\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump \u003ccode\u003e@​azure/msal-browser\u003c/code\u003e to v5.8.0 (beachball)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​azure/msal-node-extensions\u003c/code\u003e v5.2.1\u003c/h2\u003e\n\u003ch2\u003e5.2.1\u003c/h2\u003e\n\u003cp\u003eMon, 11 May 2026 21:48:15 GMT\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/AzureAD/microsoft-authentication-library-for-js/commit/738ade62dfbadf845fdf8afbc6d21564f00ac0bb\"\u003e\u003ccode\u003e738ade6\u003c/code\u003e\u003c/a\u003e check account loginHint before idTokenClaims setting logoutHint (\u003ca href=\"https://redirect.github.com/AzureAD/microsoft-authentication-library-for-js/issues/8591\"\u003e#8591\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/AzureAD/microsoft-authentication-library-for-js/commit/1fff290c58cff5d3c768711e3aa8388476cb8e52\"\u003e\u003ccode\u003e1fff290\u003c/code\u003e\u003c/a\u003e Add allowPlatformBrokerWithDOM experimental config flag (\u003ca href=\"https://redirect.github.com/AzureAD/microsoft-authentication-library-for-js/issues/8589\"\u003e#8589\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/AzureAD/microsoft-authentication-library-for-js/commit/99e0895b66400ba15d1bfd41e9ef0869b3e45753\"\u003e\u003ccode\u003e99e0895\u003c/code\u003e\u003c/a\u003e Custom Auth: add requestInterceptor for custom x-* request headers (\u003ca href=\"https://redirect.github.com/AzureAD/microsoft-authentication-library-for-js/issues/8587\"\u003e#8587\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/AzureAD/microsoft-authentication-library-for-js/commit/ce50f41b05c79afe0b88ba8441a789907149039f\"\u003e\u003ccode\u003ece50f41\u003c/code\u003e\u003c/a\u003e Post-release PR (\u003ca href=\"https://redirect.github.com/AzureAD/microsoft-authentication-library-for-js/issues/8585\"\u003e#8585\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/AzureAD/microsoft-authentication-library-for-js/commit/c66140125e3e4bdc7acb9199fc0004bb5429b41d\"\u003e\u003ccode\u003ec661401\u003c/code\u003e\u003c/a\u003e Complete test tenant migration (\u003ca href=\"https://redirect.github.com/AzureAD/microsoft-authentication-library-for-js/issues/8584\"\u003e#8584\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/AzureAD/microsoft-authentication-library-for-js/commit/bbcc105174de98d336f758674ecd84cf66d8e1f6\"\u003e\u003ccode\u003ebbcc105\u003c/code\u003e\u003c/a\u003e Add browser compatibility guidelines and review instructions for msal-browser...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/AzureAD/microsoft-authentication-library-for-js/commit/d7a7eb50c40b24e7cc17b341f1109cdbfac83e3f\"\u003e\u003ccode\u003ed7a7eb5\u003c/code\u003e\u003c/a\u003e Add issuer validation check whenever MSAL JS performs OIDC endpoint discovery...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/AzureAD/microsoft-authentication-library-for-js/commit/9884a71cca16bd3d16794aa2a2696011d333f161\"\u003e\u003ccode\u003e9884a71\u003c/code\u003e\u003c/a\u003e Post-release PR (\u003ca href=\"https://redirect.github.com/AzureAD/microsoft-authentication-library-for-js/issues/8583\"\u003e#8583\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/AzureAD/microsoft-authentication-library-for-js/commit/b4e498cf6e52136ad1123691138a66f8e9a1a87c\"\u003e\u003ccode\u003eb4e498c\u003c/code\u003e\u003c/a\u003e Stop looking in localStorage for temporary cache (\u003ca href=\"https://redirect.github.com/AzureAD/microsoft-authentication-library-for-js/issues/8579\"\u003e#8579\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/AzureAD/microsoft-authentication-library-for-js/commit/1b261b42eb983329ea7c062feae3d8e6513b8c7e\"\u003e\u003ccode\u003e1b261b4\u003c/code\u003e\u003c/a\u003e Bump uuid and \u003ccode\u003e@​actions/core\u003c/code\u003e in /.github/actions/issue_template_bot (\u003ca href=\"https://redirect.github.com/AzureAD/microsoft-authentication-library-for-js/issues/8571\"\u003e#8571\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/AzureAD/microsoft-authentication-library-for-js/compare/msal-node-v1.17.3...msal-node-v5.2.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dotenv` from 8.6.0 to 17.4.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/motdotla/dotenv/blob/master/CHANGELOG.md\"\u003edotenv's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/motdotla/dotenv/compare/v17.4.1...v17.4.2\"\u003e17.4.2\u003c/a\u003e (2026-04-12)\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eImproved skill files - tightened up details (\u003ca href=\"https://redirect.github.com/motdotla/dotenv/pull/1009\"\u003e#1009\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/motdotla/dotenv/compare/v17.4.0...v17.4.1\"\u003e17.4.1\u003c/a\u003e (2026-04-05)\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eChange text \u003ccode\u003einjecting\u003c/code\u003e to \u003ccode\u003einjected\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/motdotla/dotenv/pull/1005\"\u003e#1005\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/motdotla/dotenv/compare/v17.3.1...v17.4.0\"\u003e17.4.0\u003c/a\u003e (2026-04-01)\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eskills/\u003c/code\u003e folder with focused agent skills: \u003ccode\u003eskills/dotenv/SKILL.md\u003c/code\u003e (core usage) and \u003ccode\u003eskills/dotenvx/SKILL.md\u003c/code\u003e (encryption, multiple environments, variable expansion) for AI coding agent discovery via the skills.sh ecosystem (\u003ccode\u003enpx skills add motdotla/dotenv\u003c/code\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTighten up logs: \u003ccode\u003e◇ injecting env (14) from .env\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/motdotla/dotenv/pull/1003\"\u003e#1003\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/motdotla/dotenv/compare/v17.3.0...v17.3.1\"\u003e17.3.1\u003c/a\u003e (2026-02-12)\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix as2 example command in README and update spanish README\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/motdotla/dotenv/compare/v17.2.4...v17.3.0\"\u003e17.3.0\u003c/a\u003e (2026-02-12)\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd a new README section on dotenv’s approach to the agentic future.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRewrite README to get humans started more quickly with less noise while simultaneously making more accessible for llms and agents to go deeper into details.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/motdotla/dotenv/compare/v17.2.3...v17.2.4\"\u003e17.2.4\u003c/a\u003e (2026-02-05)\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMake \u003ccode\u003eDotenvPopulateInput\u003c/code\u003e accept \u003ccode\u003eNodeJS.ProcessEnv\u003c/code\u003e type (\u003ca href=\"https://redirect.github.com/motdotla/dotenv/pull/915\"\u003e#915\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cul\u003e\n\u003cli\u003eGive back to dotenv by checking out my newest project \u003ca href=\"https://github.com/vestauth/vestauth\"\u003evestauth\u003c/a\u003e. It is auth for agents. Thank you for using my software.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/motdotla/dotenv/compare/v17.2.2...v17.2.3\"\u003e17.2.3\u003c/a\u003e (2025-09-29)\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed typescript error definition (\u003ca href=\"https://redirect.github.com/motdotla/dotenv/pull/912\"\u003e#912\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/f116f70310abab44fbfddbaeb833698b5bf84a9b\"\u003e\u003ccode\u003ef116f70\u003c/code\u003e\u003c/a\u003e 17.4.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/3a8161274fdd745239b86e604f4a7e972a1d3902\"\u003e\u003ccode\u003e3a81612\u003c/code\u003e\u003c/a\u003e fix visual order of faq\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/13f55a89e136b2024e68d277b836dd5260fc16cf\"\u003e\u003ccode\u003e13f55a8\u003c/code\u003e\u003c/a\u003e Merge branch 'skill'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/4bbbf73f0906bd69975c48bf310a84b686e5b1b4\"\u003e\u003ccode\u003e4bbbf73\u003c/code\u003e\u003c/a\u003e reorganize faq\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/c3da64bb2ba1d0e02f8b9b2b7ccb7e6f7a51d56c\"\u003e\u003ccode\u003ec3da64b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/motdotla/dotenv/issues/1009\"\u003e#1009\u003c/a\u003e from motdotla/skill\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/6f743b173fbd6c26f7eab7040d251f9a6c8b977d\"\u003e\u003ccode\u003e6f743b1\u003c/code\u003e\u003c/a\u003e update source\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/fc2c6247e858a32d4024cb06a5b0c79aa35851f5\"\u003e\u003ccode\u003efc2c624\u003c/code\u003e\u003c/a\u003e update skill\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/972315ba74bb2bbba4483d112e853fd26006ef8a\"\u003e\u003ccode\u003e972315b\u003c/code\u003e\u003c/a\u003e Tighten up skill\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/2795fce3d1ed07b4c570f1e06ab1c0d533c86997\"\u003e\u003ccode\u003e2795fce\u003c/code\u003e\u003c/a\u003e reorganize faq\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/d5495d4ae8e4e41ef9a682c9e00c81552794274e\"\u003e\u003ccode\u003ed5495d4\u003c/code\u003e\u003c/a\u003e adjust skill\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/motdotla/dotenv/compare/v8.6.0...v17.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `express` from 4.18.2 to 5.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/expressjs/express/releases\"\u003eexpress's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.2.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!IMPORTANT]\u003cbr /\u003e\nThe prior release (5.2.0) included an erroneous breaking change related to the extended query parser. There is no actual security vulnerability associated with this behavior (CVE-2024-51999 has been rejected). The change has been fully reverted in this release.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cul\u003e\n\u003cli\u003eRelease: 5.2.1 by \u003ca href=\"https://github.com/UlisesGascon\"\u003e\u003ccode\u003e@​UlisesGascon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6933\"\u003eexpressjs/express#6933\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/expressjs/express/compare/v5.2.0...v5.2.1\"\u003ehttps://github.com/expressjs/express/compare/v5.2.0...v5.2.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.2.0\u003c/h2\u003e\n\u003ch2\u003eImportant: Security\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity fix for \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2024-51999\"\u003eCVE-2024-51999\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/express/security/advisories/GHSA-pj86-cfqh-vqx6\"\u003eGHSA-pj86-cfqh-vqx6\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.11 to 3.28.13 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6429\"\u003eexpressjs/express#6429\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRefactor: simplify \u003ccode\u003eacceptsLanguages\u003c/code\u003e implementation using spread operator by \u003ca href=\"https://github.com/Ayoub-Mabrouk\"\u003e\u003ccode\u003e@​Ayoub-Mabrouk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6137\"\u003eexpressjs/express#6137\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eincreased code coverage of utils.js file by \u003ca href=\"https://github.com/ashish3011\"\u003e\u003ccode\u003e@​ashish3011\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6386\"\u003eexpressjs/express#6386\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: remove duplicate word by \u003ca href=\"https://github.com/dufucun\"\u003e\u003ccode\u003e@​dufucun\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6456\"\u003eexpressjs/express#6456\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.13 to 3.28.16 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6498\"\u003eexpressjs/express#6498\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-node from 4.3.0 to 4.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6497\"\u003eexpressjs/express#6497\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/download-artifact from 4.2.1 to 4.3.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6496\"\u003eexpressjs/express#6496\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: add node.js 24 to test matrix by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6504\"\u003eexpressjs/express#6504\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: update codeql config by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6488\"\u003eexpressjs/express#6488\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: wider range for query test skip by \u003ca href=\"https://github.com/jonchurch\"\u003e\u003ccode\u003e@​jonchurch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6512\"\u003eexpressjs/express#6512\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: fix typos in test by \u003ca href=\"https://github.com/noritaka1166\"\u003e\u003ccode\u003e@​noritaka1166\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6535\"\u003eexpressjs/express#6535\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: disable credential persistence for checkout actions by \u003ca href=\"https://github.com/mertssmnoglu\"\u003e\u003ccode\u003e@​mertssmnoglu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6522\"\u003eexpressjs/express#6522\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: allow manual triggering of workflow by \u003ca href=\"https://github.com/shivarm\"\u003e\u003ccode\u003e@​shivarm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6515\"\u003eexpressjs/express#6515\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: add coverage for app.listen() variants by \u003ca href=\"https://github.com/kgarg1\"\u003e\u003ccode\u003e@​kgarg1\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6476\"\u003eexpressjs/express#6476\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: move documentation and charters to the discussions and .github … by \u003ca href=\"https://github.com/bjohansebas\"\u003e\u003ccode\u003e@​bjohansebas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6427\"\u003eexpressjs/express#6427\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.16 to 3.28.18 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6549\"\u003eexpressjs/express#6549\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6548\"\u003eexpressjs/express#6548\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: enforce explicit \u003ccode\u003eBuffer\u003c/code\u003e import and add lint rule by \u003ca href=\"https://github.com/shivarm\"\u003e\u003ccode\u003e@​shivarm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6525\"\u003eexpressjs/express#6525\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: use node protocol for querystring by \u003ca href=\"https://github.com/shivarm\"\u003e\u003ccode\u003e@​shivarm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6520\"\u003eexpressjs/express#6520\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: fix typo by \u003ca href=\"https://github.com/mountdisk\"\u003e\u003ccode\u003e@​mountdisk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6609\"\u003eexpressjs/express#6609\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.18 to 3.29.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6618\"\u003eexpressjs/express#6618\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd deprecation warnings for redirect arguments undefined by \u003ca href=\"https://github.com/bjohansebas\"\u003e\u003ccode\u003e@​bjohansebas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6405\"\u003eexpressjs/express#6405\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: run CI when the markdown changes by \u003ca href=\"https://github.com/bjohansebas\"\u003e\u003ccode\u003e@​bjohansebas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6632\"\u003eexpressjs/express#6632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edoc: fix CONTRIBUTING link by \u003ca href=\"https://github.com/jonchurch\"\u003e\u003ccode\u003e@​jonchurch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6653\"\u003eexpressjs/express#6653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edoc: update contributing guidelines and code of conduct links by \u003ca href=\"https://github.com/ShubhamOulkar\"\u003e\u003ccode\u003e@​ShubhamOulkar\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6601\"\u003eexpressjs/express#6601\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump morgan from 1.10.0 to 1.10.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6679\"\u003eexpressjs/express#6679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump cookie-session from 2.1.0 to 2.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6678\"\u003eexpressjs/express#6678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003elint: add --fix flag to automatic fix linting issue by \u003ca href=\"https://github.com/shivarm\"\u003e\u003ccode\u003e@​shivarm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6644\"\u003eexpressjs/express#6644\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: ignore yarn.lock file and update example by \u003ca href=\"https://github.com/shivarm\"\u003e\u003ccode\u003e@​shivarm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6588\"\u003eexpressjs/express#6588\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003elib: use req.socket over deprecated req.connection by \u003ca href=\"https://github.com/bjohansebas\"\u003e\u003ccode\u003e@​bjohansebas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6705\"\u003eexpressjs/express#6705\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edoc: update express app example by \u003ca href=\"https://github.com/shivarm\"\u003e\u003ccode\u003e@​shivarm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6718\"\u003eexpressjs/express#6718\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.2 to 3.29.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6675\"\u003eexpressjs/express#6675\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove history.md from being packaged on publish by \u003ca href=\"https://github.com/sheplu\"\u003e\u003ccode\u003e@​sheplu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6780\"\u003eexpressjs/express#6780\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/expressjs/express/blob/master/History.md\"\u003eexpress's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e5.2.1 / 2025-12-01\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eRevert security fix for \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2024-51999\"\u003eCVE-2024-51999\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/express/security/advisories/GHSA-pj86-cfqh-vqx6\"\u003eGHSA-pj86-cfqh-vqx6\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eThe prior release (5.2.0) included an erroneous breaking change related to the extended query parser. There is no actual security vulnerability associated with this behavior (CVE-2024-51999 has been rejected). The change has been fully reverted in this release.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e5.2.0 / 2025-12-01\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity fix for \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2024-51999\"\u003eCVE-2024-51999\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/express/security/advisories/GHSA-pj86-cfqh-vqx6\"\u003eGHSA-pj86-cfqh-vqx6\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edeps: \u003ccode\u003ebody-parser@^2.2.1\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eA deprecation warning was added when using \u003ccode\u003eres.redirect\u003c/code\u003e with undefined arguments, Express now emits a warning to help detect calls that pass undefined as the status or URL and make them easier to fix.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e5.1.0 / 2025-03-31\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for \u003ccode\u003eUint8Array\u003c/code\u003e in \u003ccode\u003eres.send()\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdd support for ETag option in \u003ccode\u003eres.sendFile()\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdd support for multiple links with the same rel in \u003ccode\u003eres.links()\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdd funding field to package.json\u003c/li\u003e\n\u003cli\u003eperf: use loop for acceptParams\u003c/li\u003e\n\u003cli\u003erefactor: prefix built-in node module imports\u003c/li\u003e\n\u003cli\u003edeps: remove \u003ccode\u003esetprototypeof\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003edeps: remove \u003ccode\u003esafe-buffer\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003edeps: remove \u003ccode\u003eutils-merge\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003edeps: remove \u003ccode\u003emethods\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003edeps: remove \u003ccode\u003edepd\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003edeps: \u003ccode\u003edebug@^4.4.0\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003edeps: \u003ccode\u003ebody-parser@^2.2.0\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003edeps: \u003ccode\u003erouter@^2.2.0\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003edeps: \u003ccode\u003econtent-type@^1.0.5\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003edeps: \u003ccode\u003efinalhandler@^2.1.0\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003edeps: \u003ccode\u003eqs@^6.14.0\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003edeps: \u003ccode\u003eserver-static@2.2.0\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003edeps: \u003ccode\u003etype-is@2.0.1\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e5.0.1 / 2024-10-08\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate \u003ccode\u003ecookie\u003c/code\u003e semver lock to address \u003ca href=\"https://nvd.nist.gov/vuln/detail/CVE-2024-47764\"\u003eCVE-2024-47764\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e5.0.0 / 2024-09-10\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eremove:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003epath-is-absolute\u003c/code\u003e dependency - use \u003ccode\u003epath.isAbsolute\u003c/code\u003e instead\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003ebreaking:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eres.status()\u003c/code\u003e accepts only integers, and input must be greater than 99 and less than 1000\n\u003cul\u003e\n\u003cli\u003ewill throw a \u003ccode\u003eRangeError: Invalid status code: ${code}. Status code must be greater than 99 and less than 1000.\u003c/code\u003e for inputs outside this range\u003c/li\u003e\n\u003cli\u003ewill throw a \u003ccode\u003eTypeError: Invalid status code: ${code}. Status code must be an integer.\u003c/code\u003e for non integer inputs\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003edeps: send@1.0.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/dbac741a49a5a64336b70c06e85c2e2706e36336\"\u003e\u003ccode\u003edbac741\u003c/code\u003e\u003c/a\u003e 5.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/697547cde621d8b0a47b4fff6e98b29337f8c980\"\u003e\u003ccode\u003e697547c\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;sec: security patch for CVE-2024-51999\u0026quot;\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/4007ad103ba29f6426b2ec9eccfb1ceb792682a8\"\u003e\u003ccode\u003e4007ad1\u003c/code\u003e\u003c/a\u003e Release: 5.2.0 (\u003ca href=\"https://redirect.github.com/expressjs/express/issues/6920\"\u003e#6920\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/2f64f68c37c64ae333e41ff38032d21860f22255\"\u003e\u003ccode\u003e2f64f68\u003c/code\u003e\u003c/a\u003e sec: security patch for CVE-2024-51999\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/ed0ba3f1dc905d6b62eabf23bd383abcae4901ba\"\u003e\u003ccode\u003eed0ba3f\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/checkout from 5.0.0 to 6.0.0 (\u003ca href=\"https://redirect.github.com/expressjs/express/issues/6928\"\u003e#6928\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/8eace4603cb2547608578a4fbb259dc984216f71\"\u003e\u003ccode\u003e8eace46\u003c/code\u003e\u003c/a\u003e build(deps): bump github/codeql-action from 4.31.2 to 4.31.6 (\u003ca href=\"https://redirect.github.com/expressjs/express/issues/6929\"\u003e#6929\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/30bae810279b2ea162bed5b14ce6c35a110a87f5\"\u003e\u003ccode\u003e30bae81\u003c/code\u003e\u003c/a\u003e build(deps): bump coverallsapp/github-action from 2.3.6 to 2.3.7 (\u003ca href=\"https://redirect.github.com/expressjs/express/issues/6930\"\u003e#6930\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/758d4355d45322b4c8cd347ebcefbf3b154c7e7f\"\u003e\u003ccode\u003e758d435\u003c/code\u003e\u003c/a\u003e deps: body-parser@^2.2.1 (\u003ca href=\"https://redirect.github.com/expressjs/express/issues/6922\"\u003e#6922\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/77bcd5274a87047e5b3fe2f17f6c342db3909c53\"\u003e\u003ccode\u003e77bcd52\u003c/code\u003e\u003c/a\u003e docs: update emeritus triagers (\u003ca href=\"https://redirect.github.com/expressjs/express/issues/6890\"\u003e#6890\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/f33caf1f89a028f0ea98ff5a156a68e65a2eabdd\"\u003e\u003ccode\u003ef33caf1\u003c/code\u003e\u003c/a\u003e Nominate to \u003ca href=\"https://github.com/efekrskl\"\u003e\u003ccode\u003e@​efekrskl\u003c/code\u003e\u003c/a\u003e for triage team (\u003ca href=\"https://redirect.github.com/expressjs/express/issues/6888\"\u003e#6888\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/expressjs/express/compare/4.18.2...v5.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~jonchurch\"\u003ejonchurch\u003c/a\u003e, a new releaser for express since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `jwt-decode` from 2.2.0 to 4.0.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/auth0/jwt-decode/releases\"\u003ejwt-decode's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.0\u003c/h2\u003e\n\u003cp\u003eA new version of the library, including a couple of improvements:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eNo longer include a polyfill for \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/API/atob\"\u003eatob\u003c/a\u003e, as this is \u003ca href=\"https://caniuse.com/?search=atob\"\u003esupported in all major browsers\u003c/a\u003e (and \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/API/atob#browser_compatibility\"\u003enode environments \u0026gt; 14\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eCompile to ES2017, dropping support for anything that does not support ES2017 (which should be very limited \u003ca href=\"https://caniuse.com/?search=es2017\"\u003eaccording to caniuse\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse Node's atob when running on node.\u003c/li\u003e\n\u003cli\u003eDrop support for Node 14 and 16, add support for Node 20.\u003c/li\u003e\n\u003cli\u003eAdd support for package.json's \u003ccode\u003eexports\u003c/code\u003e field, for better CJS/ESM support\u003c/li\u003e\n\u003cli\u003eReorganize build artifacts for better CJS/ESM support (cjs and esm needs to be their own directory with a cjs specific package.json file)\u003c/li\u003e\n\u003cli\u003eDrop manual UMD bundle creation in \u003ccode\u003eindex.standalone.ts\u003c/code\u003e, but rely on rollup instead.\u003c/li\u003e\n\u003cli\u003eInfer JwtPayload and JwtHeader default types from the \u003ccode\u003eheader\u003c/code\u003e argument by using overloads.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eEven though some users might experience breaking changes, mostly because of the \u003ccode\u003eexports\u003c/code\u003e field, the majority should be able to update without making any changes, assuming the SDK is used in environments with support for \u003ccode\u003eatob\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eMigration to v4.0.0\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eThe \u003ccode\u003ejwtDecode\u003c/code\u003e function is now no longer the default export, and is instead provided as a named export. Make sure to update your code in places where you are importing this function:\u003c/p\u003e\n\u003cpre lang=\"diff\"\u003e\u003ccode\u003e-import jwtDecodefrom \u0026quot;jwt-decode\u0026quot;;\r\n+import { jwtDecode } from \u0026quot;jwt-decode\u0026quot;;\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch2\u003ev4.0.0-beta.4\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eBreaking changes\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRaise minimum Node.js version to 18 \u003ca href=\"https://redirect.github.com/auth0/jwt-decode/pull/209\"\u003e#209\u003c/a\u003e (\u003ca href=\"https://github.com/jonkoops\"\u003ejonkoops\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFixed\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003efix default condition should be the last one \u003ca href=\"https://redirect.github.com/auth0/jwt-decode/pull/199\"\u003e#199\u003c/a\u003e (\u003ca href=\"https://github.com/frederikprijck\"\u003efrederikprijck\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.0.0-beta.3\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eBreaking changes\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrop UMD bundle \u003ca href=\"https://redirect.github.com/auth0/jwt-decode/pull/193\"\u003e#193\u003c/a\u003e (\u003ca href=\"https://github.com/frederikprijck\"\u003efrederikprijck\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eChanged\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eUse modern JavaScript syntax \u003ca href=\"https://redirect.github.com/auth0/jwt-decode/pull/187\"\u003e#187\u003c/a\u003e (\u003ca href=\"https://github.com/jonkoops\"\u003ejonkoops\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse ESNext as default module system \u003ca href=\"https://redirect.github.com/auth0/jwt-decode/pull/188\"\u003e#188\u003c/a\u003e (\u003ca href=\"https://github.com/jonkoops\"\u003ejonkoops\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAvoid using any bundlers but use tsc instead \u003ca href=\"https://redirect.github.com/auth0/jwt-decode/pull/192\"\u003e#192\u003c/a\u003e (\u003ca href=\"https://github.com/frederikprijck\"\u003efrederikprijck\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.0.0-beta.2\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eChanged\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAvoid using default exports \u003ca href=\"https://redirect.github.com/auth0/jwt-decode/pull/175\"\u003e#175\u003c/a\u003e (\u003ca href=\"https://github.com/frederikprijck\"\u003efrederikprijck\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMake options optional no default function parameter initializer \u003ca href=\"https://redirect.github.com/auth0/jwt-decode/pull/179\"\u003e#179\u003c/a\u003e (\u003ca href=\"https://github.com/cristobal\"\u003ecristobal\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFixed\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure types are bundled and correctly linked \u003ca href=\"https://redirect.github.com/auth0/jwt-decode/pull/174\"\u003e#174\u003c/a\u003e (\u003ca href=\"https://github.com/jonkoops\"\u003ejonkoops\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.0.0-beta.1\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFixed\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure build is run on prepack \u003ca href=\"https://redirect.github.com/auth0/jwt-decode/pull/167\"\u003e#167\u003c/a\u003e (\u003ca href=\"https://github.com/frederikprijck\"\u003efrederikprijck\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/auth0/jwt-decode/blob/main/CHANGELOG.md\"\u003ejwt-decode's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eVersion \u003ca href=\"https://github.com/auth0/jwt-decode/releases/tag/v4.0.0\"\u003e4.0.0\u003c/a\u003e\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/auth0/jwt-decode/compare/v3.1.2..v4.0.0\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eA new version of the library, including a couple of improvements:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eNo longer include a polyfill for \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/API/atob\"\u003eatob\u003c/a\u003e, as this is \u003ca href=\"https://caniuse.com/?search=atob\"\u003esupported in all major browsers\u003c/a\u003e (and \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/API/atob#browser_compatibility\"\u003enode environments \u0026gt; 14\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eCompile to ES2017, dropping support for anything that does not support ES2017 (which should be very limited \u003ca href=\"https://caniuse.com/?search=es2017\"\u003eaccording to caniuse\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse Node's atob when running on node.\u003c/li\u003e\n\u003cli\u003eDrop support for Node 14 and 16, add support for Node 20.\u003c/li\u003e\n\u003cli\u003eAdd support for package.json's \u003ccode\u003eexports\u003c/code\u003e field, for better CJS/ESM support\u003c/li\u003e\n\u003cli\u003eReorganize build artifacts for better CJS/ESM support (cjs and esm needs to be their own directory with a cjs specific package.json file)\u003c/li\u003e\n\u003cli\u003eDrop manual UMD bundle creation in \u003ccode\u003eindex.standalone.ts\u003c/code\u003e, but rely on rollup instead.\u003c/li\u003e\n\u003cli\u003eInfer JwtPayload and JwtHeader default types from the \u003ccode\u003eheader\u003c/code\u003e argument by using overloads.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eEven though some users might experience breaking changes, mostly because of the \u003ccode\u003eexports\u003c/code\u003e field, the majority should be able to update without making any changes, assuming the SDK is used in environments with support for \u003ccode\u003eatob\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eMigration to v4.0.0\u003c/h3\u003e\n\u003cp\u003eThe \u003ccode\u003ejwtDecode\u003c/code\u003e function is now no longer the default export, and is instead provided as a named export. Make sure to update your code in places where you are importing this function:\u003c/p\u003e\n\u003cpre lang=\"diff\"\u003e\u003ccode\u003e-import jwtDecode from \u0026quot;jwt-decode\u0026quot;;\n+import { jwtDecode } from \u0026quot;jwt-decode\u0026quot;;\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch2\u003eVersion \u003ca href=\"https://github.com/auth0/jwt-decode/releases/tag/v4.0.0-beta.4\"\u003e4.0.0-beta.4\u003c/a\u003e\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/auth0/jwt-decode/compare/v4.0.0-beta.3..v4.0.0-beta.4\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eBreaking changes\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRaise minimum Node.js version to 18 \u003ca href=\"https://redirect.github.com/auth0/jwt-decode/pull/209\"\u003e#209\u003c/a\u003e (\u003ca href=\"https://github.com/jonkoops\"\u003ejonkoops\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFixed\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003efix default condition should be the last one \u003ca href=\"https://redirect.github.com/auth0/jwt-decode/pull/199\"\u003e#199\u003c/a\u003e (\u003ca href=\"https://github.com/frederikprijck\"\u003efrederikprijck\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eVersion \u003ca href=\"https://github.com/auth0/jwt-decode/releases/tag/v4.0.0-beta.3\"\u003e4.0.0-beta.3\u003c/a\u003e\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/auth0/jwt-decode/compare/v4.0.0-beta.2..v4.0.0-beta.3\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eBreaking changes\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrop UMD bundle \u003ca href=\"https://redirect.github.com/auth0/jwt-decode/pull/193\"\u003e#193\u003c/a\u003e (\u003ca href=\"https://github.com/frederikprijck\"\u003efrederikprijck\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eChanged\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eUse modern JavaScript syntax \u003ca href=\"https://redirect.github.com/auth0/jwt-decode/pull/187\"\u003e#187\u003c/a\u003e (\u003ca href=\"https://github.com/jonkoops\"\u003ejonkoops\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse ESNext as default module system \u003ca href=\"https://redirect.github.com/auth0/jwt-decode/pull/188\"\u003e#188\u003c/a\u003e (\u003ca href=\"https://github.com/jonkoops\"\u003ejonkoops\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/jwt-decode/commit/3b2d105aa2ad4c5532f113b511c87171d89ee7a9\"\u003e\u003ccode\u003e3b2d105\u003c/code\u003e\u003c/a\u003e Update CHANGELOG.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/jwt-decode/commit/bd50db0a7fb0d49dc43359f299be2f9f41fc2950\"\u003e\u003ccode\u003ebd50db0\u003c/code\u003e\u003c/a\u003e Release v4.0.0 (\u003ca href=\"https://redirect.github.com/auth0/jwt-decode/issues/232\"\u003e#232\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/jwt-decode/commit/bcfd7daa6600d2667b052fa8c50a16cdcca993ca\"\u003e\u003ccode\u003ebcfd7da\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 3 to 4 (\u003ca href=\"https://redirect.github.com/auth0/jwt-decode/issues/228\"\u003e#228\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/jwt-decode/commit/6ec1cba3159e9816010b09ad76c3c6740a5dc205\"\u003e\u003ccode\u003e6ec1cba\u003c/code\u003e\u003c/a\u003e Bump concurrently from 8.2.0 to 8.2.2 (\u003ca href=\"https://redirect.github.com/auth0/jwt-decode/issues/226\"\u003e#226\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/jwt-decode/commit/807d123e363a3988263b92e2e14d9873670c2602\"\u003e\u003ccode\u003e807d123\u003c/code\u003e\u003c/a\u003e Bump \u003ccode\u003e@​typescript-eslint/eslint-plugin\u003c/code\u003e from 6.4.1 to 6.9.0 (\u003ca href=\"https://redirect.github.com/auth0/jwt-decode/issues/229\"\u003e#229\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/jwt-decode/commit/f68e2927a89ed6fe2332e717987c373840914b2e\"\u003e\u003ccode\u003ef68e292\u003c/code\u003e\u003c/a\u003e Bump eslint-plugin-import from 2.28.1 to 2.29.0 (\u003ca href=\"https://redirect.github.com/auth0/jwt-decode/issues/230\"\u003e#230\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/jwt-decode/commit/b2e748945b2e451a1440f81136ce4cc7c1fc8851\"\u003e\u003ccode\u003eb2e7489\u003c/code\u003e\u003c/a\u003e Bump eslint-import-resolver-typescript from 3.6.0 to 3.6.1 (\u003ca href=\"https://redirect.github.com/auth0/jwt-decode/issues/225\"\u003e#225\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/jwt-decode/commit/ccb64884406ca0be891de5bd0b75cc2c8be6b00d\"\u003e\u003ccode\u003eccb6488\u003c/code\u003e\u003c/a\u003e Bump lint-staged from 14.0.1 to 15.0.2 (\u003ca href=\"https://redirect.github.com/auth0/jwt-decode/issues/231\"\u003e#231\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/jwt-decode/commit/cf3cd4fd10142965bbea0034cde0499879bb2603\"\u003e\u003ccode\u003ecf3cd4f\u003c/code\u003e\u003c/a\u003e Bump actions/setup-node from 3 to 4 (\u003ca href=\"https://redirect.github.com/auth0/jwt-decode/issues/227\"\u003e#227\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/jwt-decode/commit/0ce80178454b72be3e346aed8c8c76a09258a415\"\u003e\u003ccode\u003e0ce8017\u003c/code\u003e\u003c/a\u003e pin babel/core to recent version and bump jest\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/auth0/jwt-decode/compare/v2.2.0...v4.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~auth0-oss\"\u003eauth0-oss\u003c/a\u003e, a new releaser for jwt-decode since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `node-fetch` from 2.6.12 to 3.3.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-fetch/node-fetch/releases\"\u003enode-fetch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.3.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.1...v3.3.2\"\u003e3.3.2\u003c/a\u003e (2023-07-25)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e8b3320d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1735\"\u003e#1735\u003c/a\u003e \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1473\"\u003e#1473\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.0...v3.3.1\"\u003e3.3.1\u003c/a\u003e (2023-03-11)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erelease \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e7b86e94\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.0\u003c/h2\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.10...v3.3.0\"\u003e3.3.0\u003c/a\u003e (2022-11-10)\u003c/h1\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd static Response.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1670\"\u003e#1670\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/55a4870ae5f805d8ff9a890ea2c652c9977e048e\"\u003e55a4870\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.10\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.9...v3.2.10\"\u003e3.2.10\u003c/a\u003e (2022-07-31)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDoS referrer (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1611\"\u003e#1611\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d\"\u003e2880238\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.9\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.8...v3.2.9\"\u003e3.2.9\u003c/a\u003e (2022-07-18)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHeaders:\u003c/strong\u003e don't forward secure headers on protocol change (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1599\"\u003e#1599\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7\"\u003ee87b093\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.8\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.7...v3.2.8\"\u003e3.2.8\u003c/a\u003e (2022-07-12)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003epossibly flaky test (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1523\"\u003e#1523\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/11b703361134340a8361f591d6e3a0bcf6a261fa\"\u003e11b7033\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e\u003ccode\u003e8b3320d\u003c/code\u003e\u003c/a\u003e fix: Remove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e\u003ccode\u003e7b86e94\u003c/code\u003e\u003c/a\u003e fix: release \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8ced5b941cf36d0d7e0c1017aa2a4abcb29ecd89\"\u003e\u003ccode\u003e8ced5b9\u003c/code\u003e\u003c/a\u003e docs: readme - non ESM example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1707\"\u003e#1707\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/71e376b0ca899a30bbda4d45f97ea87502956a62\"\u003e\u003ccode\u003e71e376b\u003c/code\u003e\u003c/a\u003e ci(release): use latest Node LTS (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1697\"\u003e#1697\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e093030b4a6625405a331ddf48bcfd82c079f43d\"\u003e\u003ccode\u003ee093030\u003c/code\u003e\u003c/a\u003e Allow URL class object as an argument for fetch() (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/55a4870ae5f805d8ff9a890ea2c652c9977e048e\"\u003e\u003ccode\u003e55a4870\u003c/code\u003e\u003c/a\u003e feat: add static Response.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1670\"\u003e#1670\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/c071406e193cce13959999982584ff27198e9e4a\"\u003e\u003ccode\u003ec071406\u003c/code\u003e\u003c/a\u003e (1138) - Fixed HTTPResponseError with correct constructor and usage (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1666\"\u003e#1666\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/6f72caa401a8ec574a22058431599ef47c222770\"\u003e\u003ccode\u003e6f72caa\u003c/code\u003e\u003c/a\u003e docs: fix missing comma in example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1623\"\u003e#1623\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d\"\u003e\u003ccode\u003e2880238\u003c/code\u003e\u003c/a\u003e fix: ReDoS referrer (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1611\"\u003e#1611\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7\"\u003e\u003ccode\u003ee87b093\u003c/code\u003e\u003c/a\u003e fix(Headers): don't forward secure headers on protocol change (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1599\"\u003e#1599\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v2.6.12...v3.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `esbuild` from 0.18.11 to 0.28.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/evanw/esbuild/releases\"\u003eesbuild's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.28.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdd support for \u003ccode\u003ewith { type: 'text' }\u003c/code\u003e imports (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4435\"\u003e#4435\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eThe \u003ca href=\"https://github.com/tc39/proposal-import-text\"\u003eimport text\u003c/a\u003e proposal has reached stage 3 in the TC39 process, which means that it's recommended for implementation. It has also already been implemented by \u003ca href=\"https://docs.deno.com/examples/importing_text/\"\u003eDeno\u003c/a\u003e and \u003ca href=\"https://bun.com/docs/guides/runtime/import-html\"\u003eBun\u003c/a\u003e. So with this release, esbuild also adds support for it. This behaves exactly the same as esbuild's existing \u003ca href=\"https://esbuild.github.io/content-types/#text\"\u003e\u003ccode\u003etext\u003c/code\u003e loader\u003c/a\u003e. Here's an example:\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003eimport string from './example.txt' with { type: 'text' }\nconsole.log(string)\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdd integrity checks to fallback download path (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4343\"\u003e#4343\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eInstalling esbuild via npm is somewhat complicated with several different edge cases (see \u003ca href=\"https://esbuild.github.io/getting-started/#additional-npm-flags\"\u003eesbuild's documentation\u003c/a\u003e for details). If the regular installation of esbuild's platform-specific package fails, esbuild's install script attempts to download the platform-specific package itself (first with the \u003ccode\u003enpm\u003c/code\u003e command, and then with a HTTP request to \u003ccode\u003eregistry.npmjs.org\u003c/code\u003e as a last resort).\u003c/p\u003e\n\u003cp\u003eThis last resort path previously didn't have any integrity checks. With this release, esbuild will now verify that the hash of the downloaded binary matches the expected hash for the current release. This means the hashes for all of esbuild's platform-specific binary packages will now be embedded in the top-level \u003ccode\u003eesbuild\u003c/code\u003e package. Hopefully this should work without any problems. But just in case, this change is being done as a breaking change release.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpdate the Go compiler from 1.25.7 to 1.26.1\u003c/p\u003e\n\u003cp\u003eThis upgrade should not affect anything. However, there have been some significant internal changes to the Go compiler, so esbuild could potentially behave differently in certain edge cases:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eIt now uses the \u003ca href=\"https://go.dev/doc/go1.26#new-garbage-collector\"\u003enew garbage collector\u003c/a\u003e that comes with Go 1.26.\u003c/li\u003e\n\u003cli\u003eThe Go compiler is now more aggressive with allocating memory on the stack.\u003c/li\u003e\n\u003cli\u003eThe executable format that the Go linker uses has undergone several changes.\u003c/li\u003e\n\u003cli\u003eThe WebAssembly build now unconditionally makes use of the sign extension and non-trapping floating-point to integer conversion instructions.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eYou can read the \u003ca href=\"https://go.dev/doc/go1.26\"\u003eGo 1.26 release notes\u003c/a\u003e for more information.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.27.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix lowering of define semantics for TypeScript parameter properties (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4421\"\u003e#4421\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eThe previous release incorrectly generated class fields for TypeScript parameter properties even when the configured target environment does not support class fields. With this release, the generated class fields will now be correctly lowered in this case:\u003c/p\u003e\n\u003cpre lang=\"ts\"\u003e\u003ccode\u003e// Original code\nclass Foo {\n  constructor(public x = 1) {}\n  y = 2\n}\n\u003cp\u003e// Old output (with --loader=ts --target=es2021)\u003cbr /\u003e\nclass Foo {\u003cbr /\u003e\nconstructor(x = 1) {\u003cbr /\u003e\nthis.x = x;\u003cbr /\u003e\n__publicField(this, \u0026quot;y\u0026quot;, 2);\u003cbr /\u003e\n}\u003cbr /\u003e\nx;\u003cbr /\u003e\n}\u003c/p\u003e\n\u003cp\u003e// New output (with --loader=ts --target=es2021)\u003cbr /\u003e\nclass Foo {\u003cbr /\u003e\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/evanw/esbuild/blob/main/CHANGELOG-2023.md\"\u003eesbuild's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog: 2023\u003c/h1\u003e\n\u003cp\u003eThis changelog documents all esbuild versions published in the year 2023 (versions 0.16.13 through 0.19.11).\u003c/p\u003e\n\u003ch2\u003e0.19.11\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix TypeScript-specific class transform edge case (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/3559\"\u003e#3559\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eThe previous release introduced an optimization that avoided transforming \u003ccode\u003esuper()\u003c/code\u003e in the class constructor for TypeScript code compiled with \u003ccode\u003euseDefineForClassFields\u003c/code\u003e set to \u003ccode\u003efalse\u003c/code\u003e if all class instance fields have no initializers. The rationale was that in this case, all class instance fields are omitted in the output so no changes to the constructor are needed. However, if all of this is the case \u003cem\u003eand\u003c/em\u003e there are \u003ccode\u003e#private\u003c/code\u003e instance fields with initializers, those private instance field initializers were still being moved into the constructor. This was problematic because they were being inserted before the call to \u003ccode\u003esuper()\u003c/code\u003e (since \u003ccode\u003esuper()\u003c/code\u003e is now no longer transformed in that case). This release introduces an additional optimization that avoids moving the private instance field initializers into the constructor in this edge case, which generates smaller code, matches the TypeScript compiler's output more closely, and avoids this bug:\u003c/p\u003e\n\u003cpre lang=\"ts\"\u003e\u003ccode\u003e// Original code\nclass Foo extends Bar {\n  #private = 1;\n  public: any;\n  constructor() {\n    super();\n  }\n}\n\u003cp\u003e// Old output (with esbuild v0.19.9)\u003cbr /\u003e\nclass Foo extends Bar {\u003cbr /\u003e\nconstructor() {\u003cbr /\u003e\nsuper();\u003cbr /\u003e\nthis.#private = 1;\u003cbr /\u003e\n}\u003cbr /\u003e\n#private;\u003cbr /\u003e\n}\u003c/p\u003e\n\u003cp\u003e// Old output (with esbuild v0.19.10)\u003cbr /\u003e\nclass Foo extends Bar {\u003cbr /\u003e\nconstructor() {\u003cbr /\u003e\nthis.#private = 1;\u003cbr /\u003e\nsuper();\u003cbr /\u003e\n}\u003cbr /\u003e\n#private;\u003cbr /\u003e\n}\u003c/p\u003e\n\u003cp\u003e// New output\u003cbr /\u003e\nclass Foo extends Bar {\u003cbr /\u003e\n#private = 1;\u003cbr /\u003e\nconstructor() {\u003cbr /\u003e\nsuper();\u003cbr /\u003e\n}\u003cbr /\u003e\n}\u003cbr /\u003e\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eMinifier: allow reording a primitive past a side-effect (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/3568\"\u003e#3568\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eThe minifier previously allowed reordering a side-effect past a primitive, but didn't handle the case of reordering a primitive past a side-effect. This additional case is now handled:\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/6a794dff68e6a43539f6da671e3080efdf11ca70\"\u003e\u003ccode\u003e6a794df\u003c/code\u003e\u003c/a\u003e publish 0.28.0 to npm\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/64ee0ea63b2ff303caafc9610c388dc72c882c23\"\u003e\u003ccode\u003e64ee0ea\u003c/code\u003e\u003c/a\u003e fix \u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4435\"\u003e#4435\u003c/a\u003e: support \u003ccode\u003ewith { type: text }\u003c/code\u003e imports\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/ef65aeeaacdb71eade186f888975b1de89574314\"\u003e\u003ccode\u003eef65aee\u003c/code\u003e\u003c/a\u003e fix sort order in \u003ccode\u003esnapshots_packagejson.txt\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/1a26a8ecbc39aaf1379c524a0274a08fbcbed655\"\u003e\u003ccode\u003e1a26a8e\u003c/code\u003e\u003c/a\u003e try to fix \u003ccode\u003etest-old-ts\u003c/code\u003e, also shuffle CI tasks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/556ce6c1fc00d7c0917fbfada01ed8e5251bc510\"\u003e\u003ccode\u003e556ce6c\u003c/code\u003e\u003c/a\u003e use \u003ccode\u003e''\u003c/code\u003e instead of \u003ccode\u003enull\u003c/code\u003e to omit build hashes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/8e675a81a473ea69a46a69792f1386bb110dd877\"\u003e\u003ccode\u003e8e675a8\u003c/code\u003e\u003c/a\u003e ci: allow missing binary hashes for tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/7067763b904fe8a522fa840a4a48c5fbd4c395e0\"\u003e\u003ccode\u003e7067763\u003c/code\u003e\u003c/a\u003e Reapply \u0026quot;update go 1.25.7 =\u0026gt; 1.26.1\u0026quot;\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/39473a952ab3b450d0578b698a8b8d2a02332e0d\"\u003e\u003ccode\u003e39473a9\u003c/code\u003e\u003c/a\u003e fix \u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4343\"\u003e#4343\u003c/a\u003e: integrity check for binary download\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/2025c9ff6ab15ba6b0f9d074fd732250cc46e4a3\"\u003e\u003ccode\u003e2025c9f\u003c/code\u003e\u003c/a\u003e publish 0.27.7 to npm\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/c6b586e4904f47e8d5f783a2813660c13e2672e7\"\u003e\u003ccode\u003ec6b586e\u003c/code\u003e\u003c/a\u003e fix typo in \u003ccode\u003eMakefile\u003c/code\u003e for \u003ccode\u003e@esbuild/win32-x64\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/evanw/esbuild/compare/v0.18.11...v0.28.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for esbuild since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n","html_url":"https://github.com/OfficeDev/Microsoft-Teams-Samples/pull/2018","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/OfficeDev%2FMicrosoft-Teams-Samples/issues/2018","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2018/packages"},{"uuid":"4390602261","node_id":"PR_kwDOOuOFAc7Yuc7v","number":34604,"state":"closed","title":"deps: bump the production-dependencies group across 1 directory with 3 updates","user":"dependabot[bot]","labels":["dependencies"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":"2026-05-10T10:37:33.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-06T10:27:27.000Z","updated_at":"2026-05-10T10:37:35.000Z","time_to_close":346206,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"deps: bump","group_name":"production-dependencies","update_count":3,"packages":[{"name":"lucide-react","old_version":"1.11.0","new_version":"1.14.0","repository_url":"https://github.com/lucide-icons/lucide"},{"name":"node-fetch","old_version":"2.7.0","new_version":"3.3.2","repository_url":"https://github.com/node-fetch/node-fetch"},{"name":"react-router-dom","old_version":"7.14.2","new_version":"7.15.0","repository_url":"https://github.com/remix-run/react-router"}],"path":null,"ecosystem":"npm"},"body":"Bumps the production-dependencies group with 3 updates in the / directory: [lucide-react](https://github.com/lucide-icons/lucide/tree/HEAD/packages/lucide-react), [node-fetch](https://github.com/node-fetch/node-fetch) and [react-router-dom](https://github.com/remix-run/react-router/tree/HEAD/packages/react-router-dom).\n\nUpdates `lucide-react` from 1.11.0 to 1.14.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lucide-icons/lucide/releases\"\u003elucide-react's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eVersion 1.14.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat(icons): added \u003ccode\u003erepeat-off\u003c/code\u003e icon by \u003ca href=\"https://github.com/jguddas\"\u003e\u003ccode\u003e@​jguddas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lucide-icons/lucide/pull/3102\"\u003elucide-icons/lucide#3102\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lucide-icons/lucide/compare/1.13.0...1.14.0\"\u003ehttps://github.com/lucide-icons/lucide/compare/1.13.0...1.14.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eVersion 1.13.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(docs): sync URL params with UI state on categories page by \u003ca href=\"https://github.com/taimar\"\u003e\u003ccode\u003e@​taimar\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lucide-icons/lucide/pull/4111\"\u003elucide-icons/lucide#4111\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(icons): add \u003ccode\u003ewaves-vertical\u003c/code\u003e icon by \u003ca href=\"https://github.com/jamiemlaw\"\u003e\u003ccode\u003e@​jamiemlaw\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lucide-icons/lucide/pull/3867\"\u003elucide-icons/lucide#3867\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lucide-icons/lucide/compare/1.12.0...1.13.0\"\u003ehttps://github.com/lucide-icons/lucide/compare/1.12.0...1.13.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eVersion 1.12.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat(icon): add folder-bookmark icon by \u003ca href=\"https://github.com/swastik7805\"\u003e\u003ccode\u003e@​swastik7805\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lucide-icons/lucide/pull/4262\"\u003elucide-icons/lucide#4262\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs(readme): Update readme files by \u003ca href=\"https://github.com/ericfennis\"\u003e\u003ccode\u003e@​ericfennis\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lucide-icons/lucide/pull/4320\"\u003elucide-icons/lucide#4320\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(icons): added \u003ccode\u003eastroid\u003c/code\u003e icon by \u003ca href=\"https://github.com/whoisBugsbunny\"\u003e\u003ccode\u003e@​whoisBugsbunny\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lucide-icons/lucide/pull/4217\"\u003elucide-icons/lucide#4217\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lucide-icons/lucide/compare/1.10.0...1.12.0\"\u003ehttps://github.com/lucide-icons/lucide/compare/1.10.0...1.12.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lucide-icons/lucide/commit/50d8af5a1012e188f3d71ac8f1fc0fba1aab5357\"\u003e\u003ccode\u003e50d8af5\u003c/code\u003e\u003c/a\u003e docs(readme): Update readme files (\u003ca href=\"https://github.com/lucide-icons/lucide/tree/HEAD/packages/lucide-react/issues/4320\"\u003e#4320\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/lucide-icons/lucide/commits/1.14.0/packages/lucide-react\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `node-fetch` from 2.7.0 to 3.3.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-fetch/node-fetch/releases\"\u003enode-fetch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.3.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.1...v3.3.2\"\u003e3.3.2\u003c/a\u003e (2023-07-25)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e8b3320d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1735\"\u003e#1735\u003c/a\u003e \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1473\"\u003e#1473\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.0...v3.3.1\"\u003e3.3.1\u003c/a\u003e (2023-03-11)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erelease \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e7b86e94\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.0\u003c/h2\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.10...v3.3.0\"\u003e3.3.0\u003c/a\u003e (2022-11-10)\u003c/h1\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd static Response.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1670\"\u003e#1670\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/55a4870ae5f805d8ff9a890ea2c652c9977e048e\"\u003e55a4870\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.10\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.9...v3.2.10\"\u003e3.2.10\u003c/a\u003e (2022-07-31)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDoS referrer (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1611\"\u003e#1611\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d\"\u003e2880238\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.9\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.8...v3.2.9\"\u003e3.2.9\u003c/a\u003e (2022-07-18)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHeaders:\u003c/strong\u003e don't forward secure headers on protocol change (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1599\"\u003e#1599\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7\"\u003ee87b093\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.8\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.7...v3.2.8\"\u003e3.2.8\u003c/a\u003e (2022-07-12)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003epossibly flaky test (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1523\"\u003e#1523\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/11b703361134340a8361f591d6e3a0bcf6a261fa\"\u003e11b7033\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e\u003ccode\u003e8b3320d\u003c/code\u003e\u003c/a\u003e fix: Remove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e\u003ccode\u003e7b86e94\u003c/code\u003e\u003c/a\u003e fix: release \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8ced5b941cf36d0d7e0c1017aa2a4abcb29ecd89\"\u003e\u003ccode\u003e8ced5b9\u003c/code\u003e\u003c/a\u003e docs: readme - non ESM example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1707\"\u003e#1707\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/71e376b0ca899a30bbda4d45f97ea87502956a62\"\u003e\u003ccode\u003e71e376b\u003c/code\u003e\u003c/a\u003e ci(release): use latest Node LTS (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1697\"\u003e#1697\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e093030b4a6625405a331ddf48bcfd82c079f43d\"\u003e\u003ccode\u003ee093030\u003c/code\u003e\u003c/a\u003e Allow URL class object as an argument for fetch() (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/55a4870ae5f805d8ff9a890ea2c652c9977e048e\"\u003e\u003ccode\u003e55a4870\u003c/code\u003e\u003c/a\u003e feat: add static Response.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1670\"\u003e#1670\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/c071406e193cce13959999982584ff27198e9e4a\"\u003e\u003ccode\u003ec071406\u003c/code\u003e\u003c/a\u003e (1138) - Fixed HTTPResponseError with correct constructor and usage (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1666\"\u003e#1666\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/6f72caa401a8ec574a22058431599ef47c222770\"\u003e\u003ccode\u003e6f72caa\u003c/code\u003e\u003c/a\u003e docs: fix missing comma in example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1623\"\u003e#1623\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d\"\u003e\u003ccode\u003e2880238\u003c/code\u003e\u003c/a\u003e fix: ReDoS referrer (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1611\"\u003e#1611\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7\"\u003e\u003ccode\u003ee87b093\u003c/code\u003e\u003c/a\u003e fix(Headers): don't forward secure headers on protocol change (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1599\"\u003e#1599\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v2.7.0...v3.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `react-router-dom` from 7.14.2 to 7.15.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/remix-run/react-router/blob/main/packages/react-router-dom/CHANGELOG.md\"\u003ereact-router-dom's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.15.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies:\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/remix-run/react-router/releases/tag/react-router@7.15.0\"\u003e\u003ccode\u003ereact-router@7.15.0\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/remix-run/react-router/commit/97c8de79c38f107acd15f74d8295c7bf75894a5d\"\u003e\u003ccode\u003e97c8de7\u003c/code\u003e\u003c/a\u003e Release v7.15.0 (\u003ca href=\"https://github.com/remix-run/react-router/tree/HEAD/packages/react-router-dom/issues/15018\"\u003e#15018\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/remix-run/react-router/commits/react-router-dom@7.15.0/packages/react-router-dom\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/Zion-support/zion.app/pull/34604","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Zion-support%2Fzion.app/issues/34604","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/34604/packages"},{"uuid":"4389501593","node_id":"PR_kwDOH8zbys7Yq1Dt","number":310,"state":"open","title":"Bump node-fetch from 3.3.0 to 3.3.2","user":"dependabot[bot]","labels":["dependencies","Stale","javascript"],"assignees":[],"locked":false,"comments_count":4,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-06T07:17:08.000Z","updated_at":"2026-06-11T06:00:13.900Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"node-fetch","old_version":"3.3.0","new_version":"3.3.2","repository_url":"https://github.com/node-fetch/node-fetch"}],"path":null,"ecosystem":"npm"},"body":"Bumps [node-fetch](https://github.com/node-fetch/node-fetch) from 3.3.0 to 3.3.2.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-fetch/node-fetch/releases\"\u003enode-fetch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.3.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.1...v3.3.2\"\u003e3.3.2\u003c/a\u003e (2023-07-25)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e8b3320d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1735\"\u003e#1735\u003c/a\u003e \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1473\"\u003e#1473\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.0...v3.3.1\"\u003e3.3.1\u003c/a\u003e (2023-03-11)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erelease \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e7b86e94\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e\u003ccode\u003e8b3320d\u003c/code\u003e\u003c/a\u003e fix: Remove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e\u003ccode\u003e7b86e94\u003c/code\u003e\u003c/a\u003e fix: release \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8ced5b941cf36d0d7e0c1017aa2a4abcb29ecd89\"\u003e\u003ccode\u003e8ced5b9\u003c/code\u003e\u003c/a\u003e docs: readme - non ESM example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1707\"\u003e#1707\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/71e376b0ca899a30bbda4d45f97ea87502956a62\"\u003e\u003ccode\u003e71e376b\u003c/code\u003e\u003c/a\u003e ci(release): use latest Node LTS (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1697\"\u003e#1697\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e093030b4a6625405a331ddf48bcfd82c079f43d\"\u003e\u003ccode\u003ee093030\u003c/code\u003e\u003c/a\u003e Allow URL class object as an argument for fetch() (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.0...v3.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=node-fetch\u0026package-manager=npm_and_yarn\u0026previous-version=3.3.0\u0026new-version=3.3.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/jischr/taraforboulder/pull/310","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/jischr%2Ftaraforboulder/issues/310","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/310/packages"},{"uuid":"4378326451","node_id":"PR_kwDOQK0Xy87YGRy-","number":12,"state":"closed","title":"chore(deps): bump the npm_and_yarn group across 21 directories with 18 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-28T00:54:10.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-04T17:17:43.000Z","updated_at":"2026-05-28T00:54:11.000Z","time_to_close":2014587,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm_and_yarn","update_count":18,"packages":[{"name":"uuid","old_version":"3.2.1","new_version":"14.0.0","repository_url":"https://github.com/uuidjs/uuid"},{"name":"lodash","old_version":"4.17.14","new_version":"4.18.1","repository_url":"https://github.com/lodash/lodash"},{"name":"js-yaml","old_version":"3.13.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"node-fetch","old_version":"2.6.0","new_version":"2.7.0","repository_url":"https://github.com/node-fetch/node-fetch"},{"name":"tmp","old_version":"0.0.33","new_version":"removed","repository_url":"https://github.com/raszi/node-tmp"},{"name":"y18n","old_version":"3.2.1","new_version":"3.2.2","repository_url":"https://github.com/yargs/y18n"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 3 updates in the / directory: [uuid](https://github.com/uuidjs/uuid), [cookie](https://github.com/jshttp/cookie) and [js-yaml](https://github.com/nodeca/js-yaml).\nBumps the npm_and_yarn group with 6 updates in the /test/acceptance/workspaces/monorepo-with-nuget/src/paymentservice directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [uuid](https://github.com/uuidjs/uuid) | `3.2.1` | `14.0.0` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.14` | `4.18.1` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.13.1` | `3.14.2` |\n| [node-fetch](https://github.com/node-fetch/node-fetch) | `2.6.0` | `2.7.0` |\n| [tmp](https://github.com/raszi/node-tmp) | `0.0.33` | `removed` |\n| [y18n](https://github.com/yargs/y18n) | `3.2.1` | `3.2.2` |\n\nBumps the npm_and_yarn group with 4 updates in the /test/acceptance/workspaces/npm-lock-v2-with-npm-prefixed-sub-dep-version directory: [lodash](https://github.com/lodash/lodash), [picomatch](https://github.com/micromatch/picomatch), [braces](https://github.com/micromatch/braces) and [js-yaml](https://github.com/nodeca/js-yaml).\nBumps the npm_and_yarn group with 7 updates in the /test/acceptance/workspaces/npm-out-of-sync-graph directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [debug](https://github.com/debug-js/debug) | `4.1.0` | `4.4.3` |\n| [debug](https://github.com/debug-js/debug) | `3.2.6` | `3.2.7` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.11` | `4.18.1` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.0.4` | `3.1.5` |\n| [braces](https://github.com/micromatch/braces) | `1.8.5` | `3.0.3` |\n| [minimist](https://github.com/minimistjs/minimist) | `0.0.8` | `1.2.8` |\n| [tmp](https://github.com/raszi/node-tmp) | `0.0.33` | `removed` |\n| [follow-redirects](https://github.com/follow-redirects/follow-redirects) | `1.5.10` | `1.16.0` |\n\nBumps the npm_and_yarn group with 1 update in the /test/acceptance/workspaces/npm-package-with-dist-tag-subdependency directory: [cookie](https://github.com/jshttp/cookie).\nBumps the npm_and_yarn group with 1 update in the /test/acceptance/workspaces/yarn-package directory: [debug](https://github.com/debug-js/debug).\nBumps the npm_and_yarn group with 1 update in the /test/acceptance/workspaces/yarn-v2 directory: [lodash](https://github.com/lodash/lodash).\nBumps the npm_and_yarn group with 5 updates in the /test/acceptance/workspaces/yarn-workspace-out-of-sync directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [debug](https://github.com/debug-js/debug) | `4.1.1` | `4.3.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.15` | `4.18.1` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.0.4` | `3.1.5` |\n| [node-fetch](https://github.com/node-fetch/node-fetch) | `2.6.0` | `2.6.7` |\n| [y18n](https://github.com/yargs/y18n) | `3.2.1` | `3.2.2` |\n\nBumps the npm_and_yarn group with 1 update in the /test/acceptance/workspaces/yarn-workspace-out-of-sync/packages/not_a_workspace/deeply_nested directory: [uuid](https://github.com/uuidjs/uuid).\nBumps the npm_and_yarn group with 1 update in the /test/acceptance/workspaces/yarn-workspace-out-of-sync/packages/tomatoes directory: [node-fetch](https://github.com/node-fetch/node-fetch).\nBumps the npm_and_yarn group with 5 updates in the /test/acceptance/workspaces/yarn-workspaces directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [lodash](https://github.com/lodash/lodash) | `4.17.15` | `4.18.1` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.0.4` | `3.1.5` |\n| [node-fetch](https://github.com/node-fetch/node-fetch) | `2.6.0` | `2.6.7` |\n| [y18n](https://github.com/yargs/y18n) | `3.2.1` | `3.2.2` |\n| [node-uuid](https://github.com/broofa/node-uuid) | `1.3.0` | `1.4.8` |\n\nBumps the npm_and_yarn group with 2 updates in the /test/acceptance/workspaces/yarn-workspaces-v2 directory: [node-fetch](https://github.com/node-fetch/node-fetch) and [node-uuid](https://github.com/broofa/node-uuid).\nBumps the npm_and_yarn group with 2 updates in the /test/acceptance/workspaces/yarn-workspaces-v2-resolutions directory: [node-fetch](https://github.com/node-fetch/node-fetch) and [node-uuid](https://github.com/broofa/node-uuid).\nBumps the npm_and_yarn group with 1 update in the /test/acceptance/workspaces/yarn-workspaces-v2-resolutions/packages/apples directory: [node-uuid](https://github.com/broofa/node-uuid).\nBumps the npm_and_yarn group with 1 update in the /test/acceptance/workspaces/yarn-workspaces-v2-resolutions/packages/tomatoes directory: [node-fetch](https://github.com/node-fetch/node-fetch).\nBumps the npm_and_yarn group with 1 update in the /test/acceptance/workspaces/yarn-workspaces-v2/packages/apples directory: [node-uuid](https://github.com/broofa/node-uuid).\nBumps the npm_and_yarn group with 1 update in the /test/acceptance/workspaces/yarn-workspaces-v2/packages/tomatoes directory: [node-fetch](https://github.com/node-fetch/node-fetch).\nBumps the npm_and_yarn group with 1 update in the /test/acceptance/workspaces/yarn-workspaces/libs/apple-lib directory: [node-uuid](https://github.com/broofa/node-uuid).\nBumps the npm_and_yarn group with 1 update in the /test/acceptance/workspaces/yarn-workspaces/packages/apples directory: [node-uuid](https://github.com/broofa/node-uuid).\nBumps the npm_and_yarn group with 1 update in the /test/acceptance/workspaces/yarn-workspaces/packages/tomatoes directory: [node-fetch](https://github.com/node-fetch/node-fetch).\nBumps the npm_and_yarn group with 7 updates in the /ts-binary-wrapper directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [semver](https://github.com/npm/node-semver) | `6.3.0` | `6.3.1` |\n| [@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse) | `7.20.13` | `7.29.0` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `3.1.5` |\n| [cookie](https://github.com/jshttp/cookie) | `0.4.2` | `removed` |\n| [picomatch](https://github.com/micromatch/picomatch) | `2.3.1` | `2.3.2` |\n| [braces](https://github.com/micromatch/braces) | `3.0.2` | `3.0.3` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n\n\nUpdates `uuid` from 8.3.2 to 14.0.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/uuidjs/uuid/releases\"\u003euuid's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev14.0.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.0...v14.0.0\"\u003e14.0.0\u003c/a\u003e (2026-04-19)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eexpect \u003ccode\u003ecrypto\u003c/code\u003e to be global everywhere (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003edrop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/dc4ddb87272ed2843faccd130bcc41d492688bd3\"\u003edc4ddb8\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eexpect \u003ccode\u003ecrypto\u003c/code\u003e to be global everywhere (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/f2c235f93059325fa43e1106e624b5291bb523c4\"\u003ef2c235f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse GITHUB_TOKEN for release-please and enable npm provenance (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/925\"\u003e#925\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/ffa31383e8e4e1f0b4e22e504561272041b8738c\"\u003effa3138\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev13.0.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.1...v13.0.2\"\u003e13.0.2\u003c/a\u003e (2026-05-04)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ererelease to fix provenance. (\u003ca href=\"https://github.com/uuidjs/uuid/commit/49ccb35f78c0c4ce1409dd2f1d89f83caadba10b\"\u003e49ccb35\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev13.0.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.0...v13.0.1\"\u003e13.0.1\u003c/a\u003e (2026-04-27)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebackport fix for GHSA-w5hq-g745-h8pq (\u003ca href=\"https://github.com/uuidjs/uuid/commit/9d27ddf7046ce496ef39569ff84d948eeff9cb2a\"\u003e9d27ddf\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev13.0.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v12.0.0...v13.0.0\"\u003e13.0.0\u003c/a\u003e (2025-09-08)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/bce9d72a3ae5b9a3dcd8eb21ef6d1820288a427a\"\u003ebce9d72\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev12.0.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v12.0.0...v12.0.1\"\u003e12.0.1\u003c/a\u003e (2026-04-29)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/uuidjs/uuid/blob/main/CHANGELOG.md\"\u003euuid's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.0...v14.0.0\"\u003e14.0.0\u003c/a\u003e (2026-04-19)\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixes \u003ca href=\"https://github.com/uuidjs/uuid/security/advisories/GHSA-w5hq-g745-h8pq\"\u003eGHSA-w5hq-g745-h8pq\u003c/a\u003e: \u003ccode\u003ev3()\u003c/code\u003e, \u003ccode\u003ev5()\u003c/code\u003e, and \u003ccode\u003ev6()\u003c/code\u003e did not validate that writes would remain within the bounds of a caller-supplied buffer, allowing out-of-bounds writes when an invalid \u003ccode\u003eoffset\u003c/code\u003e was provided. A \u003ccode\u003eRangeError\u003c/code\u003e is now thrown if \u003ccode\u003eoffset \u0026lt; 0\u003c/code\u003e or \u003ccode\u003eoffset + 16 \u0026gt; buf.length\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ecrypto\u003c/code\u003e is now expected to be globally defined (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupgrade minimum supported TypeScript version to 5.4.3, in keeping with the project's policy of supporting TypeScript versions released within the last two years\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v12.0.0...v13.0.0\"\u003e13.0.0\u003c/a\u003e (2025-09-08)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/bce9d72a3ae5b9a3dcd8eb21ef6d1820288a427a\"\u003ebce9d72\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.1.0...v12.0.0\"\u003e12.0.0\u003c/a\u003e (2025-09-05)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdate to typescript@5.2 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/887\"\u003e#887\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove CommonJS support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/886\"\u003e#886\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@16 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/883\"\u003e#883\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd node@24 to ci matrix (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/879\"\u003e#879\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/42b6178aa21a593257f0a72abacd220f0b7b8a92\"\u003e42b6178\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@16 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/883\"\u003e#883\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/0f38cf10366ab074f9328ae2021eea04d5f2e530\"\u003e0f38cf1\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove CommonJS support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/886\"\u003e#886\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/ae786e27265f50bcf7cead196c29f1869297c42f\"\u003eae786e2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate to typescript@5.2 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/887\"\u003e#887\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/c7ee40598ed78584d81ab78dffded9fe5ff20b01\"\u003ec7ee405\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimprove v4() performance (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/894\"\u003e#894\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/5fd974c12718c8848035650b69b8948f12ace197\"\u003e5fd974c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erestore node: prefix (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/889\"\u003e#889\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/e1f42a354593093ba0479f0b4047dae82d28c507\"\u003ee1f42a3\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.0.5...v11.1.0\"\u003e11.1.0\u003c/a\u003e (2025-02-19)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/7c1ea087a8149b57380fc8bb7f68c3a215cb6e4b\"\u003e\u003ccode\u003e7c1ea08\u003c/code\u003e\u003c/a\u003e chore(main): release 14.0.0 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/926\"\u003e#926\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/3d2c5b0342f0fcb52a5ac681c3d47c13e7444b34\"\u003e\u003ccode\u003e3d2c5b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/f2c235f93059325fa43e1106e624b5291bb523c4\"\u003e\u003ccode\u003ef2c235f\u003c/code\u003e\u003c/a\u003e fix!: expect \u003ccode\u003ecrypto\u003c/code\u003e to be global everywhere (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/529ef0899f5dd503d2ee90d690585d63d78bc212\"\u003e\u003ccode\u003e529ef08\u003c/code\u003e\u003c/a\u003e chore: upgrade TypeScript and fixup types (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/927\"\u003e#927\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/086fd7976f11433edf9ac80be876b3ad243fe087\"\u003e\u003ccode\u003e086fd79\u003c/code\u003e\u003c/a\u003e chore: update dependencies (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/933\"\u003e#933\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/dc4ddb87272ed2843faccd130bcc41d492688bd3\"\u003e\u003ccode\u003edc4ddb8\u003c/code\u003e\u003c/a\u003e feat!: drop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/0f1f9c9c9cedbae5a1d363d5406c5dfbabe81404\"\u003e\u003ccode\u003e0f1f9c9\u003c/code\u003e\u003c/a\u003e chore: switch to Biome for parsing and linting (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/932\"\u003e#932\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/e2879e64bf125add903c1eff6e0860542c605013\"\u003e\u003ccode\u003ee2879e6\u003c/code\u003e\u003c/a\u003e chore: use maintained version of npm-run-all (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/930\"\u003e#930\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/ffa31383e8e4e1f0b4e22e504561272041b8738c\"\u003e\u003ccode\u003effa3138\u003c/code\u003e\u003c/a\u003e fix: Use GITHUB_TOKEN for release-please and enable npm provenance (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/925\"\u003e#925\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/0423d49df2dc8efc300c804731d25f4d7e0fccc4\"\u003e\u003ccode\u003e0423d49\u003c/code\u003e\u003c/a\u003e docs: remove obsolete v1 option notes (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/915\"\u003e#915\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/uuidjs/uuid/compare/v8.3.2...v14.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for uuid since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `cookie` from 0.4.0 to 0.7.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jshttp/cookie/releases\"\u003ecookie's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.7.2\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFixed\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eFix object assignment of \u003ccode\u003ehasOwnProperty\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/177\"\u003e#177\u003c/a\u003e)  bc38ffd\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jshttp/cookie/compare/v0.7.1...v0.7.2\"\u003ehttps://github.com/jshttp/cookie/compare/v0.7.1...v0.7.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.7.1\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFixed\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAllow leading dot for domain (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/174\"\u003e#174\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eAlthough not permitted in the spec, some users expect this to work and user agents ignore the leading dot according to spec\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eAdd fast path for \u003ccode\u003eserialize\u003c/code\u003e without options, use \u003ccode\u003eobj.hasOwnProperty\u003c/code\u003e when parsing (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/172\"\u003e#172\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jshttp/cookie/compare/v0.7.0...v0.7.1\"\u003ehttps://github.com/jshttp/cookie/compare/v0.7.0...v0.7.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eperf: parse cookies ~10% faster (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/144\"\u003e#144\u003c/a\u003e by \u003ca href=\"https://github.com/kurtextrem\"\u003e\u003ccode\u003e@​kurtextrem\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/170\"\u003e#170\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix: narrow the validation of cookies to match RFC6265 (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/167\"\u003e#167\u003c/a\u003e by \u003ca href=\"https://github.com/bewinsnw\"\u003e\u003ccode\u003e@​bewinsnw\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix: add \u003ccode\u003emain\u003c/code\u003e to \u003ccode\u003epackage.json\u003c/code\u003e for rspack (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/166\"\u003e#166\u003c/a\u003e by \u003ca href=\"https://github.com/proudparrot2\"\u003e\u003ccode\u003e@​proudparrot2\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jshttp/cookie/compare/v0.6.0...v0.7.0\"\u003ehttps://github.com/jshttp/cookie/compare/v0.6.0...v0.7.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.6.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003epartitioned\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.5.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003epriority\u003c/code\u003e option\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eexpires\u003c/code\u003e option to reject invalid dates\u003c/li\u003e\n\u003cli\u003epref: improve default decode speed\u003c/li\u003e\n\u003cli\u003epref: remove slow string split in parse\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.4.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epref: read value only when assigning in parse\u003c/li\u003e\n\u003cli\u003epref: remove unnecessary regexp in parse\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.4.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ccode\u003emaxAge\u003c/code\u003e option to reject invalid values\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/d19eaa1a2bb9ca43ac0951edd852ba4e88e410e0\"\u003e\u003ccode\u003ed19eaa1\u003c/code\u003e\u003c/a\u003e 0.7.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/bc38ffd0eae716b199236dda061d0bdc74192dd3\"\u003e\u003ccode\u003ebc38ffd\u003c/code\u003e\u003c/a\u003e Fix object assignment of \u003ccode\u003ehasOwnProperty\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/177\"\u003e#177\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/cf4658f492c5bd96aeaf5693c3500f8495031014\"\u003e\u003ccode\u003ecf4658f\u003c/code\u003e\u003c/a\u003e 0.7.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/6a8b8f5a49af7897b98ebfb29a1c4955afa3d33e\"\u003e\u003ccode\u003e6a8b8f5\u003c/code\u003e\u003c/a\u003e Allow leading dot for domain (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/174\"\u003e#174\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/58015c0b93de0b63db245cfdc5a108e511a81ad0\"\u003e\u003ccode\u003e58015c0\u003c/code\u003e\u003c/a\u003e Remove more code and perf wins (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/172\"\u003e#172\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/ab057d6c06b94a7b1e3358e69a685ae49c97b627\"\u003e\u003ccode\u003eab057d6\u003c/code\u003e\u003c/a\u003e 0.7.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/5f02ca87688481dbcf155e49ca8b61732f30e542\"\u003e\u003ccode\u003e5f02ca8\u003c/code\u003e\u003c/a\u003e Migrate history to GitHub releases\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/a5d591ce8447dd63821779724f96ad3c774c8579\"\u003e\u003ccode\u003ea5d591c\u003c/code\u003e\u003c/a\u003e Migrate history to GitHub releases\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/51968f94b5e820adeceef505539fa193ffe2d105\"\u003e\u003ccode\u003e51968f9\u003c/code\u003e\u003c/a\u003e Skip isNaN\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/9e7ca51ade4b325307eedd6b4dec190983e9e2cc\"\u003e\u003ccode\u003e9e7ca51\u003c/code\u003e\u003c/a\u003e perf(parse): cache length, return early (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/144\"\u003e#144\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jshttp/cookie/compare/v0.4.0...v0.7.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~blakeembrey\"\u003eblakeembrey\u003c/a\u003e, a new releaser for cookie since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 3.14.1 to 3.14.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.14.2] - 2025-11-15\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBackported v4.1.1 fix to v3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.0] - 2021-04-15\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTypes are now exported as \u003ccode\u003eyaml.types.XXX\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eEvery type now has \u003ccode\u003eoptions\u003c/code\u003e property with original arguments kept as they were\n(see \u003ccode\u003eyaml.types.int.options\u003c/code\u003e as an example).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eSchema.extend()\u003c/code\u003e now keeps old type order in case of conflicts\n(e.g. Schema.extend([ a, b, c ]).extend([ b, a, d ]) is now ordered as \u003ccode\u003eabcd\u003c/code\u003e instead of \u003ccode\u003ecbad\u003c/code\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.0.0] - 2021-01-03\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCheck \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/migrate_v3_to_v4.md\"\u003emigration guide\u003c/a\u003e to see details for all breaking changes.\u003c/li\u003e\n\u003cli\u003eBreaking: \u0026quot;unsafe\u0026quot; tags \u003ccode\u003e!!js/function\u003c/code\u003e, \u003ccode\u003e!!js/regexp\u003c/code\u003e, \u003ccode\u003e!!js/undefined\u003c/code\u003e are\nmoved to \u003ca href=\"https://github.com/nodeca/js-yaml-js-types\"\u003ejs-yaml-js-types\u003c/a\u003e package.\u003c/li\u003e\n\u003cli\u003eBreaking: removed \u003ccode\u003esafe*\u003c/code\u003e functions. Use \u003ccode\u003eload\u003c/code\u003e, \u003ccode\u003eloadAll\u003c/code\u003e, \u003ccode\u003edump\u003c/code\u003e\ninstead which are all now safe by default.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.DEFAULT_SAFE_SCHEMA\u003c/code\u003e and \u003ccode\u003eyaml.DEFAULT_FULL_SCHEMA\u003c/code\u003e are removed, use\n\u003ccode\u003eyaml.DEFAULT_SCHEMA\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.Schema.create(schema, tags)\u003c/code\u003e is removed, use \u003ccode\u003eschema.extend(tags)\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e!!binary\u003c/code\u003e now always mapped to \u003ccode\u003eUint8Array\u003c/code\u003e on load.\u003c/li\u003e\n\u003cli\u003eReduced nesting of \u003ccode\u003e/lib\u003c/code\u003e folder.\u003c/li\u003e\n\u003cli\u003eParse numbers according to YAML 1.2 instead of YAML 1.1 (\u003ccode\u003e01234\u003c/code\u003e is now decimal,\n\u003ccode\u003e0o1234\u003c/code\u003e is octal, \u003ccode\u003e1:23\u003c/code\u003e is parsed as string instead of base60).\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e no longer quotes \u003ccode\u003e:\u003c/code\u003e, \u003ccode\u003e[\u003c/code\u003e, \u003ccode\u003e]\u003c/code\u003e, \u003ccode\u003e(\u003c/code\u003e, \u003ccode\u003e)\u003c/code\u003e except when necessary, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/470\"\u003e#470\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/557\"\u003e#557\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eLine and column in exceptions are now formatted as \u003ccode\u003e(X:Y)\u003c/code\u003e instead of\n\u003ccode\u003eat line X, column Y\u003c/code\u003e (also present in compact format), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/332\"\u003e#332\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCode snippet created in exceptions now contains multiple lines with line numbers.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e now serializes \u003ccode\u003eundefined\u003c/code\u003e as \u003ccode\u003enull\u003c/code\u003e in collections and removes keys with\n\u003ccode\u003eundefined\u003c/code\u003e in mappings, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/571\"\u003e#571\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e with \u003ccode\u003eskipInvalid=true\u003c/code\u003e now serializes invalid items in collections as null.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003e!\u003c/code\u003e are now dumped as \u003ccode\u003e!tag\u003c/code\u003e instead of \u003ccode\u003e!\u0026lt;!tag\u0026gt;\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/576\"\u003e#576\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003etag:yaml.org,2002:\u003c/code\u003e are now shorthanded using \u003ccode\u003e!!\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/258\"\u003e#258\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003e.mjs\u003c/code\u003e (es modules) support.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003equotingType\u003c/code\u003e and \u003ccode\u003eforceQuotes\u003c/code\u003e options for dumper to configure\nstring literal style, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/290\"\u003e#290\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/529\"\u003e#529\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003estyles: { '!!null': 'empty' }\u003c/code\u003e option for dumper\n(serializes \u003ccode\u003e{ foo: null }\u003c/code\u003e as \u0026quot;\u003ccode\u003efoo: \u003c/code\u003e\u0026quot;), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/570\"\u003e#570\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/9963d366dfbde0c69722452bcd40b41e7e4160a0\"\u003e\u003ccode\u003e9963d36\u003c/code\u003e\u003c/a\u003e 3.14.2 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/10d3c8e70a6888543f5cdb656bb39f73e0ea77c1\"\u003e\u003ccode\u003e10d3c8e\u003c/code\u003e\u003c/a\u003e dist rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/5278870a17454fe8621dbd8c445c412529525266\"\u003e\u003ccode\u003e5278870\u003c/code\u003e\u003c/a\u003e fix prototype pollution in merge (\u0026lt;\u0026lt;) (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/731\"\u003e#731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nodeca/js-yaml/compare/3.14.1...3.14.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 4.1.0 to 4.1.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.14.2] - 2025-11-15\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBackported v4.1.1 fix to v3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.0] - 2021-04-15\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTypes are now exported as \u003ccode\u003eyaml.types.XXX\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eEvery type now has \u003ccode\u003eoptions\u003c/code\u003e property with original arguments kept as they were\n(see \u003ccode\u003eyaml.types.int.options\u003c/code\u003e as an example).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eSchema.extend()\u003c/code\u003e now keeps old type order in case of conflicts\n(e.g. Schema.extend([ a, b, c ]).extend([ b, a, d ]) is now ordered as \u003ccode\u003eabcd\u003c/code\u003e instead of \u003ccode\u003ecbad\u003c/code\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.0.0] - 2021-01-03\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCheck \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/migrate_v3_to_v4.md\"\u003emigration guide\u003c/a\u003e to see details for all breaking changes.\u003c/li\u003e\n\u003cli\u003eBreaking: \u0026quot;unsafe\u0026quot; tags \u003ccode\u003e!!js/function\u003c/code\u003e, \u003ccode\u003e!!js/regexp\u003c/code\u003e, \u003ccode\u003e!!js/undefined\u003c/code\u003e are\nmoved to \u003ca href=\"https://github.com/nodeca/js-yaml-js-types\"\u003ejs-yaml-js-types\u003c/a\u003e package.\u003c/li\u003e\n\u003cli\u003eBreaking: removed \u003ccode\u003esafe*\u003c/code\u003e functions. Use \u003ccode\u003eload\u003c/code\u003e, \u003ccode\u003eloadAll\u003c/code\u003e, \u003ccode\u003edump\u003c/code\u003e\ninstead which are all now safe by default.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.DEFAULT_SAFE_SCHEMA\u003c/code\u003e and \u003ccode\u003eyaml.DEFAULT_FULL_SCHEMA\u003c/code\u003e are removed, use\n\u003ccode\u003eyaml.DEFAULT_SCHEMA\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.Schema.create(schema, tags)\u003c/code\u003e is removed, use \u003ccode\u003eschema.extend(tags)\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e!!binary\u003c/code\u003e now always mapped to \u003ccode\u003eUint8Array\u003c/code\u003e on load.\u003c/li\u003e\n\u003cli\u003eReduced nesting of \u003ccode\u003e/lib\u003c/code\u003e folder.\u003c/li\u003e\n\u003cli\u003eParse numbers according to YAML 1.2 instead of YAML 1.1 (\u003ccode\u003e01234\u003c/code\u003e is now decimal,\n\u003ccode\u003e0o1234\u003c/code\u003e is octal, \u003ccode\u003e1:23\u003c/code\u003e is parsed as string instead of base60).\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e no longer quotes \u003ccode\u003e:\u003c/code\u003e, \u003ccode\u003e[\u003c/code\u003e, \u003ccode\u003e]\u003c/code\u003e, \u003ccode\u003e(\u003c/code\u003e, \u003ccode\u003e)\u003c/code\u003e except when necessary, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/470\"\u003e#470\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/557\"\u003e#557\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eLine and column in exceptions are now formatted as \u003ccode\u003e(X:Y)\u003c/code\u003e instead of\n\u003ccode\u003eat line X, column Y\u003c/code\u003e (also present in compact format), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/332\"\u003e#332\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCode snippet created in exceptions now contains multiple lines with line numbers.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e now serializes \u003ccode\u003eundefined\u003c/code\u003e as \u003ccode\u003enull\u003c/code\u003e in collections and removes keys with\n\u003ccode\u003eundefined\u003c/code\u003e in mappings, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/571\"\u003e#571\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e with \u003ccode\u003eskipInvalid=true\u003c/code\u003e now serializes invalid items in collections as null.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003e!\u003c/code\u003e are now dumped as \u003ccode\u003e!tag\u003c/code\u003e instead of \u003ccode\u003e!\u0026lt;!tag\u0026gt;\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/576\"\u003e#576\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003etag:yaml.org,2002:\u003c/code\u003e are now shorthanded using \u003ccode\u003e!!\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/258\"\u003e#258\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003e.mjs\u003c/code\u003e (es modules) support.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003equotingType\u003c/code\u003e and \u003ccode\u003eforceQuotes\u003c/code\u003e options for dumper to configure\nstring literal style, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/290\"\u003e#290\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/529\"\u003e#529\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003estyles: { '!!null': 'empty' }\u003c/code\u003e option for dumper\n(serializes \u003ccode\u003e{ foo: null }\u003c/code\u003e as \u0026quot;\u003ccode\u003efoo: \u003c/code\u003e\u0026quot;), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/570\"\u003e#570\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/9963d366dfbde0c69722452bcd40b41e7e4160a0\"\u003e\u003ccode\u003e9963d36\u003c/code\u003e\u003c/a\u003e 3.14.2 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/10d3c8e70a6888543f5cdb656bb39f73e0ea77c1\"\u003e\u003ccode\u003e10d3c8e\u003c/code\u003e\u003c/a\u003e dist rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/5278870a17454fe8621dbd8c445c412529525266\"\u003e\u003ccode\u003e5278870\u003c/code\u003e\u003c/a\u003e fix prototype pollution in merge (\u0026lt;\u0026lt;) (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/731\"\u003e#731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nodeca/js-yaml/compare/3.14.1...3.14.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `uuid` from 3.2.1 to 14.0.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/uuidjs/uuid/releases\"\u003euuid's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev14.0.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.0...v14.0.0\"\u003e14.0.0\u003c/a\u003e (2026-04-19)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eexpect \u003ccode\u003ecrypto\u003c/code\u003e to be global everywhere (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003edrop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/dc4ddb87272ed2843faccd130bcc41d492688bd3\"\u003edc4ddb8\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eexpect \u003ccode\u003ecrypto\u003c/code\u003e to be global everywhere (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/f2c235f93059325fa43e1106e624b5291bb523c4\"\u003ef2c235f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse GITHUB_TOKEN for release-please and enable npm provenance (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/925\"\u003e#925\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/ffa31383e8e4e1f0b4e22e504561272041b8738c\"\u003effa3138\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev13.0.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.1...v13.0.2\"\u003e13.0.2\u003c/a\u003e (2026-05-04)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ererelease to fix provenance. (\u003ca href=\"https://github.com/uuidjs/uuid/commit/49ccb35f78c0c4ce1409dd2f1d89f83caadba10b\"\u003e49ccb35\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev13.0.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.0...v13.0.1\"\u003e13.0.1\u003c/a\u003e (2026-04-27)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebackport fix for GHSA-w5hq-g745-h8pq (\u003ca href=\"https://github.com/uuidjs/uuid/commit/9d27ddf7046ce496ef39569ff84d948eeff9cb2a\"\u003e9d27ddf\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev13.0.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v12.0.0...v13.0.0\"\u003e13.0.0\u003c/a\u003e (2025-09-08)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/bce9d72a3ae5b9a3dcd8eb21ef6d1820288a427a\"\u003ebce9d72\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev12.0.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v12.0.0...v12.0.1\"\u003e12.0.1\u003c/a\u003e (2026-04-29)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/uuidjs/uuid/blob/main/CHANGELOG.md\"\u003euuid's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.0...v14.0.0\"\u003e14.0.0\u003c/a\u003e (2026-04-19)\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixes \u003ca href=\"https://github.com/uuidjs/uuid/security/advisories/GHSA-w5hq-g745-h8pq\"\u003eGHSA-w5hq-g745-h8pq\u003c/a\u003e: \u003ccode\u003ev3()\u003c/code\u003e, \u003ccode\u003ev5()\u003c/code\u003e, and \u003ccode\u003ev6()\u003c/code\u003e did not validate that writes would remain within the bounds of a caller-supplied buffer, allowing out-of-bounds writes when an invalid \u003ccode\u003eoffset\u003c/code\u003e was provided. A \u003ccode\u003eRangeError\u003c/code\u003e is now thrown if \u003ccode\u003eoffset \u0026lt; 0\u003c/code\u003e or \u003ccode\u003eoffset + 16 \u0026gt; buf.length\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ecrypto\u003c/code\u003e is now expected to be globally defined (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupgrade minimum supported TypeScript version to 5.4.3, in keeping with the project's policy of supporting TypeScript versions released within the last two years\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v12.0.0...v13.0.0\"\u003e13.0.0\u003c/a\u003e (2025-09-08)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/bce9d72a3ae5b9a3dcd8eb21ef6d1820288a427a\"\u003ebce9d72\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.1.0...v12.0.0\"\u003e12.0.0\u003c/a\u003e (2025-09-05)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdate to typescript@5.2 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/887\"\u003e#887\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove CommonJS support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/886\"\u003e#886\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@16 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/883\"\u003e#883\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd node@24 to ci matrix (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/879\"\u003e#879\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/42b6178aa21a593257f0a72abacd220f0b7b8a92\"\u003e42b6178\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@16 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/883\"\u003e#883\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/0f38cf10366ab074f9328ae2021eea04d5f2e530\"\u003e0f38cf1\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove CommonJS support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/886\"\u003e#886\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/ae786e27265f50bcf7cead196c29f1869297c42f\"\u003eae786e2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate to typescript@5.2 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/887\"\u003e#887\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/c7ee40598ed78584d81ab78dffded9fe5ff20b01\"\u003ec7ee405\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimprove v4() performance (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/894\"\u003e#894\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/5fd974c12718c8848035650b69b8948f12ace197\"\u003e5fd974c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erestore node: prefix (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/889\"\u003e#889\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/e1f42a354593093ba0479f0b4047dae82d28c507\"\u003ee1f42a3\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.0.5...v11.1.0\"\u003e11.1.0\u003c/a\u003e (2025-02-19)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/7c1ea087a8149b57380fc8bb7f68c3a215cb6e4b\"\u003e\u003ccode\u003e7c1ea08\u003c/code\u003e\u003c/a\u003e chore(main): release 14.0.0 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/926\"\u003e#926\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/3d2c5b0342f0fcb52a5ac681c3d47c13e7444b34\"\u003e\u003ccode\u003e3d2c5b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/f2c235f93059325fa43e1106e624b5291bb523c4\"\u003e\u003ccode\u003ef2c235f\u003c/code\u003e\u003c/a\u003e fix!: expect \u003ccode\u003ecrypto\u003c/code\u003e to be global everywhere (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/529ef0899f5dd503d2ee90d690585d63d78bc212\"\u003e\u003ccode\u003e529ef08\u003c/code\u003e\u003c/a\u003e chore: upgrade TypeScript and fixup types (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/927\"\u003e#927\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/086fd7976f11433edf9ac80be876b3ad243fe087\"\u003e\u003ccode\u003e086fd79\u003c/code\u003e\u003c/a\u003e chore: update dependencies (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/933\"\u003e#933\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/dc4ddb87272ed2843faccd130bcc41d492688bd3\"\u003e\u003ccode\u003edc4ddb8\u003c/code\u003e\u003c/a\u003e feat!: drop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/0f1f9c9c9cedbae5a1d363d5406c5dfbabe81404\"\u003e\u003ccode\u003e0f1f9c9\u003c/code\u003e\u003c/a\u003e chore: switch to Biome for parsing and linting (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/932\"\u003e#932\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/e2879e64bf125add903c1eff6e0860542c605013\"\u003e\u003ccode\u003ee2879e6\u003c/code\u003e\u003c/a\u003e chore: use maintained version of npm-run-all (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/930\"\u003e#930\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/ffa31383e8e4e1f0b4e22e504561272041b8738c\"\u003e\u003ccode\u003effa3138\u003c/code\u003e\u003c/a\u003e fix: Use GITHUB_TOKEN for release-please and enable npm provenance (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/925\"\u003e#925\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/0423d49df2dc8efc300c804731d25f4d7e0fccc4\"\u003e\u003ccode\u003e0423d49\u003c/code\u003e\u003c/a\u003e docs: remove obsolete v1 option notes (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/915\"\u003e#915\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/uuidjs/uuid/compare/v8.3.2...v14.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for uuid since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.14 to 4.18.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lodash/lodash/releases\"\u003elodash's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.18.1\u003c/h2\u003e\n\u003ch2\u003eBugs\u003c/h2\u003e\n\u003cp\u003eFixes a \u003ccode\u003eReferenceError\u003c/code\u003e issue in \u003ccode\u003elodash\u003c/code\u003e \u003ccode\u003elodash-es\u003c/code\u003e \u003ccode\u003elodash-amd\u003c/code\u003e and \u003ccode\u003elodash.template\u003c/code\u003e when using the \u003ccode\u003etemplate\u003c/code\u003e and \u003ccode\u003efromPairs\u003c/code\u003e functions from the modular builds. See \u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6167#issuecomment-4165269769\"\u003elodash/lodash#6167\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eThese defects were related to how lodash distributions are built from the main branch using \u003ca href=\"https://github.com/lodash-archive/lodash-cli\"\u003ehttps://github.com/lodash-archive/lodash-cli\u003c/a\u003e. When internal dependencies change inside lodash functions, equivalent updates need to be made to a mapping in the lodash-cli. (hey, it was ahead of its time once upon a time!). We know this, but we missed it in the last release. It's the kind of thing that passes in CI, but fails bc the build is not the same thing you tested.\u003c/p\u003e\n\u003cp\u003eThere is no diff on main for this, but you can see the diffs for each of the npm packages on their respective branches:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003elodash\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-es\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-amd\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash.template\u003c/code\u003e\u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.18.0\u003c/h2\u003e\n\u003ch2\u003ev4.18.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.23...4.18.0\"\u003ehttps://github.com/lodash/lodash/compare/4.17.23...4.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.unset\u003c/code\u003e / \u003ccode\u003e_.omit\u003c/code\u003e\u003c/strong\u003e: Fixed prototype pollution via \u003ccode\u003econstructor\u003c/code\u003e/\u003ccode\u003eprototype\u003c/code\u003e path traversal (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-f23m-r3pf-42rh\"\u003eGHSA-f23m-r3pf-42rh\u003c/a\u003e, \u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003efe8d32e\u003c/a\u003e). Previously, array-wrapped path segments and primitive roots could bypass the existing guards, allowing deletion of properties from built-in prototypes. Now \u003ccode\u003econstructor\u003c/code\u003e and \u003ccode\u003eprototype\u003c/code\u003e are blocked unconditionally as non-terminal path keys, matching \u003ccode\u003ebaseSet\u003c/code\u003e. Calls that previously returned \u003ccode\u003etrue\u003c/code\u003e and deleted the property now return \u003ccode\u003efalse\u003c/code\u003e and leave the target untouched.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.template\u003c/code\u003e\u003c/strong\u003e: Fixed code injection via \u003ccode\u003eimports\u003c/code\u003e keys (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-r5fr-rjxr-66jc\"\u003eGHSA-r5fr-rjxr-66jc\u003c/a\u003e, CVE-2026-4800, \u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e879aaa9\u003c/a\u003e). Fixes an incomplete patch for CVE-2021-23337. The \u003ccode\u003evariable\u003c/code\u003e option was validated against \u003ccode\u003ereForbiddenIdentifierChars\u003c/code\u003e but \u003ccode\u003eimportsKeys\u003c/code\u003e was left unguarded, allowing code injection via the same \u003ccode\u003eFunction()\u003c/code\u003e constructor sink. \u003ccode\u003eimports\u003c/code\u003e keys containing forbidden identifier characters now throw \u003ccode\u003e\u0026quot;Invalid imports option passed into _.template\u0026quot;\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eDocs\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd security notice for \u003ccode\u003e_.template\u003c/code\u003e in threat model and API docs (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6099\"\u003e#6099\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDocument \u003ccode\u003elower \u0026gt; upper\u003c/code\u003e behavior in \u003ccode\u003e_.random\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6115\"\u003e#6115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix quotes in \u003ccode\u003e_.compact\u003c/code\u003e jsdoc (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6090\"\u003e#6090\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ccode\u003elodash.*\u003c/code\u003e modular packages\u003c/h3\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6157\"\u003eDiff\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eWe have also regenerated and published a select number of the \u003ccode\u003elodash.*\u003c/code\u003e modular packages.\u003c/p\u003e\n\u003cp\u003eThese modular packages had fallen out of sync significantly from the minor/patch updates to lodash. Specifically, we have brought the following packages up to parity w/ the latest lodash release because they have had CVEs on them in the past:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.orderby\"\u003elodash.orderby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.tonumber\"\u003elodash.tonumber\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trim\"\u003elodash.trim\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trimend\"\u003elodash.trimend\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.sortedindexby\"\u003elodash.sortedindexby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.zipobjectdeep\"\u003elodash.zipobjectdeep\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.unset\"\u003elodash.unset\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.omit\"\u003elodash.omit\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.template\"\u003elodash.template\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/cb0b9b9212521c08e3eafe7c8cb0af1b42b6649e\"\u003e\u003ccode\u003ecb0b9b9\u003c/code\u003e\u003c/a\u003e release(patch): bump main to 4.18.1 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6177\"\u003e#6177\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/75535f57883b7225adb96de1cfc1cd4169cfcb51\"\u003e\u003ccode\u003e75535f5\u003c/code\u003e\u003c/a\u003e chore: prune stale advisory refs (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6170\"\u003e#6170\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/62e91bc6a39c98d85b9ada8c44d40593deaf82a4\"\u003e\u003ccode\u003e62e91bc\u003c/code\u003e\u003c/a\u003e docs: remove n_ Node.js \u0026lt; 6 REPL note from README (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6165\"\u003e#6165\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/59be2de61f8aa9461c7856533b51d31b7d8babc4\"\u003e\u003ccode\u003e59be2de\u003c/code\u003e\u003c/a\u003e release(minor): bump to 4.18.0 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6161\"\u003e#6161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/af634573030f979194871da7c68f79420992f53d\"\u003e\u003ccode\u003eaf63457\u003c/code\u003e\u003c/a\u003e fix: broken tests for _.template 879aaa9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/1073a7693e1727e0cf3641e5f71f75ddcf8de7c0\"\u003e\u003ccode\u003e1073a76\u003c/code\u003e\u003c/a\u003e fix: linting issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e\u003ccode\u003e879aaa9\u003c/code\u003e\u003c/a\u003e fix: validate imports keys in _.template\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003e\u003ccode\u003efe8d32e\u003c/code\u003e\u003c/a\u003e fix: block prototype pollution in baseUnset via constructor/prototype traversal\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/18ba0a32f42fd02117f096b032f89c984173462d\"\u003e\u003ccode\u003e18ba0a3\u003c/code\u003e\u003c/a\u003e refactor(fromPairs): use baseAssignValue for consistent assignment (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6153\"\u003e#6153\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b8190803d48d60b8c80ad45d39125f32fa618cb2\"\u003e\u003ccode\u003eb819080\u003c/code\u003e\u003c/a\u003e ci: add dist sync validation workflow (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6137\"\u003e#6137\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.14...4.18.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 3.13.1 to 3.14.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.14.2] - 2025-11-15\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBackported v4.1.1 fix to v3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.0] - 2021-04-15\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTypes are now exported as \u003ccode\u003eyaml.types.XXX\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eEvery type now has \u003ccode\u003eoptions\u003c/code\u003e property with original arguments kept as they were\n(see \u003ccode\u003eyaml.types.int.options\u003c/code\u003e as an example).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eSchema.extend()\u003c/code\u003e now keeps old type order in case of conflicts\n(e.g. Schema.extend([ a, b, c ]).extend([ b, a, d ]) is now ordered as \u003ccode\u003eabcd\u003c/code\u003e instead of \u003ccode\u003ecbad\u003c/code\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.0.0] - 2021-01-03\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCheck \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/migrate_v3_to_v4.md\"\u003emigration guide\u003c/a\u003e to see details for all breaking changes.\u003c/li\u003e\n\u003cli\u003eBreaking: \u0026quot;unsafe\u0026quot; tags \u003ccode\u003e!!js/function\u003c/code\u003e, \u003ccode\u003e!!js/regexp\u003c/code\u003e, \u003ccode\u003e!!js/undefined\u003c/code\u003e are\nmoved to \u003ca href=\"https://github.com/nodeca/js-yaml-js-types\"\u003ejs-yaml-js-types\u003c/a\u003e package.\u003c/li\u003e\n\u003cli\u003eBreaking: removed \u003ccode\u003esafe*\u003c/code\u003e functions. Use \u003ccode\u003eload\u003c/code\u003e, \u003ccode\u003eloadAll\u003c/code\u003e, \u003ccode\u003edump\u003c/code\u003e\ninstead which are all now safe by default.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.DEFAULT_SAFE_SCHEMA\u003c/code\u003e and \u003ccode\u003eyaml.DEFAULT_FULL_SCHEMA\u003c/code\u003e are removed, use\n\u003ccode\u003eyaml.DEFAULT_SCHEMA\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.Schema.create(schema, tags)\u003c/code\u003e is removed, use \u003ccode\u003eschema.extend(tags)\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e!!binary\u003c/code\u003e now always mapped to \u003ccode\u003eUint8Array\u003c/code\u003e on load.\u003c/li\u003e\n\u003cli\u003eReduced nesting of \u003ccode\u003e/lib\u003c/code\u003e folder.\u003c/li\u003e\n\u003cli\u003eParse numbers according to YAML 1.2 instead of YAML 1.1 (\u003ccode\u003e01234\u003c/code\u003e is now decimal,\n\u003ccode\u003e0o1234\u003c/code\u003e is octal, \u003ccode\u003e1:23\u003c/code\u003e is parsed as string instead of base60).\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e no longer quotes \u003ccode\u003e:\u003c/code\u003e, \u003ccode\u003e[\u003c/code\u003e, \u003ccode\u003e]\u003c/code\u003e, \u003ccode\u003e(\u003c/code\u003e, \u003ccode\u003e)\u003c/code\u003e except when necessary, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/470\"\u003e#470\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/557\"\u003e#557\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eLine and column in exceptions are now formatted as \u003ccode\u003e(X:Y)\u003c/code\u003e instead of\n\u003ccode\u003eat line X, column Y\u003c/code\u003e (also present in compact format), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/332\"\u003e#332\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCode snippet created in exceptions now contains multiple lines with line numbers.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e now serializes \u003ccode\u003eundefined\u003c/code\u003e as \u003ccode\u003enull\u003c/code\u003e in collections and removes keys with\n\u003ccode\u003eundefined\u003c/code\u003e in mappings, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/571\"\u003e#571\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e with \u003ccode\u003eskipInvalid=true\u003c/code\u003e now serializes invalid items in collections as null.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003e!\u003c/code\u003e are now dumped as \u003ccode\u003e!tag\u003c/code\u003e instead of \u003ccode\u003e!\u0026lt;!tag\u0026gt;\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/576\"\u003e#576\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003etag:yaml.org,2002:\u003c/code\u003e are now shorthanded using \u003ccode\u003e!!\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/258\"\u003e#258\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003e.mjs\u003c/code\u003e (es modules) support.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003equotingType\u003c/code\u003e and \u003ccode\u003eforceQuotes\u003c/code\u003e options for dumper to configure\nstring literal style, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/290\"\u003e#290\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/529\"\u003e#529\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003estyles: { '!!null': 'empty' }\u003c/code\u003e option for dumper\n(serializes \u003ccode\u003e{ foo: null }\u003c/code\u003e as \u0026quot;\u003ccode\u003efoo: \u003c/code\u003e\u0026quot;), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/570\"\u003e#570\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/9963d366dfbde0c69722452bcd40b41e7e4160a0\"\u003e\u003ccode\u003e9963d36\u003c/code\u003e\u003c/a\u003e 3.14.2 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/10d3c8e70a6888543f5cdb656bb39f73e0ea77c1\"\u003e\u003ccode\u003e10d3c8e\u003c/code\u003e\u003c/a\u003e dist rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/5278870a17454fe8621dbd8c445c412529525266\"\u003e\u003ccode\u003e5278870\u003c/code\u003e\u003c/a\u003e fix prototype pollution in merge (\u0026lt;\u0026lt;) (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/731\"\u003e#731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nodeca/js-yaml/compare/3.14.1...3.14.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `node-fetch` from 2.6.0 to 2.7.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-fetch/node-fetch/releases\"\u003enode-fetch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.7.0\u003c/h2\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/bitinn/node-fetch/compare/v2.6.13...v2.7.0\"\u003e2.7.0\u003c/a\u003e (2023-08-23)\u003c/h1\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eAbortError\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/bitinn/node-fetch/issues/1744\"\u003e#1744\u003c/a\u003e) (\u003ca href=\"https://github.com/bitinn/node-fetch/commit/9b9d45881e5ca68757077726b3c0ecf8fdca1f29\"\u003e9b9d458\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.6.13\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/bitinn/node-fetch/compare/v2.6.12...v2.6.13\"\u003e2.6.13\u003c/a\u003e (2023-08-18)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the default connection close header (\u003ca href=\"https://redirect.github.com/bitinn/node-fetch/issues/1765\"\u003e#1765\u003c/a\u003e) (\u003ca href=\"https://github.com/bitinn/node-fetch/commit/65ae25a1da2834b046c218685f2085a06f679492\"\u003e65ae25a\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/bitinn/node-fetch/issues/1735\"\u003e#1735\u003c/a\u003e \u003ca href=\"https://redirect.github.com/bitinn/node-fetch/issues/1473\"\u003e#1473\u003c/a\u003e \u003ca href=\"https://redirect.github.com/bitinn/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.6.12\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/bitinn/node-fetch/compare/v2.6.11...v2.6.12\"\u003e2.6.12\u003c/a\u003e (2023-06-29)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esocket variable testing for undefined (\u003ca href=\"https://redirect.github.com/bitinn/node-fetch/issues/1726\"\u003e#1726\u003c/a\u003e) (\u003ca href=\"https://github.com/bitinn/node-fetch/commit/8bc3a7c85f67fb81bb3d71c8254e68f3b88e9169\"\u003e8bc3a7c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.6.11\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/bitinn/node-fetch/compare/v2.6.10...v2.6.11\"\u003e2.6.11\u003c/a\u003e (2023-05-09)\u003c/h2\u003e\n\u003ch3\u003eReverts\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRevert \u0026quot;fix: handle bom in text and json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1739\"\u003e#1739\u003c/a\u003e)\u0026quot; (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1741\"\u003e#1741\u003c/a\u003e) (\u003ca href=\"https://github.com/bitinn/node-fetch/commit/afb36f6c178342488d71947dfc87e7ddd19fab9e\"\u003eafb36f6\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/bitinn/node-fetch/issues/1739\"\u003e#1739\u003c/a\u003e \u003ca href=\"https://redirect.github.com/bitinn/node-fetch/issues/1741\"\u003e#1741\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.6.10\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/bitinn/node-fetch/compare/v2.6.9...v2.6.10\"\u003e2.6.10\u003c/a\u003e (2023-05-08)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ehandle bom in text and json (\u003ca href=\"https://redirect.github.com/bitinn/node-fetch/issues/1739\"\u003e#1739\u003c/a\u003e) (\u003ca href=\"https://github.com/bitinn/node-fetch/commit/29909d75c62d51e0d1c23758e526dba74bfd463d\"\u003e29909d7\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.6.9\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/bitinn/node-fetch/compare/v2.6.8...v2.6.9\"\u003e2.6.9\u003c/a\u003e (2023-01-30)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u0026quot;global is not defined\u0026quot; (\u003ca href=\"https://redirect.github.com/bitinn/node-fetch/issues/1704\"\u003e#1704\u003c/a\u003e) (\u003ca href=\"https://github.com/bitinn/node-fetch/commit/70f592d9d2da959df1cebc2dd2314286a4bcf345\"\u003e70f592d\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.6.8\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/bitinn/node-fetch/compare/v2.6.7...v2.6.8\"\u003e2.6.8\u003c/a\u003e (2023-01-13)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/9b9d45881e5ca68757077726b3c0ecf8fdca1f29\"\u003e\u003ccode\u003e9b9d458\u003c/code\u003e\u003c/a\u003e feat: \u003ccode\u003eAbortError\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1744\"\u003e#1744\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/65ae25a1da2834b046c218685f2085a06f679492\"\u003e\u003ccode\u003e65ae25a\u003c/code\u003e\u003c/a\u003e fix: Remove the default connection close header (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1765\"\u003e#1765\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8bc3a7c85f67fb81bb3d71c8254e68f3b88e9169\"\u003e\u003ccode\u003e8bc3a7c\u003c/code\u003e\u003c/a\u003e fix: socket variable testing for undefined (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1726\"\u003e#1726\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/afb36f6c178342488d71947dfc87e7ddd19fab9e\"\u003e\u003ccode\u003eafb36f6\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;fix: handle bom in text and json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1739\"\u003e#1739\u003c/a\u003e)\u0026quot; (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1741\"\u003e#1741\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/29909d75c62d51e0d1c23758e526dba74bfd463d\"\u003e\u003ccode\u003e29909d7\u003c/code\u003e\u003c/a\u003e fix: handle bom in text and json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1739\"\u003e#1739\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/70f592d9d2da959df1cebc2dd2314286a4bcf345\"\u003e\u003ccode\u003e70f592d\u003c/code\u003e\u003c/a\u003e fix: \u0026quot;global is not defined\u0026quot; (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1704\"\u003e#1704\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/0f1ebb0d9d9726351a83a50eaaccf66342f04e06\"\u003e\u003ccode\u003e0f1ebb0\u003c/code\u003e\u003c/a\u003e Prevent error when response is null (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1699\"\u003e#1699\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/6e9464d7e34dc323edf4dabad7615dd94ab847bd\"\u003e\u003ccode\u003e6e9464d\u003c/code\u003e\u003c/a\u003e ci(release): install dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/dd2a0ba0fb1ed0d321fcde46562e824d9f40fea1\"\u003e\u003ccode\u003edd2a0ba\u003c/code\u003e\u003c/a\u003e ci(release): install dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/49bef02a2f630bb083d1920cb40ff09363479ef2\"\u003e\u003ccode\u003e49bef02\u003c/code\u003e\u003c/a\u003e ci(release): use latest Node LTS\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v2.6.0...v2.7.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~node-fetch-bot\"\u003enode-fetch-bot\u003c/a\u003e, a new releaser for node-fetch since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nRemoves `tmp`\n\nUpdates `y18n` from 3.2.1 to 3.2.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/yargs/y18n/releases\"\u003ey18n's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ey18n y18n-v4.0.3\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003erelease:\u003c/strong\u003e 4.x.x should not enforce Node 10 (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/126\"\u003e#126\u003c/a\u003e) (\u003ca href=\"https://www.github.com/yargs/y18n/commit/1e21a536e9135d8403a47be88922157a706b7cde\"\u003e1e21a53\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ey18n y18n-v4.0.2\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003esecurity:\u003c/strong\u003e ensure entry exists for backport (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/120\"\u003e#120\u003c/a\u003e) (\u003ca href=\"https://www.github.com/yargs/y18n/commit/b22c0df59d0851d7be9fd1d51f6a5ee974c9fc94\"\u003eb22c0df\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/yargs/y18n/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~oss-bot\"\u003eoss-bot\u003c/a\u003e, a new releaser for y18n since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.18.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lodash/lodash/releases\"\u003elodash's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.18.1\u003c/h2\u003e\n\u003ch2\u003eBugs\u003c/h2\u003e\n\u003cp\u003eFixes a \u003ccode\u003eReferenceError\u003c/code\u003e issue in \u003ccode\u003elodash\u003c/code\u003e \u003ccode\u003elodash-es\u003c/code\u003e \u003ccode\u003elodash-amd\u003c/code\u003e and \u003ccode\u003elodash.template\u003c/code\u003e when using the \u003ccode\u003etemplate\u003c/code\u003e and \u003ccode\u003efromPairs\u003c/code\u003e functions from the modular builds. See \u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6167#issuecomment-4165269769\"\u003elodash/lodash#6167\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eThese defects were related to how lodash distributions are built from the main branch using \u003ca href=\"https://github.com/lodash-archive/lodash-cli\"\u003ehttps://github.com/lodash-archive/lodash-cli\u003c/a\u003e. When internal dependencies change inside lodash functions, equivalent updates need to be made to a mapping in the lodash-cli. (hey, it was ahead of its time once upon a time!). We know this, but we missed it in the last release. It's the kind of thing that passes in CI, but fails bc the build is not the same thing you tested.\u003c/p\u003e\n\u003cp\u003eThere is no diff on main for this, but you can see the diffs for each of the npm packages on their respective branches:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003elodash\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-es\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-amd\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash.template\u003c/code\u003e\u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.18.0\u003c/h2\u003e\n\u003ch2\u003ev4.18.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.23...4.18.0\"\u003ehttps://github.com/lodash/lodash/compare/4.17.23...4.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.unset\u003c/code\u003e / \u003ccode\u003e_.omit\u003c/code\u003e\u003c/strong\u003e: Fixed prototype pollution via \u003ccode\u003econstructor\u003c/code\u003e/\u003ccode\u003eprototype\u003c/code\u003e path traversal (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-f23m-r3pf-42rh\"\u003eGHSA-f23m-r3pf-42rh\u003c/a\u003e, \u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003efe8d32e\u003c/a\u003e). Previously, array-wrapped path segments and primitive roots could bypass the existing guards, allowing deletion of properties from built-in prototypes. Now \u003ccode\u003econstructor\u003c/code\u003e and \u003ccode\u003eprototype\u003c/code\u003e are blocked unconditionally as non-terminal path keys, matching \u003ccode\u003ebaseSet\u003c/code\u003e. Calls that previously returned \u003ccode\u003etrue\u003c/code\u003e and deleted the property now return \u003ccode\u003efalse\u003c/code\u003e and leave the target untouched.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.template\u003c/code\u003e\u003c/strong\u003e: Fixed code injection via \u003ccode\u003eimports\u003c/code\u003e keys (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-r5fr-rjxr-66jc\"\u003eGHSA-r5fr-rjxr-66jc\u003c/a\u003e, CVE-2026-4800, \u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e879aaa9\u003c/a\u003e). Fixes an incomplete patch for CVE-2021-23337. The \u003ccode\u003evariable\u003c/code\u003e option was validated against \u003ccode\u003ereForbiddenIdentifierChars\u003c/code\u003e but \u003ccode\u003eimportsKeys\u003c/code\u003e was left unguarded, allowing code injection via the same \u003ccode\u003eFunction()\u003c/code\u003e constructor sink. \u003ccode\u003eimports\u003c/code\u003e keys containing forbidden identifier characters now throw \u003ccode\u003e\u0026quot;Invalid imports option passed into _.template\u0026quot;\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eDocs\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd security notice for \u003ccode\u003e_.template\u003c/code\u003e in threat model and API docs (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6099\"\u003e#6099\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDocument \u003ccode\u003elower \u0026gt; upper\u003c/code\u003e behavior in \u003ccode\u003e_.random\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6115\"\u003e#6115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix quotes in \u003ccode\u003e_.compact\u003c/code\u003e jsdoc (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6090\"\u003e#6090\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ccode\u003elodash.*\u003c/code\u003e modular packages\u003c/h3\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6157\"\u003eDiff\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eWe have also regenerated and published a select number of the \u003ccode\u003elodash.*\u003c/code\u003e modular packages.\u003c/p\u003e\n\u003cp\u003eThese modular packages had fallen out of sync significantly from the minor/patch updates to lodash. Specifically, we have brought the following packages up to parity w/ the latest lodash release because they have had CVEs on them in the past:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.orderby\"\u003elodash.orderby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.tonumber\"\u003elodash.tonumber\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trim\"\u003elodash.trim\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trimend\"\u003elodash.trimend\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.sortedindexby\"\u003elodash.sortedindexby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.zipobjectdeep\"\u003elodash.zipobjectdeep\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.unset\"\u003elodash.unset\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.omit\"\u003elodash.omit\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.template\"\u003elodash.template\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/cb0b9b9212521c08e3eafe7c8cb0af1b42b6649e\"\u003e\u003ccode\u003ecb0b9b9\u003c/code\u003e\u003c/a\u003e release(patch): bump main to 4.18.1 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6177\"\u003e#6177\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/75535f57883b7225adb96de1cfc1cd4169cfcb51\"\u003e\u003ccode\u003e75535f5\u003c/code\u003e\u003c/a\u003e chore: prune stale advisory refs (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6170\"\u003e#6170\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/62e91bc6a39c98d85b9ada8c44d40593deaf82a4\"\u003e\u003ccode\u003e62e91bc\u003c/code\u003e\u003c/a\u003e docs: remove n_ Node.js \u0026lt; 6 REPL note from README (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6165\"\u003e#6165\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/59be2de61f8aa9461c7856533b51d31b7d8babc4\"\u003e\u003ccode\u003e59be2de\u003c/code\u003e\u003c/a\u003e release(minor): bump to 4.18.0 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6161\"\u003e#6161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=...\n\n_Description has been truncated_","html_url":"https://github.com/ScorpionBytes/snyk-cli/pull/12","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/ScorpionBytes%2Fsnyk-cli/issues/12","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/12/packages"},{"uuid":"4376198147","node_id":"PR_kwDOIQXBmM7X_QVi","number":315,"state":"open","title":"build(deps-dev): bump node-fetch from 3.3.0 to 3.3.2","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-04T11:34:34.000Z","updated_at":"2026-05-04T11:34:37.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps-dev)","packages":[{"name":"node-fetch","old_version":"3.3.0","new_version":"3.3.2","repository_url":"https://github.com/node-fetch/node-fetch"}],"path":null,"ecosystem":"npm"},"body":"Bumps [node-fetch](https://github.com/node-fetch/node-fetch) from 3.3.0 to 3.3.2.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-fetch/node-fetch/releases\"\u003enode-fetch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.3.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.1...v3.3.2\"\u003e3.3.2\u003c/a\u003e (2023-07-25)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e8b3320d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1735\"\u003e#1735\u003c/a\u003e \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1473\"\u003e#1473\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.0...v3.3.1\"\u003e3.3.1\u003c/a\u003e (2023-03-11)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erelease \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e7b86e94\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e\u003ccode\u003e8b3320d\u003c/code\u003e\u003c/a\u003e fix: Remove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e\u003ccode\u003e7b86e94\u003c/code\u003e\u003c/a\u003e fix: release \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8ced5b941cf36d0d7e0c1017aa2a4abcb29ecd89\"\u003e\u003ccode\u003e8ced5b9\u003c/code\u003e\u003c/a\u003e docs: readme - non ESM example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1707\"\u003e#1707\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/71e376b0ca899a30bbda4d45f97ea87502956a62\"\u003e\u003ccode\u003e71e376b\u003c/code\u003e\u003c/a\u003e ci(release): use latest Node LTS (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1697\"\u003e#1697\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e093030b4a6625405a331ddf48bcfd82c079f43d\"\u003e\u003ccode\u003ee093030\u003c/code\u003e\u003c/a\u003e Allow URL class object as an argument for fetch() (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.0...v3.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=node-fetch\u0026package-manager=npm_and_yarn\u0026previous-version=3.3.0\u0026new-version=3.3.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/rdwz/doks/pull/315","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/rdwz%2Fdoks/issues/315","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/315/packages"},{"uuid":"4374113475","node_id":"PR_kwDOIebGLc7X4XfQ","number":286,"state":"open","title":"build(deps-dev): bump node-fetch from 3.2.6 to 3.3.2","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-04T05:00:14.000Z","updated_at":"2026-05-04T05:01:21.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps-dev)","packages":[{"name":"node-fetch","old_version":"3.2.6","new_version":"3.3.2","repository_url":"https://github.com/node-fetch/node-fetch"}],"path":null,"ecosystem":"npm"},"body":"Bumps [node-fetch](https://github.com/node-fetch/node-fetch) from 3.2.6 to 3.3.2.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-fetch/node-fetch/releases\"\u003enode-fetch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.3.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.1...v3.3.2\"\u003e3.3.2\u003c/a\u003e (2023-07-25)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e8b3320d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1735\"\u003e#1735\u003c/a\u003e \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1473\"\u003e#1473\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.0...v3.3.1\"\u003e3.3.1\u003c/a\u003e (2023-03-11)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erelease \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e7b86e94\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.0\u003c/h2\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.10...v3.3.0\"\u003e3.3.0\u003c/a\u003e (2022-11-10)\u003c/h1\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd static Response.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1670\"\u003e#1670\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/55a4870ae5f805d8ff9a890ea2c652c9977e048e\"\u003e55a4870\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.10\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.9...v3.2.10\"\u003e3.2.10\u003c/a\u003e (2022-07-31)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDoS referrer (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1611\"\u003e#1611\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d\"\u003e2880238\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.9\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.8...v3.2.9\"\u003e3.2.9\u003c/a\u003e (2022-07-18)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHeaders:\u003c/strong\u003e don't forward secure headers on protocol change (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1599\"\u003e#1599\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7\"\u003ee87b093\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.8\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.7...v3.2.8\"\u003e3.2.8\u003c/a\u003e (2022-07-12)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003epossibly flaky test (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1523\"\u003e#1523\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/11b703361134340a8361f591d6e3a0bcf6a261fa\"\u003e11b7033\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e\u003ccode\u003e8b3320d\u003c/code\u003e\u003c/a\u003e fix: Remove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e\u003ccode\u003e7b86e94\u003c/code\u003e\u003c/a\u003e fix: release \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8ced5b941cf36d0d7e0c1017aa2a4abcb29ecd89\"\u003e\u003ccode\u003e8ced5b9\u003c/code\u003e\u003c/a\u003e docs: readme - non ESM example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1707\"\u003e#1707\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/71e376b0ca899a30bbda4d45f97ea87502956a62\"\u003e\u003ccode\u003e71e376b\u003c/code\u003e\u003c/a\u003e ci(release): use latest Node LTS (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1697\"\u003e#1697\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e093030b4a6625405a331ddf48bcfd82c079f43d\"\u003e\u003ccode\u003ee093030\u003c/code\u003e\u003c/a\u003e Allow URL class object as an argument for fetch() (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/55a4870ae5f805d8ff9a890ea2c652c9977e048e\"\u003e\u003ccode\u003e55a4870\u003c/code\u003e\u003c/a\u003e feat: add static Response.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1670\"\u003e#1670\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/c071406e193cce13959999982584ff27198e9e4a\"\u003e\u003ccode\u003ec071406\u003c/code\u003e\u003c/a\u003e (1138) - Fixed HTTPResponseError with correct constructor and usage (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1666\"\u003e#1666\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/6f72caa401a8ec574a22058431599ef47c222770\"\u003e\u003ccode\u003e6f72caa\u003c/code\u003e\u003c/a\u003e docs: fix missing comma in example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1623\"\u003e#1623\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d\"\u003e\u003ccode\u003e2880238\u003c/code\u003e\u003c/a\u003e fix: ReDoS referrer (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1611\"\u003e#1611\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7\"\u003e\u003ccode\u003ee87b093\u003c/code\u003e\u003c/a\u003e fix(Headers): don't forward secure headers on protocol change (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1599\"\u003e#1599\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.6...v3.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=node-fetch\u0026package-manager=npm_and_yarn\u0026previous-version=3.2.6\u0026new-version=3.3.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/KushWeedim/doks/pull/286","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/KushWeedim%2Fdoks/issues/286","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/286/packages"},{"uuid":"4372870824","node_id":"PR_kwDOCeNfHs7X0irb","number":6,"state":"closed","title":"Bump the npm_and_yarn group across 13 directories with 15 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-04T01:10:37.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-03T20:21:38.000Z","updated_at":"2026-05-04T01:10:38.000Z","time_to_close":17339,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"npm_and_yarn","update_count":15,"packages":[{"name":"axios","old_version":"0.18.1","new_version":"1.16.0","repository_url":"https://github.com/axios/axios"},{"name":"shelljs","old_version":"0.7.8","new_version":"0.10.0","repository_url":"https://github.com/shelljs/shelljs"},{"name":"node-fetch","old_version":"1.7.3","new_version":"3.3.2","repository_url":"https://github.com/node-fetch/node-fetch"},{"name":"uuid","old_version":"3.4.0","new_version":"14.0.0","repository_url":"https://github.com/uuidjs/uuid"},{"name":"node-sass","old_version":"4.14.1","new_version":"9.0.0","repository_url":"https://github.com/sass/node-sass"},{"name":"webpack-bundle-analyzer","old_version":"2.13.1","new_version":"5.3.0","repository_url":"https://github.com/webpack/webpack-bundle-analyzer"},{"name":"webpack-dev-middleware","old_version":"1.12.2","new_version":"8.0.3","repository_url":"https://github.com/webpack/webpack-dev-middleware"},{"name":"knex","old_version":"0.13.0","new_version":"3.2.10","repository_url":"https://github.com/knex/knex"},{"name":"mongoose","old_version":"5.13.23","new_version":"9.6.1","repository_url":"https://github.com/Automattic/mongoose"},{"name":"showdown","old_version":"1.9.1","new_version":"2.1.0","repository_url":"https://github.com/showdownjs/showdown"},{"name":"path-to-regexp","old_version":"2.4.0","new_version":"8.4.2","repository_url":"https://github.com/pillarjs/path-to-regexp"},{"name":"swagger-ui-dist","old_version":"3.52.5","new_version":"5.32.5","repository_url":"https://github.com/swagger-api/swagger-ui"},{"name":"jsonwebtoken","old_version":"8.5.1","new_version":"9.0.3","repository_url":"https://github.com/auth0/node-jsonwebtoken"},{"name":"cloudinary","old_version":"1.41.3","new_version":"2.10.0","repository_url":"https://github.com/cloudinary/cloudinary_npm"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 14 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [axios](https://github.com/axios/axios) | `0.18.1` | `1.16.0` |\n| [shelljs](https://github.com/shelljs/shelljs) | `0.7.8` | `0.10.0` |\n| [node-fetch](https://github.com/node-fetch/node-fetch) | `1.7.3` | `3.3.2` |\n| [uuid](https://github.com/uuidjs/uuid) | `3.4.0` | `14.0.0` |\n| [node-sass](https://github.com/sass/node-sass) | `4.14.1` | `9.0.0` |\n| [webpack-bundle-analyzer](https://github.com/webpack/webpack-bundle-analyzer) | `2.13.1` | `5.3.0` |\n| [webpack-dev-middleware](https://github.com/webpack/webpack-dev-middleware) | `1.12.2` | `8.0.3` |\n| [knex](https://github.com/knex/knex) | `0.13.0` | `3.2.10` |\n| [mongoose](https://github.com/Automattic/mongoose) | `5.13.23` | `9.6.1` |\n| [showdown](https://github.com/showdownjs/showdown) | `1.9.1` | `2.1.0` |\n| [path-to-regexp](https://github.com/pillarjs/path-to-regexp) | `2.4.0` | `8.4.2` |\n| [swagger-ui-dist](https://github.com/swagger-api/swagger-ui) | `3.52.5` | `5.32.5` |\n| [jsonwebtoken](https://github.com/auth0/node-jsonwebtoken) | `8.5.1` | `9.0.3` |\n| [cloudinary](https://github.com/cloudinary/cloudinary_npm) | `1.41.3` | `2.10.0` |\n\nBumps the npm_and_yarn group with 1 update in the /packages/strapi directory: [node-fetch](https://github.com/node-fetch/node-fetch).\nBumps the npm_and_yarn group with 1 update in the /packages/strapi-admin directory: [shelljs](https://github.com/shelljs/shelljs).\nBumps the npm_and_yarn group with 1 update in the /packages/strapi-generate-admin directory: [strapi-admin](https://github.com/strapi/strapi).\nBumps the npm_and_yarn group with 1 update in the /packages/strapi-generate-new directory: [uuid](https://github.com/uuidjs/uuid).\nBumps the npm_and_yarn group with 4 updates in the /packages/strapi-helper-plugin directory: [shelljs](https://github.com/shelljs/shelljs), [node-sass](https://github.com/sass/node-sass), [webpack-bundle-analyzer](https://github.com/webpack/webpack-bundle-analyzer) and [webpack-dev-middleware](https://github.com/webpack/webpack-dev-middleware).\nBumps the npm_and_yarn group with 1 update in the /packages/strapi-hook-knex directory: [knex](https://github.com/knex/knex).\nBumps the npm_and_yarn group with 1 update in the /packages/strapi-hook-mongoose directory: [mongoose](https://github.com/Automattic/mongoose).\nBumps the npm_and_yarn group with 1 update in the /packages/strapi-plugin-content-manager directory: [showdown](https://github.com/showdownjs/showdown).\nBumps the npm_and_yarn group with 2 updates in the /packages/strapi-plugin-documentation directory: [path-to-regexp](https://github.com/pillarjs/path-to-regexp) and [swagger-ui-dist](https://github.com/swagger-api/swagger-ui).\nBumps the npm_and_yarn group with 2 updates in the /packages/strapi-plugin-users-permissions directory: [uuid](https://github.com/uuidjs/uuid) and [jsonwebtoken](https://github.com/auth0/node-jsonwebtoken).\nBumps the npm_and_yarn group with 1 update in the /packages/strapi-provider-upload-cloudinary directory: [cloudinary](https://github.com/cloudinary/cloudinary_npm).\nBumps the npm_and_yarn group with 2 updates in the /packages/strapi-utils directory: [shelljs](https://github.com/shelljs/shelljs) and [knex](https://github.com/knex/knex).\n\nUpdates `axios` from 0.18.1 to 1.16.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.16.0 — May 2, 2026\u003c/h2\u003e\n\u003cp\u003eThis release adds support for the QUERY HTTP method and a new \u003ccode\u003eECONNREFUSED\u003c/code\u003e error constant, lands a substantial wave of HTTP, fetch, and XHR adapter bug fixes around redirects, aborts, headers, and timeouts, and welcomes 23 new contributors.\u003c/p\u003e\n\u003ch2\u003e⚠️ Notable Changes\u003c/h2\u003e\n\u003cp\u003eA handful of fixes in this release are either security-adjacent or change observable behaviour. Please review before upgrading:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFetch adapter now enforces \u003ccode\u003emaxBodyLength\u003c/code\u003e and \u003ccode\u003emaxContentLength\u003c/code\u003e.\u003c/strong\u003e These limits were silently ignored on the fetch adapter prior to 1.16.0 — anyone relying on them as a safety net (DoS protection, accidental large uploads) had no protection. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10795\"\u003e#10795\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eProxy requests now preserve user-supplied \u003ccode\u003eHost\u003c/code\u003e headers.\u003c/strong\u003e Previously, the proxy path could overwrite a custom \u003ccode\u003eHost\u003c/code\u003e. Virtual-host-style routing through a proxy will now behave correctly. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10822\"\u003e#10822\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eBasic auth credentials embedded in URLs are now URL-decoded.\u003c/strong\u003e If you have percent-encoded credentials in a URL (e.g. \u003ccode\u003ehttps://user:p%40ss@host\u003c/code\u003e), the decoded value is what now goes on the wire. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10825\"\u003e#10825\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003eparseProtocol\u003c/code\u003e now strictly requires a colon in the protocol separator.\u003c/strong\u003e Strings that loosely parsed as protocols before may no longer match. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10729\"\u003e#10729\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDeprecated \u003ccode\u003eunescape()\u003c/code\u003e replaced with modern UTF-8 encoding.\u003c/strong\u003e Non-ASCII URL handling is now spec-correct; consumers depending on legacy \u003ccode\u003eunescape()\u003c/code\u003e quirks may see different output bytes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7378\"\u003e#7378\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003etransformRequest\u003c/code\u003e input typing change was reverted.\u003c/strong\u003e The typing change introduced in \u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e was reverted in \u003ca href=\"https://redirect.github.com/axios/axios/issues/10810\"\u003e#10810\u003c/a\u003e after follow-up review — net behavior is unchanged from 1.15.2. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10810\"\u003e#10810\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eQUERY HTTP Method:\u003c/strong\u003e Added support for the QUERY HTTP method across adapters and type definitions. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10802\"\u003e#10802\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eECONNREFUSED Error Constant:\u003c/strong\u003e Exposed \u003ccode\u003eECONNREFUSED\u003c/code\u003e as a constant on \u003ccode\u003eAxiosError\u003c/code\u003e so callers can match connection-refused failures without comparing string literals (closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/6485\"\u003e#6485\u003c/a\u003e). (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10680\"\u003e#10680\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eEncode Helper Export:\u003c/strong\u003e Exported the internal \u003ccode\u003eencode\u003c/code\u003e helper from \u003ccode\u003ebuildURL\u003c/code\u003e so userland param serializers can reuse the same encoding logic that axios uses internally. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6897\"\u003e#6897\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHTTP Adapter — Redirects \u0026amp; Headers:\u003c/strong\u003e Cleared stale headers when a redirect targets a no-proxy host, fixed the redirect listener chain so listeners no longer stack across hops, restored the missing \u003ccode\u003erequestDetails\u003c/code\u003e argument on \u003ccode\u003ebeforeRedirect\u003c/code\u003e, preserved user-supplied \u003ccode\u003eHost\u003c/code\u003e headers when forwarding through a proxy, and properly URL-decoded basic auth credentials. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10794\"\u003e#10794\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10800\"\u003e#10800\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6241\"\u003e#6241\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10822\"\u003e#10822\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10825\"\u003e#10825\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHTTP Adapter — Streams \u0026amp; Timeouts:\u003c/strong\u003e Preserved the partial response object on \u003ccode\u003eAxiosError\u003c/code\u003e when a stream is aborted after headers arrive, honoured the \u003ccode\u003etimeout\u003c/code\u003e option during the connect phase when redirects are disabled, and resolved an unsettled-promise hang when an aborted request was combined with compression and \u003ccode\u003emaxRedirects: 0\u003c/code\u003e. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10708\"\u003e#10708\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10819\"\u003e#10819\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7149\"\u003e#7149\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFetch Adapter:\u003c/strong\u003e Enforced \u003ccode\u003emaxBodyLength\u003c/code\u003e / \u003ccode\u003emaxContentLength\u003c/code\u003e in the fetch adapter, set the \u003ccode\u003eUser-Agent\u003c/code\u003e header to match the HTTP adapter, preserved the original abort reason instead of replacing it with a generic error, and deferred global access so importing the module no longer throws a \u003ccode\u003eTypeError\u003c/code\u003e in restricted environments. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10795\"\u003e#10795\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10772\"\u003e#10772\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10806\"\u003e#10806\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7260\"\u003e#7260\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eXHR Adapter:\u003c/strong\u003e Unsubscribed the \u003ccode\u003ecancelToken\u003c/code\u003e and \u003ccode\u003eAbortSignal\u003c/code\u003e listeners on the error, timeout, and abort code paths to prevent leaked subscriptions. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10787\"\u003e#10787\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eError Handling:\u003c/strong\u003e Attached the parsed response to \u003ccode\u003eAxiosError\u003c/code\u003e when \u003ccode\u003eJSON.parse\u003c/code\u003e fails inside \u003ccode\u003edispatchRequest\u003c/code\u003e, prevented \u003ccode\u003esettle\u003c/code\u003e from emitting \u003ccode\u003eundefined\u003c/code\u003e error codes, and tightened the \u003ccode\u003eparseProtocol\u003c/code\u003e regex to require a colon in the protocol separator. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10724\"\u003e#10724\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7276\"\u003e#7276\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10729\"\u003e#10729\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTypes \u0026amp; Exports:\u003c/strong\u003e Aligned the CommonJS \u003ccode\u003eCancelToken\u003c/code\u003e typings with the ESM build, fixed a compiler error caused by \u003ccode\u003eRawAxiosHeaders\u003c/code\u003e, and re-exported \u003ccode\u003ecreate\u003c/code\u003e from the package index. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7414\"\u003e#7414\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6389\"\u003e#6389\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6460\"\u003e#6460\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eUTF-8 Encoding:\u003c/strong\u003e Replaced the deprecated \u003ccode\u003eunescape()\u003c/code\u003e call with a modern UTF-8 encoding implementation. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7378\"\u003e#7378\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eMisc Cleanup:\u003c/strong\u003e Resolved a batch of small inconsistencies and gadget-level issues across the codebase. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10833\"\u003e#10833\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRefactor — ES6 Modernisation:\u003c/strong\u003e Modernised the \u003ccode\u003eutils\u003c/code\u003e module and XHR adapter to use ES6 features, and tidied the multipart boundary error message. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10588\"\u003e#10588\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7419\"\u003e#7419\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTests:\u003c/strong\u003e Hardened the HTTP test server lifecycle to fix flaky \u003ccode\u003eFormData\u003c/code\u003e EPIPE failures, fixed Win32 platform support for the pipe tests, and corrected an incorrect test assumption. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10820\"\u003e#10820\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10791\"\u003e#10791\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10796\"\u003e#10796\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDocs:\u003c/strong\u003e Documented \u003ccode\u003eparamsSerializer.encode\u003c/code\u003e for strict RFC 3986 query encoding, updated the \u003ccode\u003eparseReviver\u003c/code\u003e TypeScript definitions and configuration docs for ES2023, added timeout guidance to the README's first async example, and expanded notes around the recent type changes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10821\"\u003e#10821\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10782\"\u003e#10782\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10759\"\u003e#10759\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10804\"\u003e#10804\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eReverted:\u003c/strong\u003e Reverted the \u003ccode\u003etransformRequest\u003c/code\u003e input typing change from \u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e after follow-up review. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10810\"\u003e#10810\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDependencies:\u003c/strong\u003e Bumped \u003ccode\u003eactions/setup-node\u003c/code\u003e, the \u003ccode\u003egithub-actions\u003c/code\u003e group, and \u003ccode\u003epostcss\u003c/code\u003e (in \u003ccode\u003e/docs\u003c/code\u003e) to their latest versions. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10785\"\u003e#10785\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10813\"\u003e#10813\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10814\"\u003e#10814\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eRelease:\u003c/strong\u003e Updated changelog and packages, and prepared the 1.16.0 release. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10790\"\u003e#10790\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10834\"\u003e#10834\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🌟 New Contributors\u003c/h2\u003e\n\u003cp\u003eWe are thrilled to welcome our new contributors. Thank you for helping improve axios:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/singhankit001\"\u003e\u003ccode\u003e@​singhankit001\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10588\"\u003e#10588\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/cuiweixie\"\u003e\u003ccode\u003e@​cuiweixie\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7419\"\u003e#7419\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/iruizsalinas\"\u003e\u003ccode\u003e@​iruizsalinas\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10787\"\u003e#10787\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/MarcosNocetti\"\u003e\u003ccode\u003e@​MarcosNocetti\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10680\"\u003e#10680\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/deepview-autofix\"\u003e\u003ccode\u003e@​deepview-autofix\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10729\"\u003e#10729\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/blob/v1.x/CHANGELOG.md\"\u003eaxios's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003ev1.15.2 - April 21, 2026\u003c/h2\u003e\n\u003cp\u003eThis release delivers prototype-pollution hardening for the Node HTTP adapter, adds an opt-in \u003ccode\u003eallowedSocketPaths\u003c/code\u003e allowlist to mitigate SSRF via Unix domain sockets, fixes a keep-alive socket memory leak, and ships supply-chain hardening across CI and security docs.\u003c/p\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ePrototype Pollution Hardening (HTTP Adapter):\u003c/strong\u003e Hardened the Node HTTP adapter and \u003ccode\u003eresolveConfig\u003c/code\u003e/\u003ccode\u003emergeConfig\u003c/code\u003e/validator paths to read only own properties and use null-prototype config objects, preventing polluted \u003ccode\u003eauth\u003c/code\u003e, \u003ccode\u003ebaseURL\u003c/code\u003e, \u003ccode\u003esocketPath\u003c/code\u003e, \u003ccode\u003ebeforeRedirect\u003c/code\u003e, and \u003ccode\u003einsecureHTTPParser\u003c/code\u003e from influencing requests. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10779\"\u003e#10779\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eSSRF via \u003ccode\u003esocketPath\u003c/code\u003e:\u003c/strong\u003e Rejects non-string \u003ccode\u003esocketPath\u003c/code\u003e values and adds an opt-in \u003ccode\u003eallowedSocketPaths\u003c/code\u003e config option to restrict permitted Unix domain socket paths, returning \u003ccode\u003eAxiosError\u003c/code\u003e \u003ccode\u003eERR_BAD_OPTION_VALUE\u003c/code\u003e on mismatch. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10777\"\u003e#10777\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eSupply-chain Hardening:\u003c/strong\u003e Added \u003ccode\u003e.npmrc\u003c/code\u003e with \u003ccode\u003eignore-scripts=true\u003c/code\u003e, lockfile lint CI, non-blocking reproducible build diff, scoped CODEOWNERS, expanded \u003ccode\u003eSECURITY.md\u003c/code\u003e/\u003ccode\u003eTHREATMODEL.md\u003c/code\u003e with provenance verification (\u003ccode\u003enpm audit signatures\u003c/code\u003e), 60-day resolution policy, and maintainer incident-response runbook. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10776\"\u003e#10776\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003eallowedSocketPaths\u003c/code\u003e Config Option:\u003c/strong\u003e New request config option (and TypeScript types) to allowlist Unix domain socket paths used by the Node http adapter; backwards compatible when unset. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10777\"\u003e#10777\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eKeep-alive Socket Memory Leak:\u003c/strong\u003e Installs a single per-socket \u003ccode\u003eerror\u003c/code\u003e listener tracking the active request via \u003ccode\u003ekAxiosSocketListener\u003c/code\u003e/\u003ccode\u003ekAxiosCurrentReq\u003c/code\u003e, eliminating per-request listener accumulation, \u003ccode\u003eMaxListenersExceededWarning\u003c/code\u003e, and linear heap growth under concurrent or long-running keep-alive workloads (fixes \u003ca href=\"https://redirect.github.com/axios/axios/issues/10780\"\u003e#10780\u003c/a\u003e). (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10788\"\u003e#10788\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eChangelog:\u003c/strong\u003e Updated \u003ccode\u003eCHANGELOG.md\u003c/code\u003e with v1.15.1 release notes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10781\"\u003e#10781\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/axios/axios/compare/v1.15.1...v1.15.2\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003chr /\u003e\n\u003ch2\u003ev1.15.1 - April 19, 2026\u003c/h2\u003e\n\u003cp\u003eThis release ships a coordinated set of security hardening fixes across headers, body/redirect limits, multipart handling, and XSRF/prototype-pollution vectors, alongside a broad sweep of bug fixes, test migrations, and threat-model documentation updates.\u003c/p\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eHeader Injection Hardening:\u003c/strong\u003e Tightened validation and sanitisation across request header construction to close the header-injection attack surface. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10749\"\u003e#10749\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eCRLF Stripping in Multipart Headers:\u003c/strong\u003e Correctly strips CR/LF from multipart header values to prevent injection via field names and filenames. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10758\"\u003e#10758\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003ePrototype Pollution / Auth Bypass:\u003c/strong\u003e Replaced unsafe \u003ccode\u003ein\u003c/code\u003e checks with \u003ccode\u003ehasOwnProperty\u003c/code\u003e to prevent authentication bypass via prototype pollution on config objects, with additional regression tests. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10761\"\u003e#10761\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10760\"\u003e#10760\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003ewithXSRFToken\u003c/code\u003e Truthy Bypass:\u003c/strong\u003e Short-circuits on any truthy non-boolean value, so an ambiguous config no longer silently leaks the XSRF token cross-origin. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10762\"\u003e#10762\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003emaxBodyLength\u003c/code\u003e With Zero Redirects:\u003c/strong\u003e Enforces \u003ccode\u003emaxBodyLength\u003c/code\u003e even when \u003ccode\u003emaxRedirects\u003c/code\u003e is set to \u003ccode\u003e0\u003c/code\u003e, closing a bypass path for oversized request bodies. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10753\"\u003e#10753\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eStreamed Response \u003ccode\u003emaxContentLength\u003c/code\u003e Bypass:\u003c/strong\u003e Applies \u003ccode\u003emaxContentLength\u003c/code\u003e to streamed responses that previously bypassed the cap. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10754\"\u003e#10754\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eFollow-up CVE Completion:\u003c/strong\u003e Completes an earlier incomplete CVE fix to fully close the regression window. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10755\"\u003e#10755\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/df53d7dd99b202fb194217abd127ae6a630e70dc\"\u003e\u003ccode\u003edf53d7d\u003c/code\u003e\u003c/a\u003e chore(release): prepare release 1.16.0 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10834\"\u003e#10834\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/9d92bcd32639d1eea5b89f03ae45f248d3bb058e\"\u003e\u003ccode\u003e9d92bcd\u003c/code\u003e\u003c/a\u003e fix: gadgets and smaller issues (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10833\"\u003e#10833\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/5107ee69aee527b19eabaf80000ca65752135435\"\u003e\u003ccode\u003e5107ee6\u003c/code\u003e\u003c/a\u003e fix: prevent undefined error codes in settle (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7276\"\u003e#7276\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/e57349992f230b6b13e80613eb84302560aa5ba8\"\u003e\u003ccode\u003ee573499\u003c/code\u003e\u003c/a\u003e fix(fetch): defer global access in fetch adapter (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7260\"\u003e#7260\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/ad68e1a484b50086af427f767bbd7d6e3aab7ac3\"\u003e\u003ccode\u003ead68e1a\u003c/code\u003e\u003c/a\u003e fix(http): honor timeout during connect without redirects (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10819\"\u003e#10819\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/2a51828213128691d2e37502b5eb2cf4965a737d\"\u003e\u003ccode\u003e2a51828\u003c/code\u003e\u003c/a\u003e fix(http): decode URL basic auth credentials (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10825\"\u003e#10825\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/0e8b6bbb542131bae9940618d84d5286255d4db1\"\u003e\u003ccode\u003e0e8b6bb\u003c/code\u003e\u003c/a\u003e fix(http): preserve user-supplied Host header when forwarding through a proxy...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/79f39e1d041dca87173226d0255f90eaf252564b\"\u003e\u003ccode\u003e79f39e1\u003c/code\u003e\u003c/a\u003e docs: document paramsSerializer.encode for strict RFC 3986 query encoding (\u003ca href=\"https://redirect.github.com/axios/axios/issues/1\"\u003e#1\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/0fe3a5fc14829535e1d517c662d448e86c33438e\"\u003e\u003ccode\u003e0fe3a5f\u003c/code\u003e\u003c/a\u003e [Docs/Types] Update \u003ccode\u003eparseReviver\u003c/code\u003e TypeScript definitions for ES2023 and add ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/cd6737fd84bdb7caf2a319d3579573a49f9d238d\"\u003e\u003ccode\u003ecd6737f\u003c/code\u003e\u003c/a\u003e chore: matches the sibling responseStream.on(aborted) handler and added tests...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/axios/axios/compare/v0.18.1...v1.16.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for axios since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `shelljs` from 0.7.8 to 0.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/shelljs/shelljs/releases\"\u003eshelljs's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.10.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: update deps by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1201\"\u003eshelljs/shelljs#1201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: rename master -\u0026gt; main by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1203\"\u003eshelljs/shelljs#1203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: avoid dependency cycle by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1204\"\u003eshelljs/shelljs#1204\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnforce single quotes by \u003ca href=\"https://github.com/abluescarab\"\u003e\u003ccode\u003e@​abluescarab\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1207\"\u003eshelljs/shelljs#1207\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update deps by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1209\"\u003eshelljs/shelljs#1209\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: use require instead of import by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1212\"\u003eshelljs/shelljs#1212\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: use promises for utils.runScript by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1211\"\u003eshelljs/shelljs#1211\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: use expectations for t.throws by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1213\"\u003eshelljs/shelljs#1213\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: prefer promises over test.cb by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1214\"\u003eshelljs/shelljs#1214\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: allow es6 language features by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1215\"\u003eshelljs/shelljs#1215\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: use es6 class syntax for CommandError by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1217\"\u003eshelljs/shelljs#1217\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update ava by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1218\"\u003eshelljs/shelljs#1218\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: cmd is compatible with node 22.10 by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1219\"\u003eshelljs/shelljs#1219\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: explicit handling for execa errors by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1220\"\u003eshelljs/shelljs#1220\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd -B, -A, and -C options to grep by \u003ca href=\"https://github.com/abluescarab\"\u003e\u003ccode\u003e@​abluescarab\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1206\"\u003eshelljs/shelljs#1206\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: change how internal errors are handled by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1222\"\u003eshelljs/shelljs#1222\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate the shjs binary by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1225\"\u003eshelljs/shelljs#1225\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebump execa dependency version by \u003ca href=\"https://github.com/y-nk\"\u003e\u003ccode\u003e@​y-nk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1216\"\u003eshelljs/shelljs#1216\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/abluescarab\"\u003e\u003ccode\u003e@​abluescarab\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1207\"\u003eshelljs/shelljs#1207\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/y-nk\"\u003e\u003ccode\u003e@​y-nk\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1216\"\u003eshelljs/shelljs#1216\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/shelljs/shelljs/compare/v0.9.2...v0.10.0\"\u003ehttps://github.com/shelljs/shelljs/compare/v0.9.2...v0.10.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.9.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003etest: add tests for shelljs glob expansion by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1198\"\u003eshelljs/shelljs#1198\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: remove unused env var by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1199\"\u003eshelljs/shelljs#1199\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: add package.json to exports list by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1200\"\u003eshelljs/shelljs#1200\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/shelljs/shelljs/compare/v0.9.1...v0.9.2\"\u003ehttps://github.com/shelljs/shelljs/compare/v0.9.1...v0.9.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.9.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: add global.js and plugin.js to exports list by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1196\"\u003eshelljs/shelljs#1196\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/shelljs/shelljs/compare/v0.9.0...v0.9.1\"\u003ehttps://github.com/shelljs/shelljs/compare/v0.9.0...v0.9.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: Exit 1 with empty string if no match by \u003ca href=\"https://github.com/wyardley\"\u003e\u003ccode\u003e@​wyardley\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/901\"\u003eshelljs/shelljs#901\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(cp): support update flag when recursing by \u003ca href=\"https://github.com/joshi-sh\"\u003e\u003ccode\u003e@​joshi-sh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/889\"\u003eshelljs/shelljs#889\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: change language to node_js and remove obsolete scripts by \u003ca href=\"https://github.com/DanielRuf\"\u003e\u003ccode\u003e@​DanielRuf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/910\"\u003eshelljs/shelljs#910\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: remove gitter integration by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/907\"\u003eshelljs/shelljs#907\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(npm): remove lockfile by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/911\"\u003eshelljs/shelljs#911\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/shelljs/shelljs/blob/main/CHANGELOG.md\"\u003eshelljs's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChange Log\u003c/h1\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/shelljs/shelljs/tree/v0.8.5\"\u003ev0.8.5\u003c/a\u003e (2022-01-13)\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/shelljs/shelljs/compare/v0.8.4...v0.8.5\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eThis was a small security fix for \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/1058\"\u003e#1058\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/shelljs/shelljs/tree/v0.8.4\"\u003ev0.8.4\u003c/a\u003e (2020-04-24)\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/shelljs/shelljs/compare/v0.8.3...v0.8.4\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eSmall patch release to fix a circular dependency warning in node v14. See \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/973\"\u003e#973\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/shelljs/shelljs/tree/v0.8.3\"\u003ev0.8.3\u003c/a\u003e (2018-11-13)\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/shelljs/shelljs/compare/v0.8.2...v0.8.3\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eClosed issues:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eShelljs print stderr to console even if exec-only \u0026quot;silent\u0026quot; is true \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/905\"\u003e#905\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: remove common.state.tempDir \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/902\"\u003e#902\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCan't suppress stdout for echo \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/899\"\u003e#899\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eexec() doesn't apply the arguments correctly \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/895\"\u003e#895\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eshell.exec('npm pack') painfully slow \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/885\"\u003e#885\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eshelljs.exec cannot find app.asar/node_modules/shelljs/src/exec-child.js \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/881\"\u003e#881\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest infra: mocks and skipOnWin conflict \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/862\"\u003e#862\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport for shell function completion on IDE \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/859\"\u003e#859\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eecho command shows options in stdout \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/855\"\u003e#855\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esilent does not always work \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/851\"\u003e#851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAppveyor installs the latest npm, instead of the latest compatible npm \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/844\"\u003e#844\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eForce symbolic link (ln -sf) does not overwrite/recreate existing destination \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/830\"\u003e#830\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003einconsistent result when trying to echo to a file \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/798\"\u003e#798\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrevent require()ing executable-only files \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/789\"\u003e#789\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCannot set property to of [object String] which has only a getter \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/752\"\u003e#752\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ewhich() should check executability before returning a value \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/657\"\u003e#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBad encoding experience \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/456\"\u003e#456\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ephpcs very slow \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/440\"\u003e#440\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eError shown when triggering a sigint during shelljs.exec if process.on sigint is defined \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/254\"\u003e#254\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e.to\\(file\\)\u003c/code\u003e does not mute STDIO output \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/146\"\u003e#146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEscaping shell arguments to exec() \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/143\"\u003e#143\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAllow multiple string arguments for exec() \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/103\"\u003e#103\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecp does not recursively copy from readonly location  \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/98\"\u003e#98\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHandling permissions errors on file I/O \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/64\"\u003e#64\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eMerged pull requests:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd test case for sed on empty file \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/904\"\u003e#904\u003c/a\u003e (\u003ca href=\"https://github.com/wyardley\"\u003ewyardley\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor: don't expose tempdir in common.state \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/903\"\u003e#903\u003c/a\u003e (\u003ca href=\"https://github.com/nfischer\"\u003enfischer\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore(ci): fix codecov on travis \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/897\"\u003e#897\u003c/a\u003e (\u003ca href=\"https://github.com/nfischer\"\u003enfischer\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore(npm): add ci-or-install script \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/896\"\u003e#896\u003c/a\u003e (\u003ca href=\"https://github.com/nfischer\"\u003enfischer\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix silent exec \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/892\"\u003e#892\u003c/a\u003e (\u003ca href=\"https://github.com/nfischer\"\u003enfischer\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore(appveyor): run entire test matrix \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/886\"\u003e#886\u003c/a\u003e (\u003ca href=\"https://github.com/nfischer\"\u003enfischer\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shelljs/shelljs/commit/4580c00398982618ff075dd4354b0234a1d679dc\"\u003e\u003ccode\u003e4580c00\u003c/code\u003e\u003c/a\u003e 0.10.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shelljs/shelljs/commit/9a06336bc15ea36597054be5dacf6f8259ea6520\"\u003e\u003ccode\u003e9a06336\u003c/code\u003e\u003c/a\u003e Deprecate the shjs binary\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shelljs/shelljs/commit/3b03c85ef6442a1ebafca99db606c6c851215e9b\"\u003e\u003ccode\u003e3b03c85\u003c/code\u003e\u003c/a\u003e chore: remove accidental audit dep\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shelljs/shelljs/commit/33db5147e23f8d76e768eefc2f1d4a82da449ed3\"\u003e\u003ccode\u003e33db514\u003c/code\u003e\u003c/a\u003e Regenerate package-lock.json with npm 9.2.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shelljs/shelljs/commit/6577d5490f4737b1aa0a6c6db2c2ff0693531a90\"\u003e\u003ccode\u003e6577d54\u003c/code\u003e\u003c/a\u003e Merge branch 'y-nk-main'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shelljs/shelljs/commit/e48e9195438e10f06273734d3ab67d941eeaecc8\"\u003e\u003ccode\u003ee48e919\u003c/code\u003e\u003c/a\u003e bump execa (\u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/1216\"\u003e#1216\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shelljs/shelljs/commit/67a26e2ccc2c5ffa2610912621ad4de26c93c6cb\"\u003e\u003ccode\u003e67a26e2\u003c/code\u003e\u003c/a\u003e refactor: change how internal errors are handled\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shelljs/shelljs/commit/bfd06fa0967b441c5aecfcb992500b9ee240a267\"\u003e\u003ccode\u003ebfd06fa\u003c/code\u003e\u003c/a\u003e Add -B, -A, and -C options to grep (\u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/1206\"\u003e#1206\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shelljs/shelljs/commit/3149e09d5fb1c6af74ffc0128f0f7daf18d3c858\"\u003e\u003ccode\u003e3149e09\u003c/code\u003e\u003c/a\u003e refactor: explicit handling for execa errors\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shelljs/shelljs/commit/75d26de5b31f71bc8784e3d9329375e83c7b6d49\"\u003e\u003ccode\u003e75d26de\u003c/code\u003e\u003c/a\u003e fix: cmd is compatible with node 22.10\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/shelljs/shelljs/compare/v0.7.8...v0.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `node-fetch` from 1.7.3 to 3.3.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-fetch/node-fetch/releases\"\u003enode-fetch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.3.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.1...v3.3.2\"\u003e3.3.2\u003c/a\u003e (2023-07-25)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e8b3320d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1735\"\u003e#1735\u003c/a\u003e \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1473\"\u003e#1473\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.0...v3.3.1\"\u003e3.3.1\u003c/a\u003e (2023-03-11)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erelease \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e7b86e94\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.0\u003c/h2\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.10...v3.3.0\"\u003e3.3.0\u003c/a\u003e (2022-11-10)\u003c/h1\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd static Response.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1670\"\u003e#1670\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/55a4870ae5f805d8ff9a890ea2c652c9977e048e\"\u003e55a4870\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.10\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.9...v3.2.10\"\u003e3.2.10\u003c/a\u003e (2022-07-31)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDoS referrer (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1611\"\u003e#1611\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d\"\u003e2880238\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.9\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.8...v3.2.9\"\u003e3.2.9\u003c/a\u003e (2022-07-18)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHeaders:\u003c/strong\u003e don't forward secure headers on protocol change (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1599\"\u003e#1599\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7\"\u003ee87b093\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.8\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.7...v3.2.8\"\u003e3.2.8\u003c/a\u003e (2022-07-12)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003epossibly flaky test (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1523\"\u003e#1523\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/11b703361134340a8361f591d6e3a0bcf6a261fa\"\u003e11b7033\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e\u003ccode\u003e8b3320d\u003c/code\u003e\u003c/a\u003e fix: Remove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e\u003ccode\u003e7b86e94\u003c/code\u003e\u003c/a\u003e fix: release \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8ced5b941cf36d0d7e0c1017aa2a4abcb29ecd89\"\u003e\u003ccode\u003e8ced5b9\u003c/code\u003e\u003c/a\u003e docs: readme - non ESM example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1707\"\u003e#1707\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/71e376b0ca899a30bbda4d45f97ea87502956a62\"\u003e\u003ccode\u003e71e376b\u003c/code\u003e\u003c/a\u003e ci(release): use latest Node LTS (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1697\"\u003e#1697\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e093030b4a6625405a331ddf48bcfd82c079f43d\"\u003e\u003ccode\u003ee093030\u003c/code\u003e\u003c/a\u003e Allow URL class object as an argument for fetch() (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/55a4870ae5f805d8ff9a890ea2c652c9977e048e\"\u003e\u003ccode\u003e55a4870\u003c/code\u003e\u003c/a\u003e feat: add static Response.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1670\"\u003e#1670\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/c071406e193cce13959999982584ff27198e9e4a\"\u003e\u003ccode\u003ec071406\u003c/code\u003e\u003c/a\u003e (1138) - Fixed HTTPResponseError with correct constructor and usage (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1666\"\u003e#1666\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/6f72caa401a8ec574a22058431599ef47c222770\"\u003e\u003ccode\u003e6f72caa\u003c/code\u003e\u003c/a\u003e docs: fix missing comma in example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1623\"\u003e#1623\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d\"\u003e\u003ccode\u003e2880238\u003c/code\u003e\u003c/a\u003e fix: ReDoS referrer (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1611\"\u003e#1611\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7\"\u003e\u003ccode\u003ee87b093\u003c/code\u003e\u003c/a\u003e fix(Headers): don't forward secure headers on protocol change (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1599\"\u003e#1599\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/1.7.3...v3.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~node-fetch-bot\"\u003enode-fetch-bot\u003c/a\u003e, a new releaser for node-fetch since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `uuid` from 3.4.0 to 14.0.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/uuidjs/uuid/releases\"\u003euuid's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev14.0.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.0...v14.0.0\"\u003e14.0.0\u003c/a\u003e (2026-04-19)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eexpect \u003ccode\u003ecrypto\u003c/code\u003e to be global everywhere (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003edrop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/dc4ddb87272ed2843faccd130bcc41d492688bd3\"\u003edc4ddb8\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eexpect \u003ccode\u003ecrypto\u003c/code\u003e to be global everywhere (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/f2c235f93059325fa43e1106e624b5291bb523c4\"\u003ef2c235f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse GITHUB_TOKEN for release-please and enable npm provenance (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/925\"\u003e#925\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/ffa31383e8e4e1f0b4e22e504561272041b8738c\"\u003effa3138\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev13.0.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.0...v13.0.1\"\u003e13.0.1\u003c/a\u003e (2026-04-27)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebackport fix for GHSA-w5hq-g745-h8pq (\u003ca href=\"https://github.com/uuidjs/uuid/commit/9d27ddf7046ce496ef39569ff84d948eeff9cb2a\"\u003e9d27ddf\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev13.0.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v12.0.0...v13.0.0\"\u003e13.0.0\u003c/a\u003e (2025-09-08)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/bce9d72a3ae5b9a3dcd8eb21ef6d1820288a427a\"\u003ebce9d72\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev12.0.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v12.0.0...v12.0.1\"\u003e12.0.1\u003c/a\u003e (2026-04-29)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebackport fix for GHSA-w5hq-g745-h8pq (\u003ca href=\"https://github.com/uuidjs/uuid/commit/3d61d6ac1f782cf6b1dd8661c60f11722cd49a0d\"\u003e3d61d6a\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev12.0.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.1.0...v12.0.0\"\u003e12.0.0\u003c/a\u003e (2025-09-05)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/uuidjs/uuid/blob/main/CHANGELOG.md\"\u003euuid's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.0...v14.0.0\"\u003e14.0.0\u003c/a\u003e (2026-04-19)\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixes \u003ca href=\"https://github.com/uuidjs/uuid/security/advisories/GHSA-w5hq-g745-h8pq\"\u003eGHSA-w5hq-g745-h8pq\u003c/a\u003e: \u003ccode\u003ev3()\u003c/code\u003e, \u003ccode\u003ev5()\u003c/code\u003e, and \u003ccode\u003ev6()\u003c/code\u003e did not validate that writes would remain within the bounds of a caller-supplied buffer, allowing out-of-bounds writes when an invalid \u003ccode\u003eoffset\u003c/code\u003e was provided. A \u003ccode\u003eRangeError\u003c/code\u003e is now thrown if \u003ccode\u003eoffset \u0026lt; 0\u003c/code\u003e or \u003ccode\u003eoffset + 16 \u0026gt; buf.length\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ecrypto\u003c/code\u003e is now expected to be globally defined (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupgrade minimum supported TypeScript version to 5.4.3, in keeping with the project's policy of supporting TypeScript versions released within the last two years\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v12.0.0...v13.0.0\"\u003e13.0.0\u003c/a\u003e (2025-09-08)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/bce9d72a3ae5b9a3dcd8eb21ef6d1820288a427a\"\u003ebce9d72\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.1.0...v12.0.0\"\u003e12.0.0\u003c/a\u003e (2025-09-05)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdate to typescript@5.2 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/887\"\u003e#887\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove CommonJS support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/886\"\u003e#886\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@16 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/883\"\u003e#883\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd node@24 to ci matrix (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/879\"\u003e#879\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/42b6178aa21a593257f0a72abacd220f0b7b8a92\"\u003e42b6178\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@16 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/883\"\u003e#883\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/0f38cf10366ab074f9328ae2021eea04d5f2e530\"\u003e0f38cf1\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove CommonJS support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/886\"\u003e#886\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/ae786e27265f50bcf7cead196c29f1869297c42f\"\u003eae786e2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate to typescript@5.2 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/887\"\u003e#887\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/c7ee40598ed78584d81ab78dffded9fe5ff20b01\"\u003ec7ee405\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimprove v4() performance (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/894\"\u003e#894\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/5fd974c12718c8848035650b69b8948f12ace197\"\u003e5fd974c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erestore node: prefix (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/889\"\u003e#889\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/e1f42a354593093ba0479f0b4047dae82d28c507\"\u003ee1f42a3\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.0.5...v11.1.0\"\u003e11.1.0\u003c/a\u003e (2025-02-19)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/7c1ea087a8149b57380fc8bb7f68c3a215cb6e4b\"\u003e\u003ccode\u003e7c1ea08\u003c/code\u003e\u003c/a\u003e chore(main): release 14.0.0 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/926\"\u003e#926\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/3d2c5b0342f0fcb52a5ac681c3d47c13e7444b34\"\u003e\u003ccode\u003e3d2c5b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/f2c235f93059325fa43e1106e624b5291bb523c4\"\u003e\u003ccode\u003ef2c235f\u003c/code\u003e\u003c/a\u003e fix!: expect \u003ccode\u003ecrypto\u003c/code\u003e to be global everywhere (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/529ef0899f5dd503d2ee90d690585d63d78bc212\"\u003e\u003ccode\u003e529ef08\u003c/code\u003e\u003c/a\u003e chore: upgrade TypeScript and fixup types (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/927\"\u003e#927\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/086fd7976f11433edf9ac80be876b3ad243fe087\"\u003e\u003ccode\u003e086fd79\u003c/code\u003e\u003c/a\u003e chore: update dependencies (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/933\"\u003e#933\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/dc4ddb87272ed2843faccd130bcc41d492688bd3\"\u003e\u003ccode\u003edc4ddb8\u003c/code\u003e\u003c/a\u003e feat!: drop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/0f1f9c9c9cedbae5a1d363d5406c5dfbabe81404\"\u003e\u003ccode\u003e0f1f9c9\u003c/code\u003e\u003c/a\u003e chore: switch to Biome for parsing and linting (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/932\"\u003e#932\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/e2879e64bf125add903c1eff6e0860542c605013\"\u003e\u003ccode\u003ee2879e6\u003c/code\u003e\u003c/a\u003e chore: use maintained version of npm-run-all (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/930\"\u003e#930\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/ffa31383e8e4e1f0b4e22e504561272041b8738c\"\u003e\u003ccode\u003effa3138\u003c/code\u003e\u003c/a\u003e fix: Use GITHUB_TOKEN for release-please and enable npm provenance (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/925\"\u003e#925\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/0423d49df2dc8efc300c804731d25f4d7e0fccc4\"\u003e\u003ccode\u003e0423d49\u003c/code\u003e\u003c/a\u003e docs: remove obsolete v1 option notes (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/915\"\u003e#915\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/uuidjs/uuid/compare/v3.4.0...v14.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for uuid since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `node-sass` from 4.14.1 to 9.0.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sass/node-sass/releases\"\u003enode-sass's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev9.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNode 20 support by \u003ca href=\"https://github.com/nschonni\"\u003e\u003ccode\u003e@​nschonni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/sass/node-sass/pull/3355\"\u003esass/node-sass#3355\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBreaking changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for Node 14 (\u003ca href=\"https://github.com/nschonni\"\u003e\u003ccode\u003e@​nschonni\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eSupported Environments\u003c/h2\u003e\n\u003ctable\u003e\n\u003cthead\u003e\n\u003ctr\u003e\n\u003cth\u003eOS\u003c/th\u003e\n\u003cth\u003eArchitecture\u003c/th\u003e\n\u003cth\u003eNode\u003c/th\u003e\n\u003c/tr\u003e\n\u003c/thead\u003e\n\u003ctbody\u003e\n\u003ctr\u003e\n\u003ctd\u003eWindows\u003c/td\u003e\n\u003ctd\u003ex86 \u0026amp; x64\u003c/td\u003e\n\u003ctd\u003e16, 18, 19, 20\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003eOSX\u003c/td\u003e\n\u003ctd\u003ex64\u003c/td\u003e\n\u003ctd\u003e16, 18, 19, 20\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003eLinux*\u003c/td\u003e\n\u003ctd\u003ex64\u003c/td\u003e\n\u003ctd\u003e16, 18, 19, 20\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003eAlpine Linux\u003c/td\u003e\n\u003ctd\u003ex64\u003c/td\u003e\n\u003ctd\u003e16, 18, 19, 20\u003c/td\u003e\n\u003c/tr\u003e\n\u003c/tbody\u003e\n\u003c/table\u003e\n\u003cp\u003e*Linux support refers to major distributions like Ubuntu, and Debian\u003c/p\u003e\n\u003ch2\u003ev8.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix binaries being partially downloaded by \u003ca href=\"https://github.com/xzyfer\"\u003e\u003ccode\u003e@​xzyfer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/sass/node-sass/pull/3313\"\u003esass/node-sass#3313\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump node-gyp and nan for node 19 support by \u003ca href=\"https://github.com/xzyfer\"\u003e\u003ccode\u003e@​xzyfer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/sass/node-sass/pull/3314\"\u003esass/node-sass#3314\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: Node 18 and 19 support and drop Node 17 by \u003ca href=\"https://github.com/nschonni\"\u003e\u003ccode\u003e@​nschonni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/sass/node-sass/pull/3257\"\u003esass/node-sass#3257\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBreaking changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for Node 12 (\u003ca href=\"https://github.com/nschonni\"\u003e\u003ccode\u003e@​nschonni\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDrop support for Node 17 (\u003ca href=\"https://github.com/nschonni\"\u003e\u003ccode\u003e@​nschonni\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSet \u003ccode\u003erejectUnauthorized\u003c/code\u003e to \u003ccode\u003etrue\u003c/code\u003e by default (\u003ca href=\"https://github.com/scott-ut\"\u003e\u003ccode\u003e@​scott-ut\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/sass/node-sass/issues/3149\"\u003e#3149\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for Node 18 (\u003ca href=\"https://github.com/nschonni\"\u003e\u003ccode\u003e@​nschonni\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for Node 19 (\u003ca href=\"https://github.com/nschonni\"\u003e\u003ccode\u003e@​nschonni\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReplace \u003ccode\u003erequest\u003c/code\u003e with \u003ccode\u003emake-fetch-happen\u003c/code\u003e (\u003ca href=\"https://github.com/CamilleDrapier\"\u003e\u003ccode\u003e@​CamilleDrapier\u003c/code\u003e\u003c/a\u003e  \u003ca href=\"https://github.com/xzyfer\"\u003e\u003ccode\u003e@​xzyfer\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/sass/node-sass/issues/3193\"\u003e#3193\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/sass/node-sass/issues/3313\"\u003e#3313\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump true-case-path@2.2.1\u003c/li\u003e\n\u003cli\u003eBump node-gyp \u003ca href=\"https://github.com/9\"\u003e\u003ccode\u003e@​9\u003c/code\u003e\u003c/a\u003e.0.0\u003c/li\u003e\n\u003cli\u003eBump nan@^2.17.0\u003c/li\u003e\n\u003cli\u003eBump sass-graph@^4.0.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eMisc\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump various GitHub Actions dependencies (\u003ca href=\"https://github.com/nschonni\"\u003e\u003ccode\u003e@​nschonni\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/node-sass/commit/87f38998da059d13a87a7fc9f3d29d5728128e2c\"\u003e\u003ccode\u003e87f3899\u003c/code\u003e\u003c/a\u003e feat: Node 20 support (\u003ca href=\"https://redirect.github.com/sass/node-sass/issues/3355\"\u003e#3355\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/node-sass/commit/06ae4c70f792287c28bb765811014c7c56012d72\"\u003e\u003ccode\u003e06ae4c7\u003c/code\u003e\u003c/a\u003e build(deps): bump coverallsapp/github-action from 2.0.0 to 2.1.0 (\u003ca href=\"https://redirect.github.com/sass/node-sass/issues/3350\"\u003e#3350\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/node-sass/commit/e069f7356b76b286a51d0c4a48f93fb14bd0bdfc\"\u003e\u003ccode\u003ee069f73\u003c/code\u003e\u003c/a\u003e build(deps): bump coverallsapp/github-action from 1.2.0 to 2.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/node-sass/commit/c34837d7bfab1ef86a8d9989e83602895373a0a0\"\u003e\u003ccode\u003ec34837d\u003c/code\u003e\u003c/a\u003e build(deps): bump coverallsapp/github-action from 1.1.3 to 1.2.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/node-sass/commit/ee13eb9c62449d1e535189a063cbdd15583ebf32\"\u003e\u003ccode\u003eee13eb9\u003c/code\u003e\u003c/a\u003e 8.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/node-sass/commit/98e75b39e22ba2fdf7726eefa23ba5f7247540c4\"\u003e\u003ccode\u003e98e75b3\u003c/code\u003e\u003c/a\u003e feat: Node 18 and 19 support and drop Node 17 (\u003ca href=\"https://redirect.github.com/sass/node-sass/issues/3257\"\u003e#3257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/node-sass/commit/e9bb866b0cfec9f9f98c370be325289d25be5c62\"\u003e\u003ccode\u003ee9bb866\u003c/code\u003e\u003c/a\u003e Bump node-gyp and nan for node 19 support (\u003ca href=\"https://redirect.github.com/sass/node-sass/issues/3314\"\u003e#3314\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/node-sass/commit/ab7840b335d58f59731315354f2ea18d6bdf8fd6\"\u003e\u003ccode\u003eab7840b\u003c/code\u003e\u003c/a\u003e Fix binaries being partially downloaded (\u003ca href=\"https://redirect.github.com/sass/node-sass/issues/3313\"\u003e#3313\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/node-sass/commit/d595abf2ed3e8013509c04b1205005e95d3fcc2e\"\u003e\u003ccode\u003ed595abf\u003c/code\u003e\u003c/a\u003e 7.0.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/node-sass/commit/3b556c1c9a79e87fd54fdaa9a1a18741a7616025\"\u003e\u003ccode\u003e3b556c1\u003c/code\u003e\u003c/a\u003e 7.0.2\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sass/node-sass/compare/v4.14.1...v9.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `webpack-bundle-analyzer` from 2.13.1 to 5.3.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/webpack/webpack-bundle-analyzer/releases\"\u003ewebpack-bundle-analyzer's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.3.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eUse new ECMA features in code. (by \u003ca href=\"https://github.com/alexander-akait\"\u003e\u003ccode\u003e@​alexander-akait\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/713\"\u003e#713\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded \u003ccode\u003epropTypes\u003c/code\u003e to client components. (by \u003ca href=\"https://github.com/alexander-akait\"\u003e\u003ccode\u003e@​alexander-akait\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/713\"\u003e#713\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix a race condition in \u003ccode\u003ewriteStats\u003c/code\u003e that could lead to incorrect content in \u003ccode\u003estats.json\u003c/code\u003e. (by \u003ca href=\"https://github.com/alexander-akait\"\u003e\u003ccode\u003e@​alexander-akait\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/713\"\u003e#713\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eApply \u003ccode\u003eprettier\u003c/code\u003e and update dependencies. (by \u003ca href=\"https://github.com/alexander-akait\"\u003e\u003ccode\u003e@​alexander-akait\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/713\"\u003e#713\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/webpack/webpack-bundle-analyzer/blob/main/CHANGELOG.md\"\u003ewebpack-bundle-analyzer's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.3.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eUse new ECMA features in code. (by \u003ca href=\"https://github.com/alexander-akait\"\u003e\u003ccode\u003e@​alexander-akait\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/713\"\u003e#713\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded \u003ccode\u003epropTypes\u003c/code\u003e to client components. (by \u003ca href=\"https://github.com/alexander-akait\"\u003e\u003ccode\u003e@​alexander-akait\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/713\"\u003e#713\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix a race condition in \u003ccode\u003ewriteStats\u003c/code\u003e that could lead to incorrect content in \u003ccode\u003estats.json\u003c/code\u003e. (by \u003ca href=\"https://github.com/alexander-akait\"\u003e\u003ccode\u003e@​alexander-akait\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/713\"\u003e#713\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eApply \u003ccode\u003eprettier\u003c/code\u003e and update dependencies. (by \u003ca href=\"https://github.com/alexander-akait\"\u003e\u003ccode\u003e@​alexander-akait\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/713\"\u003e#713\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.2.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eNew Feature\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for Zstandard compression (\u003ca href=\"https://redirect.github.com/webpack-contrib/webpack-bundle-analyzer/pull/693\"\u003e#693\u003c/a\u003e by \u003ca href=\"https://github.com/bjohansebas\"\u003e\u003ccode\u003e@​bjohansebas\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eInternal\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ePrettier applied to the code base (\u003ca href=\"https://redirect.github.com/webpack-contrib/webpack-bundle-analyzer/pull/694\"\u003e#693\u003c/a\u003e by \u003ca href=\"https://github.com/alexander-akait\"\u003e\u003ccode\u003e@​alexander-akait\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdate \u003ccode\u003esirv\u003c/code\u003e dependency (\u003ca href=\"https://redirect.github.com/webpack-contrib/webpack-bundle-analyzer/pull/692\"\u003e#692\u003c/a\u003e by \u003ca href=\"https://github.com/bjohansebas\"\u003e\u003ccode\u003e@​bjohansebas\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdate \u003ccode\u003ews\u003c/code\u003e dependency (\u003ca href=\"https://redirect.github.com/webpack-contrib/webpack-bundle-analyzer/pull/691\"\u003e#691\u003c/a\u003e by \u003ca href=\"https://github.com/bjohansebas\"\u003e\u003ccode\u003e@​bjohansebas\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.1.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBug Fix\u003c/strong\u003e\n\u003cul\u003e\n\u003cli\u003eFix tooltip styling in dark mode when using CSS Modules (\u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/688\"\u003e#688\u003c/a\u003e by \u003ca href=\"https://github.com/theEquinoxDev\"\u003e\u003ccode\u003e@​theEquinoxDev\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAvoid parse failures for bundles with IIFE (\u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/685\"\u003e#685\u003c/a\u003e by \u003ca href=\"https://github.com/hai-x\"\u003e\u003ccode\u003e@​hai-x\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.1.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eBug Fix\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ePrevent \u003ccode\u003eTypeError\u003c/code\u003e when \u003ccode\u003eassets\u003c/code\u003e or \u003ccode\u003emodules\u003c/code\u003e are undefined in \u003ccode\u003eanalyzer.js\u003c/code\u003e\n(\u003ca href=\"https://redirect.github.com/webpack-contrib/webpack-bundle-analyzer/pull/679\"\u003e#679\u003c/a\u003e by \u003ca href=\"https://github.com/Srushti-33\"\u003e\u003ccode\u003e@​Srushti-33\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eNew Feature\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd optional dark/light mode toggle (\u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/683\"\u003e#683\u003c/a\u003e by \u003ca href=\"https://github.com/theEquinoxDev\"\u003e\u003ccode\u003e@​theEquinoxDev\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBug Fix\u003c/strong\u003e\n\u003cul\u003e\n\u003cli\u003eRestore \u003ccode\u003e@babel/plugin-transform-class-properties\u003c/code\u003e to fix HTML report (\u003ca href=\"https://redirect.github.com/webpack-contrib/webpack-bundle-analyzer/pull/682\"\u003e#682\u003c/a\u003e by \u003ca href=\"https://github.com/valscion\"\u003e\u003ccode\u003e@​valscion\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eBreaking Change\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRemove explicit support for Node versions below 20.9.0 (\u003ca href=\"https://redirect.github.com/webpack-contrib/webpack-bundle-analyzer/pull/676\"\u003e#676\u003c/a\u003e by \u003ca href=\"https://github.com/valscion\"\u003e\u003ccode\u003e@​valscion\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eImprovement\u003c/strong\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/webpack/webpack-bundle-analyzer/commit/9ba43c79a0113d3fd35dbcc55a637ffebaad7581\"\u003e\u003ccode\u003e9ba43c7\u003c/code\u003e\u003c/a\u003e chore(release): new release (\u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/issues/714\"\u003e#714\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/webpack/webpack-bundle-analyzer/commit/8a91940b09aee67718c26cb57e4f0f10d37ba243\"\u003e\u003ccode\u003e8a91940\u003c/code\u003e\u003c/a\u003e ci: trusted publishers (\u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/issues/713\"\u003e#713\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/webpack/webpack-bundle-analyzer/commit/b3f44b0de81eb7109f1691a1258fa781f0b0e193\"\u003e\u003ccode\u003eb3f44b0\u003c/code\u003e\u003c/a\u003e fix: race condition in \u003ccode\u003ewriteStats\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/issues/711\"\u003e#711\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://...\n\n_Description has been truncated_","html_url":"https://github.com/sumonst21/strapi/pull/6","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/sumonst21%2Fstrapi/issues/6","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/6/packages"},{"uuid":"4367255374","node_id":"PR_kwDOC3mYnc7Xj5wW","number":678,"state":"closed","title":"build(deps-dev): bump node-fetch from 2.6.12 to 3.3.2 in the dev-dependencies-node-fetch group","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-02T05:32:41.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-02T00:29:14.000Z","updated_at":"2026-05-02T05:32:49.000Z","time_to_close":18207,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps-dev)","packages":[{"name":"node-fetch","old_version":"2.6.12","new_version":"3.3.2","repository_url":"https://github.com/node-fetch/node-fetch"}],"path":"the dev-dependencies-node-fetch group","ecosystem":"npm"},"body":"Bumps the dev-dependencies-node-fetch group with 1 update: [node-fetch](https://github.com/node-fetch/node-fetch).\n\nUpdates `node-fetch` from 2.6.12 to 3.3.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-fetch/node-fetch/releases\"\u003enode-fetch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.3.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.1...v3.3.2\"\u003e3.3.2\u003c/a\u003e (2023-07-25)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e8b3320d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1735\"\u003e#1735\u003c/a\u003e \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1473\"\u003e#1473\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.0...v3.3.1\"\u003e3.3.1\u003c/a\u003e (2023-03-11)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erelease \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e7b86e94\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.0\u003c/h2\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.10...v3.3.0\"\u003e3.3.0\u003c/a\u003e (2022-11-10)\u003c/h1\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd static Response.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1670\"\u003e#1670\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/55a4870ae5f805d8ff9a890ea2c652c9977e048e\"\u003e55a4870\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.10\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.9...v3.2.10\"\u003e3.2.10\u003c/a\u003e (2022-07-31)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDoS referrer (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1611\"\u003e#1611\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d\"\u003e2880238\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.9\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.8...v3.2.9\"\u003e3.2.9\u003c/a\u003e (2022-07-18)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHeaders:\u003c/strong\u003e don't forward secure headers on protocol change (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1599\"\u003e#1599\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7\"\u003ee87b093\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.8\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.7...v3.2.8\"\u003e3.2.8\u003c/a\u003e (2022-07-12)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003epossibly flaky test (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1523\"\u003e#1523\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/11b703361134340a8361f591d6e3a0bcf6a261fa\"\u003e11b7033\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e\u003ccode\u003e8b3320d\u003c/code\u003e\u003c/a\u003e fix: Remove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e\u003ccode\u003e7b86e94\u003c/code\u003e\u003c/a\u003e fix: release \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8ced5b941cf36d0d7e0c1017aa2a4abcb29ecd89\"\u003e\u003ccode\u003e8ced5b9\u003c/code\u003e\u003c/a\u003e docs: readme - non ESM example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1707\"\u003e#1707\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/71e376b0ca899a30bbda4d45f97ea87502956a62\"\u003e\u003ccode\u003e71e376b\u003c/code\u003e\u003c/a\u003e ci(release): use latest Node LTS (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1697\"\u003e#1697\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e093030b4a6625405a331ddf48bcfd82c079f43d\"\u003e\u003ccode\u003ee093030\u003c/code\u003e\u003c/a\u003e Allow URL class object as an argument for fetch() (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/55a4870ae5f805d8ff9a890ea2c652c9977e048e\"\u003e\u003ccode\u003e55a4870\u003c/code\u003e\u003c/a\u003e feat: add static Response.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1670\"\u003e#1670\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/c071406e193cce13959999982584ff27198e9e4a\"\u003e\u003ccode\u003ec071406\u003c/code\u003e\u003c/a\u003e (1138) - Fixed HTTPResponseError with correct constructor and usage (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1666\"\u003e#1666\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/6f72caa401a8ec574a22058431599ef47c222770\"\u003e\u003ccode\u003e6f72caa\u003c/code\u003e\u003c/a\u003e docs: fix missing comma in example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1623\"\u003e#1623\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d\"\u003e\u003ccode\u003e2880238\u003c/code\u003e\u003c/a\u003e fix: ReDoS referrer (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1611\"\u003e#1611\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7\"\u003e\u003ccode\u003ee87b093\u003c/code\u003e\u003c/a\u003e fix(Headers): don't forward secure headers on protocol change (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1599\"\u003e#1599\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v2.6.12...v3.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=node-fetch\u0026package-manager=npm_and_yarn\u0026previous-version=2.6.12\u0026new-version=3.3.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/fannheyward/coc-xml/pull/678","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/fannheyward%2Fcoc-xml/issues/678","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/678/packages"},{"uuid":"4366887964","node_id":"PR_kwDOIaGlms7XiwU7","number":298,"state":"open","title":"Bump node-fetch from 3.2.6 to 3.3.2","user":"dependabot[bot]","labels":["dependencies","Stale","javascript"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-01T22:11:48.000Z","updated_at":"2026-06-01T00:24:24.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"node-fetch","old_version":"3.2.6","new_version":"3.3.2","repository_url":"https://github.com/node-fetch/node-fetch"}],"path":null,"ecosystem":"npm"},"body":"Bumps [node-fetch](https://github.com/node-fetch/node-fetch) from 3.2.6 to 3.3.2.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-fetch/node-fetch/releases\"\u003enode-fetch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.3.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.1...v3.3.2\"\u003e3.3.2\u003c/a\u003e (2023-07-25)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e8b3320d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1735\"\u003e#1735\u003c/a\u003e \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1473\"\u003e#1473\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.0...v3.3.1\"\u003e3.3.1\u003c/a\u003e (2023-03-11)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erelease \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e7b86e94\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.0\u003c/h2\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.10...v3.3.0\"\u003e3.3.0\u003c/a\u003e (2022-11-10)\u003c/h1\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd static Response.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1670\"\u003e#1670\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/55a4870ae5f805d8ff9a890ea2c652c9977e048e\"\u003e55a4870\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.10\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.9...v3.2.10\"\u003e3.2.10\u003c/a\u003e (2022-07-31)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDoS referrer (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1611\"\u003e#1611\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d\"\u003e2880238\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.9\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.8...v3.2.9\"\u003e3.2.9\u003c/a\u003e (2022-07-18)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHeaders:\u003c/strong\u003e don't forward secure headers on protocol change (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1599\"\u003e#1599\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7\"\u003ee87b093\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.8\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.7...v3.2.8\"\u003e3.2.8\u003c/a\u003e (2022-07-12)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003epossibly flaky test (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1523\"\u003e#1523\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/11b703361134340a8361f591d6e3a0bcf6a261fa\"\u003e11b7033\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e\u003ccode\u003e8b3320d\u003c/code\u003e\u003c/a\u003e fix: Remove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e\u003ccode\u003e7b86e94\u003c/code\u003e\u003c/a\u003e fix: release \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8ced5b941cf36d0d7e0c1017aa2a4abcb29ecd89\"\u003e\u003ccode\u003e8ced5b9\u003c/code\u003e\u003c/a\u003e docs: readme - non ESM example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1707\"\u003e#1707\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/71e376b0ca899a30bbda4d45f97ea87502956a62\"\u003e\u003ccode\u003e71e376b\u003c/code\u003e\u003c/a\u003e ci(release): use latest Node LTS (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1697\"\u003e#1697\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e093030b4a6625405a331ddf48bcfd82c079f43d\"\u003e\u003ccode\u003ee093030\u003c/code\u003e\u003c/a\u003e Allow URL class object as an argument for fetch() (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/55a4870ae5f805d8ff9a890ea2c652c9977e048e\"\u003e\u003ccode\u003e55a4870\u003c/code\u003e\u003c/a\u003e feat: add static Response.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1670\"\u003e#1670\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/c071406e193cce13959999982584ff27198e9e4a\"\u003e\u003ccode\u003ec071406\u003c/code\u003e\u003c/a\u003e (1138) - Fixed HTTPResponseError with correct constructor and usage (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1666\"\u003e#1666\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/6f72caa401a8ec574a22058431599ef47c222770\"\u003e\u003ccode\u003e6f72caa\u003c/code\u003e\u003c/a\u003e docs: fix missing comma in example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1623\"\u003e#1623\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d\"\u003e\u003ccode\u003e2880238\u003c/code\u003e\u003c/a\u003e fix: ReDoS referrer (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1611\"\u003e#1611\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7\"\u003e\u003ccode\u003ee87b093\u003c/code\u003e\u003c/a\u003e fix(Headers): don't forward secure headers on protocol change (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1599\"\u003e#1599\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.6...v3.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=node-fetch\u0026package-manager=npm_and_yarn\u0026previous-version=3.2.6\u0026new-version=3.3.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/magnusnosnes/Disentangling_Streptococcus_AMR/pull/298","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/magnusnosnes%2FDisentangling_Streptococcus_AMR/issues/298","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/298/packages"},{"uuid":"4366102735","node_id":"PR_kwDOHRRhds7XgPkm","number":325,"state":"open","title":"chore(deps-dev): bump node-fetch from 3.2.3 to 3.3.2","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-01T18:47:51.000Z","updated_at":"2026-05-01T18:48:33.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps-dev)","packages":[{"name":"node-fetch","old_version":"3.2.3","new_version":"3.3.2","repository_url":"https://github.com/node-fetch/node-fetch"}],"path":null,"ecosystem":"npm"},"body":"Bumps [node-fetch](https://github.com/node-fetch/node-fetch) from 3.2.3 to 3.3.2.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-fetch/node-fetch/releases\"\u003enode-fetch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.3.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.1...v3.3.2\"\u003e3.3.2\u003c/a\u003e (2023-07-25)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e8b3320d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1735\"\u003e#1735\u003c/a\u003e \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1473\"\u003e#1473\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.0...v3.3.1\"\u003e3.3.1\u003c/a\u003e (2023-03-11)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erelease \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e7b86e94\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.0\u003c/h2\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.10...v3.3.0\"\u003e3.3.0\u003c/a\u003e (2022-11-10)\u003c/h1\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd static Response.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1670\"\u003e#1670\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/55a4870ae5f805d8ff9a890ea2c652c9977e048e\"\u003e55a4870\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.10\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.9...v3.2.10\"\u003e3.2.10\u003c/a\u003e (2022-07-31)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDoS referrer (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1611\"\u003e#1611\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d\"\u003e2880238\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.9\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.8...v3.2.9\"\u003e3.2.9\u003c/a\u003e (2022-07-18)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHeaders:\u003c/strong\u003e don't forward secure headers on protocol change (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1599\"\u003e#1599\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7\"\u003ee87b093\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.8\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.7...v3.2.8\"\u003e3.2.8\u003c/a\u003e (2022-07-12)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003epossibly flaky test (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1523\"\u003e#1523\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/11b703361134340a8361f591d6e3a0bcf6a261fa\"\u003e11b7033\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e\u003ccode\u003e8b3320d\u003c/code\u003e\u003c/a\u003e fix: Remove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e\u003ccode\u003e7b86e94\u003c/code\u003e\u003c/a\u003e fix: release \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8ced5b941cf36d0d7e0c1017aa2a4abcb29ecd89\"\u003e\u003ccode\u003e8ced5b9\u003c/code\u003e\u003c/a\u003e docs: readme - non ESM example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1707\"\u003e#1707\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/71e376b0ca899a30bbda4d45f97ea87502956a62\"\u003e\u003ccode\u003e71e376b\u003c/code\u003e\u003c/a\u003e ci(release): use latest Node LTS (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1697\"\u003e#1697\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e093030b4a6625405a331ddf48bcfd82c079f43d\"\u003e\u003ccode\u003ee093030\u003c/code\u003e\u003c/a\u003e Allow URL class object as an argument for fetch() (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/55a4870ae5f805d8ff9a890ea2c652c9977e048e\"\u003e\u003ccode\u003e55a4870\u003c/code\u003e\u003c/a\u003e feat: add static Response.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1670\"\u003e#1670\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/c071406e193cce13959999982584ff27198e9e4a\"\u003e\u003ccode\u003ec071406\u003c/code\u003e\u003c/a\u003e (1138) - Fixed HTTPResponseError with correct constructor and usage (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1666\"\u003e#1666\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/6f72caa401a8ec574a22058431599ef47c222770\"\u003e\u003ccode\u003e6f72caa\u003c/code\u003e\u003c/a\u003e docs: fix missing comma in example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1623\"\u003e#1623\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d\"\u003e\u003ccode\u003e2880238\u003c/code\u003e\u003c/a\u003e fix: ReDoS referrer (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1611\"\u003e#1611\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7\"\u003e\u003ccode\u003ee87b093\u003c/code\u003e\u003c/a\u003e fix(Headers): don't forward secure headers on protocol change (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1599\"\u003e#1599\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.3...v3.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=node-fetch\u0026package-manager=npm_and_yarn\u0026previous-version=3.2.3\u0026new-version=3.3.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/tube-sh/website/pull/325","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/tube-sh%2Fwebsite/issues/325","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/325/packages"},{"uuid":"4365986627","node_id":"PR_kwDOIq5ldM7Xf3Ra","number":276,"state":"open","title":"Bump node-fetch from 3.3.0 to 3.3.2","user":"dependabot[bot]","labels":["dependencies","Stale","javascript"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-01T18:24:55.000Z","updated_at":"2026-06-07T02:02:43.918Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"node-fetch","old_version":"3.3.0","new_version":"3.3.2","repository_url":"https://github.com/node-fetch/node-fetch"}],"path":null,"ecosystem":"npm"},"body":"Bumps [node-fetch](https://github.com/node-fetch/node-fetch) from 3.3.0 to 3.3.2.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-fetch/node-fetch/releases\"\u003enode-fetch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.3.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.1...v3.3.2\"\u003e3.3.2\u003c/a\u003e (2023-07-25)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e8b3320d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1735\"\u003e#1735\u003c/a\u003e \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1473\"\u003e#1473\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.0...v3.3.1\"\u003e3.3.1\u003c/a\u003e (2023-03-11)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erelease \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e7b86e94\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e\u003ccode\u003e8b3320d\u003c/code\u003e\u003c/a\u003e fix: Remove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e\u003ccode\u003e7b86e94\u003c/code\u003e\u003c/a\u003e fix: release \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8ced5b941cf36d0d7e0c1017aa2a4abcb29ecd89\"\u003e\u003ccode\u003e8ced5b9\u003c/code\u003e\u003c/a\u003e docs: readme - non ESM example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1707\"\u003e#1707\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/71e376b0ca899a30bbda4d45f97ea87502956a62\"\u003e\u003ccode\u003e71e376b\u003c/code\u003e\u003c/a\u003e ci(release): use latest Node LTS (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1697\"\u003e#1697\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e093030b4a6625405a331ddf48bcfd82c079f43d\"\u003e\u003ccode\u003ee093030\u003c/code\u003e\u003c/a\u003e Allow URL class object as an argument for fetch() (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.0...v3.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=node-fetch\u0026package-manager=npm_and_yarn\u0026previous-version=3.3.0\u0026new-version=3.3.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/newale/docs/pull/276","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/newale%2Fdocs/issues/276","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/276/packages"}],"issue_packages":[{"old_version":"2.7.0","new_version":"3.3.2","update_type":"major","path":null,"pr_created_at":"2026-06-16T02:35:42.000Z","version_change":"2.7.0 → 3.3.2","issue":{"uuid":"4670521730","node_id":"PR_kwDOS74NdM7m0OQk","number":1,"state":"open","title":"Bump node-fetch from 2.7.0 to 3.3.2","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-06-16T02:35:42.000Z","updated_at":"2026-06-16T02:36:07.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"node-fetch","old_version":"2.7.0","new_version":"3.3.2","repository_url":"https://github.com/node-fetch/node-fetch"}],"path":null,"ecosystem":"npm"},"body":"Bumps [node-fetch](https://github.com/node-fetch/node-fetch) from 2.7.0 to 3.3.2.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-fetch/node-fetch/releases\"\u003enode-fetch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.3.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.1...v3.3.2\"\u003e3.3.2\u003c/a\u003e (2023-07-25)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e8b3320d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1735\"\u003e#1735\u003c/a\u003e \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1473\"\u003e#1473\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.0...v3.3.1\"\u003e3.3.1\u003c/a\u003e (2023-03-11)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erelease \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e7b86e94\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.0\u003c/h2\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.10...v3.3.0\"\u003e3.3.0\u003c/a\u003e (2022-11-10)\u003c/h1\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd static Response.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1670\"\u003e#1670\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/55a4870ae5f805d8ff9a890ea2c652c9977e048e\"\u003e55a4870\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.10\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.9...v3.2.10\"\u003e3.2.10\u003c/a\u003e (2022-07-31)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDoS referrer (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1611\"\u003e#1611\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d\"\u003e2880238\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.9\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.8...v3.2.9\"\u003e3.2.9\u003c/a\u003e (2022-07-18)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHeaders:\u003c/strong\u003e don't forward secure headers on protocol change (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1599\"\u003e#1599\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7\"\u003ee87b093\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.8\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.7...v3.2.8\"\u003e3.2.8\u003c/a\u003e (2022-07-12)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003epossibly flaky test (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1523\"\u003e#1523\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/11b703361134340a8361f591d6e3a0bcf6a261fa\"\u003e11b7033\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e\u003ccode\u003e8b3320d\u003c/code\u003e\u003c/a\u003e fix: Remove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e\u003ccode\u003e7b86e94\u003c/code\u003e\u003c/a\u003e fix: release \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8ced5b941cf36d0d7e0c1017aa2a4abcb29ecd89\"\u003e\u003ccode\u003e8ced5b9\u003c/code\u003e\u003c/a\u003e docs: readme - non ESM example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1707\"\u003e#1707\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/71e376b0ca899a30bbda4d45f97ea87502956a62\"\u003e\u003ccode\u003e71e376b\u003c/code\u003e\u003c/a\u003e ci(release): use latest Node LTS (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1697\"\u003e#1697\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e093030b4a6625405a331ddf48bcfd82c079f43d\"\u003e\u003ccode\u003ee093030\u003c/code\u003e\u003c/a\u003e Allow URL class object as an argument for fetch() (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/55a4870ae5f805d8ff9a890ea2c652c9977e048e\"\u003e\u003ccode\u003e55a4870\u003c/code\u003e\u003c/a\u003e feat: add static Response.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1670\"\u003e#1670\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/c071406e193cce13959999982584ff27198e9e4a\"\u003e\u003ccode\u003ec071406\u003c/code\u003e\u003c/a\u003e (1138) - Fixed HTTPResponseError with correct constructor and usage (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1666\"\u003e#1666\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/6f72caa401a8ec574a22058431599ef47c222770\"\u003e\u003ccode\u003e6f72caa\u003c/code\u003e\u003c/a\u003e docs: fix missing comma in example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1623\"\u003e#1623\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d\"\u003e\u003ccode\u003e2880238\u003c/code\u003e\u003c/a\u003e fix: ReDoS referrer (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1611\"\u003e#1611\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7\"\u003e\u003ccode\u003ee87b093\u003c/code\u003e\u003c/a\u003e fix(Headers): don't forward secure headers on protocol change (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1599\"\u003e#1599\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v2.7.0...v3.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=node-fetch\u0026package-manager=npm_and_yarn\u0026previous-version=2.7.0\u0026new-version=3.3.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/Zane857/test/pull/1","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Zane857%2Ftest/issues/1","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1/packages"}},{"old_version":"3.3.0","new_version":"3.3.2","update_type":"patch","path":null,"pr_created_at":"2026-06-10T19:43:28.000Z","version_change":"3.3.0 → 3.3.2","issue":{"uuid":"4634429526","node_id":"PR_kwDOIkFcGs7lA09Z","number":288,"state":"open","title":"build(deps-dev): bump node-fetch from 3.3.0 to 3.3.2","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-06-10T19:43:28.000Z","updated_at":"2026-06-10T19:45:59.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps-dev)","packages":[{"name":"node-fetch","old_version":"3.3.0","new_version":"3.3.2","repository_url":"https://github.com/node-fetch/node-fetch"}],"path":null,"ecosystem":"npm"},"body":"Bumps [node-fetch](https://github.com/node-fetch/node-fetch) from 3.3.0 to 3.3.2.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-fetch/node-fetch/releases\"\u003enode-fetch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.3.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.1...v3.3.2\"\u003e3.3.2\u003c/a\u003e (2023-07-25)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e8b3320d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1735\"\u003e#1735\u003c/a\u003e \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1473\"\u003e#1473\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.0...v3.3.1\"\u003e3.3.1\u003c/a\u003e (2023-03-11)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erelease \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e7b86e94\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e\u003ccode\u003e8b3320d\u003c/code\u003e\u003c/a\u003e fix: Remove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e\u003ccode\u003e7b86e94\u003c/code\u003e\u003c/a\u003e fix: release \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8ced5b941cf36d0d7e0c1017aa2a4abcb29ecd89\"\u003e\u003ccode\u003e8ced5b9\u003c/code\u003e\u003c/a\u003e docs: readme - non ESM example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1707\"\u003e#1707\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/71e376b0ca899a30bbda4d45f97ea87502956a62\"\u003e\u003ccode\u003e71e376b\u003c/code\u003e\u003c/a\u003e ci(release): use latest Node LTS (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1697\"\u003e#1697\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e093030b4a6625405a331ddf48bcfd82c079f43d\"\u003e\u003ccode\u003ee093030\u003c/code\u003e\u003c/a\u003e Allow URL class object as an argument for fetch() (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.0...v3.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=node-fetch\u0026package-manager=npm_and_yarn\u0026previous-version=3.3.0\u0026new-version=3.3.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/ilham1012/ecgbrin/pull/288","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/ilham1012%2Fecgbrin/issues/288","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/288/packages"}},{"old_version":"2.7.0","new_version":"3.3.2","update_type":"major","path":"/it/typescript","pr_created_at":"2026-06-08T01:52:50.000Z","version_change":"2.7.0 → 3.3.2","issue":{"uuid":"4609474376","node_id":"PR_kwDOPiz4t87juhSC","number":37,"state":"open","title":"build(deps): Bump node-fetch from 2.7.0 to 3.3.2 in /it/typescript","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-06-08T01:52:50.000Z","updated_at":"2026-06-08T03:46:40.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): Bump","packages":[{"name":"node-fetch","old_version":"2.7.0","new_version":"3.3.2","repository_url":"https://github.com/node-fetch/node-fetch"}],"path":"/it/typescript","ecosystem":"npm"},"body":"Bumps [node-fetch](https://github.com/node-fetch/node-fetch) from 2.7.0 to 3.3.2.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-fetch/node-fetch/releases\"\u003enode-fetch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.3.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.1...v3.3.2\"\u003e3.3.2\u003c/a\u003e (2023-07-25)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e8b3320d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1735\"\u003e#1735\u003c/a\u003e \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1473\"\u003e#1473\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.0...v3.3.1\"\u003e3.3.1\u003c/a\u003e (2023-03-11)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erelease \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e7b86e94\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.0\u003c/h2\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.10...v3.3.0\"\u003e3.3.0\u003c/a\u003e (2022-11-10)\u003c/h1\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd static Response.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1670\"\u003e#1670\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/55a4870ae5f805d8ff9a890ea2c652c9977e048e\"\u003e55a4870\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.10\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.9...v3.2.10\"\u003e3.2.10\u003c/a\u003e (2022-07-31)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDoS referrer (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1611\"\u003e#1611\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d\"\u003e2880238\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.9\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.8...v3.2.9\"\u003e3.2.9\u003c/a\u003e (2022-07-18)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHeaders:\u003c/strong\u003e don't forward secure headers on protocol change (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1599\"\u003e#1599\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7\"\u003ee87b093\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.8\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.7...v3.2.8\"\u003e3.2.8\u003c/a\u003e (2022-07-12)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003epossibly flaky test (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1523\"\u003e#1523\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/11b703361134340a8361f591d6e3a0bcf6a261fa\"\u003e11b7033\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e\u003ccode\u003e8b3320d\u003c/code\u003e\u003c/a\u003e fix: Remove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e\u003ccode\u003e7b86e94\u003c/code\u003e\u003c/a\u003e fix: release \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8ced5b941cf36d0d7e0c1017aa2a4abcb29ecd89\"\u003e\u003ccode\u003e8ced5b9\u003c/code\u003e\u003c/a\u003e docs: readme - non ESM example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1707\"\u003e#1707\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/71e376b0ca899a30bbda4d45f97ea87502956a62\"\u003e\u003ccode\u003e71e376b\u003c/code\u003e\u003c/a\u003e ci(release): use latest Node LTS (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1697\"\u003e#1697\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e093030b4a6625405a331ddf48bcfd82c079f43d\"\u003e\u003ccode\u003ee093030\u003c/code\u003e\u003c/a\u003e Allow URL class object as an argument for fetch() (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/55a4870ae5f805d8ff9a890ea2c652c9977e048e\"\u003e\u003ccode\u003e55a4870\u003c/code\u003e\u003c/a\u003e feat: add static Response.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1670\"\u003e#1670\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/c071406e193cce13959999982584ff27198e9e4a\"\u003e\u003ccode\u003ec071406\u003c/code\u003e\u003c/a\u003e (1138) - Fixed HTTPResponseError with correct constructor and usage (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1666\"\u003e#1666\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/6f72caa401a8ec574a22058431599ef47c222770\"\u003e\u003ccode\u003e6f72caa\u003c/code\u003e\u003c/a\u003e docs: fix missing comma in example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1623\"\u003e#1623\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d\"\u003e\u003ccode\u003e2880238\u003c/code\u003e\u003c/a\u003e fix: ReDoS referrer (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1611\"\u003e#1611\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7\"\u003e\u003ccode\u003ee87b093\u003c/code\u003e\u003c/a\u003e fix(Headers): don't forward secure headers on protocol change (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1599\"\u003e#1599\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v2.7.0...v3.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n","html_url":"https://github.com/tabrezahmed51/microsoft_kiota_sdk_opensource_0118/pull/37","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/tabrezahmed51%2Fmicrosoft_kiota_sdk_opensource_0118/issues/37","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/37/packages"}},{"old_version":"2.6.1","new_version":"2.6.7","update_type":"patch","path":null,"pr_created_at":"2026-06-01T22:52:24.000Z","version_change":"2.6.1 → 2.6.7","issue":{"uuid":"4566955041","node_id":"PR_kwDOFbEd8s7hjwNW","number":2,"state":"open","title":"Bump the npm_and_yarn group across 1 directory with 3 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-06-01T22:52:24.000Z","updated_at":"2026-06-01T22:55:29.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"npm_and_yarn","update_count":3,"packages":[{"name":"node-fetch","old_version":"2.6.1","new_version":"2.6.7","repository_url":"https://github.com/node-fetch/node-fetch"},{"name":"brace-expansion","old_version":"1.1.11","new_version":"1.1.15","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"minimatch","old_version":"3.0.4","new_version":"3.1.5","repository_url":"https://github.com/isaacs/minimatch"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 3 updates in the / directory: [node-fetch](https://github.com/node-fetch/node-fetch), [brace-expansion](https://github.com/juliangruber/brace-expansion) and [minimatch](https://github.com/isaacs/minimatch).\n\nUpdates `node-fetch` from 2.6.1 to 2.6.7\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-fetch/node-fetch/releases\"\u003enode-fetch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.6.7\u003c/h2\u003e\n\u003ch1\u003eSecurity patch release\u003c/h1\u003e\n\u003cp\u003eRecommended to upgrade, to not leak sensitive cookie and authentication header information to 3th party host while a redirect occurred\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: don't forward secure headers to 3th party by \u003ca href=\"https://github.com/jimmywarting\"\u003e\u003ccode\u003e@​jimmywarting\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/pull/1453\"\u003enode-fetch/node-fetch#1453\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v2.6.6...v2.6.7\"\u003ehttps://github.com/node-fetch/node-fetch/compare/v2.6.6...v2.6.7\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.6.6\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(URL): prefer built in URL version when available and fallback to whatwg by \u003ca href=\"https://github.com/jimmywarting\"\u003e\u003ccode\u003e@​jimmywarting\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/pull/1352\"\u003enode-fetch/node-fetch#1352\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v2.6.5...v2.6.6\"\u003ehttps://github.com/node-fetch/node-fetch/compare/v2.6.5...v2.6.6\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.6.2\u003c/h2\u003e\n\u003cp\u003efixed main path in package.json\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/1ef4b560a17e644a02a3bfdea7631ffeee578b35\"\u003e\u003ccode\u003e1ef4b56\u003c/code\u003e\u003c/a\u003e backport of \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1449\"\u003e#1449\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1453\"\u003e#1453\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8fe5c4ea66b9b8187600e6d5ec9b1b6781f44009\"\u003e\u003ccode\u003e8fe5c4e\u003c/code\u003e\u003c/a\u003e 2.x: Specify encoding as an optional peer dependency in package.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1310\"\u003e#1310\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/f56b0c66d3dd2ef185436de1f2fd40f66bfea8f4\"\u003e\u003ccode\u003ef56b0c6\u003c/code\u003e\u003c/a\u003e fix(URL): prefer built in URL version when available and fallback to whatwg (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/b5417aea6a3275932283a200214522e6ab53f1ea\"\u003e\u003ccode\u003eb5417ae\u003c/code\u003e\u003c/a\u003e fix: import whatwg-url in a way compatible with ESM Node (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1303\"\u003e#1303\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/18193c5922c64046b922e18faf41821290535f06\"\u003e\u003ccode\u003e18193c5\u003c/code\u003e\u003c/a\u003e fix v2.6.3 that did not sending query params (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1301\"\u003e#1301\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/ace7536c955556be742d9910566738630cc3c2a6\"\u003e\u003ccode\u003eace7536\u003c/code\u003e\u003c/a\u003e fix: properly encode url with unicode characters (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1291\"\u003e#1291\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/152214ca2f6e2a5a17d71e4638114625d3be30c6\"\u003e\u003ccode\u003e152214c\u003c/code\u003e\u003c/a\u003e Fix(package.json): Corrected main file path in package.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1274\"\u003e#1274\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v2.6.1...v2.6.7\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~endless\"\u003eendless\u003c/a\u003e, a new releaser for node-fetch since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 1.1.15\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.15\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport v5.0.6 change to v1 (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/111\"\u003e#111\u003c/a\u003e)  0b09384\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.14...v1.1.15\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.14...v1.1.15\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.1.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 1.x  c460dbd\u003c/li\u003e\n\u003cli\u003efmt  ccb8ac6\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  c3c73c8\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/2203f4f4895eba16c4d408b4219ce1b8e5f6ff24\"\u003e\u003ccode\u003e2203f4f\u003c/code\u003e\u003c/a\u003e 1.1.15\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/0b0938410732370559704230724ca4a44d1b29fd\"\u003e\u003ccode\u003e0b09384\u003c/code\u003e\u003c/a\u003e Backport v5.0.6 change to v1 (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/111\"\u003e#111\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/10c05fcf3699b1a29ef5e611c011af3d3c97e6e3\"\u003e\u003ccode\u003e10c05fc\u003c/code\u003e\u003c/a\u003e 1.1.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/1afa1b22ead12f6a7a02f25bf0f7d64c2439b007\"\u003e\u003ccode\u003e1afa1b2\u003c/code\u003e\u003c/a\u003e Add opt-in { max } mitigation to v1 legacy line (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/103\"\u003e#103\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/2fbb6a2aa0f984bb2fb5f60252ca6cba3e1368ec\"\u003e\u003ccode\u003e2fbb6a2\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;Backport fix for GHSA-7h2j-956f-4vf2 to v1 (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/101\"\u003e#101\u003c/a\u003e)\u0026quot; (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/102\"\u003e#102\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/0d7652e3093d3273151729812f9b0b79a17ecba6\"\u003e\u003ccode\u003e0d7652e\u003c/code\u003e\u003c/a\u003e Backport fix for GHSA-7h2j-956f-4vf2 to v1 (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/101\"\u003e#101\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/6c353caf23beb9644f858eb3fe38d43a68b82898\"\u003e\u003ccode\u003e6c353ca\u003c/code\u003e\u003c/a\u003e 1.1.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/7fd684f89fdde3549563d0a6522226a9189472a2\"\u003e\u003ccode\u003e7fd684f\u003c/code\u003e\u003c/a\u003e Backport fix for GHSA-f886-m6hf-6m8v (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/95\"\u003e#95\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/44f33b47c5c6a965d507421af43e86cf5971d711\"\u003e\u003ccode\u003e44f33b4\u003c/code\u003e\u003c/a\u003e 1.1.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c460dbd68e428d147b2080622d8ce126c7a08570\"\u003e\u003ccode\u003ec460dbd\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 1.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.15\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `minimatch` from 3.0.4 to 3.1.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/7bba97888a27a6162983056bcce2a6e28f668712\"\u003e\u003ccode\u003e7bba978\u003c/code\u003e\u003c/a\u003e 3.1.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/bd259425b2ca17b42897997f93e890314155522d\"\u003e\u003ccode\u003ebd25942\u003c/code\u003e\u003c/a\u003e docs: add warning about ReDoS\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/1a9c27c75725474dbde57db2995b6281b267756d\"\u003e\u003ccode\u003e1a9c27c\u003c/code\u003e\u003c/a\u003e fix partial matching of globstar patterns\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/1a2e084af579731af66c221214e3ca8222c9bf23\"\u003e\u003ccode\u003e1a2e084\u003c/code\u003e\u003c/a\u003e 3.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/ae24656237c3d58067442f790ce17eff84463a47\"\u003e\u003ccode\u003eae24656\u003c/code\u003e\u003c/a\u003e update lockfile\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/b1003749228b2a79e1f237963a0d559ef7a0941e\"\u003e\u003ccode\u003eb100374\u003c/code\u003e\u003c/a\u003e limit recursion for **, improve perf considerably\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/26ffeaa091b9f660833e23f42e07165b33e85c13\"\u003e\u003ccode\u003e26ffeaa\u003c/code\u003e\u003c/a\u003e lockfile update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/9eca892a4e5dbb20534f9f30483b85cdeee6c2eb\"\u003e\u003ccode\u003e9eca892\u003c/code\u003e\u003c/a\u003e lock node version to 14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/00c323b188b704e5d4bc534ecec2268cfa70a32a\"\u003e\u003ccode\u003e00c323b\u003c/code\u003e\u003c/a\u003e 3.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/30486b2048929264f44d18822891cfffa02af78b\"\u003e\u003ccode\u003e30486b2\u003c/code\u003e\u003c/a\u003e update CI matrix and actions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/minimatch/compare/v3.0.4...v3.1.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/geolonia/tile-gsi-dem/network/alerts).\n\n\u003c/details\u003e\n\n\u003c!-- This is an auto-generated comment: release notes by coderabbit.ai --\u003e\n\n## Summary by CodeRabbit\n\n## リリースノート\n\n* **Chores**\n  * 依存パッケージのバージョンを更新しました。これにより、アプリケーションの安定性と互換性が向上します。\n\n\u003c!-- end of auto-generated comment: release notes by coderabbit.ai --\u003e","html_url":"https://github.com/geolonia/tile-gsi-dem/pull/2","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/geolonia%2Ftile-gsi-dem/issues/2","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2/packages"}},{"old_version":"1.7.1","new_version":"2.6.7","update_type":"major","path":null,"pr_created_at":"2026-05-26T23:37:08.000Z","version_change":"1.7.1 → 2.6.7","issue":{"uuid":"4528246178","node_id":"PR_kwDOSFg5bs7fnQF2","number":5,"state":"closed","title":"Bump the npm_and_yarn group across 5 directories with 9 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-28T01:14:45.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-26T23:37:08.000Z","updated_at":"2026-05-28T01:14:47.000Z","time_to_close":92257,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"npm_and_yarn","update_count":9,"packages":[{"name":"yeoman-environment","old_version":"4.4.3","new_version":"6.0.1","repository_url":"https://github.com/yeoman/environment"},{"name":"form-data","old_version":"2.3.3","new_version":"2.5.5","repository_url":"https://github.com/form-data/form-data"},{"name":"aws-sdk","old_version":"2.1692.0","new_version":"2.1693.0","repository_url":"https://github.com/aws/aws-sdk-js"},{"name":"@xmldom/xmldom","old_version":"0.8.11","new_version":"0.8.13","repository_url":"https://github.com/xmldom/xmldom"},{"name":"ip-address","old_version":"10.1.0","new_version":"10.2.0"},{"name":"tar","old_version":"6.2.1","new_version":"7.5.15"},{"name":"form-data","old_version":"4.0.0","new_version":"4.0.4","repository_url":"https://github.com/form-data/form-data"},{"name":"lodash","old_version":"4.17.23","new_version":"4.18.1","repository_url":"https://github.com/lodash/lodash"},{"name":"node-fetch","old_version":"1.7.1","new_version":"2.6.7","repository_url":"https://github.com/node-fetch/node-fetch"},{"name":"async","old_version":"2.4.1","new_version":"2.6.4","repository_url":"https://github.com/caolan/async"},{"name":"yeoman-environment","old_version":"4.4.3","new_version":"6.0.1","repository_url":"https://github.com/yeoman/environment"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 4 updates in the / directory: [yeoman-environment](https://github.com/yeoman/environment), [form-data](https://github.com/form-data/form-data), [aws-sdk](https://github.com/aws/aws-sdk-js) and [@xmldom/xmldom](https://github.com/xmldom/xmldom).\nBumps the npm_and_yarn group with 1 update in the /example-apps/files directory: [form-data](https://github.com/form-data/form-data).\nBumps the npm_and_yarn group with 3 updates in the /example-apps/onedrive directory: [lodash](https://github.com/lodash/lodash), [node-fetch](https://github.com/node-fetch/node-fetch) and [async](https://github.com/caolan/async).\nBumps the npm_and_yarn group with 1 update in the /packages/cli directory: [yeoman-environment](https://github.com/yeoman/environment).\nBumps the npm_and_yarn group with 2 updates in the /packages/legacy-scripting-runner directory: [form-data](https://github.com/form-data/form-data) and [@xmldom/xmldom](https://github.com/xmldom/xmldom).\n\nUpdates `yeoman-environment` from 4.4.3 to 6.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/yeoman/environment/releases\"\u003eyeoman-environment's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: ask before installing local packages by \u003ca href=\"https://github.com/mshima\"\u003e\u003ccode\u003e@​mshima\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yeoman/environment/pull/753\"\u003eyeoman/environment#753\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(release): bump version to v6.0.1 by \u003ca href=\"https://github.com/github-actions\"\u003e\u003ccode\u003e@​github-actions\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/yeoman/environment/pull/757\"\u003eyeoman/environment#757\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/yeoman/environment/compare/v6.0.0...v6.0.1\"\u003ehttps://github.com/yeoman/environment/compare/v6.0.0...v6.0.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch3\u003e🚀 yeoman-environment v6 – Release Notes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSwitch to \u003ccode\u003e@​yeoman/adapter\u003c/code\u003e v4 (and inquirer v13) by default.\nSome behavior changes may happen.\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/yeoman/environment/compare/v5.1.3...v6.0.0\"\u003ehttps://github.com/yeoman/environment/compare/v5.1.3...v6.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.1.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: only fallback to import if requiring fails with esm/async error (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/716\"\u003e#716\u003c/a\u003e)  e4fb745\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/yeoman/environment/compare/v5.1.2...v5.1.3\"\u003ehttps://github.com/yeoman/environment/compare/v5.1.2...v5.1.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.1.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: use globbySync to resolve PNPM global node_modules paths (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/692\"\u003e#692\u003c/a\u003e)  4317fef\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/yeoman/environment/compare/v5.1.1...v5.1.2\"\u003ehttps://github.com/yeoman/environment/compare/v5.1.1...v5.1.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.1.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: lookup for generators in pnpm global folder (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/680\"\u003e#680\u003c/a\u003e)  2fcd028\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/yeoman/environment/compare/v5.1.0...v5.1.1\"\u003ehttps://github.com/yeoman/environment/compare/v5.1.0...v5.1.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.1.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump globby from 15.0.0 to 16.0.0 (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/676\"\u003e#676\u003c/a\u003e)  cd962ec\u003c/li\u003e\n\u003cli\u003echore(deps): bump \u003ccode\u003e@​yeoman/conflicter\u003c/code\u003e from 3.0.0 to 4.0.0 (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/677\"\u003e#677\u003c/a\u003e)  04a104b\u003c/li\u003e\n\u003cli\u003echore(deps): bump globby from 14.1.0 to 15.0.0 (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/662\"\u003e#662\u003c/a\u003e)  5d39217\u003c/li\u003e\n\u003cli\u003efeat: add generatorLookupOptions option (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/674\"\u003e#674\u003c/a\u003e)  a301ab8\u003c/li\u003e\n\u003cli\u003efix: expose missing types (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/673\"\u003e#673\u003c/a\u003e)  4de747f\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/yeoman/environment/compare/v5.0.0...v5.1.0\"\u003ehttps://github.com/yeoman/environment/compare/v5.0.0...v5.1.0\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/yeoman/environment/blob/main/CHANGELOG.md\"\u003eyeoman-environment's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/yeoman/environment/compare/v6.0.1...v6.1.0\"\u003e6.1.0\u003c/a\u003e (2026-04-29)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd support to ask customInstallTask (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/770\"\u003e#770\u003c/a\u003e) (\u003ca href=\"https://github.com/yeoman/environment/commit/136e4f49b2593bf3a45296c4a47dd9a282be4deb\"\u003e136e4f4\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump \u003ccode\u003e@​yeoman/namespace\u003c/code\u003e from 1.0.1 to 2.1.0 (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/766\"\u003e#766\u003c/a\u003e) (\u003ca href=\"https://github.com/yeoman/environment/commit/4a3ae84caaa70ae41cf8630d4907f144e3cec7a3\"\u003e4a3ae84\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eextract getFeaturesFromGenerator (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/769\"\u003e#769\u003c/a\u003e) (\u003ca href=\"https://github.com/yeoman/environment/commit/d244f0ca18f1f83ed18320a2eabdcc0f70cec780\"\u003ed244f0c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yeoman/environment/commit/a838fa6668dd34865c6f9b87455275672ee21b97\"\u003e\u003ccode\u003ea838fa6\u003c/code\u003e\u003c/a\u003e chore(release): bump version to v6.0.1 (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/757\"\u003e#757\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yeoman/environment/commit/d4227d858b8ce63de0eab918e8ca7fe52f1691dc\"\u003e\u003ccode\u003ed4227d8\u003c/code\u003e\u003c/a\u003e chore: workflow adjusts (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/756\"\u003e#756\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yeoman/environment/commit/6384bf26d1428d6cba75de79c2fea97ba7981477\"\u003e\u003ccode\u003e6384bf2\u003c/code\u003e\u003c/a\u003e chore: Remove npm caching in Node.js setup (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/755\"\u003e#755\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yeoman/environment/commit/efd8eab924bcfdf49f44666d9ba5993c15d83ab2\"\u003e\u003ccode\u003eefd8eab\u003c/code\u003e\u003c/a\u003e chore: update dependencies (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yeoman/environment/commit/78d2af7e60294784b8a8b3b3b5099c6874b6a1fa\"\u003e\u003ccode\u003e78d2af7\u003c/code\u003e\u003c/a\u003e fix: ask before installing local packages. (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yeoman/environment/commit/dccfd126c313afa2b33ea0c4cc39a2c242fedcd8\"\u003e\u003ccode\u003edccfd12\u003c/code\u003e\u003c/a\u003e chore: add publish workflow (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/752\"\u003e#752\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yeoman/environment/commit/1b2d34a79349eab20d2a551b223d18f5322e84bb\"\u003e\u003ccode\u003e1b2d34a\u003c/code\u003e\u003c/a\u003e chore: remove package-lock.json (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/751\"\u003e#751\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yeoman/environment/commit/32abbfaffc1d9849d040053984048da61e5f29e0\"\u003e\u003ccode\u003e32abbfa\u003c/code\u003e\u003c/a\u003e chore(deps): bump github/codeql-action from 4.32.6 to 4.35.1 (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/745\"\u003e#745\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yeoman/environment/commit/d092613b46147d419ba37894a9cc71fbdfa64211\"\u003e\u003ccode\u003ed092613\u003c/code\u003e\u003c/a\u003e chore(deps): bump picomatch (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/743\"\u003e#743\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yeoman/environment/commit/ec98f75639c8dac2e687af7b29942879946e2c18\"\u003e\u003ccode\u003eec98f75\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump flatted from 3.3.3 to 3.4.2 (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/740\"\u003e#740\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/yeoman/environment/compare/v4.4.3...v6.0.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for yeoman-environment since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `form-data` from 2.3.3 to 2.5.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/form-data/form-data/releases\"\u003eform-data's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.5.2\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eBuffer.from\u003c/code\u003e and \u003ccode\u003eBuffer.alloc\u003c/code\u003e require node 4+\u003c/li\u003e\n\u003cli\u003enpmignore temporary build files (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/532\"\u003e#532\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emove util.isArray to Array.isArray (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/564\"\u003e#564\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eTests\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emigrate from travis to GHA\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDev Improvements\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed error in the documentations as indicated in \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/439\"\u003e#439\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded remaining combined-stream options to typedef\u003c/li\u003e\n\u003cli\u003eBumped rimraf to 2.7.1 (dev-dep)\u003c/li\u003e\n\u003cli\u003eAdded constructor options to TypeScript defs\u003c/li\u003e\n\u003cli\u003eFixed error in callback signatures\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAdded Types\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded TS types\u003c/li\u003e\n\u003cli\u003eImproved documentation\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAdded getBuffer method\u003c/h2\u003e\n\u003cp\u003eUpdated test builds to support node10 and 12.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/form-data/form-data/blob/master/CHANGELOG.md\"\u003eform-data's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v2.5.4...v2.5.5\"\u003ev2.5.5\u003c/a\u003e - 2025-07-18\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[meta] actually ensure the readme backup isn’t published \u003ca href=\"https://github.com/form-data/form-data/commit/10626c0a9b78c7d3fcaa51772265015ee0afc25c\"\u003e\u003ccode\u003e10626c0\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] use proper dependency \u003ca href=\"https://github.com/form-data/form-data/commit/026abe5c5c0489d8a2ccb59d5cfd14fb63078377\"\u003e\u003ccode\u003e026abe5\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v2.5.3...v2.5.4\"\u003ev2.5.4\u003c/a\u003e - 2025-07-17\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eappend\u003c/code\u003e: avoid a crash on nullish values \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/577\"\u003e\u003ccode\u003e[#577](https://github.com/form-data/form-data/issues/577)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[eslint] update linting config \u003ca href=\"https://github.com/form-data/form-data/commit/8bf2492e0555d41ff58fa04c91593af998f87a3c\"\u003e\u003ccode\u003e8bf2492\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/b5101ad3d5f73cfd0143aae3735b92826fd731ea\"\u003e\u003ccode\u003eb5101ad\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] handle predict-v8-randomness failures in node \u0026lt; 17 and node \u0026gt; 23 \u003ca href=\"https://github.com/form-data/form-data/commit/0e93122358414942393d9c2dc434ae69e58be7c8\"\u003e\u003ccode\u003e0e93122\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] Switch to using \u003ccode\u003ecrypto\u003c/code\u003e random for boundary values \u003ca href=\"https://github.com/form-data/form-data/commit/b88316c94bb004323669cd3639dc8bb8262539eb\"\u003e\u003ccode\u003eb88316c\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] validate boundary type in \u003ccode\u003esetBoundary()\u003c/code\u003e method \u003ca href=\"https://github.com/form-data/form-data/commit/131ae5efa30b9c608add4faef3befb38aa2e1bf1\"\u003e\u003ccode\u003e131ae5e\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] Switch to newer v8 prediction library; enable node 24 testing \u003ca href=\"https://github.com/form-data/form-data/commit/c97cfbed9eb6d2d4b5d53090f69ded4bf9fd8a21\"\u003e\u003ccode\u003ec97cfbe\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Refactor] use \u003ccode\u003ehasown\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/97ac9c208be0b83faeee04bb3faef1ed3474ee4c\"\u003e\u003ccode\u003e97ac9c2\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] remove local commit hooks \u003ca href=\"https://github.com/form-data/form-data/commit/be99d4eea5ce47139c23c1f0914596194019d7fb\"\u003e\u003ccode\u003ebe99d4e\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] remove unused deps \u003ca href=\"https://github.com/form-data/form-data/commit/ddbc89b6d6d64f730bcb27cb33b7544068466a05\"\u003e\u003ccode\u003eddbc89b\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix scripts to use prepublishOnly \u003ca href=\"https://github.com/form-data/form-data/commit/e351a97e9f6c57c74ffd01625e83b09de805d08a\"\u003e\u003ccode\u003ee351a97\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] remove unused script \u003ca href=\"https://github.com/form-data/form-data/commit/8f233664842da5bd605ce85541defc713d1d1e0a\"\u003e\u003ccode\u003e8f23366\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] add missing peer dep \u003ca href=\"https://github.com/form-data/form-data/commit/02ff026fda71f9943cfdd5754727c628adb8d135\"\u003e\u003ccode\u003e02ff026\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix readme capitalization \u003ca href=\"https://github.com/form-data/form-data/commit/2fd5f61ebfb526cd015fb8e7b8b8c1add4a38872\"\u003e\u003ccode\u003e2fd5f61\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v2.5.2...v2.5.3\"\u003ev2.5.3\u003c/a\u003e - 2025-02-14\u003c/h2\u003e\n\u003ch3\u003eMerged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/573\"\u003e\u003ccode\u003e[#573](https://github.com/form-data/form-data/issues/573)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/573\"\u003e#573\u003c/a\u003e) \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Refactor] use \u003ccode\u003eObject.prototype.hasOwnProperty.call\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/6e682d4bd41de7e80de41e3c4ee10f23fcc3dd00\"\u003e\u003ccode\u003e6e682d4\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003e@types/node\u003c/code\u003e, \u003ccode\u003ebrowserify\u003c/code\u003e, \u003ccode\u003ecoveralls\u003c/code\u003e, \u003ccode\u003eeslint\u003c/code\u003e, \u003ccode\u003eformidable\u003c/code\u003e, \u003ccode\u003ein-publish\u003c/code\u003e, \u003ccode\u003ephantomjs-prebuilt\u003c/code\u003e, \u003ccode\u003epkgfiles\u003c/code\u003e, \u003ccode\u003epre-commit\u003c/code\u003e, \u003ccode\u003erequest\u003c/code\u003e, \u003ccode\u003etape\u003c/code\u003e, \u003ccode\u003etypescript\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/819f6b7a543306a891fca37c3a06d0ff4a734422\"\u003e\u003ccode\u003e819f6b7\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOnly apps should have lockfiles \u003ca href=\"https://github.com/form-data/form-data/commit/b170ee2b22b4c695c363b811c0c553d2fb1bbd79\"\u003e\u003ccode\u003eb170ee2\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Deps] update \u003ccode\u003ecombined-stream\u003c/code\u003e, \u003ccode\u003emime-types\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/6b1ca1dc7362a1b1c3a99a885516cca4b7eb817f\"\u003e\u003ccode\u003e6b1ca1d\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBumped version 2.5.3 \u003ca href=\"https://github.com/form-data/form-data/commit/9457283e1dce6122adc908fdd7442cfc54cabe7a\"\u003e\u003ccode\u003e9457283\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] pin \u003ccode\u003erequest\u003c/code\u003e which via \u003ccode\u003etough-cookie\u003c/code\u003e ^2.4 depends on \u003ccode\u003epsl\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/9dbe192be3db215eac4d9c0b980470a5c2c030c6\"\u003e\u003ccode\u003e9dbe192\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v2.5.1...v2.5.2\"\u003ev2.5.2\u003c/a\u003e - 2024-10-10\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/form-data/form-data/commits/v2.5.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~ljharb\"\u003eljharb\u003c/a\u003e, a new releaser for form-data since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version modifies \u003ccode\u003eprepublish\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `aws-sdk` from 2.1692.0 to 2.1693.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-sdk-js/releases\"\u003eaws-sdk's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease v2.1693.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/9d3c66eca8c4416a9d347d0703f27b65775d65ef\"\u003e\u003ccode\u003e9d3c66e\u003c/code\u003e\u003c/a\u003e Updates SDK to v2.1693.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/c039567cee58b50a44f53f30318fa21f36c42ecc\"\u003e\u003ccode\u003ec039567\u003c/code\u003e\u003c/a\u003e test(client-elastictranscoder): remove feature test (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4711\"\u003e#4711\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/f5b1a6f0aebb477204d979091d654649f29ad9ce\"\u003e\u003ccode\u003ef5b1a6f\u003c/code\u003e\u003c/a\u003e docs: end-of-support (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4706\"\u003e#4706\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/657d6feb00447c8be1d65158a0ecc0585b70ed60\"\u003e\u003ccode\u003e657d6fe\u003c/code\u003e\u003c/a\u003e chore: use ssh private key for git sync (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4705\"\u003e#4705\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/c12585baeb9197158cd50975af66856617732aea\"\u003e\u003ccode\u003ec12585b\u003c/code\u003e\u003c/a\u003e chore: remove regression label management (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4699\"\u003e#4699\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/aws/aws-sdk-js/compare/v2.1692.0...v2.1693.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@xmldom/xmldom` from 0.8.11 to 0.8.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/xmldom/xmldom/releases\"\u003e@​xmldom/xmldom's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.8.13\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.12...0.8.13\"\u003eCommits\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity: \u003ccode\u003eXMLSerializer.serializeToString()\u003c/code\u003e (and \u003ccode\u003eNode.toString()\u003c/code\u003e, \u003ccode\u003eNodeList.toString()\u003c/code\u003e) now accept a \u003ccode\u003erequireWellFormed\u003c/code\u003e option (fourth argument, after \u003ccode\u003eisHtml\u003c/code\u003e and \u003ccode\u003enodeFilter\u003c/code\u003e). When \u003ccode\u003e{ requireWellFormed: true }\u003c/code\u003e is passed, the serializer throws \u003ccode\u003eInvalidStateError\u003c/code\u003e for injection-prone node content, preventing XML injection via attacker-controlled node data. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-j759-j44w-7fr8\"\u003e\u003ccode\u003eGHSA-j759-j44w-7fr8\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-x6wf-f3px-wcqx\"\u003e\u003ccode\u003eGHSA-x6wf-f3px-wcqx\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-f6ww-3ggp-fr8h\"\u003e\u003ccode\u003eGHSA-f6ww-3ggp-fr8h\u003c/code\u003e\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003eComment: throws when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e--\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eProcessingInstruction: throws when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e?\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eDocumentType: throws when \u003ccode\u003epublicId\u003c/code\u003e fails \u003ccode\u003ePubidLiteral\u003c/code\u003e, \u003ccode\u003esystemId\u003c/code\u003e fails \u003ccode\u003eSystemLiteral\u003c/code\u003e, or \u003ccode\u003einternalSubset\u003c/code\u003e contains \u003ccode\u003e]\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eSecurity: DOM traversal operations (\u003ccode\u003eXMLSerializer.serializeToString()\u003c/code\u003e, \u003ccode\u003eNode.prototype.normalize()\u003c/code\u003e, \u003ccode\u003eNode.prototype.cloneNode(true)\u003c/code\u003e, \u003ccode\u003eDocument.prototype.importNode(node, true)\u003c/code\u003e, \u003ccode\u003enode.textContent\u003c/code\u003e getter, \u003ccode\u003egetElementsByTagName()\u003c/code\u003e / \u003ccode\u003egetElementsByTagNameNS()\u003c/code\u003e / \u003ccode\u003egetElementsByClassName()\u003c/code\u003e / \u003ccode\u003egetElementById()\u003c/code\u003e) are now iterative. Previously, deeply nested DOM trees would exhaust the JavaScript call stack and throw an unrecoverable \u003ccode\u003eRangeError\u003c/code\u003e. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-2v35-w6hq-6mfw\"\u003e\u003ccode\u003eGHSA-2v35-w6hq-6mfw\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThank you,\n\u003ca href=\"https://github.com/Jvr2022\"\u003e\u003ccode\u003e@​Jvr2022\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/praveen-kv\"\u003e\u003ccode\u003e@​praveen-kv\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/decsecre583\"\u003e\u003ccode\u003e@​decsecre583\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/tlsbollei\"\u003e\u003ccode\u003e@​tlsbollei\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/KarimTantawey\"\u003e\u003ccode\u003e@​KarimTantawey\u003c/code\u003e\u003c/a\u003e,\nfor your contributions\u003c/p\u003e\n\u003ch2\u003e0.8.12\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.11...0.8.12\"\u003eCommits\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003epreserve trailing whitespace in ProcessingInstruction data \u003ca href=\"https://redirect.github.com/xmldom/xmldom/pull/962\"\u003e\u003ccode\u003e[#962](https://github.com/xmldom/xmldom/issues/962)\u003c/code\u003e\u003c/a\u003e / \u003ca href=\"https://redirect.github.com/xmldom/xmldom/issues/42\"\u003e\u003ccode\u003e[#42](https://github.com/xmldom/xmldom/issues/42)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSecurity: \u003ccode\u003ecreateCDATASection\u003c/code\u003e now throws \u003ccode\u003eInvalidCharacterError\u003c/code\u003e when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e, as required by the \u003ca href=\"https://dom.spec.whatwg.org/#dom-document-createcdatasection\"\u003eWHATWG DOM spec\u003c/a\u003e. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-wh4c-j3r5-mjhp\"\u003e\u003ccode\u003eGHSA-wh4c-j3r5-mjhp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSecurity: \u003ccode\u003eXMLSerializer\u003c/code\u003e now splits CDATASection nodes whose data contains \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e into adjacent CDATA sections at serialization time, preventing XML injection via mutation methods (\u003ccode\u003eappendData\u003c/code\u003e, \u003ccode\u003ereplaceData\u003c/code\u003e, \u003ccode\u003e.data =\u003c/code\u003e, \u003ccode\u003e.textContent =\u003c/code\u003e). \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-wh4c-j3r5-mjhp\"\u003e\u003ccode\u003eGHSA-wh4c-j3r5-mjhp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eCode that passes a string containing \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e to \u003ccode\u003ecreateCDATASection\u003c/code\u003e and relied on the previously unsafe behavior will now receive \u003ccode\u003eInvalidCharacterError\u003c/code\u003e. Use a mutation method such as \u003ccode\u003eappendData\u003c/code\u003e if you intentionally need \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e in a CDATASection node's data.\u003c/p\u003e\n\u003cp\u003eThank you,\n\u003ca href=\"https://github.com/thesmartshadow\"\u003e\u003ccode\u003e@​thesmartshadow\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/stevenobiajulu\"\u003e\u003ccode\u003e@​stevenobiajulu\u003c/code\u003e\u003c/a\u003e,\nfor your contributions\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/xmldom/xmldom/discussions/357\"\u003ehttps://github.com/xmldom/xmldom/discussions/357\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/xmldom/xmldom/blob/master/CHANGELOG.md\"\u003e@​xmldom/xmldom's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.12...0.8.13\"\u003e0.8.13\u003c/a\u003e\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity: \u003ccode\u003eXMLSerializer.serializeToString()\u003c/code\u003e (and \u003ccode\u003eNode.toString()\u003c/code\u003e, \u003ccode\u003eNodeList.toString()\u003c/code\u003e) now accept a \u003ccode\u003erequireWellFormed\u003c/code\u003e option (fourth argument, after \u003ccode\u003eisHtml\u003c/code\u003e and \u003ccode\u003enodeFilter\u003c/code\u003e). When \u003ccode\u003e{ requireWellFormed: true }\u003c/code\u003e is passed, the serializer throws \u003ccode\u003eInvalidStateError\u003c/code\u003e for injection-prone node content, preventing XML injection via attacker-controlled node data. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-j759-j44w-7fr8\"\u003e\u003ccode\u003eGHSA-j759-j44w-7fr8\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-x6wf-f3px-wcqx\"\u003e\u003ccode\u003eGHSA-x6wf-f3px-wcqx\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-f6ww-3ggp-fr8h\"\u003e\u003ccode\u003eGHSA-f6ww-3ggp-fr8h\u003c/code\u003e\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003eComment: throws when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e--\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eProcessingInstruction: throws when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e?\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eDocumentType: throws when \u003ccode\u003epublicId\u003c/code\u003e fails \u003ccode\u003ePubidLiteral\u003c/code\u003e, \u003ccode\u003esystemId\u003c/code\u003e fails \u003ccode\u003eSystemLiteral\u003c/code\u003e, or \u003ccode\u003einternalSubset\u003c/code\u003e contains \u003ccode\u003e]\u0026gt;\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eSecurity: DOM traversal operations (\u003ccode\u003eXMLSerializer.serializeToString()\u003c/code\u003e, \u003ccode\u003eNode.prototype.normalize()\u003c/code\u003e, \u003ccode\u003eNode.prototype.cloneNode(true)\u003c/code\u003e, \u003ccode\u003eDocument.prototype.importNode(node, true)\u003c/code\u003e, \u003ccode\u003enode.textContent\u003c/code\u003e getter, \u003ccode\u003egetElementsByTagName()\u003c/code\u003e / \u003ccode\u003egetElementsByTagNameNS()\u003c/code\u003e / \u003ccode\u003egetElementsByClassName()\u003c/code\u003e / \u003ccode\u003egetElementById()\u003c/code\u003e) are now iterative. Previously, deeply nested DOM trees would exhaust the JavaScript call stack and throw an unrecoverable \u003ccode\u003eRangeError\u003c/code\u003e. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-2v35-w6hq-6mfw\"\u003e\u003ccode\u003eGHSA-2v35-w6hq-6mfw\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThank you,\n\u003ca href=\"https://github.com/Jvr2022\"\u003e\u003ccode\u003e@​Jvr2022\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/praveen-kv\"\u003e\u003ccode\u003e@​praveen-kv\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/decsecre583\"\u003e\u003ccode\u003e@​decsecre583\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/tlsbollei\"\u003e\u003ccode\u003e@​tlsbollei\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/KarimTantawey\"\u003e\u003ccode\u003e@​KarimTantawey\u003c/code\u003e\u003c/a\u003e,\nfor your contributions\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.9.8...0.9.9\"\u003e0.9.9\u003c/a\u003e\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimplement \u003ccode\u003eParentNode.children\u003c/code\u003e getter \u003ca href=\"https://redirect.github.com/xmldom/xmldom/pull/960\"\u003e\u003ccode\u003e[#960](https://github.com/xmldom/xmldom/issues/960)\u003c/code\u003e\u003c/a\u003e / \u003ca href=\"https://redirect.github.com/xmldom/xmldom/issues/410\"\u003e\u003ccode\u003e[#410](https://github.com/xmldom/xmldom/issues/410)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity: \u003ccode\u003ecreateCDATASection\u003c/code\u003e now throws \u003ccode\u003eInvalidCharacterError\u003c/code\u003e when \u003ccode\u003edata\u003c/code\u003e contains \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e, as required by the \u003ca href=\"https://dom.spec.whatwg.org/#dom-document-createcdatasection\"\u003eWHATWG DOM spec\u003c/a\u003e. \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-wh4c-j3r5-mjhp\"\u003e\u003ccode\u003eGHSA-wh4c-j3r5-mjhp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSecurity: \u003ccode\u003eXMLSerializer\u003c/code\u003e now splits CDATASection nodes whose data contains \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e into adjacent CDATA sections at serialization time, preventing XML injection via mutation methods (\u003ccode\u003eappendData\u003c/code\u003e, \u003ccode\u003ereplaceData\u003c/code\u003e, \u003ccode\u003e.data =\u003c/code\u003e, \u003ccode\u003e.textContent =\u003c/code\u003e). \u003ca href=\"https://github.com/xmldom/xmldom/security/advisories/GHSA-wh4c-j3r5-mjhp\"\u003e\u003ccode\u003eGHSA-wh4c-j3r5-mjhp\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecorrectly traverse ancestor chain in \u003ccode\u003eNode.contains\u003c/code\u003e \u003ca href=\"https://redirect.github.com/xmldom/xmldom/pull/931\"\u003e\u003ccode\u003e[#931](https://github.com/xmldom/xmldom/issues/931)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eCode that passes a string containing \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e to \u003ccode\u003ecreateCDATASection\u003c/code\u003e and relied on the previously unsafe behavior will now receive \u003ccode\u003eInvalidCharacterError\u003c/code\u003e. Use a mutation method such as \u003ccode\u003eappendData\u003c/code\u003e if you intentionally need \u003ccode\u003e\u0026quot;]]\u0026gt;\u0026quot;\u003c/code\u003e in a CDATASection node's data.\u003c/p\u003e\n\u003ch3\u003eChore\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdated dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThank you,\n\u003ca href=\"https://github.com/stevenobiajulu\"\u003e\u003ccode\u003e@​stevenobiajulu\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/yoshi389111\"\u003e\u003ccode\u003e@​yoshi389111\u003c/code\u003e\u003c/a\u003e,\n\u003ca href=\"https://github.com/thesmartshadow\"\u003e\u003ccode\u003e@​thesmartshadow\u003c/code\u003e\u003c/a\u003e,\nfor your contributions\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.11...0.8.12\"\u003e0.8.12\u003c/a\u003e\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003epreserve trailing whitespace in ProcessingInstruction data \u003ca href=\"https://redirect.github.com/xmldom/xmldom/pull/962\"\u003e\u003ccode\u003e[#962](https://github.com/xmldom/xmldom/issues/962)\u003c/code\u003e\u003c/a\u003e / \u003ca href=\"https://redirect.github.com/xmldom/xmldom/issues/42\"\u003e\u003ccode\u003e[#42](https://github.com/xmldom/xmldom/issues/42)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/e5c14802592685bb872c042c54c3f73758875c85\"\u003e\u003ccode\u003ee5c1480\u003c/code\u003e\u003c/a\u003e 0.8.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/9611e20d75f059dc377f806a8f7ee7d1eaeaeb7c\"\u003e\u003ccode\u003e9611e20\u003c/code\u003e\u003c/a\u003e style: drop unused import in test file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/dc4dff3d1d0b5a6b97c52fcc1823a735b8821e62\"\u003e\u003ccode\u003edc4dff3\u003c/code\u003e\u003c/a\u003e docs: add 0.8.13 changelog entry\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/842fa38deedd2d9a9c90d0ad54aa1be75d2a41bc\"\u003e\u003ccode\u003e842fa38\u003c/code\u003e\u003c/a\u003e fix: prevent stack overflow in normalize (GHSA-2v35-w6hq-6mfw)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/aeff69f5a32e8c1bd540683da9e10718f84f595c\"\u003e\u003ccode\u003eaeff69f\u003c/code\u003e\u003c/a\u003e test: add normalize behavioral coverage to node.test.js\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/cbdb0d7db8ae70760bd4cc181cb8f30bb0cd9d88\"\u003e\u003ccode\u003ecbdb0d7\u003c/code\u003e\u003c/a\u003e fix: make walkDOM iterative to prevent stack overflow (GHSA-2v35-w6hq-6mfw)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/0b543d31794dc198c86a0358574cb5dec29674c5\"\u003e\u003ccode\u003e0b543d3\u003c/code\u003e\u003c/a\u003e test: assert namespace declarations are isolated between siblings in serializ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/c007c51909587990c962cf3d5c2acadf4c897b87\"\u003e\u003ccode\u003ec007c51\u003c/code\u003e\u003c/a\u003e refactor: migrate serializeToString to walkDOM\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/2bb3899074820089d9e76ce28a5edfdacf425025\"\u003e\u003ccode\u003e2bb3899\u003c/code\u003e\u003c/a\u003e test: add serializeToString coverage for uncovered branches\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/xmldom/xmldom/commit/e69f38d0a58731152d300e8c8eb29506f5f488fe\"\u003e\u003ccode\u003ee69f38d\u003c/code\u003e\u003c/a\u003e refactor: migrate importNode to walkDOM\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/xmldom/xmldom/compare/0.8.11...0.8.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~karfau\"\u003ekarfau\u003c/a\u003e, a new releaser for \u003ccode\u003e@​xmldom/xmldom\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ip-address` from 10.1.0 to 10.2.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/beaugunderson/ip-address/commit/80fccaae984618f35dc941efab55cf2440ab37e8\"\u003e\u003ccode\u003e80fccaa\u003c/code\u003e\u003c/a\u003e 10.2.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/beaugunderson/ip-address/commit/abaeb4d817cab16d3a1a78abd249d1f116bd302e\"\u003e\u003ccode\u003eabaeb4d\u003c/code\u003e\u003c/a\u003e Type Address4.addressMinusSuffix as non-nilable (closes \u003ca href=\"https://redirect.github.com/beaugunderson/ip-address/issues/143\"\u003e#143\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/beaugunderson/ip-address/commit/2878c294e1216f9a0b69ad1d3c57a3790a7d5e8e\"\u003e\u003ccode\u003e2878c29\u003c/code\u003e\u003c/a\u003e Preserve subnet prefix through Address6.to4() (closes \u003ca href=\"https://redirect.github.com/beaugunderson/ip-address/issues/123\"\u003e#123\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/beaugunderson/ip-address/issues/203\"\u003e#203\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/beaugunderson/ip-address/commit/586666ee9e666464071761d7a453715f98b6caee\"\u003e\u003ccode\u003e586666e\u003c/code\u003e\u003c/a\u003e Reject trailing junk in Address6.fromURL (closes \u003ca href=\"https://redirect.github.com/beaugunderson/ip-address/issues/158\"\u003e#158\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/beaugunderson/ip-address/issues/202\"\u003e#202\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/beaugunderson/ip-address/commit/80bc76eddf63df38db60defd5004bea919adf7ac\"\u003e\u003ccode\u003e80bc76e\u003c/code\u003e\u003c/a\u003e Validate static factories instead of silently overflowing (\u003ca href=\"https://redirect.github.com/beaugunderson/ip-address/issues/201\"\u003e#201\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/beaugunderson/ip-address/commit/98927be9ef0c09f8ffcaf30b297405c9eff0a520\"\u003e\u003ccode\u003e98927be\u003c/code\u003e\u003c/a\u003e Clarify isValid() accepts CIDRs with host bits set (\u003ca href=\"https://redirect.github.com/beaugunderson/ip-address/issues/81\"\u003e#81\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/beaugunderson/ip-address/commit/a0eb0732d6ac3088daa1106f4933eade41fd364a\"\u003e\u003ccode\u003ea0eb073\u003c/code\u003e\u003c/a\u003e Fix getScope() and broaden getType() classification (closes \u003ca href=\"https://redirect.github.com/beaugunderson/ip-address/issues/122\"\u003e#122\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/beaugunderson/ip-address/issues/200\"\u003e#200\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/beaugunderson/ip-address/commit/ec52105c87179129b9f091e97581e87b007824c7\"\u003e\u003ccode\u003eec52105\u003c/code\u003e\u003c/a\u003e Add networkForm() for CIDR network-address strings (\u003ca href=\"https://redirect.github.com/beaugunderson/ip-address/issues/199\"\u003e#199\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/beaugunderson/ip-address/commit/a9443a72215b21a1e692be75cd3e18e8aa2262cb\"\u003e\u003ccode\u003ea9443a7\u003c/code\u003e\u003c/a\u003e Add isMapped4() predicate for IPv4-mapped IPv6 addresses (closes \u003ca href=\"https://redirect.github.com/beaugunderson/ip-address/issues/62\"\u003e#62\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/beaugunderson/ip-address/issues/198\"\u003e#198\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/beaugunderson/ip-address/commit/f01d74267ed39f84521157e5f199edade9809f1e\"\u003e\u003ccode\u003ef01d742\u003c/code\u003e\u003c/a\u003e Add address-property predicates (private, ULA, loopback, link-local, etc.) (#...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/beaugunderson/ip-address/compare/v10.1.0...v10.2.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 6.2.1 to 7.5.15\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md\"\u003etar's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e7.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003ezstd\u003c/code\u003e compression support.\u003c/li\u003e\n\u003cli\u003eConsistent TOCTOU behavior in sync t.list\u003c/li\u003e\n\u003cli\u003eOnly read from ustar block if not specified in Pax\u003c/li\u003e\n\u003cli\u003eFix sync tar.list when file size reduces while reading\u003c/li\u003e\n\u003cli\u003eSanitize absolute linkpaths properly\u003c/li\u003e\n\u003cli\u003ePrevent writing hardlink entries to the archive ahead of their\nfile target\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eonentry\u003c/code\u003e in favor of \u003ccode\u003eonReadEntry\u003c/code\u003e for clarity.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eonWriteEntry\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDRY the command definitions into a single \u003ccode\u003emakeCommand\u003c/code\u003e method,\nand update the type signatures to more appropriately infer the\nreturn type from the options and arguments provided.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate minipass to v7.1.0\u003c/li\u003e\n\u003cli\u003eUpdate the type definitions of \u003ccode\u003ewrite()\u003c/code\u003e and \u003ccode\u003eend()\u003c/code\u003e methods on\n\u003ccode\u003eUnpack\u003c/code\u003e and \u003ccode\u003eParser\u003c/code\u003e classes to be compatible with the\nNodeJS.WritableStream type in the latest versions of\n\u003ccode\u003e@types/node\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node \u0026lt;18\u003c/li\u003e\n\u003cli\u003eRewrite in TypeScript, provide ESM and CommonJS hybrid\ninterface\u003c/li\u003e\n\u003cli\u003eAdd tree-shake friendly exports, like \u003ccode\u003eimport('tar/create')\u003c/code\u003e\nand \u003ccode\u003eimport('tar/read-entry')\u003c/code\u003e to get individual functions or\nclasses.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003echmod\u003c/code\u003e option that defaults to false, and deprecate\n\u003ccode\u003enoChmod\u003c/code\u003e. That is, reverse the default option regarding\nexplicitly setting file system modes to match tar entry\nsettings.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eprocessUmask\u003c/code\u003e option to avoid having to call\n\u003ccode\u003eprocess.umask()\u003c/code\u003e when \u003ccode\u003echmod: true\u003c/code\u003e (or \u003ccode\u003enoChmod: false\u003c/code\u003e) is\nset.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/87cc309f13c21d598b0b833235d387a252455058\"\u003e\u003ccode\u003e87cc309\u003c/code\u003e\u003c/a\u003e 7.5.15\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/7aef486f0d21c10fd7790b16b1b28f04648cf334\"\u003e\u003ccode\u003e7aef486\u003c/code\u003e\u003c/a\u003e fix: regression in pending links detection\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/6244eb33846bbd407443f5d0e339bd8c91663cd6\"\u003e\u003ccode\u003e6244eb3\u003c/code\u003e\u003c/a\u003e 7.5.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/9704d8c6f639573775133cbbd541aba83cb46c9c\"\u003e\u003ccode\u003e9704d8c\u003c/code\u003e\u003c/a\u003e stricter protection against hardlinks preempting their targets\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/700734f9aeb113bcc5f1400d81b8be7d499e54a2\"\u003e\u003ccode\u003e700734f\u003c/code\u003e\u003c/a\u003e update workflows and deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/d6611ae951056addb77c6e11baf7bcc9d7648e46\"\u003e\u003ccode\u003ed6611ae\u003c/code\u003e\u003c/a\u003e 7.5.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/119c401f4f7efbeb112d28f9dfc9c489674c9a79\"\u003e\u003ccode\u003e119c401\u003c/code\u003e\u003c/a\u003e fix(extract): prevent raced symlink writes outside cwd\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/2a294d3fbb24c18dc80f31059f49dd9af15653fe\"\u003e\u003ccode\u003e2a294d3\u003c/code\u003e\u003c/a\u003e 7.5.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/01082a42c3256ca6054f9627911cce4dbfe00d92\"\u003e\u003ccode\u003e01082a4\u003c/code\u003e\u003c/a\u003e fix: reject top promise on floating addFilesAsync rejections\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/dd1c36ab7acff26e5a34935d17f27a45bb088db3\"\u003e\u003ccode\u003edd1c36a\u003c/code\u003e\u003c/a\u003e linting\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-tar/compare/v6.2.1...v7.5.15\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for tar since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `form-data` from 4.0.0 to 4.0.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/form-data/form-data/releases\"\u003eform-data's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.5.2\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eBuffer.from\u003c/code\u003e and \u003ccode\u003eBuffer.alloc\u003c/code\u003e require node 4+\u003c/li\u003e\n\u003cli\u003enpmignore temporary build files (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/532\"\u003e#532\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emove util.isArray to Array.isArray (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/564\"\u003e#564\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eTests\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emigrate from travis to GHA\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDev Improvements\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed error in the documentations as indicated in \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/439\"\u003e#439\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded remaining combined-stream options to typedef\u003c/li\u003e\n\u003cli\u003eBumped rimraf to 2.7.1 (dev-dep)\u003c/li\u003e\n\u003cli\u003eAdded constructor options to TypeScript defs\u003c/li\u003e\n\u003cli\u003eFixed error in callback signatures\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAdded Types\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded TS types\u003c/li\u003e\n\u003cli\u003eImproved documentation\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eAdded getBuffer method\u003c/h2\u003e\n\u003cp\u003eUpdated test builds to support node10 and 12.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/form-data/form-data/blob/master/CHANGELOG.md\"\u003eform-data's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v2.5.4...v2.5.5\"\u003ev2.5.5\u003c/a\u003e - 2025-07-18\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[meta] actually ensure the readme backup isn’t published \u003ca href=\"https://github.com/form-data/form-data/commit/10626c0a9b78c7d3fcaa51772265015ee0afc25c\"\u003e\u003ccode\u003e10626c0\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] use proper dependency \u003ca href=\"https://github.com/form-data/form-data/commit/026abe5c5c0489d8a2ccb59d5cfd14fb63078377\"\u003e\u003ccode\u003e026abe5\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v2.5.3...v2.5.4\"\u003ev2.5.4\u003c/a\u003e - 2025-07-17\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eappend\u003c/code\u003e: avoid a crash on nullish values \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/577\"\u003e\u003ccode\u003e[#577](https://github.com/form-data/form-data/issues/577)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[eslint] update linting config \u003ca href=\"https://github.com/form-data/form-data/commit/8bf2492e0555d41ff58fa04c91593af998f87a3c\"\u003e\u003ccode\u003e8bf2492\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/b5101ad3d5f73cfd0143aae3735b92826fd731ea\"\u003e\u003ccode\u003eb5101ad\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] handle predict-v8-randomness failures in node \u0026lt; 17 and node \u0026gt; 23 \u003ca href=\"https://github.com/form-data/form-data/commit/0e93122358414942393d9c2dc434ae69e58be7c8\"\u003e\u003ccode\u003e0e93122\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] Switch to using \u003ccode\u003ecrypto\u003c/code\u003e random for boundary values \u003ca href=\"https://github.com/form-data/form-data/commit/b88316c94bb004323669cd3639dc8bb8262539eb\"\u003e\u003ccode\u003eb88316c\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] validate boundary type in \u003ccode\u003esetBoundary()\u003c/code\u003e method \u003ca href=\"https://github.com/form-data/form-data/commit/131ae5efa30b9c608add4faef3befb38aa2e1bf1\"\u003e\u003ccode\u003e131ae5e\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] Switch to newer v8 prediction library; enable node 24 testing \u003ca href=\"https://github.com/form-data/form-data/commit/c97cfbed9eb6d2d4b5d53090f69ded4bf9fd8a21\"\u003e\u003ccode\u003ec97cfbe\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Refactor] use \u003ccode\u003ehasown\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/97ac9c208be0b83faeee04bb3faef1ed3474ee4c\"\u003e\u003ccode\u003e97ac9c2\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] remove local commit hooks \u003ca href=\"https://github.com/form-data/form-data/commit/be99d4eea5ce47139c23c1f0914596194019d7fb\"\u003e\u003ccode\u003ebe99d4e\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] remove unused deps \u003ca href=\"https://github.com/form-data/form-data/commit/ddbc89b6d6d64f730bcb27cb33b7544068466a05\"\u003e\u003ccode\u003eddbc89b\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix scripts to use prepublishOnly \u003ca href=\"https://github.com/form-data/form-data/commit/e351a97e9f6c57c74ffd01625e83b09de805d08a\"\u003e\u003ccode\u003ee351a97\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] remove unused script \u003ca href=\"https://github.com/form-data/form-data/commit/8f233664842da5bd605ce85541defc713d1d1e0a\"\u003e\u003ccode\u003e8f23366\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] add missing peer dep \u003ca href=\"https://github.com/form-data/form-data/commit/02ff026fda71f9943cfdd5754727c628adb8d135\"\u003e\u003ccode\u003e02ff026\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix readme capitalization \u003ca href=\"https://github.com/form-data/form-data/commit/2fd5f61ebfb526cd015fb8e7b8b8c1add4a38872\"\u003e\u003ccode\u003e2fd5f61\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v2.5.2...v2.5.3\"\u003ev2.5.3\u003c/a\u003e - 2025-02-14\u003c/h2\u003e\n\u003ch3\u003eMerged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/573\"\u003e\u003ccode\u003e[#573](https://github.com/form-data/form-data/issues/573)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/573\"\u003e#573\u003c/a\u003e) \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Refactor] use \u003ccode\u003eObject.prototype.hasOwnProperty.call\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/6e682d4bd41de7e80de41e3c4ee10f23fcc3dd00\"\u003e\u003ccode\u003e6e682d4\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003e@types/node\u003c/code\u003e, \u003ccode\u003ebrowserify\u003c/code\u003e, \u003ccode\u003ecoveralls\u003c/code\u003e, \u003ccode\u003eeslint\u003c/code\u003e, \u003ccode\u003eformidable\u003c/code\u003e, \u003ccode\u003ein-publish\u003c/code\u003e, \u003ccode\u003ephantomjs-prebuilt\u003c/code\u003e, \u003ccode\u003epkgfiles\u003c/code\u003e, \u003ccode\u003epre-commit\u003c/code\u003e, \u003ccode\u003erequest\u003c/code\u003e, \u003ccode\u003etape\u003c/code\u003e, \u003ccode\u003etypescript\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/819f6b7a543306a891fca37c3a06d0ff4a734422\"\u003e\u003ccode\u003e819f6b7\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOnly apps should have lockfiles \u003ca href=\"https://github.com/form-data/form-data/commit/b170ee2b22b4c695c363b811c0c553d2fb1bbd79\"\u003e\u003ccode\u003eb170ee2\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Deps] update \u003ccode\u003ecombined-stream\u003c/code\u003e, \u003ccode\u003emime-types\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/6b1ca1dc7362a1b1c3a99a885516cca4b7eb817f\"\u003e\u003ccode\u003e6b1ca1d\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBumped version 2.5.3 \u003ca href=\"https://github.com/form-data/form-data/commit/9457283e1dce6122adc908fdd7442cfc54cabe7a\"\u003e\u003ccode\u003e9457283\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] pin \u003ccode\u003erequest\u003c/code\u003e which via \u003ccode\u003etough-cookie\u003c/code\u003e ^2.4 depends on \u003ccode\u003epsl\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/9dbe192be3db215eac4d9c0b980470a5c2c030c6\"\u003e\u003ccode\u003e9dbe192\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v2.5.1...v2.5.2\"\u003ev2.5.2\u003c/a\u003e - 2024-10-10\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/form-data/form-data/commits/v2.5.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~ljharb\"\u003eljharb\u003c/a\u003e, a new releaser for form-data since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version modifies \u003ccode\u003eprepublish\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.23 to 4.18.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lodash/lodash/releases\"\u003elodash's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.18.1\u003c/h2\u003e\n\u003ch2\u003eBugs\u003c/h2\u003e\n\u003cp\u003eFixes a \u003ccode\u003eReferenceError\u003c/code\u003e issue in \u003ccode\u003elodash\u003c/code\u003e \u003ccode\u003elodash-es\u003c/code\u003e \u003ccode\u003elodash-amd\u003c/code\u003e and \u003ccode\u003elodash.template\u003c/code\u003e when using the \u003ccode\u003etemplate\u003c/code\u003e and \u003ccode\u003efromPairs\u003c/code\u003e functions from the modular builds. See \u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6167#issuecomment-4165269769\"\u003elodash/lodash#6167\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eThese defects were related to how lodash distributions are built from the main branch using \u003ca href=\"https://github.com/lodash-archive/lodash-cli\"\u003ehttps://github.com/lodash-archive/lodash-cli\u003c/a\u003e. When internal dependencies change inside lodash functions, equivalent updates need to be made to a mapping in the lodash-cli. (hey, it was ahead of its time once upon a time!). We know this, but we missed it in the last release. It's the kind of thing that passes in CI, but fails bc the build is not the same thing you tested.\u003c/p\u003e\n\u003cp\u003eThere is no diff on main for this, but you can see the diffs for each of the npm packages on their respective branches:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003elodash\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-es\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-amd\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash.template\u003c/code\u003e\u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.18.0\u003c/h2\u003e\n\u003ch2\u003ev4.18.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.23...4.18.0\"\u003ehttps://github.com/lodash/lodash/compare/4.17.23...4.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.unset\u003c/code\u003e / \u003ccode\u003e_.omit\u003c/code\u003e\u003c/strong\u003e: Fixed prototype pollution via \u003ccode\u003econstructor\u003c/code\u003e/\u003ccode\u003eprototype\u003c/code\u003e path traversal (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-f23m-r3pf-42rh\"\u003eGHSA-f23m-r3pf-42rh\u003c/a\u003e, \u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003efe8d32e\u003c/a\u003e). Previously, array-wrapped path segments and primitive roots could bypass the existing guards, allowing deletion of properties from built-in prototypes. Now \u003ccode\u003econstructor\u003c/code\u003e and \u003ccode\u003eprototype\u003c/code\u003e are blocked unconditionally as non-terminal path keys, matching \u003ccode\u003ebaseSet\u003c/code\u003e. Calls that previously returned \u003ccode\u003etrue\u003c/code\u003e and deleted the property now return \u003ccode\u003efalse\u003c/code\u003e and leave the target untouched.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.template\u003c/code\u003e\u003c/strong\u003e: Fixed code injection via \u003ccode\u003eimports\u003c/code\u003e keys (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-r5fr-rjxr-66jc\"\u003eGHSA-r5fr-rjxr-66jc\u003c/a\u003e, CVE-2026-4800, \u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e879aaa9\u003c/a\u003e). Fixes an incomplete patch for CVE-2021-23337. The \u003ccode\u003evariable\u003c/code\u003e option was validated against \u003ccode\u003ereForbiddenIdentifierChars\u003c/code\u003e but \u003ccode\u003eimportsKeys\u003c/code\u003e was left unguarded, allowing code injection via the same \u003ccode\u003eFunction()\u003c/code\u003e constructor sink. \u003ccode\u003eimports\u003c/code\u003e keys containing forbidden identifier characters now throw \u003ccode\u003e\u0026quot;Invalid imports option passed into _.template\u0026quot;\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eDocs\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd security notice for \u003ccode\u003e_.template\u003c/code\u003e in threat model and API docs (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6099\"\u003e#6099\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDocument \u003ccode\u003elower \u0026gt; upper\u003c/code\u003e behavior in \u003ccode\u003e_.random\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6115\"\u003e#6115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix quotes in \u003ccode\u003e_.compact\u003c/code\u003e jsdoc (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6090\"\u003e#6090\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ccode\u003elodash.*\u003c/code\u003e modular packages\u003c/h3\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6157\"\u003eDiff\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eWe have also regenerated and published a select number of the \u003ccode\u003elodash.*\u003c/code\u003e modular packages.\u003c/p\u003e\n\u003cp\u003eThese modular packages had fallen out of sync significantly from the minor/patch updates to lodash. Specifically, we have brought the following packages up to parity w/ the latest lodash release because they have had CVEs on them in the past:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.orderby\"\u003elodash.orderby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.tonumber\"\u003elodash.tonumber\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trim\"\u003elodash.trim\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trimend\"\u003elodash.trimend\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.sortedindexby\"\u003elodash.sortedindexby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.zipobjectdeep\"\u003elodash.zipobjectdeep\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.unset\"\u003elodash.unset\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.omit\"\u003elodash.omit\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.template\"\u003elodash.template\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/cb0b9b9212521c08e3eafe7c8cb0af1b42b6649e\"\u003e\u003ccode\u003ecb0b9b9\u003c/code\u003e\u003c/a\u003e release(patch): bump main to 4.18.1 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6177\"\u003e#6177\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/75535f57883b7225adb96de1cfc1cd4169cfcb51\"\u003e\u003ccode\u003e75535f5\u003c/code\u003e\u003c/a\u003e chore: prune stale advisory refs (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6170\"\u003e#6170\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/62e91bc6a39c98d85b9ada8c44d40593deaf82a4\"\u003e\u003ccode\u003e62e91bc\u003c/code\u003e\u003c/a\u003e docs: remove n_ Node.js \u0026lt; 6 REPL note from README (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6165\"\u003e#6165\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/59be2de61f8aa9461c7856533b51d31b7d8babc4\"\u003e\u003ccode\u003e59be2de\u003c/code\u003e\u003c/a\u003e release(minor): bump to 4.18.0 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6161\"\u003e#6161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/af634573030f979194871da7c68f79420992f53d\"\u003e\u003ccode\u003eaf63457\u003c/code\u003e\u003c/a\u003e fix: broken tests for _.template 879aaa9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/1073a7693e1727e0cf3641e5f71f75ddcf8de7c0\"\u003e\u003ccode\u003e1073a76\u003c/code\u003e\u003c/a\u003e fix: linting issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e\u003ccode\u003e879aaa9\u003c/code\u003e\u003c/a\u003e fix: validate imports keys in _.template\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003e\u003ccode\u003efe8d32e\u003c/code\u003e\u003c/a\u003e fix: block prototype pollution in baseUnset via constructor/prototype traversal\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/18ba0a32f42fd02117f096b032f89c984173462d\"\u003e\u003ccode\u003e18ba0a3\u003c/code\u003e\u003c/a\u003e refactor(fromPairs): use baseAssignValue for consistent assignment (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6153\"\u003e#6153\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b8190803d48d60b8c80ad45d39125f32fa618cb2\"\u003e\u003ccode\u003eb819080\u003c/code\u003e\u003c/a\u003e ci: add dist sync validation workflow (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6137\"\u003e#6137\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.23...4.18.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `node-fetch` from 1.7.1 to 2.6.7\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-fetch/node-fetch/releases\"\u003enode-fetch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.6.7\u003c/h2\u003e\n\u003ch1\u003eSecurity patch release\u003c/h1\u003e\n\u003cp\u003eRecommended to upgrade, to not leak sensitive cookie and authentication header information to 3th party host while a redirect occurred\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: don't forward secure headers to 3th party by \u003ca href=\"https://github.com/jimmywarting\"\u003e\u003ccode\u003e@​jimmywarting\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/pull/1453\"\u003enode-fetch/node-fetch#1453\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v2.6.6...v2.6.7\"\u003ehttps://github.com/node-fetch/node-fetch/compare/v2.6.6...v2.6.7\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.6.6\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(URL): prefer built in URL version when available and fallback to whatwg by \u003ca href=\"https://github.com/jimmywarting\"\u003e\u003ccode\u003e@​jimmywarting\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/pull/1352\"\u003enode-fetch/node-fetch#1352\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v2.6.5...v2.6.6\"\u003ehttps://github.com/node-fetch/node-fetch/compare/v2.6.5...v2.6.6\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.6.2\u003c/h2\u003e\n\u003cp\u003efixed main path in package.json\u003c/p\u003e\n\u003ch2\u003ev2.6.1\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eThis is an important security release. It is strongly recommended to update as soon as possible.\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/node-fetch/node-fetch/blob/master/docs/CHANGELOG.md#v261\"\u003eCHANGELOG\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev2.6.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/bitinn/node-fetch/blob/v2.6.0/CHANGELOG.md#v260\"\u003eCHANGELOG\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev2.5.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/bitinn/node-fetch/blob/v2.5.0/CHANGELOG.md#v250\"\u003eCHANGELOG\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev2.4.1\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/bitinn/node-fetch/blob/v2.4.1/CHANGELOG.md#v241\"\u003eCHANGELOG\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev2.4.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/bitinn/node-fetch/blob/v2.4.0/CHANGELOG.md#v240\"\u003eCHANGELOG\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev2.3.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/bitinn/node-fetch/blob/v2.3.0/CHANGELOG.md#v230\"\u003eCHANGELOG\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev2.2.1\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/bitinn/node-fetch/blob/v2.2.1/CHANGELOG.md#v221\"\u003eCHANGELOG\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003eVersion 2.1.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix: allow \u003ccode\u003eBody\u003c/code\u003e methods to work on ArrayBuffer\u003ccode\u003e-backed \u003c/code\u003eBody` objects\u003c/li\u003e\n\u003cli\u003eFix: reject promise returned by \u003ccode\u003eBody\u003c/code\u003e methods when the accumulated \u003ccode\u003eBuffer\u003c/code\u003e exceeds the maximum size\u003c/li\u003e\n\u003cli\u003eFix: support custom \u003ccode\u003eHost\u003c/code\u003e headers with any casing\u003c/li\u003e\n\u003cli\u003eFix: support importing \u003ccode\u003efetch()\u003c/code\u003e from TypeScript in \u003ccode\u003ebrowser.js\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFix: handle the redirect response body properly\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/1ef4b560a17e644a02a3bfdea7631ffeee578b35\"\u003e\u003ccode\u003e1ef4b56\u003c/code\u003e\u003c/a\u003e backport of \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1449\"\u003e#1449\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1453\"\u003e#1453\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8fe5c4ea66b9b8187600e6d5ec9b1b6781f44009\"\u003e\u003ccode\u003e8fe5c4e\u003c/code\u003e\u003c/a\u003e 2.x: Specify encoding as an optional peer dependency in package.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1310\"\u003e#1310\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/f56b0c66d3dd2ef185436de1f2fd40f66bfea8f4\"\u003e\u003ccode\u003ef56b0c6\u003c/code\u003e\u003c/a\u003e fix(URL): prefer built in URL version when available and fallback to whatwg (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/b5417aea6a3275932283a200214522e6ab53f1ea\"\u003e\u003ccode\u003eb5417ae\u003c/code\u003e\u003c/a\u003e fix: import whatwg-url in a way compatible with ESM Node (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1303\"\u003e#1303\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/18193c5922c64046b922e18faf41821290535f06\"\u003e\u003ccode\u003e18193c5\u003c/code\u003e\u003c/a\u003e fix v2.6.3 that did not sending query params (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1301\"\u003e#1301\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/ace7536c955556be742d9910566738630cc3c2a6\"\u003e\u003ccode\u003eace7536\u003c/code\u003e\u003c/a\u003e fix: properly encode url with unicode characters (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1291\"\u003e#1291\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/152214ca2f6e2a5a17d71e4638114625d3be30c6\"\u003e\u003ccode\u003e152214c\u003c/code\u003e\u003c/a\u003e Fix(package.json): Corrected main file path in package.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1274\"\u003e#1274\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/b5e2e41b2b50bf2997720d6125accaf0dd68c0ab\"\u003e\u003ccode\u003eb5e2e41\u003c/code\u003e\u003c/a\u003e update version number\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/2358a6c2563d1730a0cdaccc197c611949f6a334\"\u003e\u003ccode\u003e2358a6c\u003c/code\u003e\u003c/a\u003e Honor the \u003ccode\u003esize\u003c/code\u003e option after following a redirect and revert data uri support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8c197f8982a238b3c345c64b17bfa92e16b4f7c4\"\u003e\u003ccode\u003e8c197f8\u003c/code\u003e\u003c/a\u003e docs: Fix typos and grammatical errors in README.md (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/686\"\u003e#686\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v1.7.1...v2.6.7\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~endless\"\u003eendless\u003c/a\u003e, a new releaser for node-fetch since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `async` from 2.4.1 to 2.6.4\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/caolan/async/blob/v2.6.4/CHANGELOG.md\"\u003easync's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003ev2.6.4\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix potential prototype pollution exploit (\u003ca href=\"https://redirect.github.com/caolan/async/issues/1828\"\u003e#1828\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ev2.6.3\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated lodash to squelch a security warning (\u003ca href=\"https://redirect.github.com/caolan/async/issues/1675\"\u003e#1675\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ev2.6.2\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated lodash to squelch a security warning (\u003ca href=\"https://redirect.github.com/caolan/async/issues/1620\"\u003e#1620\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ev2.6.1\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated lodash to prevent \u003ccode\u003enpm audit\u003c/code\u003e warnings. (\u003ca href=\"https://redirect.github.com/caolan/async/issues/1532\"\u003e#1532\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/caolan/async/issues/1533\"\u003e#1533\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMade \u003ccode\u003easync-es\u003c/code\u003e more optimized for webpack users (\u003ca href=\"https://redirect.github.com/caolan/async/issues/1517\"\u003e#1517\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFixed a stack overflow with large collections and a synchronous iterator (\u003ca href=\"https://redirect.github.com/caolan/async/issues/1514\"\u003e#1514\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eVarious small fixes/chores (\u003ca href=\"https://redirect.github.com/caolan/async/issues/1505\"\u003e#1505\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/caolan/async/issues/1511\"\u003e#1511\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/caolan/async/issues/1527\"\u003e#1527\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/caolan/async/issues/1530\"\u003e#1530\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ev2.6.0\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eAdded missing aliases for many methods.  Previously, you could not (e.g.) \u003ccode\u003erequire('async/find')\u003c/code\u003e or use \u003ccode\u003easync.anyLimit\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/caolan/async/issues/1483\"\u003e#1483\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImproved \u003ccode\u003equeue\u003c/code\u003e performance. (\u003ca href=\"https://redirect.github.com/caolan/async/issues/1448\"\u003e#1448\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/caolan/async/issues/1454\"\u003e#1454\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd missing sourcemap (\u003ca href=\"https://redirect.github.com/caolan/async/issues/1452\"\u003e#1452\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/caolan/async/issues/1453\"\u003e#1453\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eVarious doc updates (\u003ca href=\"https://redirect.github.com/caolan/async/issues/1448\"\u003e#1448\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/caolan/async/issues/1471\"\u003e#1471\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/caolan/async/issues/1483\"\u003e#1483\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ev2.5.0\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003econcatLimit\u003c/code\u003e, the \u003ccode\u003eLimit\u003c/code\u003e equivalent of \u003ca href=\"https://caolan.github.io/async/docs.html#concat\"\u003e\u003ccode\u003econcat\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/caolan/async/issues/1426\"\u003e#1426\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/caolan/async/pull/1430\"\u003e#1430\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003econcat\u003c/code\u003e improvements: it now preserves order, handles falsy values and the \u003ccode\u003eiteratee\u003c/code\u003e callback takes a variable number of arguments (\u003ca href=\"https://redirect.github.com/caolan/async/issues/1437\"\u003e#1437\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/caolan/async/pull/1436\"\u003e#1436\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFixed an issue in \u003ccode\u003equeue\u003c/code\u003e  where there was a size discrepancy between \u003ccode\u003eworkersList().length\u003c/code\u003e and \u003ccode\u003erunning()\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/caolan/async/issues/1428\"\u003e#1428\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/caolan/async/pull/1429\"\u003e#1429\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eVarious doc fixes (\u003ca href=\"https://redirect.github.com/caolan/async/issues/1422\"\u003e#1422\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/caolan/async/pull/1424\"\u003e#1424\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/caolan/async/commit/c6bdaca4f9175c14fc655d3783c6af6a883e6514\"\u003e\u003ccode\u003ec6bdaca\u003c/code\u003e\u003c/a\u003e Version 2.6.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/caolan/async/commit/8870da9d5022bab310413041b4079e10db3980b7\"\u003e\u003ccode\u003e8870da9\u003c/code\u003e\u003c/a\u003e Update built files\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/caolan/async/commit/4df6754ef4e96a742956df8782fee27242a2ea12\"\u003e\u003ccode\u003e4df6754\u003c/code\u003e\u003c/a\u003e update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/caolan/async/commit/8f7f90342a6571ba1c197d747ebed30c368096d2\"\u003e\u003ccode\u003e8f7f903\u003c/code\u003e\u003c/a\u003e Fix prototype pollution vulnerability (\u003ca href=\"https://redirect.github.com/caolan/async/issues/1828\"\u003e#1828\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/caolan/async/commit/f1d8383bb118366f652f26a5096f106b88344ceb\"\u003e\u003ccode\u003ef1d8383\u003c/code\u003e\u003c/a\u003e Version 2.6.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/caolan/async/commit/2b674c198962e6716b5b9974f79456faa03a0d95\"\u003e\u003ccode\u003e2b674c1\u003c/code\u003e\u003c/a\u003e update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/caolan/async/commit/eab740f7bd2c8a065b5d7c886bf678873a356103\"\u003e\u003ccode\u003eeab740f\u003c/code\u003e\u003c/a\u003e fix: udpate lodash.  closes \u003ca href=\"https://redirect.github.com/caolan/async/issues/1675\"\u003e#1675\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/caolan/async/commit/eaf32be0e94f62fddc83d8550814e30a4be66a3c\"\u003e\u003ccode\u003eeaf32be\u003c/code\u003e\u003c/a\u003e Version 2.6.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/caolan/async/commit/684b42e695222de079029f52dcc1afe69751e5f4\"\u003e\u003ccode\u003e684b42e\u003c/code\u003e\u003c/a\u003e Update built files\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/caolan/async/commit/e1bd3da9e644d5a09e553f9b913cc4f029733bff\"\u003e\u003ccode\u003ee1bd3da\u003c/code\u003e\u003c/a\u003e update changelog\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/caolan/async/compare/v2.4.1...v2.6.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~hargasinski\"\u003ehargasinski\u003c/a\u003e, a new releaser for async since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `yeoman-environment` from 4.4.3 to 6.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/yeoman/environment/releases\"\u003eyeoman-environment's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: ask before installing local packages by \u003ca href=\"https://github.com/mshima\"\u003e\u003ccode\u003e@​mshima\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yeoman/environment/pull/753\"\u003eyeoman/environment#753\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(release): bump version to v6.0.1 by \u003ca href=\"https://github.com/github-actions\"\u003e\u003ccode\u003e@​github-actions\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/yeoman/environment/pull/757\"\u003eyeoman/environment#757\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/yeoman/environment/compare/v6.0.0...v6.0.1\"\u003ehttps://github.com/yeoman/environment/compare/v6.0.0...v6.0.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch3\u003e🚀 yeoman-environment v6 – Release Notes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSwitch to \u003ccode\u003e@​yeoman/adapter\u003c/code\u003e v4 (and inquirer v13) by default.\nSome behavior changes may happen.\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/yeoman/environment/compare/v5.1.3...v6.0.0\"\u003ehttps://github.com/yeoman/environment/compare/v5.1.3...v6.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.1.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: only fallback to import if requiring fails with esm/async error (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/716\"\u003e#716\u003c/a\u003e)  e4fb745\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/yeoman/environment/compare/v5.1.2...v5.1.3\"\u003ehttps://github.com/yeoman/environment/compare/v5.1.2...v5.1.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.1.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: use globbySync to resolve PNPM global node_modules paths (\u003ca href=\"https://redirect.github.com/yeoman/environment/issues/69...\n\n_Description has been truncated_","html_url":"https://github.com/PCWProps/zapier-platform/pull/5","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/PCWProps%2Fzapier-platform/issues/5","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/5/packages"}},{"old_version":"1.7.3","new_version":"3.3.2","update_type":"major","path":null,"pr_created_at":"2026-05-25T00:52:45.000Z","version_change":"1.7.3 → 3.3.2","issue":{"uuid":"4513524316","node_id":"PR_kwDOCeNfHs7e3lar","number":9,"state":"closed","title":"Bump the npm_and_yarn group across 13 directories with 15 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-25T06:12:31.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-25T00:52:45.000Z","updated_at":"2026-05-25T06:12:33.000Z","time_to_close":19186,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"npm_and_yarn","update_count":15,"packages":[{"name":"axios","old_version":"0.18.1","new_version":"1.16.1","repository_url":"https://github.com/axios/axios"},{"name":"shelljs","old_version":"0.7.8","new_version":"0.10.0","repository_url":"https://github.com/shelljs/shelljs"},{"name":"node-fetch","old_version":"1.7.3","new_version":"3.3.2","repository_url":"https://github.com/node-fetch/node-fetch"},{"name":"uuid","old_version":"3.4.0","new_version":"14.0.0","repository_url":"https://github.com/uuidjs/uuid"},{"name":"node-sass","old_version":"4.14.1","new_version":"9.0.0","repository_url":"https://github.com/sass/node-sass"},{"name":"webpack-bundle-analyzer","old_version":"2.13.1","new_version":"5.3.0","repository_url":"https://github.com/webpack/webpack-bundle-analyzer"},{"name":"webpack-dev-middleware","old_version":"1.12.2","new_version":"8.0.3","repository_url":"https://github.com/webpack/webpack-dev-middleware"},{"name":"knex","old_version":"0.13.0","new_version":"3.2.10","repository_url":"https://github.com/knex/knex"},{"name":"mongoose","old_version":"5.13.23","new_version":"9.6.2","repository_url":"https://github.com/Automattic/mongoose"},{"name":"showdown","old_version":"1.9.1","new_version":"2.1.0","repository_url":"https://github.com/showdownjs/showdown"},{"name":"path-to-regexp","old_version":"2.4.0","new_version":"8.4.2","repository_url":"https://github.com/pillarjs/path-to-regexp"},{"name":"swagger-ui-dist","old_version":"3.52.5","new_version":"5.32.6","repository_url":"https://github.com/swagger-api/swagger-ui"},{"name":"jsonwebtoken","old_version":"8.5.1","new_version":"9.0.3","repository_url":"https://github.com/auth0/node-jsonwebtoken"},{"name":"cloudinary","old_version":"1.41.3","new_version":"2.10.0","repository_url":"https://github.com/cloudinary/cloudinary_npm"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 14 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [axios](https://github.com/axios/axios) | `0.18.1` | `1.16.1` |\n| [shelljs](https://github.com/shelljs/shelljs) | `0.7.8` | `0.10.0` |\n| [node-fetch](https://github.com/node-fetch/node-fetch) | `1.7.3` | `3.3.2` |\n| [uuid](https://github.com/uuidjs/uuid) | `3.4.0` | `14.0.0` |\n| [node-sass](https://github.com/sass/node-sass) | `4.14.1` | `9.0.0` |\n| [webpack-bundle-analyzer](https://github.com/webpack/webpack-bundle-analyzer) | `2.13.1` | `5.3.0` |\n| [webpack-dev-middleware](https://github.com/webpack/webpack-dev-middleware) | `1.12.2` | `8.0.3` |\n| [knex](https://github.com/knex/knex) | `0.13.0` | `3.2.10` |\n| [mongoose](https://github.com/Automattic/mongoose) | `5.13.23` | `9.6.2` |\n| [showdown](https://github.com/showdownjs/showdown) | `1.9.1` | `2.1.0` |\n| [path-to-regexp](https://github.com/pillarjs/path-to-regexp) | `2.4.0` | `8.4.2` |\n| [swagger-ui-dist](https://github.com/swagger-api/swagger-ui) | `3.52.5` | `5.32.6` |\n| [jsonwebtoken](https://github.com/auth0/node-jsonwebtoken) | `8.5.1` | `9.0.3` |\n| [cloudinary](https://github.com/cloudinary/cloudinary_npm) | `1.41.3` | `2.10.0` |\n\nBumps the npm_and_yarn group with 1 update in the /packages/strapi directory: [node-fetch](https://github.com/node-fetch/node-fetch).\nBumps the npm_and_yarn group with 1 update in the /packages/strapi-admin directory: [shelljs](https://github.com/shelljs/shelljs).\nBumps the npm_and_yarn group with 1 update in the /packages/strapi-generate-admin directory: [strapi-admin](https://github.com/strapi/strapi).\nBumps the npm_and_yarn group with 1 update in the /packages/strapi-generate-new directory: [uuid](https://github.com/uuidjs/uuid).\nBumps the npm_and_yarn group with 4 updates in the /packages/strapi-helper-plugin directory: [shelljs](https://github.com/shelljs/shelljs), [node-sass](https://github.com/sass/node-sass), [webpack-bundle-analyzer](https://github.com/webpack/webpack-bundle-analyzer) and [webpack-dev-middleware](https://github.com/webpack/webpack-dev-middleware).\nBumps the npm_and_yarn group with 1 update in the /packages/strapi-hook-knex directory: [knex](https://github.com/knex/knex).\nBumps the npm_and_yarn group with 1 update in the /packages/strapi-hook-mongoose directory: [mongoose](https://github.com/Automattic/mongoose).\nBumps the npm_and_yarn group with 1 update in the /packages/strapi-plugin-content-manager directory: [showdown](https://github.com/showdownjs/showdown).\nBumps the npm_and_yarn group with 2 updates in the /packages/strapi-plugin-documentation directory: [path-to-regexp](https://github.com/pillarjs/path-to-regexp) and [swagger-ui-dist](https://github.com/swagger-api/swagger-ui).\nBumps the npm_and_yarn group with 2 updates in the /packages/strapi-plugin-users-permissions directory: [uuid](https://github.com/uuidjs/uuid) and [jsonwebtoken](https://github.com/auth0/node-jsonwebtoken).\nBumps the npm_and_yarn group with 1 update in the /packages/strapi-provider-upload-cloudinary directory: [cloudinary](https://github.com/cloudinary/cloudinary_npm).\nBumps the npm_and_yarn group with 2 updates in the /packages/strapi-utils directory: [shelljs](https://github.com/shelljs/shelljs) and [knex](https://github.com/knex/knex).\n\nUpdates `axios` from 0.18.1 to 1.16.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.16.1 — May 13, 2026\u003c/h2\u003e\n\u003cp\u003eThis release ships a defence-in-depth fix for prototype pollution in \u003ccode\u003eformDataToJSON\u003c/code\u003e, hardens proxy and CI workflows, restores Webpack 4 compatibility for the fetch adapter, and includes several small bug fixes and maintenance improvements.\u003c/p\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ePrototype Pollution Defence-in-Depth:\u003c/strong\u003e Hardened \u003ccode\u003eformDataToJSON\u003c/code\u003e against already-polluted \u003ccode\u003eObject.prototype\u003c/code\u003e by walking own properties only, so attacker-controlled keys inherited from a poisoned prototype cannot propagate through deserialization. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7413\"\u003e#7413\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eProxy Cleartext Leak:\u003c/strong\u003e Fixed an issue where HTTPS request data could be transmitted in cleartext to an HTTP proxy under certain configurations. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10858\"\u003e#10858\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eCI Cache Removal:\u003c/strong\u003e Removed all GitHub Actions caches as a defence-in-depth measure against cache poisoning vectors in the build pipeline. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10882\"\u003e#10882\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eData URI Parsing:\u003c/strong\u003e Updated the \u003ccode\u003efromDataURI\u003c/code\u003e regex to match RFC 2397 more strictly, fixing edge cases in \u003ccode\u003edata:\u003c/code\u003e URL handling. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10829\"\u003e#10829\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eUnicode Headers:\u003c/strong\u003e Preserved Unicode header values when running through request interceptors, so non-ASCII header content is no longer corrupted before dispatch. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10850\"\u003e#10850\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eXHR Upload Progress:\u003c/strong\u003e Guarded against malformed \u003ccode\u003eProgressEvent\u003c/code\u003e payloads emitted by some environments during XHR upload, preventing crashes when \u003ccode\u003eloaded\u003c/code\u003e / \u003ccode\u003etotal\u003c/code\u003e are missing or invalid. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10868\"\u003e#10868\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eWebpack 4 Fetch Adapter:\u003c/strong\u003e Fixed an \u0026quot;unexpected token\u0026quot; error caused by syntax in the fetch adapter that Webpack 4 could not parse, restoring compatibility for legacy bundler users. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10864\"\u003e#10864\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eType Definitions:\u003c/strong\u003e Made \u003ccode\u003eparseReviver\u003c/code\u003e \u003ccode\u003econtext.source\u003c/code\u003e optional in the type definitions to align with the ES2023 specification. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10837\"\u003e#10837\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eURL Object Support Reverted:\u003c/strong\u003e Reverted the change that allowed passing a \u003ccode\u003eURL\u003c/code\u003e object as \u003ccode\u003econfig.url\u003c/code\u003e (originally \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10866\"\u003e#10866\u003c/a\u003e\u003c/strong\u003e) due to regressions; this support will be reintroduced in a later release once the underlying issues are addressed. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10874\"\u003e#10874\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eCycle Detection Refactor:\u003c/strong\u003e Replaced the array-based cycle tracker in \u003ccode\u003etoJSONObject\u003c/code\u003e with a \u003ccode\u003eWeakSet\u003c/code\u003e, improving performance and memory behaviour on large nested structures. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10832\"\u003e#10832\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ecomposeSignals Cleanup:\u003c/strong\u003e Refactored \u003ccode\u003ecomposeSignals\u003c/code\u003e to use a clearer early-return structure, simplifying the cancellation/abort composition path. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10844\"\u003e#10844\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eAI Readiness \u0026amp; Repo Docs:\u003c/strong\u003e Added \u003ccode\u003eAGENTS.md\u003c/code\u003e and related contributor-guide updates for both human and AI agents, plus post-release documentation improvements. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10835\"\u003e#10835\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10841\"\u003e#10841\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDocs Improvements:\u003c/strong\u003e Clarified the GET request example, fixed the interceptor \u003ccode\u003eeject\u003c/code\u003e example to reference the correct instance, and corrected the Buzzoid sponsor description in the README. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10836\"\u003e#10836\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10853\"\u003e#10853\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10856\"\u003e#10856\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eSponsorship Tooling:\u003c/strong\u003e Fixed empty sponsor arrays in the sponsor processing script, added the ability to inject additional sponsors, updated the sponsorship link, and added a Twicsy advertisement entry. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10843\"\u003e#10843\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10859\"\u003e#10859\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10869\"\u003e#10869\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDependencies:\u003c/strong\u003e Bumped \u003ccode\u003e@commitlint/cli\u003c/code\u003e from 20.5.0 to 20.5.2. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10846\"\u003e#10846\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🌟 New Contributors\u003c/h2\u003e\n\u003cp\u003eWe are thrilled to welcome our new contributors. Thank you for helping improve axios:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/hpinmetaverse\"\u003e\u003ccode\u003e@​hpinmetaverse\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10836\"\u003e#10836\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/tommyhgunz14\"\u003e\u003ccode\u003e@​tommyhgunz14\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7413\"\u003e#7413\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/abhu85\"\u003e\u003ccode\u003e@​abhu85\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10829\"\u003e#10829\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/divyanshuraj1095\"\u003e\u003ccode\u003e@​divyanshuraj1095\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10853\"\u003e#10853\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/sagodi97\"\u003e\u003ccode\u003e@​sagodi97\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10856\"\u003e#10856\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/rkdfx\"\u003e\u003ccode\u003e@​rkdfx\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10868\"\u003e#10868\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/Liuwei1125\"\u003e\u003ccode\u003e@​Liuwei1125\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10866\"\u003e#10866\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/axios/axios/compare/v1.16.0...v1.16.1\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.16.0 — May 2, 2026\u003c/h2\u003e\n\u003cp\u003eThis release adds support for the QUERY HTTP method and a new \u003ccode\u003eECONNREFUSED\u003c/code\u003e error constant, lands a substantial wave of HTTP, fetch, and XHR adapter bug fixes around redirects, aborts, headers, and timeouts, and welcomes 23 new contributors.\u003c/p\u003e\n\u003ch2\u003e⚠️ Notable Changes\u003c/h2\u003e\n\u003cp\u003eA handful of fixes in this release are either security-adjacent or change observable behaviour. Please review before upgrading:\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/blob/v1.x/CHANGELOG.md\"\u003eaxios's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.16.1 — May 13, 2026\u003c/h2\u003e\n\u003cp\u003eThis release ships a defence-in-depth fix for prototype pollution in \u003ccode\u003eformDataToJSON\u003c/code\u003e, hardens proxy and CI workflows, restores Webpack 4 compatibility for the fetch adapter, and includes several small bug fixes and maintenance improvements.\u003c/p\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ePrototype Pollution Defence-in-Depth:\u003c/strong\u003e Hardened \u003ccode\u003eformDataToJSON\u003c/code\u003e against already-polluted \u003ccode\u003eObject.prototype\u003c/code\u003e by walking own properties only, so attacker-controlled keys inherited from a poisoned prototype cannot propagate through deserialization. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7413\"\u003e#7413\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eProxy Cleartext Leak:\u003c/strong\u003e Fixed an issue where HTTPS request data could be transmitted in cleartext to an HTTP proxy under certain configurations. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10858\"\u003e#10858\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eCI Cache Removal:\u003c/strong\u003e Removed all GitHub Actions caches as a defence-in-depth measure against cache poisoning vectors in the build pipeline. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10882\"\u003e#10882\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eData URI Parsing:\u003c/strong\u003e Updated the \u003ccode\u003efromDataURI\u003c/code\u003e regex to match RFC 2397 more strictly, fixing edge cases in \u003ccode\u003edata:\u003c/code\u003e URL handling. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10829\"\u003e#10829\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eUnicode Headers:\u003c/strong\u003e Preserved Unicode header values when running through request interceptors, so non-ASCII header content is no longer corrupted before dispatch. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10850\"\u003e#10850\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eXHR Upload Progress:\u003c/strong\u003e Guarded against malformed \u003ccode\u003eProgressEvent\u003c/code\u003e payloads emitted by some environments during XHR upload, preventing crashes when \u003ccode\u003eloaded\u003c/code\u003e / \u003ccode\u003etotal\u003c/code\u003e are missing or invalid. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10868\"\u003e#10868\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eWebpack 4 Fetch Adapter:\u003c/strong\u003e Fixed an \u0026quot;unexpected token\u0026quot; error caused by syntax in the fetch adapter that Webpack 4 could not parse, restoring compatibility for legacy bundler users. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10864\"\u003e#10864\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eType Definitions:\u003c/strong\u003e Made \u003ccode\u003eparseReviver\u003c/code\u003e \u003ccode\u003econtext.source\u003c/code\u003e optional in the type definitions to align with the ES2023 specification. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10837\"\u003e#10837\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eURL Object Support Reverted:\u003c/strong\u003e Reverted the change that allowed passing a \u003ccode\u003eURL\u003c/code\u003e object as \u003ccode\u003econfig.url\u003c/code\u003e (originally \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10866\"\u003e#10866\u003c/a\u003e\u003c/strong\u003e) due to regressions; this support will be reintroduced in a later release once the underlying issues are addressed. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10874\"\u003e#10874\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eCycle Detection Refactor:\u003c/strong\u003e Replaced the array-based cycle tracker in \u003ccode\u003etoJSONObject\u003c/code\u003e with a \u003ccode\u003eWeakSet\u003c/code\u003e, improving performance and memory behaviour on large nested structures. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10832\"\u003e#10832\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ecomposeSignals Cleanup:\u003c/strong\u003e Refactored \u003ccode\u003ecomposeSignals\u003c/code\u003e to use a clearer early-return structure, simplifying the cancellation/abort composition path. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10844\"\u003e#10844\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eAI Readiness \u0026amp; Repo Docs:\u003c/strong\u003e Added \u003ccode\u003eAGENTS.md\u003c/code\u003e and related contributor-guide updates for both human and AI agents, plus post-release documentation improvements. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10835\"\u003e#10835\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10841\"\u003e#10841\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDocs Improvements:\u003c/strong\u003e Clarified the GET request example, fixed the interceptor \u003ccode\u003eeject\u003c/code\u003e example to reference the correct instance, and corrected the Buzzoid sponsor description in the README. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10836\"\u003e#10836\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10853\"\u003e#10853\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10856\"\u003e#10856\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eSponsorship Tooling:\u003c/strong\u003e Fixed empty sponsor arrays in the sponsor processing script, added the ability to inject additional sponsors, updated the sponsorship link, and added a Twicsy advertisement entry. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10843\"\u003e#10843\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10859\"\u003e#10859\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10869\"\u003e#10869\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDependencies:\u003c/strong\u003e Bumped \u003ccode\u003e@commitlint/cli\u003c/code\u003e from 20.5.0 to 20.5.2. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10846\"\u003e#10846\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🌟 New Contributors\u003c/h2\u003e\n\u003cp\u003eWe are thrilled to welcome our new contributors. Thank you for helping improve axios:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/hpinmetaverse\"\u003e\u003ccode\u003e@​hpinmetaverse\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10836\"\u003e#10836\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/tommyhgunz14\"\u003e\u003ccode\u003e@​tommyhgunz14\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7413\"\u003e#7413\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/abhu85\"\u003e\u003ccode\u003e@​abhu85\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10829\"\u003e#10829\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/divyanshuraj1095\"\u003e\u003ccode\u003e@​divyanshuraj1095\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10853\"\u003e#10853\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/sagodi97\"\u003e\u003ccode\u003e@​sagodi97\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10856\"\u003e#10856\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/rkdfx\"\u003e\u003ccode\u003e@​rkdfx\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10868\"\u003e#10868\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/Liuwei1125\"\u003e\u003ccode\u003e@​Liuwei1125\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10866\"\u003e#10866\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/axios/axios/compare/v1.16.0...v1.16.1\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.16.0 — May 2, 2026\u003c/h2\u003e\n\u003cp\u003eThis release adds support for the QUERY HTTP method and a new \u003ccode\u003eECONNREFUSED\u003c/code\u003e error constant, lands a substantial wave of HTTP, fetch, and XHR adapter bug fixes around redirects, aborts, headers, and timeouts, and welcomes 23 new contributors.\u003c/p\u003e\n\u003ch2\u003e⚠️ Notable Changes\u003c/h2\u003e\n\u003cp\u003eA handful of fixes in this release are either security-adjacent or change observable behaviour. Please review before upgrading:\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/1337d6b537afb2d3f501074c8ac4ef4308221197\"\u003e\u003ccode\u003e1337d6b\u003c/code\u003e\u003c/a\u003e chore(release): prepare release 1.16.1 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10877\"\u003e#10877\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/858a790cec06054547d0d3f941916d6fb2a4d18e\"\u003e\u003ccode\u003e858a790\u003c/code\u003e\u003c/a\u003e fix: remove all caches (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10882\"\u003e#10882\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/34adfd90efc9c145488399e1cf7fa96de67080fa\"\u003e\u003ccode\u003e34adfd9\u003c/code\u003e\u003c/a\u003e revert: \u0026quot;fix: support URL object as config.url input (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10866\"\u003e#10866\u003c/a\u003e)\u0026quot; (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10874\"\u003e#10874\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/847d89b43654405d9a231e0b669832c2092b621f\"\u003e\u003ccode\u003e847d89b\u003c/code\u003e\u003c/a\u003e fix: support URL object as config.url input (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10866\"\u003e#10866\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/40948863677bb793bfff0293cce7e7b4f8a1b212\"\u003e\u003ccode\u003e4094886\u003c/code\u003e\u003c/a\u003e fix(progress): guard malformed XHR upload events (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10868\"\u003e#10868\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/44f0c5bf73c45df6009365141faa394d73596bd7\"\u003e\u003ccode\u003e44f0c5b\u003c/code\u003e\u003c/a\u003e chore: change sponsorship link and add Twicsy advertisement (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10869\"\u003e#10869\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/64e1095efedc64c9fecf5176bd9cf2e5e93140d6\"\u003e\u003ccode\u003e64e1095\u003c/code\u003e\u003c/a\u003e chore: update PR and issue template to use h2 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10865\"\u003e#10865\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/3e6b4e1f311b43aa1dc77d78150a601d9fe4b280\"\u003e\u003ccode\u003e3e6b4e1\u003c/code\u003e\u003c/a\u003e fix: error unexpected token in fetch JS compatibility issue with Webpack 4 (#...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/c4453bab70f53575175903aee60810c821f72129\"\u003e\u003ccode\u003ec4453ba\u003c/code\u003e\u003c/a\u003e fix: add the ability to add additional sponsors to the process sponsors scrip...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/caa00a90b524bb67ed033474abcf4d8645ced793\"\u003e\u003ccode\u003ecaa00a9\u003c/code\u003e\u003c/a\u003e fix: https data in cleartext to proxy (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10858\"\u003e#10858\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/axios/axios/compare/v0.18.1...v1.16.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for axios since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `shelljs` from 0.7.8 to 0.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/shelljs/shelljs/releases\"\u003eshelljs's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.10.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: update deps by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1201\"\u003eshelljs/shelljs#1201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: rename master -\u0026gt; main by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1203\"\u003eshelljs/shelljs#1203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: avoid dependency cycle by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1204\"\u003eshelljs/shelljs#1204\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnforce single quotes by \u003ca href=\"https://github.com/abluescarab\"\u003e\u003ccode\u003e@​abluescarab\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1207\"\u003eshelljs/shelljs#1207\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update deps by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1209\"\u003eshelljs/shelljs#1209\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: use require instead of import by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1212\"\u003eshelljs/shelljs#1212\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: use promises for utils.runScript by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1211\"\u003eshelljs/shelljs#1211\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: use expectations for t.throws by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1213\"\u003eshelljs/shelljs#1213\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: prefer promises over test.cb by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1214\"\u003eshelljs/shelljs#1214\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: allow es6 language features by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1215\"\u003eshelljs/shelljs#1215\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: use es6 class syntax for CommandError by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1217\"\u003eshelljs/shelljs#1217\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update ava by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1218\"\u003eshelljs/shelljs#1218\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: cmd is compatible with node 22.10 by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1219\"\u003eshelljs/shelljs#1219\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: explicit handling for execa errors by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1220\"\u003eshelljs/shelljs#1220\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd -B, -A, and -C options to grep by \u003ca href=\"https://github.com/abluescarab\"\u003e\u003ccode\u003e@​abluescarab\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1206\"\u003eshelljs/shelljs#1206\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: change how internal errors are handled by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1222\"\u003eshelljs/shelljs#1222\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate the shjs binary by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1225\"\u003eshelljs/shelljs#1225\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebump execa dependency version by \u003ca href=\"https://github.com/y-nk\"\u003e\u003ccode\u003e@​y-nk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1216\"\u003eshelljs/shelljs#1216\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/abluescarab\"\u003e\u003ccode\u003e@​abluescarab\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1207\"\u003eshelljs/shelljs#1207\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/y-nk\"\u003e\u003ccode\u003e@​y-nk\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1216\"\u003eshelljs/shelljs#1216\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/shelljs/shelljs/compare/v0.9.2...v0.10.0\"\u003ehttps://github.com/shelljs/shelljs/compare/v0.9.2...v0.10.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.9.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003etest: add tests for shelljs glob expansion by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1198\"\u003eshelljs/shelljs#1198\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: remove unused env var by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1199\"\u003eshelljs/shelljs#1199\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: add package.json to exports list by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1200\"\u003eshelljs/shelljs#1200\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/shelljs/shelljs/compare/v0.9.1...v0.9.2\"\u003ehttps://github.com/shelljs/shelljs/compare/v0.9.1...v0.9.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.9.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: add global.js and plugin.js to exports list by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1196\"\u003eshelljs/shelljs#1196\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/shelljs/shelljs/compare/v0.9.0...v0.9.1\"\u003ehttps://github.com/shelljs/shelljs/compare/v0.9.0...v0.9.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: Exit 1 with empty string if no match by \u003ca href=\"https://github.com/wyardley\"\u003e\u003ccode\u003e@​wyardley\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/901\"\u003eshelljs/shelljs#901\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(cp): support update flag when recursing by \u003ca href=\"https://github.com/joshi-sh\"\u003e\u003ccode\u003e@​joshi-sh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/889\"\u003eshelljs/shelljs#889\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: change language to node_js and remove obsolete scripts by \u003ca href=\"https://github.com/DanielRuf\"\u003e\u003ccode\u003e@​DanielRuf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/910\"\u003eshelljs/shelljs#910\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: remove gitter integration by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/907\"\u003eshelljs/shelljs#907\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(npm): remove lockfile by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/911\"\u003eshelljs/shelljs#911\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/shelljs/shelljs/blob/main/CHANGELOG.md\"\u003eshelljs's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChange Log\u003c/h1\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/shelljs/shelljs/tree/v0.8.5\"\u003ev0.8.5\u003c/a\u003e (2022-01-13)\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/shelljs/shelljs/compare/v0.8.4...v0.8.5\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eThis was a small security fix for \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/1058\"\u003e#1058\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/shelljs/shelljs/tree/v0.8.4\"\u003ev0.8.4\u003c/a\u003e (2020-04-24)\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/shelljs/shelljs/compare/v0.8.3...v0.8.4\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eSmall patch release to fix a circular dependency warning in node v14. See \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/973\"\u003e#973\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/shelljs/shelljs/tree/v0.8.3\"\u003ev0.8.3\u003c/a\u003e (2018-11-13)\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/shelljs/shelljs/compare/v0.8.2...v0.8.3\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eClosed issues:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eShelljs print stderr to console even if exec-only \u0026quot;silent\u0026quot; is true \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/905\"\u003e#905\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: remove common.state.tempDir \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/902\"\u003e#902\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCan't suppress stdout for echo \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/899\"\u003e#899\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eexec() doesn't apply the arguments correctly \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/895\"\u003e#895\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eshell.exec('npm pack') painfully slow \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/885\"\u003e#885\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eshelljs.exec cannot find app.asar/node_modules/shelljs/src/exec-child.js \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/881\"\u003e#881\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest infra: mocks and skipOnWin conflict \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/862\"\u003e#862\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport for shell function completion on IDE \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/859\"\u003e#859\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eecho command shows options in stdout \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/855\"\u003e#855\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esilent does not always work \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/851\"\u003e#851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAppveyor installs the latest npm, instead of the latest compatible npm \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/844\"\u003e#844\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eForce symbolic link (ln -sf) does not overwrite/recreate existing destination \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/830\"\u003e#830\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003einconsistent result when trying to echo to a file \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/798\"\u003e#798\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrevent require()ing executable-only files \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/789\"\u003e#789\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCannot set property to of [object String] which has only a getter \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/752\"\u003e#752\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ewhich() should check executability before returning a value \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/657\"\u003e#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBad encoding experience \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/456\"\u003e#456\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ephpcs very slow \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/440\"\u003e#440\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eError shown when triggering a sigint during shelljs.exec if process.on sigint is defined \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/254\"\u003e#254\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e.to\\(file\\)\u003c/code\u003e does not mute STDIO output \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/146\"\u003e#146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEscaping shell arguments to exec() \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/143\"\u003e#143\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAllow multiple string arguments for exec() \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/103\"\u003e#103\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecp does not recursively copy from readonly location  \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/98\"\u003e#98\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHandling permissions errors on file I/O \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/64\"\u003e#64\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eMerged pull requests:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd test case for sed on empty file \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/904\"\u003e#904\u003c/a\u003e (\u003ca href=\"https://github.com/wyardley\"\u003ewyardley\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor: don't expose tempdir in common.state \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/903\"\u003e#903\u003c/a\u003e (\u003ca href=\"https://github.com/nfischer\"\u003enfischer\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore(ci): fix codecov on travis \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/897\"\u003e#897\u003c/a\u003e (\u003ca href=\"https://github.com/nfischer\"\u003enfischer\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore(npm): add ci-or-install script \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/896\"\u003e#896\u003c/a\u003e (\u003ca href=\"https://github.com/nfischer\"\u003enfischer\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix silent exec \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/892\"\u003e#892\u003c/a\u003e (\u003ca href=\"https://github.com/nfischer\"\u003enfischer\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore(appveyor): run entire test matrix \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/886\"\u003e#886\u003c/a\u003e (\u003ca href=\"https://github.com/nfischer\"\u003enfischer\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shelljs/shelljs/commit/4580c00398982618ff075dd4354b0234a1d679dc\"\u003e\u003ccode\u003e4580c00\u003c/code\u003e\u003c/a\u003e 0.10.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shelljs/shelljs/commit/9a06336bc15ea36597054be5dacf6f8259ea6520\"\u003e\u003ccode\u003e9a06336\u003c/code\u003e\u003c/a\u003e Deprecate the shjs binary\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shelljs/shelljs/commit/3b03c85ef6442a1ebafca99db606c6c851215e9b\"\u003e\u003ccode\u003e3b03c85\u003c/code\u003e\u003c/a\u003e chore: remove accidental audit dep\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shelljs/shelljs/commit/33db5147e23f8d76e768eefc2f1d4a82da449ed3\"\u003e\u003ccode\u003e33db514\u003c/code\u003e\u003c/a\u003e Regenerate package-lock.json with npm 9.2.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shelljs/shelljs/commit/6577d5490f4737b1aa0a6c6db2c2ff0693531a90\"\u003e\u003ccode\u003e6577d54\u003c/code\u003e\u003c/a\u003e Merge branch 'y-nk-main'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shelljs/shelljs/commit/e48e9195438e10f06273734d3ab67d941eeaecc8\"\u003e\u003ccode\u003ee48e919\u003c/code\u003e\u003c/a\u003e bump execa (\u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/1216\"\u003e#1216\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shelljs/shelljs/commit/67a26e2ccc2c5ffa2610912621ad4de26c93c6cb\"\u003e\u003ccode\u003e67a26e2\u003c/code\u003e\u003c/a\u003e refactor: change how internal errors are handled\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shelljs/shelljs/commit/bfd06fa0967b441c5aecfcb992500b9ee240a267\"\u003e\u003ccode\u003ebfd06fa\u003c/code\u003e\u003c/a\u003e Add -B, -A, and -C options to grep (\u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/1206\"\u003e#1206\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shelljs/shelljs/commit/3149e09d5fb1c6af74ffc0128f0f7daf18d3c858\"\u003e\u003ccode\u003e3149e09\u003c/code\u003e\u003c/a\u003e refactor: explicit handling for execa errors\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shelljs/shelljs/commit/75d26de5b31f71bc8784e3d9329375e83c7b6d49\"\u003e\u003ccode\u003e75d26de\u003c/code\u003e\u003c/a\u003e fix: cmd is compatible with node 22.10\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/shelljs/shelljs/compare/v0.7.8...v0.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `node-fetch` from 1.7.3 to 3.3.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-fetch/node-fetch/releases\"\u003enode-fetch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.3.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.1...v3.3.2\"\u003e3.3.2\u003c/a\u003e (2023-07-25)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e8b3320d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1735\"\u003e#1735\u003c/a\u003e \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1473\"\u003e#1473\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.0...v3.3.1\"\u003e3.3.1\u003c/a\u003e (2023-03-11)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erelease \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e7b86e94\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.0\u003c/h2\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.10...v3.3.0\"\u003e3.3.0\u003c/a\u003e (2022-11-10)\u003c/h1\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd static Response.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1670\"\u003e#1670\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/55a4870ae5f805d8ff9a890ea2c652c9977e048e\"\u003e55a4870\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.10\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.9...v3.2.10\"\u003e3.2.10\u003c/a\u003e (2022-07-31)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDoS referrer (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1611\"\u003e#1611\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d\"\u003e2880238\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.9\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.8...v3.2.9\"\u003e3.2.9\u003c/a\u003e (2022-07-18)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHeaders:\u003c/strong\u003e don't forward secure headers on protocol change (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1599\"\u003e#1599\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7\"\u003ee87b093\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.8\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.7...v3.2.8\"\u003e3.2.8\u003c/a\u003e (2022-07-12)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003epossibly flaky test (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1523\"\u003e#1523\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/11b703361134340a8361f591d6e3a0bcf6a261fa\"\u003e11b7033\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e\u003ccode\u003e8b3320d\u003c/code\u003e\u003c/a\u003e fix: Remove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e\u003ccode\u003e7b86e94\u003c/code\u003e\u003c/a\u003e fix: release \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8ced5b941cf36d0d7e0c1017aa2a4abcb29ecd89\"\u003e\u003ccode\u003e8ced5b9\u003c/code\u003e\u003c/a\u003e docs: readme - non ESM example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1707\"\u003e#1707\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/71e376b0ca899a30bbda4d45f97ea87502956a62\"\u003e\u003ccode\u003e71e376b\u003c/code\u003e\u003c/a\u003e ci(release): use latest Node LTS (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1697\"\u003e#1697\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e093030b4a6625405a331ddf48bcfd82c079f43d\"\u003e\u003ccode\u003ee093030\u003c/code\u003e\u003c/a\u003e Allow URL class object as an argument for fetch() (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/55a4870ae5f805d8ff9a890ea2c652c9977e048e\"\u003e\u003ccode\u003e55a4870\u003c/code\u003e\u003c/a\u003e feat: add static Response.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1670\"\u003e#1670\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/c071406e193cce13959999982584ff27198e9e4a\"\u003e\u003ccode\u003ec071406\u003c/code\u003e\u003c/a\u003e (1138) - Fixed HTTPResponseError with correct constructor and usage (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1666\"\u003e#1666\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/6f72caa401a8ec574a22058431599ef47c222770\"\u003e\u003ccode\u003e6f72caa\u003c/code\u003e\u003c/a\u003e docs: fix missing comma in example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1623\"\u003e#1623\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d\"\u003e\u003ccode\u003e2880238\u003c/code\u003e\u003c/a\u003e fix: ReDoS referrer (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1611\"\u003e#1611\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7\"\u003e\u003ccode\u003ee87b093\u003c/code\u003e\u003c/a\u003e fix(Headers): don't forward secure headers on protocol change (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1599\"\u003e#1599\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/1.7.3...v3.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~node-fetch-bot\"\u003enode-fetch-bot\u003c/a\u003e, a new releaser for node-fetch since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `uuid` from 3.4.0 to 14.0.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/uuidjs/uuid/releases\"\u003euuid's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev14.0.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.0...v14.0.0\"\u003e14.0.0\u003c/a\u003e (2026-04-19)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eexpect \u003ccode\u003ecrypto\u003c/code\u003e to be global everywhere (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003edrop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/dc4ddb87272ed2843faccd130bcc41d492688bd3\"\u003edc4ddb8\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eexpect \u003ccode\u003ecrypto\u003c/code\u003e to be global everywhere (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/f2c235f93059325fa43e1106e624b5291bb523c4\"\u003ef2c235f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse GITHUB_TOKEN for release-please and enable npm provenance (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/925\"\u003e#925\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/ffa31383e8e4e1f0b4e22e504561272041b8738c\"\u003effa3138\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev13.0.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.1...v13.0.2\"\u003e13.0.2\u003c/a\u003e (2026-05-04)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ererelease to fix provenance. (\u003ca href=\"https://github.com/uuidjs/uuid/commit/49ccb35f78c0c4ce1409dd2f1d89f83caadba10b\"\u003e49ccb35\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev13.0.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.0...v13.0.1\"\u003e13.0.1\u003c/a\u003e (2026-04-27)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebackport fix for GHSA-w5hq-g745-h8pq (\u003ca href=\"https://github.com/uuidjs/uuid/commit/9d27ddf7046ce496ef39569ff84d948eeff9cb2a\"\u003e9d27ddf\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev13.0.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v12.0.0...v13.0.0\"\u003e13.0.0\u003c/a\u003e (2025-09-08)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/bce9d72a3ae5b9a3dcd8eb21ef6d1820288a427a\"\u003ebce9d72\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev12.0.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v12.0.0...v12.0.1\"\u003e12.0.1\u003c/a\u003e (2026-04-29)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/uuidjs/uuid/blob/main/CHANGELOG.md\"\u003euuid's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.0...v14.0.0\"\u003e14.0.0\u003c/a\u003e (2026-04-19)\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixes \u003ca href=\"https://github.com/uuidjs/uuid/security/advisories/GHSA-w5hq-g745-h8pq\"\u003eGHSA-w5hq-g745-h8pq\u003c/a\u003e: \u003ccode\u003ev3()\u003c/code\u003e, \u003ccode\u003ev5()\u003c/code\u003e, and \u003ccode\u003ev6()\u003c/code\u003e did not validate that writes would remain within the bounds of a caller-supplied buffer, allowing out-of-bounds writes when an invalid \u003ccode\u003eoffset\u003c/code\u003e was provided. A \u003ccode\u003eRangeError\u003c/code\u003e is now thrown if \u003ccode\u003eoffset \u0026lt; 0\u003c/code\u003e or \u003ccode\u003eoffset + 16 \u0026gt; buf.length\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ecrypto\u003c/code\u003e is now expected to be globally defined (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupgrade minimum supported TypeScript version to 5.4.3, in keeping with the project's policy of supporting TypeScript versions released within the last two years\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v12.0.0...v13.0.0\"\u003e13.0.0\u003c/a\u003e (2025-09-08)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/bce9d72a3ae5b9a3dcd8eb21ef6d1820288a427a\"\u003ebce9d72\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.1.0...v12.0.0\"\u003e12.0.0\u003c/a\u003e (2025-09-05)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdate to typescript@5.2 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/887\"\u003e#887\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove CommonJS support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/886\"\u003e#886\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@16 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/883\"\u003e#883\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd node@24 to ci matrix (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/879\"\u003e#879\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/42b6178aa21a593257f0a72abacd220f0b7b8a92\"\u003e42b6178\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@16 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/883\"\u003e#883\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/0f38cf10366ab074f9328ae2021eea04d5f2e530\"\u003e0f38cf1\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove CommonJS support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/886\"\u003e#886\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/ae786e27265f50bcf7cead196c29f1869297c42f\"\u003eae786e2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate to typescript@5.2 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/887\"\u003e#887\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/c7ee40598ed78584d81ab78dffded9fe5ff20b01\"\u003ec7ee405\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimprove v4() performance (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/894\"\u003e#894\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/5fd974c12718c8848035650b69b8948f12ace197\"\u003e5fd974c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erestore node: prefix (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/889\"\u003e#889\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/e1f42a354593093ba0479f0b4047dae82d28c507\"\u003ee1f42a3\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.0.5...v11.1.0\"\u003e11.1.0\u003c/a\u003e (2025-02-19)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/7c1ea087a8149b57380fc8bb7f68c3a215cb6e4b\"\u003e\u003ccode\u003e7c1ea08\u003c/code\u003e\u003c/a\u003e chore(main): release 14.0.0 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/926\"\u003e#926\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/3d2c5b0342f0fcb52a5ac681c3d47c13e7444b34\"\u003e\u003ccode\u003e3d2c5b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/f2c235f93059325fa43e1106e624b5291bb523c4\"\u003e\u003ccode\u003ef2c235f\u003c/code\u003e\u003c/a\u003e fix!: expect \u003ccode\u003ecrypto\u003c/code\u003e to be global everywhere (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/529ef0899f5dd503d2ee90d690585d63d78bc212\"\u003e\u003ccode\u003e529ef08\u003c/code\u003e\u003c/a\u003e chore: upgrade TypeScript and fixup types (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/927\"\u003e#927\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/086fd7976f11433edf9ac80be876b3ad243fe087\"\u003e\u003ccode\u003e086fd79\u003c/code\u003e\u003c/a\u003e chore: update dependencies (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/933\"\u003e#933\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/dc4ddb87272ed2843faccd130bcc41d492688bd3\"\u003e\u003ccode\u003edc4ddb8\u003c/code\u003e\u003c/a\u003e feat!: drop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/0f1f9c9c9cedbae5a1d363d5406c5dfbabe81404\"\u003e\u003ccode\u003e0f1f9c9\u003c/code\u003e\u003c/a\u003e chore: switch to Biome for parsing and linting (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/932\"\u003e#932\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/e2879e64bf125add903c1eff6e0860542c605013\"\u003e\u003ccode\u003ee2879e6\u003c/code\u003e\u003c/a\u003e chore: use maintained version of npm-run-all (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/930\"\u003e#930\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/ffa31383e8e4e1f0b4e22e504561272041b8738c\"\u003e\u003ccode\u003effa3138\u003c/code\u003e\u003c/a\u003e fix: Use GITHUB_TOKEN for release-please and enable npm provenance (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/925\"\u003e#925\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/0423d49df2dc8efc300c804731d25f4d7e0fccc4\"\u003e\u003ccode\u003e0423d49\u003c/code\u003e\u003c/a\u003e docs: remove obsolete v1 option notes (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/915\"\u003e#915\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/uuidjs/uuid/compare/v3.4.0...v14.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for uuid since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `node-sass` from 4.14.1 to 9.0.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sass/node-sass/releases\"\u003enode-sass's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev9.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNode 20 support by \u003ca href=\"https://github.com/nschonni\"\u003e\u003ccode\u003e@​nschonni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/sass/node-sass/pull/3355\"\u003esass/node-sass#3355\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBreaking changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for Node 14 (\u003ca href=\"https://github.com/nschonni\"\u003e\u003ccode\u003e@​nschonni\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eSupported Environments\u003c/h2\u003e\n\u003ctable\u003e\n\u003cthead\u003e\n\u003ctr\u003e\n\u003cth\u003eOS\u003c/th\u003e\n\u003cth\u003eArchitecture\u003c/th\u003e\n\u003cth\u003eNode\u003c/th\u003e\n\u003c/tr\u003e\n\u003c/thead\u003e\n\u003ctbody\u003e\n\u003ctr\u003e\n\u003ctd\u003eWindows\u003c/td\u003e\n\u003ctd\u003ex86 \u0026amp; x64\u003c/td\u003e\n\u003ctd\u003e16, 18, 19, 20\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003eOSX\u003c/td\u003e\n\u003ctd\u003ex64\u003c/td\u003e\n\u003ctd\u003e16, 18, 19, 20\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003eLinux*\u003c/td\u003e\n\u003ctd\u003ex64\u003c/td\u003e\n\u003ctd\u003e16, 18, 19, 20\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003eAlpine Linux\u003c/td\u003e\n\u003ctd\u003ex64\u003c/td\u003e\n\u003ctd\u003e16, 18, 19, 20\u003c/td\u003e\n\u003c/tr\u003e\n\u003c/tbody\u003e\n\u003c/table\u003e\n\u003cp\u003e*Linux support refers to major distributions like Ubuntu, and Debian\u003c/p\u003e\n\u003ch2\u003ev8.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix binaries being partially downloaded by \u003ca href=\"https://github.com/xzyfer\"\u003e\u003ccode\u003e@​xzyfer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/sass/node-sass/pull/3313\"\u003esass/node-sass#3313\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump node-gyp and nan for node 19 support by \u003ca href=\"https://github.com/xzyfer\"\u003e\u003ccode\u003e@​xzyfer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/sass/node-sass/pull/3314\"\u003esass/node-sass#3314\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: Node 18 and 19 support and drop Node 17 by \u003ca href=\"https://github.com/nschonni\"\u003e\u003ccode\u003e@​nschonni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/sass/node-sass/pull/3257\"\u003esass/node-sass#3257\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBreaking changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for Node 12 (\u003ca href=\"https://github.com/nschonni\"\u003e\u003ccode\u003e@​nschonni\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDrop support for Node 17 (\u003ca href=\"https://github.com/nschonni\"\u003e\u003ccode\u003e@​nschonni\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSet \u003ccode\u003erejectUnauthorized\u003c/code\u003e to \u003ccode\u003etrue\u003c/code\u003e by default (\u003ca href=\"https://github.com/scott-ut\"\u003e\u003ccode\u003e@​scott-ut\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/sass/node-sass/issues/3149\"\u003e#3149\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for Node 18 (\u003ca href=\"https://github.com/nschonni\"\u003e\u003ccode\u003e@​nschonni\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for Node 19 (\u003ca href=\"https://github.com/nschonni\"\u003e\u003ccode\u003e@​nschonni\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReplace \u003ccode\u003erequest\u003c/code\u003e with \u003ccode\u003emake-fetch-happen\u003c/code\u003e (\u003ca href=\"https://github.com/CamilleDrapier\"\u003e\u003ccode\u003e@​CamilleDrapier\u003c/code\u003e\u003c/a\u003e  \u003ca href=\"https://github.com/xzyfer\"\u003e\u003ccode\u003e@​xzyfer\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/sass/node-sass/issues/3193\"\u003e#3193\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/sass/node-sass/issues/3313\"\u003e#3313\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump true-case-path@2.2.1\u003c/li\u003e\n\u003cli\u003eBump node-gyp \u003ca href=\"https://github.com/9\"\u003e\u003ccode\u003e@​9\u003c/code\u003e\u003c/a\u003e.0.0\u003c/li\u003e\n\u003cli\u003eBump nan@^2.17.0\u003c/li\u003e\n\u003cli\u003eBump sass-graph@^4.0.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eMisc\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump various GitHub Actions dependencies (\u003ca href=\"https://github.com/nschonni\"\u003e\u003ccode\u003e@​nschonni\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/node-sass/commit/87f38998da059d13a87a7fc9f3d29d5728128e2c\"\u003e\u003ccode\u003e87f3899\u003c/code\u003e\u003c/a\u003e feat: Node 20 support (\u003ca href=\"https://redirect.github.com/sass/node-sass/issues/3355\"\u003e#3355\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/node-sass/commit/06ae4c70f792287c28bb765811014c7c56012d72\"\u003e\u003ccode\u003e06ae4c7\u003c/code\u003e\u003c/a\u003e build(deps): bump coverallsapp/github-action from 2.0.0 to 2.1.0 (\u003ca href=\"https://redirect.github.com/sass/node-sass/issues/3350\"\u003e#3350\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/node-sass/commit/e069f7356b76b286a51d0c4a48f93fb14bd0bdfc\"\u003e\u003ccode\u003ee069f73\u003c/code\u003e\u003c/a\u003e build(deps): bump coverallsapp/github-action from 1.2.0 to 2.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/node-sass/commit/c34837d7bfab1ef86a8d9989e83602895373a0a0\"\u003e\u003ccode\u003ec34837d\u003c/code\u003e\u003c/a\u003e build(deps): bump coverallsapp/github-action from 1.1.3 to 1.2.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/node-sass/commit/ee13eb9c62449d1e535189a063cbdd15583ebf32\"\u003e\u003ccode\u003eee13eb9\u003c/code\u003e\u003c/a\u003e 8.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/node-sass/commit/98e75b39e22ba2fdf7726eefa23ba5f7247540c4\"\u003e\u003ccode\u003e98e75b3\u003c/code\u003e\u003c/a\u003e feat: Node 18 and 19 support and drop Node 17 (\u003ca href=\"https://redirect.github.com/sass/node-sass/issues/3257\"\u003e#3257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/node-sass/commit/e9bb866b0cfec9f9f98c370be325289d25be5c62\"\u003e\u003ccode\u003ee9bb866\u003c/code\u003e\u003c/a\u003e Bump node-gyp and nan for node 19 support (\u003ca href=\"https://redirect.github.com/sass/node-sass/issues/3314\"\u003e#3314\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/node-sass/commit/ab7840b335d58f59731315354f2ea18d6bdf8fd6\"\u003e\u003ccode\u003eab7840b\u003c/code\u003e\u003c/a\u003e Fix binaries being partially downloaded (\u003ca href=\"https://redirect.github.com/sass/node-sass/issues/3313\"\u003e#3313\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/node-sass/commit/d595abf2ed3e8013509c04b1205005e95d3fcc2e\"\u003e\u003ccode\u003ed595abf\u003c/code\u003e\u003c/a\u003e 7.0.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/node-sass/commit/3b556c1c9a79e87fd54fdaa9a1a18741a7616025\"\u003e\u003ccode\u003e3b556c1\u003c/code\u003e\u003c/a\u003e 7.0.2\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sass/node-sass/compare/v4.14.1...v9.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `webpack-bundle-analyzer` from 2.13.1 to 5.3.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/webpack/webpack-bundle-analyzer/releases\"\u003ewebpack-bundle-analyzer's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.3.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eUse new ECMA features in code. (by \u003ca href=\"https://github.com/alexander-akait\"\u003e\u003ccode\u003e@​alexander-akait\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/713\"\u003e#713\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded \u003ccode\u003epropTypes\u003c/code\u003e to client components. (by \u003ca href=\"https://github.com/alexander-akait\"\u003e\u003ccode\u003e@​alexander-akait\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/713\"\u003e#713\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix a race condition in \u003ccode\u003ewriteStats\u003c/code\u003e that could lead to incorrect content in \u003ccode\u003estats.json\u003c/code\u003e. (by \u003ca href=\"https://github.com/alexander-akait\"\u003e\u003ccode\u003e@​alexander-akait\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/713\"\u003e#713\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eApply \u003ccode\u003eprettier\u003c/code\u003e and update dependencies. (by \u003ca href=\"https://github.com/alexander-akait\"\u003e\u003ccode\u003e@​alexander-akait\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/713\"\u003e#713\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/webpack/webpack-bundle-analyzer/blob/main/CHANGELOG.md\"\u003ewebpack-bundle-analyzer's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.3.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eUse new ECMA features in code. (by \u003ca href=\"https://github.com/alexander-akait\"\u003e\u003ccode\u003e@​alexander-akait\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/713\"\u003e#713\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded \u003ccode\u003epropTypes\u003c/code\u003e to client components. (by \u003ca href=\"https://github.com/alexander-akait\"\u003e\u003ccode\u003e@​alexander-akait\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/713\"\u003e#713\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix a race condition in \u003ccode\u003ewriteStats\u003c/code\u003e that could lead to incorrect content in \u003ccode\u003estats.json\u003c/code\u003e. (by \u003ca href=\"https://github.com/alexander-akait\"\u003e\u003ccode\u003e@​alexander-akait\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/713\"\u003e#713\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eApply \u003ccode\u003eprettier\u003c/code\u003e and update dependencies. (by \u003ca href=\"https://github.com/alexander-akait\"\u003e\u003ccode\u003e@​alexander-akait\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/713\"\u003e#713\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.2.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eNew Feature\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for Zstandard compression (\u003ca href=\"https://redirect.github.com/webpack-contrib/webpack-bundle-analyzer/pull/693\"\u003e#693\u003c/a\u003e by \u003ca href=\"https://github.com/bjohansebas\"\u003e\u003ccode\u003e@​bjohansebas\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eInternal\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ePrettier applied to the code base (\u003ca href=\"https://redirect.github.com/webpack-contrib/webpack-bundle-analyzer/pull/694\"\u003e#693\u003c/a\u003e by \u003ca href=\"https://github.com/alexander-akait\"\u003e\u003ccode\u003e@​alexander-akait\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdate \u003ccode\u003esirv\u003c/code\u003e dependency (\u003ca href=\"https://redirect.github.com/webpack-contrib/webpack-bundle-analyzer/pull/692\"\u003e#692\u003c/a\u003e by \u003ca href=\"https://github.com/bjohansebas\"\u003e\u003ccode\u003e@​bjohansebas\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdate \u003ccode\u003ews\u003c/code\u003e dependency (\u003ca href=\"https://redirect.github.com/webpack-contrib/webpack-bundle-analyzer/pull/691\"\u003e#691\u003c/a\u003e by \u003ca href=\"https://github.com/bjohansebas\"\u003e\u003ccode\u003e@​bjohansebas\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.1.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBug Fix\u003c/strong\u003e\n\u003cul\u003e\n\u003cli\u003eFix tooltip styling in dark mode when using CSS Modules (\u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/688\"\u003e#688\u003c/a\u003e by \u003ca href=\"https://github.com/theEquinoxDev\"\u003e\u003ccode\u003e@​theEquinoxDev\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAvoid parse failures for bundles with IIFE (\u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/685\"\u003e#685\u003c/a\u003e by \u003ca href=\"https://github.com/hai-x\"\u003e\u003ccode\u003e@​hai-x\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.1.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eBug Fix\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ePrevent \u003ccode\u003eTypeError\u003c/code\u003e when \u003ccode\u003eassets\u003c/code\u003e or \u003ccode\u003emodules\u003c/code\u003e are undefined in \u003ccode\u003eanalyzer.js\u003c/code\u003e\n(\u003ca href=\"https://redirect.github.com/webpack-contrib/webpack-bundle-analyzer/pull/679\"\u003e#679\u003c/a\u003e by \u003ca href=\"https://github.com/Srushti-33\"\u003e\u003ccode\u003e@​Srushti-33\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eNew Feature\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd optional dark/light mode toggle (\u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/683\"\u003e#683\u003c/a\u003e by \u003ca href=\"https://github.com/theEquinoxDev\"\u003e\u003ccode\u003e@​theEquinoxDev\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBug Fix\u003c/strong\u003e\n\u003cul\u003e\n\u003cli\u003eRestore \u003ccode\u003e@babel/plugin-transform-class-properties\u003c/code\u003e to fix HTML report (\u003ca href=\"https://redirect.github.com/webpack-contrib/webpack-bundle-analyzer/pull/682\"\u003e#682\u003c/a\u003e by \u003ca href=\"https://github.com/valscion\"\u003e\u003ccode\u003e@​valscion\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eBreaking Change\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRemove explicit support for Node versions below 20.9.0 (\u003ca href=\"https://redirect.github.com/webpack-contrib/webpack-bundle-analyzer/pull/676\"\u003e#676\u003c/a\u003e by \u003ca href=\"https://github.com/valscion\"\u003e\u003ccode\u003e@​valscion\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eImprovement\u003c/strong\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/webpack/webpack-bundle-analyzer/commit/9ba43c79a0113d3fd35dbcc55a637ffebaad7581\"\u003e\u003ccode\u003e9ba43c7\u003c/code\u003e\u003c/a\u003e chore(release): new release (\u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/issues/714\"\u003e#714\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/webpack/webpack-bundle-analyzer/commit/8a91940b09aee67718c26cb57e4f0f10d37ba243\"\u003e\u003ccode\u003e8a91940\u003c/code\u003e\u003c/a\u003e ci: trusted publishers (\u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/issues/713\"\u003e#713\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/webpack/webpack-bundle-analyzer/commit/b3f44b0de81eb7109f1691a1258fa781f0b0e193\"\u003e\u003ccode\u003eb3f44b0\u003c/code\u003e\u003c/a\u003e fix: race condition in \u003ccode\u003ewriteStats\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/issues/711\"\u003e#711\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/webpack/webpack-bundle-analyzer/commit/3710653b4e928cfa52fe510f29b9fe0cd2cd6812\"\u003e\u003ccode\u003e3710653\u003c/code\u003e\u003c/a\u003e refactor: adding typescript jsdocs types (\u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/issues/710\"\u003e#710\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/webpack/webpack-bundle-analyzer/commit/77599a400605587eb4c27d946a1830060cad7c96\"\u003e\u003ccode\u003e77599a4\u003c/code\u003e\u003c/a\u003e refactor: improve prop types and fix mobx (\u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/issues/709\"\u003e#709\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/webpack/webpack-bundle-analyzer/commit/26b83f6d9ead2670ee8282160e9caf80fc4b8feb\"\u003e\u003ccode\u003e26b83f6\u003c/code\u003e\u003c/a\u003e test: refactor infra (\u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/issues/708\"\u003e#708\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/webpack/webpack-bundle-analyzer/commit/2588e54b3313d61e15589ae04ac87894137a2730\"\u003e\u003ccode\u003e2588e54\u003c/code\u003e\u003c/a\u003e ci: add codecov and fix test (\u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/issues/705\"\u003e#705\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/webpack/webpack-bundle-analyzer/commit/be761ef6da0f3aa937e0cfff7178670d4bea3c7c\"\u003e\u003ccode\u003ebe761ef\u003c/code\u003e\u003c/a\u003e update eslint and apply \u003ccode\u003eeslint-config-webpack\u003c/code\u003e  (\u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/issues/701\"\u003e#701\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/webpack/webpack-bundle-analyzer/commit/1c23a2a5781471f725ec08598785c89e1f003927\"\u003e\u003ccode\u003e1c23a2a\u003c/code\u003e\u003c/a\u003e refactor: more ES6 code and code improvements (\u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/issues/700\"\u003e#700\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/webpack/webpack-bundle-analyzer/commit/4af64e39bf3a756910eeab777c6d93bb7e491672\"\u003e\u003ccode\u003e4af64e3\u003c/code\u003e\u003c/a\u003e chore: improve package.json (\u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/issues/695\"\u003e#695\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/webpack/webpack-bundle-analyzer/compare/v2.13.1...v5.3.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for webpack-bundle-analyzer since your current version....\n\n_Description has been truncated_","html_url":"https://github.com/sumonst21/strapi/pull/9","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/sumonst21%2Fstrapi/issues/9","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/9/packages"}},{"old_version":"2.7.0","new_version":"3.3.2","update_type":"major","path":null,"pr_created_at":"2026-05-20T22:23:01.000Z","version_change":"2.7.0 → 3.3.2","issue":{"uuid":"4490304592","node_id":"PR_kwDORy1ZM87duEds","number":8,"state":"closed","title":"chore(deps): Bump the npm-production group across 1 directory with 22 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-20T22:35:35.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-20T22:23:01.000Z","updated_at":"2026-05-20T22:35:37.000Z","time_to_close":754,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): Bump","group_name":"npm-production","update_count":22,"packages":[{"name":"@tanstack/react-virtual","old_version":"3.13.23","new_version":"3.13.25","repository_url":"https://github.com/TanStack/virtual"},{"name":"@typescript-eslint/eslint-plugin","old_version":"6.21.0","new_version":"8.59.4","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"@typescript-eslint/parser","old_version":"6.21.0","new_version":"8.59.4","repository_url":"https://github.com/typescript-eslint/typescript-eslint"},{"name":"@vscode/ripgrep","old_version":"1.17.1","new_version":"1.18.0","repository_url":"https://github.com/microsoft/vscode-ripgrep"},{"name":"axios","old_version":"1.13.2","new_version":"1.16.1","repository_url":"https://github.com/axios/axios"},{"name":"chalk","old_version":"4.1.2","new_version":"5.6.2","repository_url":"https://github.com/chalk/chalk"},{"name":"commander","old_version":"12.1.0","new_version":"14.0.3","repository_url":"https://github.com/tj/commander.js"},{"name":"diff","old_version":"5.2.0","new_version":"9.0.0","repository_url":"https://github.com/kpdecker/jsdiff"},{"name":"electron-log","old_version":"5.4.3","new_version":"5.4.4","repository_url":"https://github.com/megahertz/electron-log"},{"name":"electron-updater","old_version":"6.6.2","new_version":"6.8.3","repository_url":"https://github.com/electron-userland/electron-builder"},{"name":"eslint","old_version":"8.57.1","new_version":"10.4.0","repository_url":"https://github.com/eslint/eslint"},{"name":"lucide-react","old_version":"0.468.0","new_version":"1.16.0","repository_url":"https://github.com/lucide-icons/lucide"},{"name":"mammoth","old_version":"1.11.0","new_version":"1.12.0","repository_url":"https://github.com/mwilliamson/mammoth.js"},{"name":"node-fetch","old_version":"2.7.0","new_version":"3.3.2","repository_url":"https://github.com/node-fetch/node-fetch"},{"name":"playwright","old_version":"1.58.2","new_version":"1.60.0","repository_url":"https://github.com/microsoft/playwright"},{"name":"react","old_version":"18.3.1","new_version":"19.2.6","repository_url":"https://github.com/facebook/react"},{"name":"react-dom","old_version":"18.3.1","new_version":"19.2.6","repository_url":"https://github.com/facebook/react"},{"name":"react-virtuoso","old_version":"4.18.3","new_version":"4.18.7","repository_url":"https://github.com/petyosi/react-virtuoso"},{"name":"tinyglobby","old_version":"0.2.15","new_version":"0.2.16","repository_url":"https://github.com/SuperchupuDev/tinyglobby"},{"name":"ws","old_version":"8.19.0","new_version":"8.20.1","repository_url":"https://github.com/websockets/ws"},{"name":"yaml","old_version":"2.8.4","new_version":"2.9.0","repository_url":"https://github.com/eemeli/yaml"},{"name":"zod","old_version":"3.25.76","new_version":"4.4.3","repository_url":"https://github.com/colinhacks/zod"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm-production group with 22 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [@tanstack/react-virtual](https://github.com/TanStack/virtual/tree/HEAD/packages/react-virtual) | `3.13.23` | `3.13.25` |\n| [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) | `6.21.0` | `8.59.4` |\n| [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser) | `6.21.0` | `8.59.4` |\n| [@vscode/ripgrep](https://github.com/microsoft/vscode-ripgrep) | `1.17.1` | `1.18.0` |\n| [axios](https://github.com/axios/axios) | `1.13.2` | `1.16.1` |\n| [chalk](https://github.com/chalk/chalk) | `4.1.2` | `5.6.2` |\n| [commander](https://github.com/tj/commander.js) | `12.1.0` | `14.0.3` |\n| [diff](https://github.com/kpdecker/jsdiff) | `5.2.0` | `9.0.0` |\n| [electron-log](https://github.com/megahertz/electron-log) | `5.4.3` | `5.4.4` |\n| [electron-updater](https://github.com/electron-userland/electron-builder/tree/HEAD/packages/electron-updater) | `6.6.2` | `6.8.3` |\n| [eslint](https://github.com/eslint/eslint) | `8.57.1` | `10.4.0` |\n| [lucide-react](https://github.com/lucide-icons/lucide/tree/HEAD/packages/lucide-react) | `0.468.0` | `1.16.0` |\n| [mammoth](https://github.com/mwilliamson/mammoth.js) | `1.11.0` | `1.12.0` |\n| [node-fetch](https://github.com/node-fetch/node-fetch) | `2.7.0` | `3.3.2` |\n| [playwright](https://github.com/microsoft/playwright) | `1.58.2` | `1.60.0` |\n| [react](https://github.com/facebook/react/tree/HEAD/packages/react) | `18.3.1` | `19.2.6` |\n| [react-dom](https://github.com/facebook/react/tree/HEAD/packages/react-dom) | `18.3.1` | `19.2.6` |\n| [react-virtuoso](https://github.com/petyosi/react-virtuoso/tree/HEAD/packages/react-virtuoso) | `4.18.3` | `4.18.7` |\n| [tinyglobby](https://github.com/SuperchupuDev/tinyglobby) | `0.2.15` | `0.2.16` |\n| [ws](https://github.com/websockets/ws) | `8.19.0` | `8.20.1` |\n| [yaml](https://github.com/eemeli/yaml) | `2.8.4` | `2.9.0` |\n| [zod](https://github.com/colinhacks/zod) | `3.25.76` | `4.4.3` |\n\n\nUpdates `@tanstack/react-virtual` from 3.13.23 to 3.13.25\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/TanStack/virtual/releases\"\u003e@​tanstack/react-virtual's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-virtual\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.25\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReplace the \u003ccode\u003euseReducer(() =\u0026gt; ({}), {})\u003c/code\u003e force-rerender pattern with an (\u003ca href=\"https://redirect.github.com/TanStack/virtual/pull/1168\"\u003e#1168\u003c/a\u003e)\nincrementing number counter. Same semantics (every dispatch changes the\nreducer state, forcing a render); zero per-dispatch object allocation.\nTrivial individual cost, but eliminates one steady-state GC source on\nscroll-heavy apps.\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/virtual/commit/99355ad1eceee6270efaa26e51f535d8d7c31ac2\"\u003e\u003ccode\u003e99355ad\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/TanStack/virtual/commit/99355ad1eceee6270efaa26e51f535d8d7c31ac2\"\u003e\u003ccode\u003e99355ad\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/TanStack/virtual/commit/99355ad1eceee6270efaa26e51f535d8d7c31ac2\"\u003e\u003ccode\u003e99355ad\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/TanStack/virtual/commit/99355ad1eceee6270efaa26e51f535d8d7c31ac2\"\u003e\u003ccode\u003e99355ad\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/TanStack/virtual/commit/99355ad1eceee6270efaa26e51f535d8d7c31ac2\"\u003e\u003ccode\u003e99355ad\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/TanStack/virtual/commit/99355ad1eceee6270efaa26e51f535d8d7c31ac2\"\u003e\u003ccode\u003e99355ad\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/TanStack/virtual/commit/99355ad1eceee6270efaa26e51f535d8d7c31ac2\"\u003e\u003ccode\u003e99355ad\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/virtual-core\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.15.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​tanstack/react-virtual\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.13.24\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/virtual/commit/97a204dc5526669114458685552b7569b60d2940\"\u003e\u003ccode\u003e97a204d\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/virtual-core\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.14.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/TanStack/virtual/blob/main/packages/react-virtual/CHANGELOG.md\"\u003e@​tanstack/react-virtual's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.13.25\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReplace the \u003ccode\u003euseReducer(() =\u0026gt; ({}), {})\u003c/code\u003e force-rerender pattern with an (\u003ca href=\"https://redirect.github.com/TanStack/virtual/pull/1168\"\u003e#1168\u003c/a\u003e)\nincrementing number counter. Same semantics (every dispatch changes the\nreducer state, forcing a render); zero per-dispatch object allocation.\nTrivial individual cost, but eliminates one steady-state GC source on\nscroll-heavy apps.\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/virtual/commit/99355ad1eceee6270efaa26e51f535d8d7c31ac2\"\u003e\u003ccode\u003e99355ad\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/TanStack/virtual/commit/99355ad1eceee6270efaa26e51f535d8d7c31ac2\"\u003e\u003ccode\u003e99355ad\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/TanStack/virtual/commit/99355ad1eceee6270efaa26e51f535d8d7c31ac2\"\u003e\u003ccode\u003e99355ad\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/TanStack/virtual/commit/99355ad1eceee6270efaa26e51f535d8d7c31ac2\"\u003e\u003ccode\u003e99355ad\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/TanStack/virtual/commit/99355ad1eceee6270efaa26e51f535d8d7c31ac2\"\u003e\u003ccode\u003e99355ad\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/TanStack/virtual/commit/99355ad1eceee6270efaa26e51f535d8d7c31ac2\"\u003e\u003ccode\u003e99355ad\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/TanStack/virtual/commit/99355ad1eceee6270efaa26e51f535d8d7c31ac2\"\u003e\u003ccode\u003e99355ad\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/virtual-core\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.15.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.13.24\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/TanStack/virtual/commit/97a204dc5526669114458685552b7569b60d2940\"\u003e\u003ccode\u003e97a204d\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​tanstack/virtual-core\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.14.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/virtual/commit/949180be8adf66ea8428b326db72ebad42d5b4c3\"\u003e\u003ccode\u003e949180b\u003c/code\u003e\u003c/a\u003e ci: Version Packages (\u003ca href=\"https://github.com/TanStack/virtual/tree/HEAD/packages/react-virtual/issues/1169\"\u003e#1169\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/virtual/commit/99355ad1eceee6270efaa26e51f535d8d7c31ac2\"\u003e\u003ccode\u003e99355ad\u003c/code\u003e\u003c/a\u003e perf: virtual-core rewrite for mount/measure-storm, plus iOS Safari handling ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/virtual/commit/3374977c623cd95eb4cdb44ad44eb94677d65c1e\"\u003e\u003ccode\u003e3374977\u003c/code\u003e\u003c/a\u003e chore(angular-virtual)!: upgrade Angular to v19 (\u003ca href=\"https://github.com/TanStack/virtual/tree/HEAD/packages/react-virtual/issues/1158\"\u003e#1158\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/TanStack/virtual/commit/c3d4cd4f63d9c314ac6ec0ee7885a93a14ae52f9\"\u003e\u003ccode\u003ec3d4cd4\u003c/code\u003e\u003c/a\u003e ci: Version Packages (\u003ca href=\"https://github.com/TanStack/virtual/tree/HEAD/packages/react-virtual/issues/1157\"\u003e#1157\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/TanStack/virtual/commits/@tanstack/react-virtual@3.13.25/packages/react-virtual\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@typescript-eslint/eslint-plugin` from 6.21.0 to 8.59.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases\"\u003e@​typescript-eslint/eslint-plugin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.59.4\u003c/h2\u003e\n\u003ch2\u003e8.59.4 (2026-05-18)\u003c/h2\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eeslint-plugin:\u003c/strong\u003e [no-floating-promises] stack overflow when using recursive types (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12294\"\u003e#12294\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eproject-service:\u003c/strong\u003e throw error cause in \u003ccode\u003egetParsedConfigFileFromTSServer\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12321\"\u003e#12321\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypescript-eslint:\u003c/strong\u003e export Compatible* types from typescript-eslint to resolve pnpm TS error (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12340\"\u003e#12340\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Thank You\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEvyatar Daud \u003ca href=\"https://github.com/StyleShit\"\u003e\u003ccode\u003e@​StyleShit\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKirk Waiblinger \u003ca href=\"https://github.com/kirkwaiblinger\"\u003e\u003ccode\u003e@​kirkwaiblinger\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003elumir\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.59.4\"\u003eGitHub Releases\u003c/a\u003e for more information.\u003c/p\u003e\n\u003cp\u003eYou can read about our \u003ca href=\"https://typescript-eslint.io/users/versioning\"\u003eversioning strategy\u003c/a\u003e and \u003ca href=\"https://typescript-eslint.io/users/releases\"\u003ereleases\u003c/a\u003e on our website.\u003c/p\u003e\n\u003ch2\u003ev8.59.3\u003c/h2\u003e\n\u003ch2\u003e8.59.3 (2026-05-11)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only, there were no code changes.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.59.3\"\u003eGitHub Releases\u003c/a\u003e for more information.\u003c/p\u003e\n\u003cp\u003eYou can read about our \u003ca href=\"https://typescript-eslint.io/users/versioning\"\u003eversioning strategy\u003c/a\u003e and \u003ca href=\"https://typescript-eslint.io/users/releases\"\u003ereleases\u003c/a\u003e on our website.\u003c/p\u003e\n\u003ch2\u003ev8.59.2\u003c/h2\u003e\n\u003ch2\u003e8.59.2 (2026-05-04)\u003c/h2\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eeslint-plugin:\u003c/strong\u003e [no-unsafe-type-assertion] handle crash on recursive template literal types (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12150\"\u003e#12150\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eeslint-plugin:\u003c/strong\u003e [no-deprecated] object destructuring values should be treated as declarations (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12292\"\u003e#12292\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003erule-tester:\u003c/strong\u003e add TypeScript as a peer dependency (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12288\"\u003e#12288\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Thank You\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDariusz Czajkowski\u003c/li\u003e\n\u003cli\u003eDima Barabash\u003c/li\u003e\n\u003cli\u003eKirk Waiblinger \u003ca href=\"https://github.com/kirkwaiblinger\"\u003e\u003ccode\u003e@​kirkwaiblinger\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.59.2\"\u003eGitHub Releases\u003c/a\u003e for more information.\u003c/p\u003e\n\u003cp\u003eYou can read about our \u003ca href=\"https://typescript-eslint.io/users/versioning\"\u003eversioning strategy\u003c/a\u003e and \u003ca href=\"https://typescript-eslint.io/users/releases\"\u003ereleases\u003c/a\u003e on our website.\u003c/p\u003e\n\u003ch2\u003ev8.59.1\u003c/h2\u003e\n\u003ch2\u003e8.59.1 (2026-04-27)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md\"\u003e@​typescript-eslint/eslint-plugin's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.59.4 (2026-05-18)\u003c/h2\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eeslint-plugin:\u003c/strong\u003e [no-floating-promises] stack overflow when using recursive types (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12294\"\u003e#12294\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Thank You\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEvyatar Daud \u003ca href=\"https://github.com/StyleShit\"\u003e\u003ccode\u003e@​StyleShit\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.59.4\"\u003eGitHub Releases\u003c/a\u003e for more information.\u003c/p\u003e\n\u003cp\u003eYou can read about our \u003ca href=\"https://typescript-eslint.io/users/versioning\"\u003eversioning strategy\u003c/a\u003e and \u003ca href=\"https://typescript-eslint.io/users/releases\"\u003ereleases\u003c/a\u003e on our website.\u003c/p\u003e\n\u003ch2\u003e8.59.3 (2026-05-11)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for eslint-plugin to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.59.3\"\u003eGitHub Releases\u003c/a\u003e for more information.\u003c/p\u003e\n\u003cp\u003eYou can read about our \u003ca href=\"https://typescript-eslint.io/users/versioning\"\u003eversioning strategy\u003c/a\u003e and \u003ca href=\"https://typescript-eslint.io/users/releases\"\u003ereleases\u003c/a\u003e on our website.\u003c/p\u003e\n\u003ch2\u003e8.59.2 (2026-05-04)\u003c/h2\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eeslint-plugin:\u003c/strong\u003e [no-deprecated] object destructuring values should be treated as declarations (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12292\"\u003e#12292\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eeslint-plugin:\u003c/strong\u003e [no-unsafe-type-assertion] handle crash on recursive template literal types (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12150\"\u003e#12150\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Thank You\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDima Barabash\u003c/li\u003e\n\u003cli\u003eKirk Waiblinger \u003ca href=\"https://github.com/kirkwaiblinger\"\u003e\u003ccode\u003e@​kirkwaiblinger\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.59.2\"\u003eGitHub Releases\u003c/a\u003e for more information.\u003c/p\u003e\n\u003cp\u003eYou can read about our \u003ca href=\"https://typescript-eslint.io/users/versioning\"\u003eversioning strategy\u003c/a\u003e and \u003ca href=\"https://typescript-eslint.io/users/releases\"\u003ereleases\u003c/a\u003e on our website.\u003c/p\u003e\n\u003ch2\u003e8.59.1 (2026-04-27)\u003c/h2\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eeslint-plugin:\u003c/strong\u003e [no-unnecessary-condition] treat void as nullish in no-unnecessary-condition (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12241\"\u003e#12241\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eeslint-plugin:\u003c/strong\u003e [no-unnecessary-type-arguments] handle instantiation expressions (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12220\"\u003e#12220\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eeslint-plugin:\u003c/strong\u003e [no-unnecessary-type-assertion] avoid false positive in logical assignment assertions (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12278\"\u003e#12278\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eeslint-plugin:\u003c/strong\u003e [no-unnecessary-type-assertion] preserve phantom type arguments in generic inference (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12269\"\u003e#12269\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eeslint-plugin:\u003c/strong\u003e [no-unnecessary-type-assertion] preserve index signatures in undefined unions (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12257\"\u003e#12257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eeslint-plugin:\u003c/strong\u003e [no-unnecessary-type-assertion] fix crash \u0026quot;TypeError: checker.getTypeArguments is not a function\u0026quot; (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12246\"\u003e#12246\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Thank You\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/ca6ca1431b6d18235297a7e29feb5d98f012dff2\"\u003e\u003ccode\u003eca6ca14\u003c/code\u003e\u003c/a\u003e chore(release): publish 8.59.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/4302433ae6bf93d4ddc35264ad1b951254758566\"\u003e\u003ccode\u003e4302433\u003c/code\u003e\u003c/a\u003e fix(eslint-plugin): [no-floating-promises] stack overflow when using recursiv...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/10b79f1ba8e98610a3af85152a1b3b406f91e633\"\u003e\u003ccode\u003e10b79f1\u003c/code\u003e\u003c/a\u003e chore(deps): update dependency eslint to v10.4.0 (\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin/issues/12339\"\u003e#12339\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/2a6765d9628dc776f8127c96f088bb807c0bcab2\"\u003e\u003ccode\u003e2a6765d\u003c/code\u003e\u003c/a\u003e chore: clenaup \u003ccode\u003egetAwaitedType\u003c/code\u003e from \u003ccode\u003etypescript.d.ts\u003c/code\u003e (\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin/issues/12302\"\u003e#12302\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/48e13c0261e3cb1bf4f4dfaa462cdb3a56ef7383\"\u003e\u003ccode\u003e48e13c0\u003c/code\u003e\u003c/a\u003e chore(release): publish 8.59.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/e26dc8003ababf078aad4df17765ee4cea30644c\"\u003e\u003ccode\u003ee26dc80\u003c/code\u003e\u003c/a\u003e docs: update stale links to latest (\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin/issues/12313\"\u003e#12313\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/44f9625336841a8ee3eb01a9e02e49b1d7b12648\"\u003e\u003ccode\u003e44f9625\u003c/code\u003e\u003c/a\u003e chore(deps): update vitest monorepo to v4.1.5 (\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin/issues/12307\"\u003e#12307\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/2ec35f1760aade4df4c631d76d78c7ed5e136333\"\u003e\u003ccode\u003e2ec35f1\u003c/code\u003e\u003c/a\u003e chore(release): publish 8.59.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/ec3ef25390f7daf5a9ff33a60282bdbbb49ab0f3\"\u003e\u003ccode\u003eec3ef25\u003c/code\u003e\u003c/a\u003e test: make no-useless-empty-export tests fully static (\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin/issues/12260\"\u003e#12260\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/60d0a513870d833617374ff8ea256d86ca3cbbbb\"\u003e\u003ccode\u003e60d0a51\u003c/code\u003e\u003c/a\u003e chore(eslint-plugin): switch auto-generated test cases to hand-written in no-...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commits/v8.59.4/packages/eslint-plugin\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for \u003ccode\u003e@​typescript-eslint/eslint-plugin\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@typescript-eslint/parser` from 6.21.0 to 8.59.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases\"\u003e@​typescript-eslint/parser's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.59.4\u003c/h2\u003e\n\u003ch2\u003e8.59.4 (2026-05-18)\u003c/h2\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eeslint-plugin:\u003c/strong\u003e [no-floating-promises] stack overflow when using recursive types (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12294\"\u003e#12294\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eproject-service:\u003c/strong\u003e throw error cause in \u003ccode\u003egetParsedConfigFileFromTSServer\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12321\"\u003e#12321\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypescript-eslint:\u003c/strong\u003e export Compatible* types from typescript-eslint to resolve pnpm TS error (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12340\"\u003e#12340\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Thank You\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEvyatar Daud \u003ca href=\"https://github.com/StyleShit\"\u003e\u003ccode\u003e@​StyleShit\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eKirk Waiblinger \u003ca href=\"https://github.com/kirkwaiblinger\"\u003e\u003ccode\u003e@​kirkwaiblinger\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003elumir\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.59.4\"\u003eGitHub Releases\u003c/a\u003e for more information.\u003c/p\u003e\n\u003cp\u003eYou can read about our \u003ca href=\"https://typescript-eslint.io/users/versioning\"\u003eversioning strategy\u003c/a\u003e and \u003ca href=\"https://typescript-eslint.io/users/releases\"\u003ereleases\u003c/a\u003e on our website.\u003c/p\u003e\n\u003ch2\u003ev8.59.3\u003c/h2\u003e\n\u003ch2\u003e8.59.3 (2026-05-11)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only, there were no code changes.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.59.3\"\u003eGitHub Releases\u003c/a\u003e for more information.\u003c/p\u003e\n\u003cp\u003eYou can read about our \u003ca href=\"https://typescript-eslint.io/users/versioning\"\u003eversioning strategy\u003c/a\u003e and \u003ca href=\"https://typescript-eslint.io/users/releases\"\u003ereleases\u003c/a\u003e on our website.\u003c/p\u003e\n\u003ch2\u003ev8.59.2\u003c/h2\u003e\n\u003ch2\u003e8.59.2 (2026-05-04)\u003c/h2\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eeslint-plugin:\u003c/strong\u003e [no-unsafe-type-assertion] handle crash on recursive template literal types (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12150\"\u003e#12150\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eeslint-plugin:\u003c/strong\u003e [no-deprecated] object destructuring values should be treated as declarations (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12292\"\u003e#12292\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003erule-tester:\u003c/strong\u003e add TypeScript as a peer dependency (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12288\"\u003e#12288\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Thank You\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDariusz Czajkowski\u003c/li\u003e\n\u003cli\u003eDima Barabash\u003c/li\u003e\n\u003cli\u003eKirk Waiblinger \u003ca href=\"https://github.com/kirkwaiblinger\"\u003e\u003ccode\u003e@​kirkwaiblinger\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.59.2\"\u003eGitHub Releases\u003c/a\u003e for more information.\u003c/p\u003e\n\u003cp\u003eYou can read about our \u003ca href=\"https://typescript-eslint.io/users/versioning\"\u003eversioning strategy\u003c/a\u003e and \u003ca href=\"https://typescript-eslint.io/users/releases\"\u003ereleases\u003c/a\u003e on our website.\u003c/p\u003e\n\u003ch2\u003ev8.59.1\u003c/h2\u003e\n\u003ch2\u003e8.59.1 (2026-04-27)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md\"\u003e@​typescript-eslint/parser's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.59.4 (2026-05-18)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for parser to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.59.4\"\u003eGitHub Releases\u003c/a\u003e for more information.\u003c/p\u003e\n\u003cp\u003eYou can read about our \u003ca href=\"https://typescript-eslint.io/users/versioning\"\u003eversioning strategy\u003c/a\u003e and \u003ca href=\"https://typescript-eslint.io/users/releases\"\u003ereleases\u003c/a\u003e on our website.\u003c/p\u003e\n\u003ch2\u003e8.59.3 (2026-05-11)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for parser to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.59.3\"\u003eGitHub Releases\u003c/a\u003e for more information.\u003c/p\u003e\n\u003cp\u003eYou can read about our \u003ca href=\"https://typescript-eslint.io/users/versioning\"\u003eversioning strategy\u003c/a\u003e and \u003ca href=\"https://typescript-eslint.io/users/releases\"\u003ereleases\u003c/a\u003e on our website.\u003c/p\u003e\n\u003ch2\u003e8.59.2 (2026-05-04)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for parser to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.59.2\"\u003eGitHub Releases\u003c/a\u003e for more information.\u003c/p\u003e\n\u003cp\u003eYou can read about our \u003ca href=\"https://typescript-eslint.io/users/versioning\"\u003eversioning strategy\u003c/a\u003e and \u003ca href=\"https://typescript-eslint.io/users/releases\"\u003ereleases\u003c/a\u003e on our website.\u003c/p\u003e\n\u003ch2\u003e8.59.1 (2026-04-27)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for parser to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.59.1\"\u003eGitHub Releases\u003c/a\u003e for more information.\u003c/p\u003e\n\u003cp\u003eYou can read about our \u003ca href=\"https://typescript-eslint.io/users/versioning\"\u003eversioning strategy\u003c/a\u003e and \u003ca href=\"https://typescript-eslint.io/users/releases\"\u003ereleases\u003c/a\u003e on our website.\u003c/p\u003e\n\u003ch2\u003e8.59.0 (2026-04-20)\u003c/h2\u003e\n\u003cp\u003eThis was a version bump only for parser to align it with other projects, there were no code changes.\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.59.0\"\u003eGitHub Releases\u003c/a\u003e for more information.\u003c/p\u003e\n\u003cp\u003eYou can read about our \u003ca href=\"https://typescript-eslint.io/users/versioning\"\u003eversioning strategy\u003c/a\u003e and \u003ca href=\"https://typescript-eslint.io/users/releases\"\u003ereleases\u003c/a\u003e on our website.\u003c/p\u003e\n\u003ch2\u003e8.58.2 (2026-04-13)\u003c/h2\u003e\n\u003ch3\u003e🩹 Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eremove tsbuildinfo cache file from published packages (\u003ca href=\"https://redirect.github.com/typescript-eslint/typescript-eslint/pull/12187\"\u003e#12187\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e❤️ Thank You\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAbhijeet Singh \u003ca href=\"https://github.com/cseas\"\u003e\u003ccode\u003e@​cseas\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/ca6ca1431b6d18235297a7e29feb5d98f012dff2\"\u003e\u003ccode\u003eca6ca14\u003c/code\u003e\u003c/a\u003e chore(release): publish 8.59.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/48e13c0261e3cb1bf4f4dfaa462cdb3a56ef7383\"\u003e\u003ccode\u003e48e13c0\u003c/code\u003e\u003c/a\u003e chore(release): publish 8.59.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/44f9625336841a8ee3eb01a9e02e49b1d7b12648\"\u003e\u003ccode\u003e44f9625\u003c/code\u003e\u003c/a\u003e chore(deps): update vitest monorepo to v4.1.5 (\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser/issues/12307\"\u003e#12307\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/2ec35f1760aade4df4c631d76d78c7ed5e136333\"\u003e\u003ccode\u003e2ec35f1\u003c/code\u003e\u003c/a\u003e chore(release): publish 8.59.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/52457932e5507b5ca01e720a541f3f8d01e09b9d\"\u003e\u003ccode\u003e5245793\u003c/code\u003e\u003c/a\u003e chore(release): publish 8.59.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/ea9ae4f8817873480e3501145059f63e39e8d8a1\"\u003e\u003ccode\u003eea9ae4f\u003c/code\u003e\u003c/a\u003e chore(release): publish 8.59.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/90c2803a4c250e0343598d41e973f95e743bf4ce\"\u003e\u003ccode\u003e90c2803\u003c/code\u003e\u003c/a\u003e chore(release): publish 8.58.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/be6b49a02d68db9bdc8985e7e9e1598700fda2fa\"\u003e\u003ccode\u003ebe6b49a\u003c/code\u003e\u003c/a\u003e fix: remove tsbuildinfo cache file from published packages (\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser/issues/12187\"\u003e#12187\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/5311ed312eadf4e238324f2726ae0b1f3f2206e6\"\u003e\u003ccode\u003e5311ed3\u003c/code\u003e\u003c/a\u003e chore(release): publish 8.58.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commit/493341709fe7d1d6433332b7bd2724e3332c7cdf\"\u003e\u003ccode\u003e4933417\u003c/code\u003e\u003c/a\u003e chore(release): publish 8.58.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/typescript-eslint/typescript-eslint/commits/v8.59.4/packages/parser\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for \u003ccode\u003e@​typescript-eslint/parser\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@vscode/ripgrep` from 1.17.1 to 1.18.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/microsoft/vscode-ripgrep/releases\"\u003e@​vscode/ripgrep's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.18.0\u003c/h2\u003e\n\u003ch2\u003eChanges:\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/microsoft/vscode-ripgrep/issues/90\"\u003e#90\u003c/a\u003e: Adds \u003ccode\u003e@​vscode/ripgrep-universal\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThis list of changes was \u003ca href=\"https://dev.azure.com/monacotools/Monaco/_build/results?buildId=438342\u0026amp;view=logs\"\u003eauto generated\u003c/a\u003e.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/microsoft/vscode-ripgrep/commit/d22dec46c67fc8c5d307c9b18dba2792efd1f016\"\u003e\u003ccode\u003ed22dec4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/microsoft/vscode-ripgrep/issues/89\"\u003e#89\u003c/a\u003e from microsoft/per-platform-packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/microsoft/vscode-ripgrep/commit/381ba266ab972fc2e252cda16103c887a2102de9\"\u003e\u003ccode\u003e381ba26\u003c/code\u003e\u003c/a\u003e Fix zip extraction on Linux CI hosts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/microsoft/vscode-ripgrep/commit/62b2b26e53ba520308a3fa6faed14cd0c9004a1d\"\u003e\u003ccode\u003e62b2b26\u003c/code\u003e\u003c/a\u003e Migrate to per-platform npm packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/microsoft/vscode-ripgrep/commit/6be5ab7cdaf1d55c2d1b429b7f7c77cfb96044f1\"\u003e\u003ccode\u003e6be5ab7\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/microsoft/vscode-ripgrep/issues/86\"\u003e#86\u003c/a\u003e from microsoft/dependabot/npm_and_yarn/yauzl-3.2.1\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/microsoft/vscode-ripgrep/compare/v1.17.1...v1.18.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `axios` from 1.13.2 to 1.16.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.16.1 — May 13, 2026\u003c/h2\u003e\n\u003cp\u003eThis release ships a defence-in-depth fix for prototype pollution in \u003ccode\u003eformDataToJSON\u003c/code\u003e, hardens proxy and CI workflows, restores Webpack 4 compatibility for the fetch adapter, and includes several small bug fixes and maintenance improvements.\u003c/p\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ePrototype Pollution Defence-in-Depth:\u003c/strong\u003e Hardened \u003ccode\u003eformDataToJSON\u003c/code\u003e against already-polluted \u003ccode\u003eObject.prototype\u003c/code\u003e by walking own properties only, so attacker-controlled keys inherited from a poisoned prototype cannot propagate through deserialization. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7413\"\u003e#7413\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eProxy Cleartext Leak:\u003c/strong\u003e Fixed an issue where HTTPS request data could be transmitted in cleartext to an HTTP proxy under certain configurations. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10858\"\u003e#10858\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eCI Cache Removal:\u003c/strong\u003e Removed all GitHub Actions caches as a defence-in-depth measure against cache poisoning vectors in the build pipeline. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10882\"\u003e#10882\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eData URI Parsing:\u003c/strong\u003e Updated the \u003ccode\u003efromDataURI\u003c/code\u003e regex to match RFC 2397 more strictly, fixing edge cases in \u003ccode\u003edata:\u003c/code\u003e URL handling. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10829\"\u003e#10829\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eUnicode Headers:\u003c/strong\u003e Preserved Unicode header values when running through request interceptors, so non-ASCII header content is no longer corrupted before dispatch. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10850\"\u003e#10850\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eXHR Upload Progress:\u003c/strong\u003e Guarded against malformed \u003ccode\u003eProgressEvent\u003c/code\u003e payloads emitted by some environments during XHR upload, preventing crashes when \u003ccode\u003eloaded\u003c/code\u003e / \u003ccode\u003etotal\u003c/code\u003e are missing or invalid. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10868\"\u003e#10868\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eWebpack 4 Fetch Adapter:\u003c/strong\u003e Fixed an \u0026quot;unexpected token\u0026quot; error caused by syntax in the fetch adapter that Webpack 4 could not parse, restoring compatibility for legacy bundler users. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10864\"\u003e#10864\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eType Definitions:\u003c/strong\u003e Made \u003ccode\u003eparseReviver\u003c/code\u003e \u003ccode\u003econtext.source\u003c/code\u003e optional in the type definitions to align with the ES2023 specification. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10837\"\u003e#10837\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eURL Object Support Reverted:\u003c/strong\u003e Reverted the change that allowed passing a \u003ccode\u003eURL\u003c/code\u003e object as \u003ccode\u003econfig.url\u003c/code\u003e (originally \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10866\"\u003e#10866\u003c/a\u003e\u003c/strong\u003e) due to regressions; this support will be reintroduced in a later release once the underlying issues are addressed. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10874\"\u003e#10874\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eCycle Detection Refactor:\u003c/strong\u003e Replaced the array-based cycle tracker in \u003ccode\u003etoJSONObject\u003c/code\u003e with a \u003ccode\u003eWeakSet\u003c/code\u003e, improving performance and memory behaviour on large nested structures. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10832\"\u003e#10832\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ecomposeSignals Cleanup:\u003c/strong\u003e Refactored \u003ccode\u003ecomposeSignals\u003c/code\u003e to use a clearer early-return structure, simplifying the cancellation/abort composition path. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10844\"\u003e#10844\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eAI Readiness \u0026amp; Repo Docs:\u003c/strong\u003e Added \u003ccode\u003eAGENTS.md\u003c/code\u003e and related contributor-guide updates for both human and AI agents, plus post-release documentation improvements. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10835\"\u003e#10835\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10841\"\u003e#10841\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDocs Improvements:\u003c/strong\u003e Clarified the GET request example, fixed the interceptor \u003ccode\u003eeject\u003c/code\u003e example to reference the correct instance, and corrected the Buzzoid sponsor description in the README. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10836\"\u003e#10836\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10853\"\u003e#10853\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10856\"\u003e#10856\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eSponsorship Tooling:\u003c/strong\u003e Fixed empty sponsor arrays in the sponsor processing script, added the ability to inject additional sponsors, updated the sponsorship link, and added a Twicsy advertisement entry. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10843\"\u003e#10843\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10859\"\u003e#10859\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10869\"\u003e#10869\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDependencies:\u003c/strong\u003e Bumped \u003ccode\u003e@commitlint/cli\u003c/code\u003e from 20.5.0 to 20.5.2. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10846\"\u003e#10846\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🌟 New Contributors\u003c/h2\u003e\n\u003cp\u003eWe are thrilled to welcome our new contributors. Thank you for helping improve axios:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/hpinmetaverse\"\u003e\u003ccode\u003e@​hpinmetaverse\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10836\"\u003e#10836\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/tommyhgunz14\"\u003e\u003ccode\u003e@​tommyhgunz14\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7413\"\u003e#7413\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/abhu85\"\u003e\u003ccode\u003e@​abhu85\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10829\"\u003e#10829\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/divyanshuraj1095\"\u003e\u003ccode\u003e@​divyanshuraj1095\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10853\"\u003e#10853\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/sagodi97\"\u003e\u003ccode\u003e@​sagodi97\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10856\"\u003e#10856\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/rkdfx\"\u003e\u003ccode\u003e@​rkdfx\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10868\"\u003e#10868\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/Liuwei1125\"\u003e\u003ccode\u003e@​Liuwei1125\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10866\"\u003e#10866\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/axios/axios/compare/v1.16.0...v1.16.1\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.16.0 — May 2, 2026\u003c/h2\u003e\n\u003cp\u003eThis release adds support for the QUERY HTTP method and a new \u003ccode\u003eECONNREFUSED\u003c/code\u003e error constant, lands a substantial wave of HTTP, fetch, and XHR adapter bug fixes around redirects, aborts, headers, and timeouts, and welcomes 23 new contributors.\u003c/p\u003e\n\u003ch2\u003e⚠️ Notable Changes\u003c/h2\u003e\n\u003cp\u003eA handful of fixes in this release are either security-adjacent or change observable behaviour. Please review before upgrading:\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/blob/v1.x/CHANGELOG.md\"\u003eaxios's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.16.1 — May 13, 2026\u003c/h2\u003e\n\u003cp\u003eThis release ships a defence-in-depth fix for prototype pollution in \u003ccode\u003eformDataToJSON\u003c/code\u003e, hardens proxy and CI workflows, restores Webpack 4 compatibility for the fetch adapter, and includes several small bug fixes and maintenance improvements.\u003c/p\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ePrototype Pollution Defence-in-Depth:\u003c/strong\u003e Hardened \u003ccode\u003eformDataToJSON\u003c/code\u003e against already-polluted \u003ccode\u003eObject.prototype\u003c/code\u003e by walking own properties only, so attacker-controlled keys inherited from a poisoned prototype cannot propagate through deserialization. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7413\"\u003e#7413\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eProxy Cleartext Leak:\u003c/strong\u003e Fixed an issue where HTTPS request data could be transmitted in cleartext to an HTTP proxy under certain configurations. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10858\"\u003e#10858\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eCI Cache Removal:\u003c/strong\u003e Removed all GitHub Actions caches as a defence-in-depth measure against cache poisoning vectors in the build pipeline. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10882\"\u003e#10882\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eData URI Parsing:\u003c/strong\u003e Updated the \u003ccode\u003efromDataURI\u003c/code\u003e regex to match RFC 2397 more strictly, fixing edge cases in \u003ccode\u003edata:\u003c/code\u003e URL handling. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10829\"\u003e#10829\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eUnicode Headers:\u003c/strong\u003e Preserved Unicode header values when running through request interceptors, so non-ASCII header content is no longer corrupted before dispatch. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10850\"\u003e#10850\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eXHR Upload Progress:\u003c/strong\u003e Guarded against malformed \u003ccode\u003eProgressEvent\u003c/code\u003e payloads emitted by some environments during XHR upload, preventing crashes when \u003ccode\u003eloaded\u003c/code\u003e / \u003ccode\u003etotal\u003c/code\u003e are missing or invalid. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10868\"\u003e#10868\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eWebpack 4 Fetch Adapter:\u003c/strong\u003e Fixed an \u0026quot;unexpected token\u0026quot; error caused by syntax in the fetch adapter that Webpack 4 could not parse, restoring compatibility for legacy bundler users. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10864\"\u003e#10864\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eType Definitions:\u003c/strong\u003e Made \u003ccode\u003eparseReviver\u003c/code\u003e \u003ccode\u003econtext.source\u003c/code\u003e optional in the type definitions to align with the ES2023 specification. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10837\"\u003e#10837\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eURL Object Support Reverted:\u003c/strong\u003e Reverted the change that allowed passing a \u003ccode\u003eURL\u003c/code\u003e object as \u003ccode\u003econfig.url\u003c/code\u003e (originally \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10866\"\u003e#10866\u003c/a\u003e\u003c/strong\u003e) due to regressions; this support will be reintroduced in a later release once the underlying issues are addressed. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10874\"\u003e#10874\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eCycle Detection Refactor:\u003c/strong\u003e Replaced the array-based cycle tracker in \u003ccode\u003etoJSONObject\u003c/code\u003e with a \u003ccode\u003eWeakSet\u003c/code\u003e, improving performance and memory behaviour on large nested structures. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10832\"\u003e#10832\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ecomposeSignals Cleanup:\u003c/strong\u003e Refactored \u003ccode\u003ecomposeSignals\u003c/code\u003e to use a clearer early-return structure, simplifying the cancellation/abort composition path. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10844\"\u003e#10844\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eAI Readiness \u0026amp; Repo Docs:\u003c/strong\u003e Added \u003ccode\u003eAGENTS.md\u003c/code\u003e and related contributor-guide updates for both human and AI agents, plus post-release documentation improvements. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10835\"\u003e#10835\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10841\"\u003e#10841\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDocs Improvements:\u003c/strong\u003e Clarified the GET request example, fixed the interceptor \u003ccode\u003eeject\u003c/code\u003e example to reference the correct instance, and corrected the Buzzoid sponsor description in the README. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10836\"\u003e#10836\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10853\"\u003e#10853\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10856\"\u003e#10856\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eSponsorship Tooling:\u003c/strong\u003e Fixed empty sponsor arrays in the sponsor processing script, added the ability to inject additional sponsors, updated the sponsorship link, and added a Twicsy advertisement entry. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10843\"\u003e#10843\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10859\"\u003e#10859\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10869\"\u003e#10869\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDependencies:\u003c/strong\u003e Bumped \u003ccode\u003e@commitlint/cli\u003c/code\u003e from 20.5.0 to 20.5.2. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10846\"\u003e#10846\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🌟 New Contributors\u003c/h2\u003e\n\u003cp\u003eWe are thrilled to welcome our new contributors. Thank you for helping improve axios:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/hpinmetaverse\"\u003e\u003ccode\u003e@​hpinmetaverse\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10836\"\u003e#10836\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/tommyhgunz14\"\u003e\u003ccode\u003e@​tommyhgunz14\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7413\"\u003e#7413\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/abhu85\"\u003e\u003ccode\u003e@​abhu85\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10829\"\u003e#10829\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/divyanshuraj1095\"\u003e\u003ccode\u003e@​divyanshuraj1095\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10853\"\u003e#10853\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/sagodi97\"\u003e\u003ccode\u003e@​sagodi97\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10856\"\u003e#10856\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/rkdfx\"\u003e\u003ccode\u003e@​rkdfx\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10868\"\u003e#10868\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/Liuwei1125\"\u003e\u003ccode\u003e@​Liuwei1125\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10866\"\u003e#10866\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/axios/axios/compare/v1.16.0...v1.16.1\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.16.0 — May 2, 2026\u003c/h2\u003e\n\u003cp\u003eThis release adds support for the QUERY HTTP method and a new \u003ccode\u003eECONNREFUSED\u003c/code\u003e error constant, lands a substantial wave of HTTP, fetch, and XHR adapter bug fixes around redirects, aborts, headers, and timeouts, and welcomes 23 new contributors.\u003c/p\u003e\n\u003ch2\u003e⚠️ Notable Changes\u003c/h2\u003e\n\u003cp\u003eA handful of fixes in this release are either security-adjacent or change observable behaviour. Please review before upgrading:\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/1337d6b537afb2d3f501074c8ac4ef4308221197\"\u003e\u003ccode\u003e1337d6b\u003c/code\u003e\u003c/a\u003e chore(release): prepare release 1.16.1 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10877\"\u003e#10877\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/858a790cec06054547d0d3f941916d6fb2a4d18e\"\u003e\u003ccode\u003e858a790\u003c/code\u003e\u003c/a\u003e fix: remove all caches (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10882\"\u003e#10882\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/34adfd90efc9c145488399e1cf7fa96de67080fa\"\u003e\u003ccode\u003e34adfd9\u003c/code\u003e\u003c/a\u003e revert: \u0026quot;fix: support URL object as config.url input (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10866\"\u003e#10866\u003c/a\u003e)\u0026quot; (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10874\"\u003e#10874\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/847d89b43654405d9a231e0b669832c2092b621f\"\u003e\u003ccode\u003e847d89b\u003c/code\u003e\u003c/a\u003e fix: support URL object as config.url input (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10866\"\u003e#10866\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/40948863677bb793bfff0293cce7e7b4f8a1b212\"\u003e\u003ccode\u003e4094886\u003c/code\u003e\u003c/a\u003e fix(progress): guard malformed XHR upload events (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10868\"\u003e#10868\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/44f0c5bf73c45df6009365141faa394d73596bd7\"\u003e\u003ccode\u003e44f0c5b\u003c/code\u003e\u003c/a\u003e chore: change sponsorship link and add Twicsy advertisement (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10869\"\u003e#10869\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/64e1095efedc64c9fecf5176bd9cf2e5e93140d6\"\u003e\u003ccode\u003e64e1095\u003c/code\u003e\u003c/a\u003e chore: update PR and issue template to use h2 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10865\"\u003e#10865\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/3e6b4e1f311b43aa1dc77d78150a601d9fe4b280\"\u003e\u003ccode\u003e3e6b4e1\u003c/code\u003e\u003c/a\u003e fix: error unexpected token in fetch JS compatibility issue with Webpack 4 (#...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/c4453bab70f53575175903aee60810c821f72129\"\u003e\u003ccode\u003ec4453ba\u003c/code\u003e\u003c/a\u003e fix: add the ability to add additional sponsors to the process sponsors scrip...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/caa00a90b524bb67ed033474abcf4d8645ced793\"\u003e\u003ccode\u003ecaa00a9\u003c/code\u003e\u003c/a\u003e fix: https data in cleartext to proxy (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10858\"\u003e#10858\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/axios/axios/compare/v1.13.2...v1.16.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for axios since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version modifies \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `chalk` from 4.1.2 to 5.6.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/chalk/chalk/releases\"\u003echalk's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.6.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix vulnerability in 5.6.1, see: \u003ca href=\"https://redirect.github.com/chalk/chalk/issues/656\"\u003echalk/chalk#656\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev5.6.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMake WezTerm terminal use true color  a8f5bf7\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/chalk/chalk/compare/v5.5.0...v5.6.0\"\u003ehttps://github.com/chalk/chalk/compare/v5.5.0...v5.6.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.5.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMake Ghostty terminal use true color (\u003ca href=\"https://redirect.github.com/chalk/chalk/issues/653\"\u003e#653\u003c/a\u003e)  79ee2d3\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/chalk/chalk/compare/v5.4.1...v5.5.0\"\u003ehttps://github.com/chalk/chalk/compare/v5.4.1...v5.5.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.4.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ccode\u003enavigator\u003c/code\u003e not defined \u003ccode\u003eReferenceError\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/chalk/chalk/issues/642\"\u003e#642\u003c/a\u003e)  4ebb62d\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/chalk/chalk/compare/v5.4.0...v5.4.1\"\u003ehttps://github.com/chalk/chalk/compare/v5.4.0...v5.4.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.4.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate \u003ccode\u003eCIRCLECI\u003c/code\u003e environments to return level 3 color support  f838120\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/chalk/chalk/compare/v5.3.0...v5.4.0\"\u003ehttps://github.com/chalk/chalk/compare/v5.3.0...v5.4.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.3.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003esideEffects\u003c/code\u003e field to package.json  5aafc0a\u003c/li\u003e\n\u003cli\u003eAdd support for Gitea Actions (\u003ca href=\"https://redirect.github.com/chalk/chalk/issues/603\"\u003e#603\u003c/a\u003e)  29b8569\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/chalk/chalk/compare/v5.2.0...v5.3.0\"\u003ehttps://github.com/chalk/chalk/compare/v5.2.0...v5.3.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.2.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImprove Deno compatibility (\u003ca href=\"https://redirect.github.com/chalk/chalk/issues/579\"\u003e#579\u003c/a\u003e)  7443e9f\u003c/li\u003e\n\u003cli\u003eDetect true-color support for GitHub Actions (\u003ca href=\"https://redirect.github.com/chalk/chalk/issues/579\"\u003e#579\u003c/a\u003e)  7443e9f\u003c/li\u003e\n\u003cli\u003eDetect true-color support for Kitty terminal (\u003ca href=\"https://redirect.github.com/chalk/chalk/issues/579\"\u003e#579\u003c/a\u003e)  7443e9f\u003c/li\u003e\n\u003cli\u003eFix test for Azure DevOps environment (\u003ca href=\"https://redirect.github.com/chalk/chalk/issues/579\"\u003e#579\u003c/a\u003e)  7443e9f\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/chalk/chalk/compare/v5.1.2...v5.2.0\"\u003ehttps://github.com/chalk/chalk/compare/v5.1.2...v5.2.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.1.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix exported styles names (\u003ca href=\"https://redirect.github.com/chalk/chalk/issues/569\"\u003e#569\u003c/a\u003e)  a34bcf6\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/chalk/chalk/compare/v5.1.1...v5.1.2\"\u003ehttps://github.com/chalk/chalk/compare/v5.1.1...v5.1.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.1.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImproved the names of exports introduced in 5.1.0 (\u003ca href=\"https://redirect.github.com/chalk/chalk/issues/567\"\u003e#567\u003c/a\u003e)  6e0df05\n\u003cul\u003e\n\u003cli\u003eWe of course preserved the old names.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chalk/chalk/commit/51557784b829c87ff8d138206598764f2eb957b1\"\u003e\u003ccode\u003e5155778\u003c/code\u003e\u003c/a\u003e 5.6.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chalk/chalk/commit/5c91505e184aff4609c0a7fb235770c2f71db4a3\"\u003e\u003ccode\u003e5c91505\u003c/code\u003e\u003c/a\u003e 5.6.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chalk/chalk/commit/a8f5bf7a6733b1e2a356d5cccea6a45d80cf16c7\"\u003e\u003ccode\u003ea8f5bf7\u003c/code\u003e\u003c/a\u003e Make WezTerm terminal use true color\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chalk/chalk/commit/67db246ae0a2bbcc57c190d641c5d767e5275160\"\u003e\u003ccode\u003e67db246\u003c/code\u003e\u003c/a\u003e 5.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chalk/chalk/commit/79ee2d386c58ae3863c28a01f5f86b04c78adfc1\"\u003e\u003ccode\u003e79ee2d3\u003c/code\u003e\u003c/a\u003e Make Ghostty terminal use true color (\u003ca href=\"https://redirect.github.com/chalk/chalk/issues/653\"\u003e#653\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chalk/chalk/commit/5dbc1e2633f3874f43c144fa4919934bc934c495\"\u003e\u003ccode\u003e5dbc1e2\u003c/code\u003e\u003c/a\u003e 5.4.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chalk/chalk/commit/4ebb62d1ca70c122674558a88932ddf6545fe9ef\"\u003e\u003ccode\u003e4ebb62d\u003c/code\u003e\u003c/a\u003e Fix \u003ccode\u003enavigator\u003c/code\u003e not defined \u003ccode\u003eReferenceError\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/chalk/chalk/issues/642\"\u003e#642\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chalk/chalk/commit/fc809b686d5048d56fec3a5d96d1ad57dee193bf\"\u003e\u003ccode\u003efc809b6\u003c/code\u003e\u003c/a\u003e Readme tweak\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chalk/chalk/commit/83acfcf8cb17437b63beceb027180399da74f0a7\"\u003e\u003ccode\u003e83acfcf\u003c/code\u003e\u003c/a\u003e 5.4.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chalk/chalk/commit/f8381204fb096207074089f5ab265fffff6bc341\"\u003e\u003ccode\u003ef838120\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003eCIRCLECI\u003c/code\u003e environments to return level 3 color support\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/chalk/chalk/compare/v4.1.2...v5.6.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `commander` from 12.1.0 to 14.0.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tj/commander.js/releases\"\u003ecommander's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev14.0.3\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRelease Policy document (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2462\"\u003e#2462\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eold major versions now supported for 12 months instead of just previous major version, to give predictable end-of-life\ndate (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2462\"\u003e#2462\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eclarify typing for deprecated callback parameter to \u003ccode\u003e.outputHelp()\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2427\"\u003e#2427\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esimple readability improvements to README (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2465\"\u003e#2465\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev14.0.2\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimprove negative number auto-detection test (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2428\"\u003e#2428\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate (dev) dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev14.0.1\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebroken markdown link in README (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2369\"\u003e#2369\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimprove code readability by using optional chaining (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2394\"\u003e#2394\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003euse more idiomatic code with object spread instead of \u003ccode\u003eObject.assign()\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2395\"\u003e#2395\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eimprove code readability using \u003ccode\u003estring.endsWith()\u003c/code\u003e instead of \u003ccode\u003estring.slice()\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2396\"\u003e#2396\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor \u003ccode\u003e.parseOptions()\u003c/code\u003e to process args array in-place (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2409\"\u003e#2409\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echange private variadic support routines from \u003ccode\u003e._concatValue()\u003c/code\u003e to \u003ccode\u003e._collectValue()\u003c/code\u003e (change code from \u003ccode\u003earray.concat()\u003c/code\u003e to \u003ccode\u003earray.push()\u003c/code\u003e) (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2410\"\u003e#2410\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate (dev) dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev14.0.0\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esupport for groups of options and commands in the help using low-level \u003ccode\u003e.helpGroup()\u003c/code\u003e on \u003ccode\u003eOption\u003c/code\u003e and \u003ccode\u003eCommand\u003c/code\u003e, and higher\n-level \u003ccode\u003e.optionsGroup()\u003c/code\u003e and \u003ccode\u003e.commandsGroup()\u003c/code\u003e which can be used in chaining way to specify group title for following option\ns/commands (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2328\"\u003e#2328\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport for unescaped negative numbers as option-arguments and command-arguments (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2339\"\u003e#2339\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTypeScript: add \u003ccode\u003eparseArg\u003c/code\u003e property to \u003ccode\u003eArgument\u003c/code\u003e class (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2359\"\u003e#2359\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eremove bogus leading space in help when option has default value but not a description (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2348\"\u003e#2348\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e.configureOutput()\u003c/code\u003e now makes copy of settings instead of modifying in-place, fixing side-effects (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2350\"\u003e#2350\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003eBreaking:\u003c/em\u003e Commander 14 requires Node.js v20 or higher\u003c/li\u003e\n\u003cli\u003einternal refactor of \u003ccode\u003eHelp\u003c/code\u003e class adding \u003ccode\u003e.formatItemList()\u003c/code\u003e and \u003ccode\u003e.groupItems()\u003c/code\u003e methods (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2328\"\u003e#2328\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/tj/commander.js/blob/master/CHANGELOG.md\"\u003ecommander's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[14.0.3] (2026-01-31)\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRelease Policy document (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2462\"\u003e#2462\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eold major versions now supported for 12 months instead of just previous major version, to give predictable end-of-life date (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2462\"\u003e#2462\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eclarify typing for deprecated callback parameter to \u003ccode\u003e.outputHelp()\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2427\"\u003e#2427\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esimple readability improvements to README (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2465\"\u003e#2465\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[14.0.2] (2025-10-25)\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimprove negative number auto-detection test (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2428\"\u003e#2428\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate (dev) dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[14.0.1] (2025-09-12)\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebroken markdown link in README (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2369\"\u003e#2369\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimprove code readability by using optional chaining (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2394\"\u003e#2394\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003euse more idiomatic code with object spread instead of \u003ccode\u003eObject.assign()\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2395\"\u003e#2395\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eimprove code readability using \u003ccode\u003estring.endsWith()\u003c/code\u003e instead of \u003ccode\u003estring.slice()\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2396\"\u003e#2396\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor \u003ccode\u003e.parseOptions()\u003c/code\u003e to process args array in-place (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2409\"\u003e#2409\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echange private variadic support routines from \u003ccode\u003e._concatValue()\u003c/code\u003e to \u003ccode\u003e._collectValue()\u003c/code\u003e (change code from \u003ccode\u003earray.concat()\u003c/code\u003e to \u003ccode\u003earray.push()\u003c/code\u003e) (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2410\"\u003e#2410\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate (dev) dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[14.0.0] (2025-05-18)\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esupport for groups of options and commands in the help using low-level \u003ccode\u003e.helpGroup()\u003c/code\u003e on \u003ccode\u003eOption\u003c/code\u003e and \u003ccode\u003eCommand\u003c/code\u003e, and higher-level \u003ccode\u003e.optionsGroup()\u003c/code\u003e and \u003ccode\u003e.commandsGroup()\u003c/code\u003e which can be used in chaining way to specify group title for following options/commands (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2328\"\u003e#2328\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport for unescaped negative numbers as option-arguments and command-arguments (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2339\"\u003e#2339\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTypeScript: add \u003ccode\u003eparseArg\u003c/code\u003e property to \u003ccode\u003eArgument\u003c/code\u003e class (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2359\"\u003e#2359\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eremove bogus leading space in help when option has default value but not a description (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2348\"\u003e#2348\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e.configureOutput()\u003c/code\u003e now makes copy of settings instead of modifying in-place, fixing side-effects (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2350\"\u003e#2350\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003eBreaking:\u003c/em\u003e Commander 14 requires Node.js v20 or higher\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tj/commander.js/commit/8247364da749736570161e95682b07fc2d72497b\"\u003e\u003ccode\u003e8247364\u003c/code\u003e\u003c/a\u003e 14.0.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tj/commander.js/commit/e281fe3e8c63c2518cdd7f3f1966ad2a0fbd1258\"\u003e\u003ccode\u003ee281fe3\u003c/code\u003e\u003c/a\u003e Update docs for 14.0.3 (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2474\"\u003e#2474\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tj/commander.js/commit/7357ddafe2cb7f6eed09217d77db4201e22aad83\"\u003e\u003ccode\u003e7357dda\u003c/code\u003e\u003c/a\u003e Separate out a more detailed release policy document (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2462\"\u003e#2462\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tj/commander.js/commit/b6e2e3a1ebe1751224a5c19778332df93caf0dea\"\u003e\u003ccode\u003eb6e2e3a\u003c/code\u003e\u003c/a\u003e Bump eslint from 9.39.1 to 9.39.2 (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2470\"\u003e#2470\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tj/commander.js/commit/d6f63a7b33716da842e9b67433147150fb9059cd\"\u003e\u003ccode\u003ed6f63a7\u003c/code\u003e\u003c/a\u003e Bump ts-jest from 29.4.5 to 29.4.6 (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2467\"\u003e#2467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tj/commander.js/commit/2a9768aea01e6d8caa5d55b70d3ad53a35e47288\"\u003e\u003ccode\u003e2a9768a\u003c/code\u003e\u003c/a\u003e Bump prettier from 3.6.2 to 3.7.4 (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2466\"\u003e#2466\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tj/commander.js/commit/921191868b3cb935908256d4655b7bb9c6ad90bc\"\u003e\u003ccode\u003e9211918\u003c/code\u003e\u003c/a\u003e docs(README): Tweak formatting, punctuation for clarity (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2465\"\u003e#2465\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tj/commander.js/commit/4208a96ee7533b7ee5fa10123d169bc8c631b83c\"\u003e\u003ccode\u003e4208a96\u003c/code\u003e\u003c/a\u003e Bump typescript-eslint from 8.46.2 to 8.48.0 (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2458\"\u003e#2458\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tj/commander.js/commit/03308ceb50c8b508abcfc3b34c36daa2e7b813d2\"\u003e\u003ccode\u003e03308ce\u003c/code\u003e\u003c/a\u003e Bump eslint-plugin-jest from 29.0.1 to 29.2.1 (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2457\"\u003e#2457\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tj/commander.js/commit/4d2db1f287112f37e0f9bfac54d5d7d981c5ec01\"\u003e\u003ccode\u003e4d2db1f\u003c/code\u003e\u003c/a\u003e Bump globals from 16.4.0 to 16.5.0 (\u003ca href=\"https://redirect.github.com/tj/commander.js/issues/2456\"\u003e#2456\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/tj/commander.js/compare/v12.1.0...v14.0.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `diff` from 5.2.0 to 9.0.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kpdecker/jsdiff/blob/master/release-notes.md\"\u003ediff's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e9.0.0\u003c/h2\u003e\n\u003cp\u003e(All changes part of PR \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/672\"\u003e#672\u003c/a\u003e.)\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eES5 support is dropped\u003c/strong\u003e. \u003ccode\u003eparsePatch\u003c/code\u003e now uses \u003ccode\u003eTextDecoder\u003c/code\u003e and \u003ccode\u003eUint8Array\u003c/code\u003e, which are not available in ES5, and TypeScript is now compiled with the \u0026quot;es6\u0026quot; \u003ccode\u003etarget\u003c/code\u003e. From now on, I intend to freely use any features that are deemed \u0026quot;Widely available\u0026quot; by \u003ca href=\"https://web.dev/baseline\"\u003eBaseline\u003c/a\u003e. Users who need ES5 support should stick to version 8.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eC-style quoted strings in filename headers are now properly supported\u003c/strong\u003e.\u003c/p\u003e\n\u003cp\u003eWhen the name of either the old or new file in a patch contains \u0026quot;special characters\u0026quot;, both GNU \u003ccode\u003ediff\u003c/code\u003e and Git quote the filename in the patch's headers and escape special characters using the same escape sequences that are used in string literals in C, including octal escapes for all non-ASCII characters. Previously, jsdiff had very little support for this; \u003ccode\u003eparsePatch\u003c/code\u003e would remove the quotes, and unescape any escaped backslashes, but would not unescape other escape sequences. \u003ccode\u003eformatPatch\u003c/code\u003e, meanwhile, did not quote or escape special characters at all.\u003c/p\u003e\n\u003cp\u003eNow, \u003ccode\u003eparsePatch\u003c/code\u003e parses all the possible escape sequences that GNU diff (or Git) ever output, and \u003ccode\u003eformatPatch\u003c/code\u003e quotes and escapes filenames containing special characters in the same way GNU diff does.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003eformatPatch\u003c/code\u003e now omits file headers when \u003ccode\u003eoldFileName\u003c/code\u003e or \u003ccode\u003enewFileName\u003c/code\u003e in the provided patch object are \u003ccode\u003eundefined\u003c/code\u003e\u003c/strong\u003e, regardless of the \u003ccode\u003eheaderOptions\u003c/code\u003e parameter. (Previously, it would treat the absence of \u003ccode\u003eoldFileName\u003c/code\u003e or \u003ccode\u003enewFileName\u003c/code\u003e as indicating the filename was the word \u0026quot;undefined\u0026quot; and emit headers \u003ccode\u003e--- undefined\u003c/code\u003e / \u003ccode\u003e+++ undefined\u003c/code\u003e.)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003eformatPatch\u003c/code\u003e no longer outputs trailing tab characters at the end of \u003ccode\u003e---\u003c/code\u003e/\u003ccode\u003e+++\u003c/code\u003e headers.\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003ePreviously, if \u003ccode\u003eformatPatch\u003c/code\u003e was passed a patch object to serialize that had empty strings for the \u003ccode\u003eoldHeader\u003c/code\u003e or \u003ccode\u003enewHeader\u003c/code\u003e property, it would include a trailing tab character after the filename in the \u003ccode\u003e---\u003c/code\u003e and/or \u003ccode\u003e+++\u003c/code\u003e file header. Now, this scenario is treated the same as when \u003ccode\u003eoldHeader\u003c/code\u003e/\u003ccode\u003enewHeader\u003c/code\u003e is \u003ccode\u003eundefined\u003c/code\u003e - i.e. the trailing tab is omitted.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003eformatPatch\u003c/code\u003e no longer mutates its input\u003c/strong\u003e when serializing a patch containing a hunk where either the old or new content contained zero lines. (Such a hunk occurs only when the hunk has no context lines and represents a pure insertion or pure deletion, which for instance will occur whenever one of the two files being diffed is completely empty.) Previously \u003ccode\u003eformatPatch\u003c/code\u003e would provide the correct output but also mutate the \u003ccode\u003eoldLines\u003c/code\u003e or \u003ccode\u003enewLines\u003c/code\u003e property on the hunk, changing the meaning of the underlying patch.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eGit-style patches are now supported by \u003ccode\u003eparsePatch\u003c/code\u003e, \u003ccode\u003eformatPatch\u003c/code\u003e, and \u003ccode\u003ereversePatch\u003c/code\u003e\u003c/strong\u003e.\u003c/p\u003e\n\u003cp\u003ePatches output by \u003ccode\u003egit diff\u003c/code\u003e can include some features that are unlike those output by GNU \u003ccode\u003ediff\u003c/code\u003e, and therefore not handled by an ordinary unified diff format parser. An ordinary diff simply describes the differences between the \u003cem\u003econtent\u003c/em\u003e of two files, but Git diffs can also indicate, via \u0026quot;extended headers\u0026quot...\n\n_Description has been truncated_","html_url":"https://github.com/AaronGrace978/AgentPrime/pull/8","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/AaronGrace978%2FAgentPrime/issues/8","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/8/packages"}},{"old_version":"3.3.1","new_version":"3.3.2","update_type":"patch","path":null,"pr_created_at":"2026-05-15T02:21:55.000Z","version_change":"3.3.1 → 3.3.2","issue":{"uuid":"4450720138","node_id":"PR_kwDOSd7uYM7bwRLD","number":3,"state":"open","title":"Bump node-fetch from 3.3.1 to 3.3.2","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-15T02:21:55.000Z","updated_at":"2026-05-15T02:21:59.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"node-fetch","old_version":"3.3.1","new_version":"3.3.2","repository_url":"https://github.com/node-fetch/node-fetch"}],"path":null,"ecosystem":"npm"},"body":"Bumps [node-fetch](https://github.com/node-fetch/node-fetch) from 3.3.1 to 3.3.2.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-fetch/node-fetch/releases\"\u003enode-fetch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.3.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.1...v3.3.2\"\u003e3.3.2\u003c/a\u003e (2023-07-25)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e8b3320d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1735\"\u003e#1735\u003c/a\u003e \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1473\"\u003e#1473\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e\u003ccode\u003e8b3320d\u003c/code\u003e\u003c/a\u003e fix: Remove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.1...v3.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=node-fetch\u0026package-manager=npm_and_yarn\u0026previous-version=3.3.1\u0026new-version=3.3.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/nguyenngocson109205/chat-box-cua-tui/pull/3","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/nguyenngocson109205%2Fchat-box-cua-tui/issues/3","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/3/packages"}},{"old_version":"2.6.1","new_version":"2.7.0","update_type":"minor","path":null,"pr_created_at":"2026-05-14T08:49:09.000Z","version_change":"2.6.1 → 2.7.0","issue":{"uuid":"4444534534","node_id":"PR_kwDOEzH_b87bckQr","number":2132,"state":"closed","title":"Bump the npm_and_yarn group across 2 directories with 26 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-15T01:09:55.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-14T08:49:09.000Z","updated_at":"2026-05-15T01:09:57.000Z","time_to_close":58846,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"npm_and_yarn","update_count":26,"packages":[{"name":"body-parser","old_version":"1.19.1","new_version":"1.20.5","repository_url":"https://github.com/expressjs/body-parser"},{"name":"express","old_version":"4.17.2","new_version":"4.22.2","repository_url":"https://github.com/expressjs/express"},{"name":"ejs","old_version":"3.1.6","new_version":"3.1.10","repository_url":"https://github.com/mde/ejs"},{"name":"esbuild","old_version":"0.18.13","new_version":"0.25.0","repository_url":"https://github.com/evanw/esbuild"},{"name":"jsonwebtoken","old_version":"8.5.1","new_version":"9.0.3","repository_url":"https://github.com/auth0/node-jsonwebtoken"},{"name":"semver","old_version":"7.3.5","new_version":"7.8.0","repository_url":"https://github.com/npm/node-semver"},{"name":"semver","old_version":"6.3.0","new_version":"6.3.1","repository_url":"https://github.com/npm/node-semver"},{"name":"semver","old_version":"5.7.1","new_version":"5.7.2","repository_url":"https://github.com/npm/node-semver"},{"name":"@babel/runtime","old_version":"7.12.13","new_version":"7.29.2","repository_url":"https://github.com/babel/babel"},{"name":"brace-expansion","old_version":"1.1.11","new_version":"1.1.14","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"braces","old_version":"3.0.2","new_version":"3.0.3","repository_url":"https://github.com/micromatch/braces"},{"name":"flatted","old_version":"3.2.5","new_version":"3.4.2","repository_url":"https://github.com/WebReflection/flatted"},{"name":"got","old_version":"9.6.0","new_version":"removed","repository_url":"https://github.com/sindresorhus/got"},{"name":"js-yaml","old_version":"3.14.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"json5","old_version":"1.0.1","new_version":"1.0.2","repository_url":"https://github.com/json5/json5"},{"name":"minimist","old_version":"1.2.5","new_version":"1.2.8","repository_url":"https://github.com/minimistjs/minimist"},{"name":"node-fetch","old_version":"2.6.1","new_version":"2.7.0","repository_url":"https://github.com/node-fetch/node-fetch"},{"name":"picomatch","old_version":"2.3.1","new_version":"2.3.2","repository_url":"https://github.com/micromatch/picomatch"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 16 updates in the /samples/tab-staggered-permission/nodejs directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [body-parser](https://github.com/expressjs/body-parser) | `1.19.1` | `1.20.5` |\n| [express](https://github.com/expressjs/express) | `4.17.2` | `4.22.2` |\n| [ejs](https://github.com/mde/ejs) | `3.1.6` | `3.1.10` |\n| [esbuild](https://github.com/evanw/esbuild) | `0.18.13` | `0.25.0` |\n| [jsonwebtoken](https://github.com/auth0/node-jsonwebtoken) | `8.5.1` | `9.0.3` |\n| [semver](https://github.com/npm/node-semver) | `7.3.5` | `7.8.0` |\n| [semver](https://github.com/npm/node-semver) | `6.3.0` | `6.3.1` |\n| [semver](https://github.com/npm/node-semver) | `5.7.1` | `5.7.2` |\n| [@babel/runtime](https://github.com/babel/babel/tree/HEAD/packages/babel-runtime) | `7.12.13` | `7.29.2` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.14` |\n| [braces](https://github.com/micromatch/braces) | `3.0.2` | `3.0.3` |\n| [flatted](https://github.com/WebReflection/flatted) | `3.2.5` | `3.4.2` |\n| [got](https://github.com/sindresorhus/got) | `9.6.0` | `removed` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [json5](https://github.com/json5/json5) | `1.0.1` | `1.0.2` |\n| [minimist](https://github.com/minimistjs/minimist) | `1.2.5` | `1.2.8` |\n| [node-fetch](https://github.com/node-fetch/node-fetch) | `2.6.1` | `2.7.0` |\n| [picomatch](https://github.com/micromatch/picomatch) | `2.3.1` | `2.3.2` |\n\nBumps the npm_and_yarn group with 15 updates in the /samples/tab-stage-view/nodejs directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [body-parser](https://github.com/expressjs/body-parser) | `1.19.0` | `1.20.5` |\n| [express](https://github.com/expressjs/express) | `4.17.1` | `4.22.2` |\n| [ejs](https://github.com/mde/ejs) | `3.1.9` | `3.1.10` |\n| [esbuild](https://github.com/evanw/esbuild) | `0.18.14` | `0.25.0` |\n| [semver](https://github.com/npm/node-semver) | `7.3.5` | `7.8.0` |\n| [semver](https://github.com/npm/node-semver) | `5.7.1` | `5.7.2` |\n| [semver](https://github.com/npm/node-semver) | `6.3.0` | `6.3.1` |\n| [@babel/runtime](https://github.com/babel/babel/tree/HEAD/packages/babel-runtime) | `7.14.8` | `7.29.2` |\n| [axios](https://github.com/axios/axios) | `0.21.4` | `1.16.1` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `2.0.1` | `2.1.0` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.14` |\n| [braces](https://github.com/micromatch/braces) | `3.0.2` | `3.0.3` |\n| [flatted](https://github.com/WebReflection/flatted) | `3.2.2` | `3.4.2` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [json5](https://github.com/json5/json5) | `2.2.0` | `2.2.3` |\n| [minimatch](https://github.com/isaacs/minimatch) | `5.1.6` | `5.1.9` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `3.1.5` |\n| [minimist](https://github.com/minimistjs/minimist) | `1.2.5` | `1.2.8` |\n| [picomatch](https://github.com/micromatch/picomatch) | `2.3.1` | `2.3.2` |\n\n\nUpdates `body-parser` from 1.19.1 to 1.20.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/expressjs/body-parser/releases\"\u003ebody-parser's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.20.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eThe reason for this release is a fix to the extended urlencoded parser returning objects instead of arrays for large array inputs (\u0026gt; 100) on qs@6.14.2+. (\u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/716\"\u003eexpressjs/body-parser#716\u003c/a\u003e)\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003erefactor(json): simplify strict mode error string construction by \u003ca href=\"https://github.com/jonchurch\"\u003e\u003ccode\u003e@​jonchurch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/692\"\u003eexpressjs/body-parser#692\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: correct off-by-one error in parameterCount by \u003ca href=\"https://github.com/abhu85\"\u003e\u003ccode\u003e@​abhu85\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/716\"\u003eexpressjs/body-parser#716\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edeps(qs): bump qs to 6.15.1 by \u003ca href=\"https://github.com/jonchurch\"\u003e\u003ccode\u003e@​jonchurch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/722\"\u003eexpressjs/body-parser#722\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease: 1.20.5 by \u003ca href=\"https://github.com/jonchurch\"\u003e\u003ccode\u003e@​jonchurch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/721\"\u003eexpressjs/body-parser#721\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/abhu85\"\u003e\u003ccode\u003e@​abhu85\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/716\"\u003eexpressjs/body-parser#716\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSpecial thanks to triager \u003ca href=\"https://github.com/krzysdz\"\u003e\u003ccode\u003e@​krzysdz\u003c/code\u003e\u003c/a\u003e for keeping this on our radar and effectively triaging the specific issue!\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/expressjs/body-parser/compare/1.20.4...1.20.5\"\u003ehttps://github.com/expressjs/body-parser/compare/1.20.4...1.20.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e1.20.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove redundant depth check by \u003ca href=\"https://github.com/blakeembrey\"\u003e\u003ccode\u003e@​blakeembrey\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/538\"\u003eexpressjs/body-parser#538\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: add support for Node.js v23 by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/553\"\u003eexpressjs/body-parser#553\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: restore CI for 1.x branch by \u003ca href=\"https://github.com/bjohansebas\"\u003e\u003ccode\u003e@​bjohansebas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/665\"\u003eexpressjs/body-parser#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edeps: qs@^6.14.0 by \u003ca href=\"https://github.com/bjohansebas\"\u003e\u003ccode\u003e@​bjohansebas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/664\"\u003eexpressjs/body-parser#664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edeps: use tilde notation and update certain dependencies by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/668\"\u003eexpressjs/body-parser#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: remove SECURITY.md by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/669\"\u003eexpressjs/body-parser#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: add CodeQL (SAST) by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/670\"\u003eexpressjs/body-parser#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease: 1.20.4 by \u003ca href=\"https://github.com/UlisesGascon\"\u003e\u003ccode\u003e@​UlisesGascon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/672\"\u003eexpressjs/body-parser#672\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/expressjs/body-parser/compare/1.20.3...1.20.4\"\u003ehttps://github.com/expressjs/body-parser/compare/1.20.3...1.20.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e1.20.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eImportant\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003edeps: qs@6.13.0\u003c/li\u003e\n\u003cli\u003eadd \u003ccode\u003edepth\u003c/code\u003e option to customize the depth level in the parser\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eIMPORTANT:\u003c/strong\u003e The default \u003ccode\u003edepth\u003c/code\u003e level for parsing URL-encoded data is now \u003ccode\u003e32\u003c/code\u003e (previously was \u003ccode\u003eInfinity\u003c/code\u003e). \u003ca href=\"https://github.com/expressjs/body-parser/blob/17529513673e39ba79886a7ce3363320cf1c0c50/README.md#depth\"\u003eDocumentation\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003echore: add support for OSSF scorecard reporting by \u003ca href=\"https://github.com/inigomarquinez\"\u003e\u003ccode\u003e@​inigomarquinez\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/522\"\u003eexpressjs/body-parser#522\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: fix errors in ci github action for node 8 and 9 by \u003ca href=\"https://github.com/inigomarquinez\"\u003e\u003ccode\u003e@​inigomarquinez\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/523\"\u003eexpressjs/body-parser#523\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: pin to node@22.4.1 by \u003ca href=\"https://github.com/wesleytodd\"\u003e\u003ccode\u003e@​wesleytodd\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/527\"\u003eexpressjs/body-parser#527\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edeps: qs@6.12.3 by \u003ca href=\"https://github.com/melikhov-dev\"\u003e\u003ccode\u003e@​melikhov-dev\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/521\"\u003eexpressjs/body-parser#521\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd OSSF Scorecard badge by \u003ca href=\"https://github.com/bjohansebas\"\u003e\u003ccode\u003e@​bjohansebas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/531\"\u003eexpressjs/body-parser#531\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLinter by \u003ca href=\"https://github.com/UlisesGascon\"\u003e\u003ccode\u003e@​UlisesGascon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/534\"\u003eexpressjs/body-parser#534\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease: 1.20.3 by \u003ca href=\"https://github.com/UlisesGascon\"\u003e\u003ccode\u003e@​UlisesGascon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/535\"\u003eexpressjs/body-parser#535\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/expressjs/body-parser/blob/1.20.5/HISTORY.md\"\u003ebody-parser's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.20.5 / 2026-04-24\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003erefactor(json): simplify strict mode error string construction\u003c/li\u003e\n\u003cli\u003efix: extended urlencoded parsing of arrays with \u0026gt;100 elements (\u003ca href=\"https://redirect.github.com/expressjs/body-parser/issues/716\"\u003e#716\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edeps: qs@~6.15.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.20.4 / 2025-12-01\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003edeps: qs@~6.14.0\u003c/li\u003e\n\u003cli\u003edeps: use tilde notation for dependencies\u003c/li\u003e\n\u003cli\u003edeps: http-errors@~2.0.1\u003c/li\u003e\n\u003cli\u003edeps: raw-body@~2.5.3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.20.3 / 2024-09-10\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003edeps: qs@6.13.0\u003c/li\u003e\n\u003cli\u003eadd \u003ccode\u003edepth\u003c/code\u003e option to customize the depth level in the parser\u003c/li\u003e\n\u003cli\u003eIMPORTANT: The default \u003ccode\u003edepth\u003c/code\u003e level for parsing URL-encoded data is now \u003ccode\u003e32\u003c/code\u003e (previously was \u003ccode\u003eInfinity\u003c/code\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.20.2 / 2023-02-21\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix strict json error message on Node.js 19+\u003c/li\u003e\n\u003cli\u003edeps: content-type@~1.0.5\n\u003cul\u003e\n\u003cli\u003eperf: skip value escaping when unnecessary\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003edeps: raw-body@2.5.2\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.20.1 / 2022-10-06\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003edeps: qs@6.11.0\u003c/li\u003e\n\u003cli\u003eperf: remove unnecessary object clone\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.20.0 / 2022-04-02\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix error message for json parse whitespace in \u003ccode\u003estrict\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eFix internal error when inflated body exceeds limit\u003c/li\u003e\n\u003cli\u003ePrevent loss of async hooks context\u003c/li\u003e\n\u003cli\u003ePrevent hanging when request already read\u003c/li\u003e\n\u003cli\u003edeps: depd@2.0.0\n\u003cul\u003e\n\u003cli\u003eReplace internal \u003ccode\u003eeval\u003c/code\u003e usage with \u003ccode\u003eFunction\u003c/code\u003e constructor\u003c/li\u003e\n\u003cli\u003eUse instance methods on \u003ccode\u003eprocess\u003c/code\u003e to check for listeners\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003edeps: http-errors@2.0.0\n\u003cul\u003e\n\u003cli\u003edeps: depd@2.0.0\u003c/li\u003e\n\u003cli\u003edeps: statuses@2.0.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003edeps: on-finished@2.4.1\u003c/li\u003e\n\u003cli\u003edeps: qs@6.10.3\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/body-parser/commit/0defdbe7f95ad0d3bc007d3a7c59c8c0ab9e6575\"\u003e\u003ccode\u003e0defdbe\u003c/code\u003e\u003c/a\u003e release(patch): 1.20.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/body-parser/commit/cd0e7a000c53e7be7262d303e57a352b6a00db7f\"\u003e\u003ccode\u003ecd0e7a0\u003c/code\u003e\u003c/a\u003e deps(qs): bump qs to 6.15.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/body-parser/commit/6f24d7e8bcd9860b136920926ce86da1a7dd1d51\"\u003e\u003ccode\u003e6f24d7e\u003c/code\u003e\u003c/a\u003e fix: correct off-by-one error in parameterCount (\u003ca href=\"https://redirect.github.com/expressjs/body-parser/issues/716\"\u003e#716\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/body-parser/commit/b849bd533d8b4abf5576a3e301f28d9befa05ddd\"\u003e\u003ccode\u003eb849bd5\u003c/code\u003e\u003c/a\u003e deps: qs@~6.14.1 (\u003ca href=\"https://redirect.github.com/expressjs/body-parser/issues/690\"\u003e#690\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/body-parser/commit/2c55e2f712f320a8e8d0f9fcb1d06526d0e401c9\"\u003e\u003ccode\u003e2c55e2f\u003c/code\u003e\u003c/a\u003e refactor(json): simplify strict mode error string construction (\u003ca href=\"https://redirect.github.com/expressjs/body-parser/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/body-parser/commit/7db202cac84a001e6566c2dc6516b44db98beff3\"\u003e\u003ccode\u003e7db202c\u003c/code\u003e\u003c/a\u003e 1.20.4 (\u003ca href=\"https://redirect.github.com/expressjs/body-parser/issues/672\"\u003e#672\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/body-parser/commit/d8f8adb898676dfdf997b4455e5f9b689b53e989\"\u003e\u003ccode\u003ed8f8adb\u003c/code\u003e\u003c/a\u003e ci: add CodeQL (SAST) (\u003ca href=\"https://redirect.github.com/expressjs/body-parser/issues/670\"\u003e#670\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/body-parser/commit/6d133c19b3e7c0bb8301959ca1dba283d23d23c3\"\u003e\u003ccode\u003e6d133c1\u003c/code\u003e\u003c/a\u003e chore: remove SECURITY.md (\u003ca href=\"https://redirect.github.com/expressjs/body-parser/issues/669\"\u003e#669\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/body-parser/commit/fcd15355041ada6f37288dd13858d50429016b66\"\u003e\u003ccode\u003efcd1535\u003c/code\u003e\u003c/a\u003e deps: use tilde notation and update certain dependencies (\u003ca href=\"https://redirect.github.com/expressjs/body-parser/issues/668\"\u003e#668\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/body-parser/commit/ec5fa290d25d85e0049757e240249072331eaee6\"\u003e\u003ccode\u003eec5fa29\u003c/code\u003e\u003c/a\u003e deps: qs@~6.14.0 (\u003ca href=\"https://redirect.github.com/expressjs/body-parser/issues/664\"\u003e#664\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/expressjs/body-parser/compare/1.19.1...1.20.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~jonchurch\"\u003ejonchurch\u003c/a\u003e, a new releaser for body-parser since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `express` from 4.17.2 to 4.22.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/expressjs/express/releases\"\u003eexpress's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.22.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: restore \u0026gt;20 array parsing for \u003ccode\u003ereq.query\u003c/code\u003e repeated keys (\u003ca href=\"https://github.com/expressjs/express/commit/8d09bfe6d88983da5c3e12cfdd54782c4dc675db\"\u003e\u003ccode\u003e8d09bfe6\u003c/code\u003e\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eThis also unifies array-cap behavior across notations. Indexed notation (\u003ccode\u003ea[0]=...\u003c/code\u003e) was historically capped at qs's default \u003ccode\u003earrayLimit\u003c/code\u003e of 20 even in older qs versions; after this change it also allows up to 1000 items.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003edeps: qs@~6.15.1\u003c/li\u003e\n\u003cli\u003edeps: body-parser@~1.20.5\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/suuuuuuminnnnnn\"\u003e\u003ccode\u003e@​suuuuuuminnnnnn\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/7021\"\u003eexpressjs/express#7021\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/SAY-5\"\u003e\u003ccode\u003e@​SAY-5\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/7181\"\u003eexpressjs/express#7181\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/expressjs/express/compare/v4.22.1...v4.22.2\"\u003ehttps://github.com/expressjs/express/compare/v4.22.1...v4.22.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.22.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!IMPORTANT]\u003cbr /\u003e\nThe prior release (4.22.0) included an erroneous breaking change related to the extended query parser. There is no actual security vulnerability associated with this behavior (CVE-2024-51999 has been rejected). The change has been fully reverted in this release.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cul\u003e\n\u003cli\u003eRelease: 4.22.1 by \u003ca href=\"https://github.com/UlisesGascon\"\u003e\u003ccode\u003e@​UlisesGascon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6934\"\u003eexpressjs/express#6934\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/expressjs/express/compare/4.22.0...v4.22.1\"\u003ehttps://github.com/expressjs/express/compare/4.22.0...v4.22.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e4.22.0\u003c/h2\u003e\n\u003ch2\u003eImportant: Security\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity fix for \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2024-51999\"\u003eCVE-2024-51999\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/express/security/advisories/GHSA-pj86-cfqh-vqx6\"\u003eGHSA-pj86-cfqh-vqx6\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRefactor: improve readability by \u003ca href=\"https://github.com/sazk07\"\u003e\u003ccode\u003e@​sazk07\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6190\"\u003eexpressjs/express#6190\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: add support for Node.js@23.0 by \u003ca href=\"https://github.com/UlisesGascon\"\u003e\u003ccode\u003e@​UlisesGascon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6080\"\u003eexpressjs/express#6080\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMethod functions with no path should error by \u003ca href=\"https://github.com/wesleytodd\"\u003e\u003ccode\u003e@​wesleytodd\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/5957\"\u003eexpressjs/express#5957\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: updated github actions ci workflow by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6323\"\u003eexpressjs/express#6323\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: reorder \u003ccode\u003enpm i\u003c/code\u003e steps to fix ci for older node versions by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6336\"\u003eexpressjs/express#6336\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackport: ci: add node.js 24 to test matrix by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6506\"\u003eexpressjs/express#6506\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(4.x): wider range for query test skip by \u003ca href=\"https://github.com/jonchurch\"\u003e\u003ccode\u003e@​jonchurch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6513\"\u003eexpressjs/express#6513\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003euse tilde notation for certain dependencies by \u003ca href=\"https://github.com/UlisesGascon\"\u003e\u003ccode\u003e@​UlisesGascon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6905\"\u003eexpressjs/express#6905\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edeps: qs@6.14.0 by \u003ca href=\"https://github.com/UlisesGascon\"\u003e\u003ccode\u003e@​UlisesGascon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6909\"\u003eexpressjs/express#6909\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edeps: use tilde notation for \u003ccode\u003eqs\u003c/code\u003e by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6919\"\u003eexpressjs/express#6919\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease: 4.22.0 by \u003ca href=\"https://github.com/UlisesGascon\"\u003e\u003ccode\u003e@​UlisesGascon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6921\"\u003eexpressjs/express#6921\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/expressjs/express/compare/4.21.2...4.22.0\"\u003ehttps://github.com/expressjs/express/compare/4.21.2...4.22.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e4.21.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/expressjs/express/blob/v4.22.2/History.md\"\u003eexpress's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e4.22.2 / 2026-05-011\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix: restore \u0026gt;20 array parsing for \u003ccode\u003ereq.query\u003c/code\u003e repeated keys (\u003ca href=\"https://github.com/expressjs/express/commit/8d09bfe6d88983da5c3e12cfdd54782c4dc675db\"\u003e\u003ccode\u003e8d09bfe6\u003c/code\u003e\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eThis also unifies array-cap behavior across notations. Indexed notation (\u003ccode\u003ea[0]=...\u003c/code\u003e) was historically capped at qs's default \u003ccode\u003earrayLimit\u003c/code\u003e of 20 even in older qs versions; after this change it also allows up to 1000 items.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003edeps: qs@~6.15.1\u003c/li\u003e\n\u003cli\u003edeps: body-parser@~1.20.5\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e4.22.1 / 2025-12-01\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eRevert security fix for \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2024-51999\"\u003eCVE-2024-51999\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/express/security/advisories/GHSA-pj86-cfqh-vqx6\"\u003eGHSA-pj86-cfqh-vqx6\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eThe prior release (4.22.0) included an erroneous breaking change related to the extended query parser. There is no actual security vulnerability associated with this behavior (CVE-2024-51999 has been rejected). The change has been fully reverted in this release.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e4.22.0 / 2025-12-01\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity fix for \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2024-51999\"\u003eCVE-2024-51999\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/express/security/advisories/GHSA-pj86-cfqh-vqx6\"\u003eGHSA-pj86-cfqh-vqx6\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edeps: use tilde notation for dependencies\u003c/li\u003e\n\u003cli\u003edeps: qs@6.14.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e4.21.2 / 2024-11-06\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003edeps: path-to-regexp@0.1.12\n\u003cul\u003e\n\u003cli\u003eFix backtracking protection\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003edeps: path-to-regexp@0.1.11\n\u003cul\u003e\n\u003cli\u003eThrows an error on invalid path values\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e4.21.1 / 2024-10-08\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBackported a fix for \u003ca href=\"https://nvd.nist.gov/vuln/detail/CVE-2024-47764\"\u003eCVE-2024-47764\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e4.21.0 / 2024-09-11\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eres.location(\u0026quot;back\u0026quot;)\u003c/code\u003e and \u003ccode\u003eres.redirect(\u0026quot;back\u0026quot;)\u003c/code\u003e magic string\u003c/li\u003e\n\u003cli\u003edeps: serve-static@1.16.2\n\u003cul\u003e\n\u003cli\u003eincludes send@0.19.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003edeps: finalhandler@1.3.1\u003c/li\u003e\n\u003cli\u003edeps: qs@6.13.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e4.20.0 / 2024-09-10\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003edeps: serve-static@0.16.0\n\u003cul\u003e\n\u003cli\u003eRemove link renderization in html while redirecting\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003edeps: send@0.19.0\n\u003cul\u003e\n\u003cli\u003eRemove link renderization in html while redirecting\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003edeps: body-parser@0.6.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/df0abc9333a3398b97b71f6ea7cd77d5ea3e9f97\"\u003e\u003ccode\u003edf0abc9\u003c/code\u003e\u003c/a\u003e 4.22.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/836d36668ea750f78b4373b4de79bbd22634e6ec\"\u003e\u003ccode\u003e836d366\u003c/code\u003e\u003c/a\u003e \u003ccode\u003e4.x\u003c/code\u003e update qs to 6.15.1, body-parser 1.20.5 (\u003ca href=\"https://redirect.github.com/expressjs/express/issues/7224\"\u003e#7224\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/8d09bfe6d88983da5c3e12cfdd54782c4dc675db\"\u003e\u003ccode\u003e8d09bfe\u003c/code\u003e\u003c/a\u003e fix: restore array parsing for req.query repeated keys (\u003ca href=\"https://redirect.github.com/expressjs/express/issues/7181\"\u003e#7181\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/d39e8ad1778a0b8a606a5a7b17096d0cc5ec722d\"\u003e\u003ccode\u003ed39e8ad\u003c/code\u003e\u003c/a\u003e deps: body-parser@~1.20.4 (\u003ca href=\"https://redirect.github.com/expressjs/express/issues/7021\"\u003e#7021\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/efe85d9fdc9e3a62f7a1121b4f5f484862298b48\"\u003e\u003ccode\u003eefe85d9\u003c/code\u003e\u003c/a\u003e deps: qs@^6.14.1 (\u003ca href=\"https://redirect.github.com/expressjs/express/issues/6972\"\u003e#6972\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/f62378e1bc776259c0a471476c2dc043a02ac762\"\u003e\u003ccode\u003ef62378e\u003c/code\u003e\u003c/a\u003e 📝 add note to history\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/12fae14531a78f19a2caaa5d4f58d9b01eaf3194\"\u003e\u003ccode\u003e12fae14\u003c/code\u003e\u003c/a\u003e 4.22.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/5ddf311af32e772a77fd48b6266ce2f1ba330e1a\"\u003e\u003ccode\u003e5ddf311\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;sec: security patch for CVE-2024-51999\u0026quot;\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/49744abd1120484fe64d7bde1cd3197c32523b6e\"\u003e\u003ccode\u003e49744ab\u003c/code\u003e\u003c/a\u003e 4.22.0 (\u003ca href=\"https://redirect.github.com/expressjs/express/issues/6921\"\u003e#6921\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/6e97452f600a3b01719fbc5517d833c7646b0bb7\"\u003e\u003ccode\u003e6e97452\u003c/code\u003e\u003c/a\u003e sec: security patch for CVE-2024-51999\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/expressjs/express/compare/4.17.2...v4.22.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~jonchurch\"\u003ejonchurch\u003c/a\u003e, a new releaser for express since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ejs` from 3.1.6 to 3.1.10\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/mde/ejs/releases\"\u003eejs's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.1.10\u003c/h2\u003e\n\u003cp\u003eVersion 3.1.10\u003c/p\u003e\n\u003ch2\u003ev3.1.9\u003c/h2\u003e\n\u003cp\u003eVersion 3.1.9\u003c/p\u003e\n\u003ch2\u003ev3.1.8\u003c/h2\u003e\n\u003cp\u003eVersion 3.1.8\u003c/p\u003e\n\u003ch2\u003ev3.1.7\u003c/h2\u003e\n\u003cp\u003eVersion 3.1.7\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mde/ejs/commit/d3f807dea9ce904e20a47a661f2310ce9134dc2a\"\u003e\u003ccode\u003ed3f807d\u003c/code\u003e\u003c/a\u003e Version 3.1.10\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mde/ejs/commit/9ee26dde5d7015d9c0e2ff87314cabeac5247c02\"\u003e\u003ccode\u003e9ee26dd\u003c/code\u003e\u003c/a\u003e Mocha TDD\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mde/ejs/commit/e469741dca7df2eb400199e1cdb74621e3f89aa5\"\u003e\u003ccode\u003ee469741\u003c/code\u003e\u003c/a\u003e Basic pollution protection\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mde/ejs/commit/715e9507fa3e6122dc6430fe0f25a6e6ded300c1\"\u003e\u003ccode\u003e715e950\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/mde/ejs/issues/756\"\u003e#756\u003c/a\u003e from Jeffrey-mu/main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mde/ejs/commit/cabe3146ad964a1e98db7742abf435906ca79406\"\u003e\u003ccode\u003ecabe314\u003c/code\u003e\u003c/a\u003e Include advanced usage examples\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mde/ejs/commit/29b076cdbbf3eb1b4323b33299ab6d79391b2c33\"\u003e\u003ccode\u003e29b076c\u003c/code\u003e\u003c/a\u003e Added header\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mde/ejs/commit/11503c79af882e3635b513d57c7f1813792eb127\"\u003e\u003ccode\u003e11503c7\u003c/code\u003e\u003c/a\u003e Merge branch 'main' of github.com:mde/ejs into main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mde/ejs/commit/7690404e2fc1688756938e4d2fc19e0fac77d736\"\u003e\u003ccode\u003e7690404\u003c/code\u003e\u003c/a\u003e Added security banner to README\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mde/ejs/commit/f47d7aedd51a983e4f73045f962b1209096b5800\"\u003e\u003ccode\u003ef47d7ae\u003c/code\u003e\u003c/a\u003e Update SECURITY.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mde/ejs/commit/828cea1687e3db459ab09d2f405d2444c7580b90\"\u003e\u003ccode\u003e828cea1\u003c/code\u003e\u003c/a\u003e Update SECURITY.md\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/mde/ejs/compare/v3.1.6...v3.1.10\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `express` from 4.17.2 to 4.22.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/expressjs/express/releases\"\u003eexpress's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.22.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: restore \u0026gt;20 array parsing for \u003ccode\u003ereq.query\u003c/code\u003e repeated keys (\u003ca href=\"https://github.com/expressjs/express/commit/8d09bfe6d88983da5c3e12cfdd54782c4dc675db\"\u003e\u003ccode\u003e8d09bfe6\u003c/code\u003e\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eThis also unifies array-cap behavior across notations. Indexed notation (\u003ccode\u003ea[0]=...\u003c/code\u003e) was historically capped at qs's default \u003ccode\u003earrayLimit\u003c/code\u003e of 20 even in older qs versions; after this change it also allows up to 1000 items.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003edeps: qs@~6.15.1\u003c/li\u003e\n\u003cli\u003edeps: body-parser@~1.20.5\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/suuuuuuminnnnnn\"\u003e\u003ccode\u003e@​suuuuuuminnnnnn\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/7021\"\u003eexpressjs/express#7021\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/SAY-5\"\u003e\u003ccode\u003e@​SAY-5\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/7181\"\u003eexpressjs/express#7181\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/expressjs/express/compare/v4.22.1...v4.22.2\"\u003ehttps://github.com/expressjs/express/compare/v4.22.1...v4.22.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.22.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!IMPORTANT]\u003cbr /\u003e\nThe prior release (4.22.0) included an erroneous breaking change related to the extended query parser. There is no actual security vulnerability associated with this behavior (CVE-2024-51999 has been rejected). The change has been fully reverted in this release.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cul\u003e\n\u003cli\u003eRelease: 4.22.1 by \u003ca href=\"https://github.com/UlisesGascon\"\u003e\u003ccode\u003e@​UlisesGascon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6934\"\u003eexpressjs/express#6934\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/expressjs/express/compare/4.22.0...v4.22.1\"\u003ehttps://github.com/expressjs/express/compare/4.22.0...v4.22.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e4.22.0\u003c/h2\u003e\n\u003ch2\u003eImportant: Security\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity fix for \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2024-51999\"\u003eCVE-2024-51999\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/express/security/advisories/GHSA-pj86-cfqh-vqx6\"\u003eGHSA-pj86-cfqh-vqx6\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRefactor: improve readability by \u003ca href=\"https://github.com/sazk07\"\u003e\u003ccode\u003e@​sazk07\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6190\"\u003eexpressjs/express#6190\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: add support for Node.js@23.0 by \u003ca href=\"https://github.com/UlisesGascon\"\u003e\u003ccode\u003e@​UlisesGascon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6080\"\u003eexpressjs/express#6080\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMethod functions with no path should error by \u003ca href=\"https://github.com/wesleytodd\"\u003e\u003ccode\u003e@​wesleytodd\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/5957\"\u003eexpressjs/express#5957\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: updated github actions ci workflow by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6323\"\u003eexpressjs/express#6323\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: reorder \u003ccode\u003enpm i\u003c/code\u003e steps to fix ci for older node versions by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6336\"\u003eexpressjs/express#6336\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackport: ci: add node.js 24 to test matrix by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6506\"\u003eexpressjs/express#6506\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(4.x): wider range for query test skip by \u003ca href=\"https://github.com/jonchurch\"\u003e\u003ccode\u003e@​jonchurch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6513\"\u003eexpressjs/express#6513\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003euse tilde notation for certain dependencies by \u003ca href=\"https://github.com/UlisesGascon\"\u003e\u003ccode\u003e@​UlisesGascon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6905\"\u003eexpressjs/express#6905\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edeps: qs@6.14.0 by \u003ca href=\"https://github.com/UlisesGascon\"\u003e\u003ccode\u003e@​UlisesGascon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6909\"\u003eexpressjs/express#6909\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edeps: use tilde notation for \u003ccode\u003eqs\u003c/code\u003e by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6919\"\u003eexpressjs/express#6919\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease: 4.22.0 by \u003ca href=\"https://github.com/UlisesGascon\"\u003e\u003ccode\u003e@​UlisesGascon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6921\"\u003eexpressjs/express#6921\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/expressjs/express/compare/4.21.2...4.22.0\"\u003ehttps://github.com/expressjs/express/compare/4.21.2...4.22.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e4.21.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/expressjs/express/blob/v4.22.2/History.md\"\u003eexpress's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e4.22.2 / 2026-05-011\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix: restore \u0026gt;20 array parsing for \u003ccode\u003ereq.query\u003c/code\u003e repeated keys (\u003ca href=\"https://github.com/expressjs/express/commit/8d09bfe6d88983da5c3e12cfdd54782c4dc675db\"\u003e\u003ccode\u003e8d09bfe6\u003c/code\u003e\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eThis also unifies array-cap behavior across notations. Indexed notation (\u003ccode\u003ea[0]=...\u003c/code\u003e) was historically capped at qs's default \u003ccode\u003earrayLimit\u003c/code\u003e of 20 even in older qs versions; after this change it also allows up to 1000 items.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003edeps: qs@~6.15.1\u003c/li\u003e\n\u003cli\u003edeps: body-parser@~1.20.5\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e4.22.1 / 2025-12-01\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eRevert security fix for \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2024-51999\"\u003eCVE-2024-51999\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/express/security/advisories/GHSA-pj86-cfqh-vqx6\"\u003eGHSA-pj86-cfqh-vqx6\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eThe prior release (4.22.0) included an erroneous breaking change related to the extended query parser. There is no actual security vulnerability associated with this behavior (CVE-2024-51999 has been rejected). The change has been fully reverted in this release.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e4.22.0 / 2025-12-01\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity fix for \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2024-51999\"\u003eCVE-2024-51999\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/express/security/advisories/GHSA-pj86-cfqh-vqx6\"\u003eGHSA-pj86-cfqh-vqx6\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edeps: use tilde notation for dependencies\u003c/li\u003e\n\u003cli\u003edeps: qs@6.14.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e4.21.2 / 2024-11-06\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003edeps: path-to-regexp@0.1.12\n\u003cul\u003e\n\u003cli\u003eFix backtracking protection\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003edeps: path-to-regexp@0.1.11\n\u003cul\u003e\n\u003cli\u003eThrows an error on invalid path values\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e4.21.1 / 2024-10-08\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBackported a fix for \u003ca href=\"https://nvd.nist.gov/vuln/detail/CVE-2024-47764\"\u003eCVE-2024-47764\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e4.21.0 / 2024-09-11\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eres.location(\u0026quot;back\u0026quot;)\u003c/code\u003e and \u003ccode\u003eres.redirect(\u0026quot;back\u0026quot;)\u003c/code\u003e magic string\u003c/li\u003e\n\u003cli\u003edeps: serve-static@1.16.2\n\u003cul\u003e\n\u003cli\u003eincludes send@0.19.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003edeps: finalhandler@1.3.1\u003c/li\u003e\n\u003cli\u003edeps: qs@6.13.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e4.20.0 / 2024-09-10\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003edeps: serve-static@0.16.0\n\u003cul\u003e\n\u003cli\u003eRemove link renderization in html while redirecting\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003edeps: send@0.19.0\n\u003cul\u003e\n\u003cli\u003eRemove link renderization in html while redirecting\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003edeps: body-parser@0.6.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/df0abc9333a3398b97b71f6ea7cd77d5ea3e9f97\"\u003e\u003ccode\u003edf0abc9\u003c/code\u003e\u003c/a\u003e 4.22.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/836d36668ea750f78b4373b4de79bbd22634e6ec\"\u003e\u003ccode\u003e836d366\u003c/code\u003e\u003c/a\u003e \u003ccode\u003e4.x\u003c/code\u003e update qs to 6.15.1, body-parser 1.20.5 (\u003ca href=\"https://redirect.github.com/expressjs/express/issues/7224\"\u003e#7224\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/8d09bfe6d88983da5c3e12cfdd54782c4dc675db\"\u003e\u003ccode\u003e8d09bfe\u003c/code\u003e\u003c/a\u003e fix: restore array parsing for req.query repeated keys (\u003ca href=\"https://redirect.github.com/expressjs/express/issues/7181\"\u003e#7181\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/d39e8ad1778a0b8a606a5a7b17096d0cc5ec722d\"\u003e\u003ccode\u003ed39e8ad\u003c/code\u003e\u003c/a\u003e deps: body-parser@~1.20.4 (\u003ca href=\"https://redirect.github.com/expressjs/express/issues/7021\"\u003e#7021\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/efe85d9fdc9e3a62f7a1121b4f5f484862298b48\"\u003e\u003ccode\u003eefe85d9\u003c/code\u003e\u003c/a\u003e deps: qs@^6.14.1 (\u003ca href=\"https://redirect.github.com/expressjs/express/issues/6972\"\u003e#6972\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/f62378e1bc776259c0a471476c2dc043a02ac762\"\u003e\u003ccode\u003ef62378e\u003c/code\u003e\u003c/a\u003e 📝 add note to history\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/12fae14531a78f19a2caaa5d4f58d9b01eaf3194\"\u003e\u003ccode\u003e12fae14\u003c/code\u003e\u003c/a\u003e 4.22.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/5ddf311af32e772a77fd48b6266ce2f1ba330e1a\"\u003e\u003ccode\u003e5ddf311\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;sec: security patch for CVE-2024-51999\u0026quot;\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/49744abd1120484fe64d7bde1cd3197c32523b6e\"\u003e\u003ccode\u003e49744ab\u003c/code\u003e\u003c/a\u003e 4.22.0 (\u003ca href=\"https://redirect.github.com/expressjs/express/issues/6921\"\u003e#6921\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/6e97452f600a3b01719fbc5517d833c7646b0bb7\"\u003e\u003ccode\u003e6e97452\u003c/code\u003e\u003c/a\u003e sec: security patch for CVE-2024-51999\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/expressjs/express/compare/4.17.2...v4.22.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~jonchurch\"\u003ejonchurch\u003c/a\u003e, a new releaser for express since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `esbuild` from 0.18.13 to 0.25.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/evanw/esbuild/releases\"\u003eesbuild's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.25.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eThis release deliberately contains backwards-incompatible changes.\u003c/strong\u003e To avoid automatically picking up releases like this, you should either be pinning the exact version of \u003ccode\u003eesbuild\u003c/code\u003e in your \u003ccode\u003epackage.json\u003c/code\u003e file (recommended) or be using a version range syntax that only accepts patch upgrades such as \u003ccode\u003e^0.24.0\u003c/code\u003e or \u003ccode\u003e~0.24.0\u003c/code\u003e. See npm's documentation about \u003ca href=\"https://docs.npmjs.com/cli/v6/using-npm/semver/\"\u003esemver\u003c/a\u003e for more information.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eRestrict access to esbuild's development server (\u003ca href=\"https://github.com/evanw/esbuild/security/advisories/GHSA-67mh-4wv8-2f99\"\u003eGHSA-67mh-4wv8-2f99\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eThis change addresses esbuild's first security vulnerability report. Previously esbuild set the \u003ccode\u003eAccess-Control-Allow-Origin\u003c/code\u003e header to \u003ccode\u003e*\u003c/code\u003e to allow esbuild's development server to be flexible in how it's used for development. However, this allows the websites you visit to make HTTP requests to esbuild's local development server, which gives read-only access to your source code if the website were to fetch your source code's specific URL. You can read more information in \u003ca href=\"https://github.com/evanw/esbuild/security/advisories/GHSA-67mh-4wv8-2f99\"\u003ethe report\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003eStarting with this release, \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/HTTP/CORS\"\u003eCORS\u003c/a\u003e will now be disabled, and requests will now be denied if the host does not match the one provided to \u003ccode\u003e--serve=\u003c/code\u003e. The default host is \u003ccode\u003e0.0.0.0\u003c/code\u003e, which refers to all of the IP addresses that represent the local machine (e.g. both \u003ccode\u003e127.0.0.1\u003c/code\u003e and \u003ccode\u003e192.168.0.1\u003c/code\u003e). If you want to customize anything about esbuild's development server, you can \u003ca href=\"https://esbuild.github.io/api/#serve-proxy\"\u003eput a proxy in front of esbuild\u003c/a\u003e and modify the incoming and/or outgoing requests.\u003c/p\u003e\n\u003cp\u003eIn addition, the \u003ccode\u003eserve()\u003c/code\u003e API call has been changed to return an array of \u003ccode\u003ehosts\u003c/code\u003e instead of a single \u003ccode\u003ehost\u003c/code\u003e string. This makes it possible to determine all of the hosts that esbuild's development server will accept.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/sapphi-red\"\u003e\u003ccode\u003e@​sapphi-red\u003c/code\u003e\u003c/a\u003e for reporting this issue.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eDelete output files when a build fails in watch mode (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/3643\"\u003e#3643\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eIt has been requested for esbuild to delete files when a build fails in watch mode. Previously esbuild left the old files in place, which could cause people to not immediately realize that the most recent build failed. With this release, esbuild will now delete all output files if a rebuild fails. Fixing the build error and triggering another rebuild will restore all output files again.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFix correctness issues with the CSS nesting transform (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/3620\"\u003e#3620\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/3877\"\u003e#3877\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/3933\"\u003e#3933\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/3997\"\u003e#3997\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4005\"\u003e#4005\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/evanw/esbuild/pull/4037\"\u003e#4037\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/evanw/esbuild/pull/4038\"\u003e#4038\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eThis release fixes the following problems:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eNaive expansion of CSS nesting can result in an exponential blow-up of generated CSS if each nesting level has multiple selectors. Previously esbuild sometimes collapsed individual nesting levels using \u003ccode\u003e:is()\u003c/code\u003e to limit expansion. However, this collapsing wasn't correct in some cases, so it has been removed to fix correctness issues.\u003c/p\u003e\n\u003cpre lang=\"css\"\u003e\u003ccode\u003e/* Original code */\r\n.parent {\r\n  \u0026gt; .a,\r\n  \u0026gt; .b1 \u0026gt; .b2 {\r\n    color: red;\r\n  }\r\n}\r\n\u003cp\u003e/* Old output (with --supported:nesting=false) */\u003cbr /\u003e\n.parent \u0026gt; :is(.a, .b1 \u0026gt; .b2) {\u003cbr /\u003e\ncolor: red;\u003cbr /\u003e\n}\u003c/p\u003e\n\u003cp\u003e/* New output (with --supported:nesting=false) */\u003cbr /\u003e\n.parent \u0026gt; .a,\u003cbr /\u003e\n.parent \u0026gt; .b1 \u0026gt; .b2 {\u003cbr /\u003e\ncolor: red;\u003cbr /\u003e\n}\u003cbr /\u003e\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/tim-we\"\u003e\u003ccode\u003e@​tim-we\u003c/code\u003e\u003c/a\u003e for working on a fix.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eThe \u003ccode\u003e\u0026amp;\u003c/code\u003e CSS nesting selector can be repeated multiple times to increase CSS specificity. Previously esbuild ignored this possibility and incorrectly considered \u003ccode\u003e\u0026amp;\u0026amp;\u003c/code\u003e to have the same specificity as \u003ccode\u003e\u0026amp;\u003c/code\u003e. With this release, this should now work correctly:\u003c/p\u003e\n\u003cpre lang=\"css\"\u003e\u003ccode\u003e/* Original code (color should be red) */\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/evanw/esbuild/blob/main/CHANGELOG-2023.md\"\u003eesbuild's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog: 2023\u003c/h1\u003e\n\u003cp\u003eThis changelog documents all esbuild versions published in the year 2023 (versions 0.16.13 through 0.19.11).\u003c/p\u003e\n\u003ch2\u003e0.19.11\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix TypeScript-specific class transform edge case (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/3559\"\u003e#3559\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eThe previous release introduced an optimization that avoided transforming \u003ccode\u003esuper()\u003c/code\u003e in the class constructor for TypeScript code compiled with \u003ccode\u003euseDefineForClassFields\u003c/code\u003e set to \u003ccode\u003efalse\u003c/code\u003e if all class instance fields have no initializers. The rationale was that in this case, all class instance fields are omitted in the output so no changes to the constructor are needed. However, if all of this is the case \u003cem\u003eand\u003c/em\u003e there are \u003ccode\u003e#private\u003c/code\u003e instance fields with initializers, those private instance field initializers were still being moved into the constructor. This was problematic because they were being inserted before the call to \u003ccode\u003esuper()\u003c/code\u003e (since \u003ccode\u003esuper()\u003c/code\u003e is now no longer transformed in that case). This release introduces an additional optimization that avoids moving the private instance field initializers into the constructor in this edge case, which generates smaller code, matches the TypeScript compiler's output more closely, and avoids this bug:\u003c/p\u003e\n\u003cpre lang=\"ts\"\u003e\u003ccode\u003e// Original code\nclass Foo extends Bar {\n  #private = 1;\n  public: any;\n  constructor() {\n    super();\n  }\n}\n\u003cp\u003e// Old output (with esbuild v0.19.9)\u003cbr /\u003e\nclass Foo extends Bar {\u003cbr /\u003e\nconstructor() {\u003cbr /\u003e\nsuper();\u003cbr /\u003e\nthis.#private = 1;\u003cbr /\u003e\n}\u003cbr /\u003e\n#private;\u003cbr /\u003e\n}\u003c/p\u003e\n\u003cp\u003e// Old output (with esbuild v0.19.10)\u003cbr /\u003e\nclass Foo extends Bar {\u003cbr /\u003e\nconstructor() {\u003cbr /\u003e\nthis.#private = 1;\u003cbr /\u003e\nsuper();\u003cbr /\u003e\n}\u003cbr /\u003e\n#private;\u003cbr /\u003e\n}\u003c/p\u003e\n\u003cp\u003e// New output\u003cbr /\u003e\nclass Foo extends Bar {\u003cbr /\u003e\n#private = 1;\u003cbr /\u003e\nconstructor() {\u003cbr /\u003e\nsuper();\u003cbr /\u003e\n}\u003cbr /\u003e\n}\u003cbr /\u003e\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eMinifier: allow reording a primitive past a side-effect (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/3568\"\u003e#3568\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eThe minifier previously allowed reordering a side-effect past a primitive, but didn't handle the case of reordering a primitive past a side-effect. This additional case is now handled:\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/e9174d671b1882758cd32ac5e146200f5bee3e45\"\u003e\u003ccode\u003ee9174d6\u003c/code\u003e\u003c/a\u003e publish 0.25.0 to npm\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/c27dbebb9e7a55dd9a084dd151dddd840787490e\"\u003e\u003ccode\u003ec27dbeb\u003c/code\u003e\u003c/a\u003e fix \u003ccode\u003ehosts\u003c/code\u003e in \u003ccode\u003eplugin-tests.js\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/6794f602a453cf0255bcae245871de120a89a559\"\u003e\u003ccode\u003e6794f60\u003c/code\u003e\u003c/a\u003e fix \u003ccode\u003ehosts\u003c/code\u003e in \u003ccode\u003enode-unref-tests.js\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/de85afd65edec9ebc44a11e245fd9e9a2e99760d\"\u003e\u003ccode\u003ede85afd\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/da1de1bf77a65f06654b49878d9ec4747ddaa21f\"\u003e\u003ccode\u003eda1de1b\u003c/code\u003e\u003c/a\u003e fix \u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4065\"\u003e#4065\u003c/a\u003e: bitwise operators can return bigints\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/f4e9d19fb20095a98bf40634f0380f6a16be91e7\"\u003e\u003ccode\u003ef4e9d19\u003c/code\u003e\u003c/a\u003e switch case liveness: \u003ccode\u003edefault\u003c/code\u003e is always last\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/7aa47c3e778ea04849f97f18dd9959df88fa0886\"\u003e\u003ccode\u003e7aa47c3\u003c/code\u003e\u003c/a\u003e fix \u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4028\"\u003e#4028\u003c/a\u003e: minify live/dead \u003ccode\u003eswitch\u003c/code\u003e cases better\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/22ecd306190b8971ec4474b5485266c20350e266\"\u003e\u003ccode\u003e22ecd30\u003c/code\u003e\u003c/a\u003e minify: more constant folding for strict equality\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/4cdf03c03697128044fa8fb76e5c478e9765b353\"\u003e\u003ccode\u003e4cdf03c\u003c/code\u003e\u003c/a\u003e fix \u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4053\"\u003e#4053\u003c/a\u003e: reordering of \u003ccode\u003e.tsx\u003c/code\u003e in \u003ccode\u003enode_modules\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/dc719775b7140120916bd9e6777ca1cb8a1cdc0e\"\u003e\u003ccode\u003edc71977\u003c/code\u003e\u003c/a\u003e fix \u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/3692\"\u003e#3692\u003c/a\u003e: \u003ccode\u003e0\u003c/code\u003e now picks a random ephemeral port\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/evanw/esbuild/compare/v0.18.13...v0.25.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `jsonwebtoken` from 8.5.1 to 9.0.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/auth0/node-jsonwebtoken/blob/master/CHANGELOG.md\"\u003ejsonwebtoken's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e9.0.3 - 2025-12-04\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eupdates jws version to 4.0.1.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e9.0.2 - 2023-08-30\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esecurity: updating semver to 7.5.4 to resolve CVE-2022-25883, closes \u003ca href=\"https://redirect.github.com/auth0/node-jsonwebtoken/issues/921\"\u003e#921\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003erefactor: reduce library size by using lodash specific dependencies, closes \u003ca href=\"https://redirect.github.com/auth0/node-jsonwebtoken/issues/878\"\u003e#878\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e9.0.1 - 2023-07-05\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(stubs): allow decode method to be stubbed\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e9.0.0 - 2022-12-21\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eBreaking changes: See \u003ca href=\"https://github.com/auth0/node-jsonwebtoken/wiki/Migration-Notes:-v8-to-v9\"\u003eMigration from v8 to v9\u003c/a\u003e\u003c/strong\u003e\u003c/p\u003e\n\u003ch3\u003eBreaking changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemoved support for Node versions 11 and below.\u003c/li\u003e\n\u003cli\u003eThe verify() function no longer accepts unsigned tokens by default. ([834503079514b72264fd13023a3b8d648afd6a16]\u003ca href=\"https://github.com/auth0/node-jsonwebtoken/commit/834503079514b72264fd13023a3b8d648afd6a16\"\u003ehttps://github.com/auth0/node-jsonwebtoken/commit/834503079514b72264fd13023a3b8d648afd6a16\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRSA key size must be 2048 bits or greater. ([ecdf6cc6073ea13a7e71df5fad043550f08d0fa6]\u003ca href=\"https://github.com/auth0/node-jsonwebtoken/commit/ecdf6cc6073ea13a7e71df5fad043550f08d0fa6\"\u003ehttps://github.com/auth0/node-jsonwebtoken/commit/ecdf6cc6073ea13a7e71df5fad043550f08d0fa6\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eKey types must be valid for the signing / verification algorithm\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eSecurity fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esecurity: fixes \u003ccode\u003eArbitrary File Write via verify function\u003c/code\u003e - CVE-2022-23529\u003c/li\u003e\n\u003cli\u003esecurity: fixes \u003ccode\u003eInsecure default algorithm in jwt.verify() could lead to signature validation bypass\u003c/code\u003e - CVE-2022-23540\u003c/li\u003e\n\u003cli\u003esecurity: fixes \u003ccode\u003eInsecure implementation of key retrieval function could lead to Forgeable Public/Private Tokens from RSA to HMAC\u003c/code\u003e - CVE-2022-23541\u003c/li\u003e\n\u003cli\u003esecurity: fixes \u003ccode\u003eUnrestricted key type could lead to legacy keys usage\u003c/code\u003e - CVE-2022-23539\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jsonwebtoken/commit/ed59e76ea37a80f54b833668c02a5271984dcba3\"\u003e\u003ccode\u003eed59e76\u003c/code\u003e\u003c/a\u003e chore: bump jws to 4.0.1 (\u003ca href=\"https://redirect.github.com/auth0/node-jsonwebtoken/issues/1007\"\u003e#1007\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jsonwebtoken/commit/bc28861f1fa981ed9c009e29c044a19760a0b128\"\u003e\u003ccode\u003ebc28861\u003c/code\u003e\u003c/a\u003e Release 9.0.2  (\u003ca href=\"https://redirect.github.com/auth0/node-jsonwebtoken/issues/935\"\u003e#935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jsonwebtoken/commit/96b89060cfc19272a7d853f53cb28c42580a6a67\"\u003e\u003ccode\u003e96b8906\u003c/code\u003e\u003c/a\u003e refactor: use specific lodash packages (\u003ca href=\"https://redirect.github.com/auth0/node-jsonwebtoken/issues/933\"\u003e#933\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jsonwebtoken/commit/ed35062239c0195d4341025d4699cc39608b435e\"\u003e\u003ccode\u003eed35062\u003c/code\u003e\u003c/a\u003e security: Updating semver to 7.5.4 to resolve CVE-2022-25883 (\u003ca href=\"https://redirect.github.com/auth0/node-jsonwebtoken/issues/932\"\u003e#932\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jsonwebtoken/commit/84539b29e17fd40ed25c53fc28db8ae41a34aff8\"\u003e\u003ccode\u003e84539b2\u003c/code\u003e\u003c/a\u003e Updating package version to 9.0.1 (\u003ca href=\"https://redirect.github.com/auth0/node-jsonwebtoken/issues/920\"\u003e#920\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jsonwebtoken/commit/a99fd4b473e257c2f50ff69c716db1c520bf9a78\"\u003e\u003ccode\u003ea99fd4b\u003c/code\u003e\u003c/a\u003e fix(stubs): allow decode method to be stubbed (\u003ca href=\"https://redirect.github.com/auth0/node-jsonwebtoken/issues/876\"\u003e#876\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jsonwebtoken/commit/e1fa9dcc12054a8681db4e6373da1b30cf7016e3\"\u003e\u003ccode\u003ee1fa9dc\u003c/code\u003e\u003c/a\u003e Merge pull request from GHSA-8cf7-32gw-wr33\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jsonwebtoken/commit/5eaedbf2b01676d952336e73b4d2efba847d2d1b\"\u003e\u003ccode\u003e5eaedbf\u003c/code\u003e\u003c/a\u003e chore(ci): remove github test actions job (\u003ca href=\"https://redirect.github.com/auth0/node-jsonwebtoken/issues/861\"\u003e#861\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jsonwebtoken/commit/cd4163eb1407aab0b3148f91b0b9c26276b96c6b\"\u003e\u003ccode\u003ecd4163e\u003c/code\u003e\u003c/a\u003e chore(ci): configure Github Actions jobs for Tests \u0026amp; Security Scanning (\u003ca href=\"https://redirect.github.com/auth0/node-jsonwebtoken/issues/856\"\u003e#856\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jsonwebtoken/commit/ecdf6cc6073ea13a7e71df5fad043550f08d0fa6\"\u003e\u003ccode\u003eecdf6cc\u003c/code\u003e\u003c/a\u003e fix!: Prevent accidental use of insecure key sizes \u0026amp; misconfiguration of secr...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/auth0/node-jsonwebtoken/compare/v8.5.1...v9.0.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~julien.wollscheid\"\u003ejulien.wollscheid\u003c/a\u003e, a new releaser for jsonwebtoken since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `semver` from 7.3.5 to 7.8.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/npm/node-semver/releases\"\u003esemver's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.8.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/npm/node-semver/compare/v7.7.4...v7.8.0\"\u003e7.8.0\u003c/a\u003e (2026-05-08)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/0d0a0a2582fb1486bc6cd255ba18819c441ed149\"\u003e\u003ccode\u003e0d0a0a2\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/855\"\u003e#855\u003c/a\u003e Add \u003ccode\u003etruncate\u003c/code\u003e function (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/855\"\u003e#855\u003c/a\u003e) (\u003ca href=\"https://github.com/pjohnmeyer\"\u003e\u003ccode\u003e@​pjohnmeyer\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/owlstronaut\"\u003e\u003ccode\u003e@​owlstronaut\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/3905343045dc293c3694d5e46170b1bb1fb5cf58\"\u003e\u003ccode\u003e3905343\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/859\"\u003e#859\u003c/a\u003e Warn when defaulting to --inc=patch in CLI (\u003ca href=\"https://github.com/pjohnmeyer\"\u003e\u003ccode\u003e@​pjohnmeyer\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/c368af612e521767e960419e6388c5129c857984\"\u003e\u003ccode\u003ec368af6\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/853\"\u003e#853\u003c/a\u003e fix typos in documentation (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/853\"\u003e#853\u003c/a\u003e) (\u003ca href=\"https://github.com/ankitkumar572005\"\u003e\u003ccode\u003e@​ankitkumar572005\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/37776c31e2f3448fd852c975888e37b03efe9afe\"\u003e\u003ccode\u003e37776c3\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/846\"\u003e#846\u003c/a\u003e fix BNF grammar to distinguish prerelease from build identifiers (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/846\"\u003e#846\u003c/a\u003e) (\u003ca href=\"https://github.com/abhu85\"\u003e\u003ccode\u003e@​abhu85\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/claude\"\u003e\u003ccode\u003e@​claude\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/9542e09ebcd89e916777d35eba868061dad9ed7d\"\u003e\u003ccode\u003e9542e09\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/860\"\u003e#860\u003c/a\u003e template-oss-apply (\u003ca href=\"https://github.com/owlstronaut\"\u003e\u003ccode\u003e@​owlstronaut\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/937bc2cd8721db14745c9be123078c44e77a86ef\"\u003e\u003ccode\u003e937bc2c\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/860\"\u003e#860\u003c/a\u003e \u003ccode\u003etemplate-oss-apply@5.0.0\u003c/code\u003e (\u003ca href=\"https://github.com/owlstronaut\"\u003e\u003ccode\u003e@​owlstronaut\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/6946fefa57bd5e191871a4738b28ca673e003527\"\u003e\u003ccode\u003e6946fef\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/852\"\u003e#852\u003c/a\u003e bump \u003ccode\u003e@​npmcli/template-oss\u003c/code\u003e from 4.29.0 to 4.30.0 (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/852\"\u003e#852\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot], \u003ca href=\"https://github.com/npm-cli-bot\"\u003e\u003ccode\u003e@​npm-cli-bot\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.7.4\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/npm/node-semver/compare/v7.7.3...v7.7.4\"\u003e7.7.4\u003c/a\u003e (2026-01-16)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/a29faa5f3309a01c8e5aeb965fb5c02c4c4e80e2\"\u003e\u003ccode\u003ea29faa5\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/835\"\u003e#835\u003c/a\u003e cli: pass options to semver.valid() for loose version validation (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/835\"\u003e#835\u003c/a\u003e) (\u003ca href=\"https://github.com/mldangelo\"\u003e\u003ccode\u003e@​mldangelo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/1d28d5e82de16163daf721a7c76fff93e0d333ab\"\u003e\u003ccode\u003e1d28d5e\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/836\"\u003e#836\u003c/a\u003e fix typos and update -n CLI option documentation (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/836\"\u003e#836\u003c/a\u003e) (\u003ca href=\"https://github.com/mldangelo\"\u003e\u003ccode\u003e@​mldangelo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/120968b76760cb0db85a72bde2adedd0e9628793\"\u003e\u003ccode\u003e120968b\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/840\"\u003e#840\u003c/a\u003e \u003ccode\u003e@npmcli/template-oss@4.29.0\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/840\"\u003e#840\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/44d7130c60cedd3703048aa671bb1d659b79ab07\"\u003e\u003ccode\u003e44d7130\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/824\"\u003e#824\u003c/a\u003e bump \u003ccode\u003e@​npmcli/eslint-config\u003c/code\u003e from 5.1.0 to 6.0.0 (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/824\"\u003e#824\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/70735767b68a1775eb67ac816b183b4a422101f4\"\u003e\u003ccode\u003e7073576\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/820\"\u003e#820\u003c/a\u003e reorder parameters in invalid-versions.js test (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/820\"\u003e#820\u003c/a\u003e) (\u003ca href=\"https://github.com/reggi\"\u003e\u003ccode\u003e@​reggi\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/5816d4cfd6d85169527a2bc22fbd5bf4c64f34e3\"\u003e\u003ccode\u003e5816d4c\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/829\"\u003e#829\u003c/a\u003e bump \u003ccode\u003e@​npmcli/template-oss\u003c/code\u003e from 4.28.0 to 4.28.1 (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/829\"\u003e#829\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot], \u003ca href=\"https://github.com/npm-cli-bot\"\u003e\u003ccode\u003e@​npm-cli-bot\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.7.3\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/npm/node-semver/compare/v7.7.2...v7.7.3\"\u003e7.7.3\u003c/a\u003e (2025-10-06)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/e37e0ca0b5fc910d2b1948d25dbc83cc3a0921ea\"\u003e\u003ccode\u003ee37e0ca\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/813\"\u003e#813\u003c/a\u003e faster paths for compare (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/813\"\u003e#813\u003c/a\u003e) (\u003ca href=\"https://github.com/H4ad\"\u003e\u003ccode\u003e@​H4ad\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/2471d7543e2e63d9d95358e2405e7e1cde926c36\"\u003e\u003ccode\u003e2471d75\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/811\"\u003e#811\u003c/a\u003e x-range build metadata support (i529015)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/8f05c87f56a4123259b8c6d9324f53eadb02e48f\"\u003e\u003ccode\u003e8f05c87\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/807\"\u003e#807\u003c/a\u003e bump \u003ccode\u003e@​npmcli/template-oss\u003c/code\u003e from 4.25.0 to 4.25.1 (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/807\"\u003e#807\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot], \u003ca href=\"https://github.com/owlstronaut\"\u003e\u003ccode\u003e@​owlstronaut\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.7.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/npm/node-semver/compare/v7.7.1...v7.7.2\"\u003e7.7.2\u003c/a\u003e (2025-05-12)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/fcafb61ed566ff8ccf24818dd94b76738f037aa4\"\u003e\u003ccode\u003efcafb61\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/780\"\u003e#780\u003c/a\u003e add missing \u003ccode\u003e'use strict'\u003c/code\u003e directives (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/780\"\u003e#780\u003c/a\u003e) (\u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/c99f336fa3bdff465652f9041eab2127d2f52eb2\"\u003e\u003ccode\u003ec99f336\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/781\"\u003e#781\u003c/a\u003e prerelease identifier starting with digits (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/781\"\u003e#781\u003c/a\u003e) (\u003ca href=\"https://github.com/mbtools\"\u003e\u003ccode\u003e@​mbtools\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/c760403b935d3ad35f83e9bbe5ebe1badef2fc71\"\u003e\u003ccode\u003ec760403\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/784\"\u003e#784\u003c/a\u003e template-oss-apply for workflow permissions (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/784\"\u003e#784\u003c/a\u003e) (\u003ca href=\"https://github.com/wraithgar\"\u003e\u003ccode\u003e@​wraithgar\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/2677f2a88334b0e728dbfe9ad9f5f57458437c87\"\u003e\u003ccode\u003e2677f2a\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/778\"\u003e#778\u003c/a\u003e bump \u003ccode\u003e@​npmcli/template-oss\u003c/code\u003e from 4.23.6 to 4.24.3 (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/778\"\u003e#778\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot], \u003ca href=\"https://github.com/npm-cli-bot\"\u003e\u003ccode\u003e@​npm-cli-bot\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.7.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/npm/node-semver/compare/v7.7.0...v7.7.1\"\u003e7.7.1\u003c/a\u003e (2025-02-03)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/af761c05bd53eef83b5e20f8b09360b0e70557dc\"\u003e\u003ccode\u003eaf761c0\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/764\"\u003e#764\u003c/a\u003e inc: fully capture prerelease identifier (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/764\"\u003e#764\u003c/a\u003e) (\u003ca href=\"https://github.com/wraithgar\"\u003e\u003ccode\u003e@​wraithgar\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.7.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/npm/node-semver/blob/main/CHANGELOG.md\"\u003esemver's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/npm/node-semver/compare/v7.7.4...v7.8.0\"\u003e7.8.0\u003c/a\u003e (2026-05-08)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/0d0a0a2582fb1486bc6cd255ba18819c441ed149\"\u003e\u003ccode\u003e0d0a0a2\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/855\"\u003e#855\u003c/a\u003e Add \u003ccode\u003etruncate\u003c/code\u003e function (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/855\"\u003e#855\u003c/a\u003e) (\u003ca href=\"https://github.com/pjohnmeyer\"\u003e\u003ccode\u003e@​pjohnmeyer\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/owlstronaut\"\u003e\u003ccode\u003e@​owlstronaut\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/3905343045dc293c3694d5e46170b1bb1fb5cf58\"\u003e\u003ccode\u003e3905343\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/859\"\u003e#859\u003c/a\u003e Warn when defaulting to --inc=patch in CLI (\u003ca href=\"https://github.com/pjohnmeyer\"\u003e\u003ccode\u003e@​pjohnmeyer\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/c368af612e521767e960419e6388c5129c857984\"\u003e\u003ccode\u003ec368af6\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/853\"\u003e#853\u003c/a\u003e fix typos in documentation (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/853\"\u003e#853\u003c/a\u003e) (\u003ca href=\"https://github.com/ankitkumar572005\"\u003e\u003ccode\u003e@​ankitkumar572005\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/37776c31e2f3448fd852c975888e37b03efe9afe\"\u003e\u003ccode\u003e37776c3\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/846\"\u003e#846\u003c/a\u003e fix BNF grammar to distinguish prerelease from build identifiers (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/846\"\u003e#846\u003c/a\u003e) (\u003ca href=\"https://github.com/abhu85\"\u003e\u003ccode\u003e@​abhu85\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/claude\"\u003e\u003ccode\u003e@​claude\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/9542e09ebcd89e916777d35eba868061dad9ed7d\"\u003e\u003ccode\u003e9542e09\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/860\"\u003e#860\u003c/a\u003e template-oss-apply (\u003ca href=\"https://github.com/owlstronaut\"\u003e\u003ccode\u003e@​owlstronaut\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/937bc2cd8721db14745c9be123078c44e77a86ef\"\u003e\u003ccode\u003e937bc2c\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/860\"\u003e#860\u003c/a\u003e \u003ccode\u003etemplate-oss-apply@5.0.0\u003c/code\u003e (\u003ca href=\"https://github.com/owlstronaut\"\u003e\u003ccode\u003e@​owlstronaut\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/6946fefa57bd5e191871a4738b28ca673e003527\"\u003e\u003ccode\u003e6946fef\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/852\"\u003e#852\u003c/a\u003e bump \u003ccode\u003e@​npmcli/template-oss\u003c/code\u003e from 4.29.0 to 4.30.0 (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/852\"\u003e#852\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot], \u003ca href=\"https://github.com/npm-cli-bot\"\u003e\u003ccode\u003e@​npm-cli-bot\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/npm/node-semver/compare/v7.7.3...v7.7.4\"\u003e7.7.4\u003c/a\u003e (2026-01-16)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/a29faa5f3309a01c8e5aeb965fb5c02c4c4e80e2\"\u003e\u003ccode\u003ea29faa5\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/835\"\u003e#835\u003c/a\u003e cli: pass options to semver.valid() for loose version validation (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/835\"\u003e#835\u003c/a\u003e) (\u003ca href=\"https://github.com/mldangelo\"\u003e\u003ccode\u003e@​mldangelo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/1d28d5e82de16163daf721a7c76fff93e0d333ab\"\u003e\u003ccode\u003e1d28d5e\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/836\"\u003e#836\u003c/a\u003e fix typos and update -n CLI option documentation (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/836\"\u003e#836\u003c/a\u003e) (\u003ca href=\"https://github.com/mldangelo\"\u003e\u003ccode\u003e@​mldangelo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/120968b76760cb0db85a72bde2adedd0e9628793\"\u003e\u003ccode\u003e120968b\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/840\"\u003e#840\u003c/a\u003e \u003ccode\u003e@npmcli/template-oss@4.29.0\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/840\"\u003e#840\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/44d7130c60cedd3703048aa671bb1d659b79ab07\"\u003e\u003ccode\u003e44d7130\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pu...\n\n_Description has been truncated_","html_url":"https://github.com/OfficeDev/Microsoft-Teams-Samples/pull/2132","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/OfficeDev%2FMicrosoft-Teams-Samples/issues/2132","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2132/packages"}},{"old_version":"2.6.12","new_version":"3.3.2","update_type":"major","path":null,"pr_created_at":"2026-05-14T07:45:55.000Z","version_change":"2.6.12 → 3.3.2","issue":{"uuid":"4444170780","node_id":"PR_kwDOEzH_b87bbYUY","number":2018,"state":"closed","title":"Bump the all-dependencies group across 1 directory with 6 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-22T05:20:58.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-14T07:45:55.000Z","updated_at":"2026-05-22T05:21:08.000Z","time_to_close":682503,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"all-dependencies","update_count":6,"packages":[{"name":"@azure/msal-node","old_version":"1.17.3","new_version":"5.2.2","repository_url":"https://github.com/AzureAD/microsoft-authentication-library-for-js"},{"name":"dotenv","old_version":"8.6.0","new_version":"17.4.2","repository_url":"https://github.com/motdotla/dotenv"},{"name":"express","old_version":"4.18.2","new_version":"5.2.1","repository_url":"https://github.com/expressjs/express"},{"name":"jwt-decode","old_version":"2.2.0","new_version":"4.0.0","repository_url":"https://github.com/auth0/jwt-decode"},{"name":"node-fetch","old_version":"2.6.12","new_version":"3.3.2","repository_url":"https://github.com/node-fetch/node-fetch"},{"name":"esbuild","old_version":"0.18.11","new_version":"0.28.0","repository_url":"https://github.com/evanw/esbuild"}],"path":null,"ecosystem":"npm"},"body":"Bumps the all-dependencies group with 6 updates in the /samples/TeamsJS/tab-multi-hub/ts/api-server directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [@azure/msal-node](https://github.com/AzureAD/microsoft-authentication-library-for-js) | `1.17.3` | `5.2.2` |\n| [dotenv](https://github.com/motdotla/dotenv) | `8.6.0` | `17.4.2` |\n| [express](https://github.com/expressjs/express) | `4.18.2` | `5.2.1` |\n| [jwt-decode](https://github.com/auth0/jwt-decode) | `2.2.0` | `4.0.0` |\n| [node-fetch](https://github.com/node-fetch/node-fetch) | `2.6.12` | `3.3.2` |\n| [esbuild](https://github.com/evanw/esbuild) | `0.18.11` | `0.28.0` |\n\n\nUpdates `@azure/msal-node` from 1.17.3 to 5.2.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/AzureAD/microsoft-authentication-library-for-js/releases\"\u003e@​azure/msal-node's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ccode\u003e@​azure/msal-angular\u003c/code\u003e v5.2.2\u003c/h2\u003e\n\u003ch2\u003e5.2.2\u003c/h2\u003e\n\u003cp\u003eTue, 28 Apr 2026 21:30:33 GMT\u003c/p\u003e\n\u003ch3\u003ePatches\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump \u003ccode\u003e@​azure/msal-browser\u003c/code\u003e to v5.9.0 (beachball)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​azure/msal-node-extensions\u003c/code\u003e v5.2.2\u003c/h2\u003e\n\u003ch2\u003e5.2.2\u003c/h2\u003e\n\u003cp\u003eTue, 19 May 2026 19:29:14 GMT\u003c/p\u003e\n\u003ch3\u003ePatches\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump \u003ccode\u003e@​azure/msal-common\u003c/code\u003e to v16.6.2 (beachball)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​azure/msal-node\u003c/code\u003e v5.2.2\u003c/h2\u003e\n\u003ch2\u003e5.2.2\u003c/h2\u003e\n\u003cp\u003eTue, 19 May 2026 19:29:14 GMT\u003c/p\u003e\n\u003ch3\u003ePatches\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump \u003ccode\u003e@​azure/msal-common\u003c/code\u003e to v16.6.2 (beachball)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​azure/msal-react\u003c/code\u003e v5.2.1\u003c/h2\u003e\n\u003ch2\u003e5.2.1\u003c/h2\u003e\n\u003cp\u003eWed, 01 Apr 2026 20:09:00 GMT\u003c/p\u003e\n\u003ch3\u003ePatches\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eImprove compatibility with \u003ccode\u003eReact.StrictMode\u003c/code\u003e \u003ca href=\"https://redirect.github.com/AzureAD/microsoft-authentication-library-for-js/pull/8383\"\u003e#8383\u003c/a\u003e (\u003ca href=\"mailto:herman.jensen@intility.no\"\u003eherman.jensen@intility.no\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​azure/msal-browser\u003c/code\u003e to v5.6.3 (beachball)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​azure/msal-angular\u003c/code\u003e v5.2.1\u003c/h2\u003e\n\u003ch2\u003e5.2.1\u003c/h2\u003e\n\u003cp\u003eTue, 21 Apr 2026 22:41:19 GMT\u003c/p\u003e\n\u003ch3\u003ePatches\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump \u003ccode\u003e@​azure/msal-browser\u003c/code\u003e to v5.8.0 (beachball)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​azure/msal-node-extensions\u003c/code\u003e v5.2.1\u003c/h2\u003e\n\u003ch2\u003e5.2.1\u003c/h2\u003e\n\u003cp\u003eMon, 11 May 2026 21:48:15 GMT\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/AzureAD/microsoft-authentication-library-for-js/commit/738ade62dfbadf845fdf8afbc6d21564f00ac0bb\"\u003e\u003ccode\u003e738ade6\u003c/code\u003e\u003c/a\u003e check account loginHint before idTokenClaims setting logoutHint (\u003ca href=\"https://redirect.github.com/AzureAD/microsoft-authentication-library-for-js/issues/8591\"\u003e#8591\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/AzureAD/microsoft-authentication-library-for-js/commit/1fff290c58cff5d3c768711e3aa8388476cb8e52\"\u003e\u003ccode\u003e1fff290\u003c/code\u003e\u003c/a\u003e Add allowPlatformBrokerWithDOM experimental config flag (\u003ca href=\"https://redirect.github.com/AzureAD/microsoft-authentication-library-for-js/issues/8589\"\u003e#8589\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/AzureAD/microsoft-authentication-library-for-js/commit/99e0895b66400ba15d1bfd41e9ef0869b3e45753\"\u003e\u003ccode\u003e99e0895\u003c/code\u003e\u003c/a\u003e Custom Auth: add requestInterceptor for custom x-* request headers (\u003ca href=\"https://redirect.github.com/AzureAD/microsoft-authentication-library-for-js/issues/8587\"\u003e#8587\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/AzureAD/microsoft-authentication-library-for-js/commit/ce50f41b05c79afe0b88ba8441a789907149039f\"\u003e\u003ccode\u003ece50f41\u003c/code\u003e\u003c/a\u003e Post-release PR (\u003ca href=\"https://redirect.github.com/AzureAD/microsoft-authentication-library-for-js/issues/8585\"\u003e#8585\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/AzureAD/microsoft-authentication-library-for-js/commit/c66140125e3e4bdc7acb9199fc0004bb5429b41d\"\u003e\u003ccode\u003ec661401\u003c/code\u003e\u003c/a\u003e Complete test tenant migration (\u003ca href=\"https://redirect.github.com/AzureAD/microsoft-authentication-library-for-js/issues/8584\"\u003e#8584\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/AzureAD/microsoft-authentication-library-for-js/commit/bbcc105174de98d336f758674ecd84cf66d8e1f6\"\u003e\u003ccode\u003ebbcc105\u003c/code\u003e\u003c/a\u003e Add browser compatibility guidelines and review instructions for msal-browser...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/AzureAD/microsoft-authentication-library-for-js/commit/d7a7eb50c40b24e7cc17b341f1109cdbfac83e3f\"\u003e\u003ccode\u003ed7a7eb5\u003c/code\u003e\u003c/a\u003e Add issuer validation check whenever MSAL JS performs OIDC endpoint discovery...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/AzureAD/microsoft-authentication-library-for-js/commit/9884a71cca16bd3d16794aa2a2696011d333f161\"\u003e\u003ccode\u003e9884a71\u003c/code\u003e\u003c/a\u003e Post-release PR (\u003ca href=\"https://redirect.github.com/AzureAD/microsoft-authentication-library-for-js/issues/8583\"\u003e#8583\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/AzureAD/microsoft-authentication-library-for-js/commit/b4e498cf6e52136ad1123691138a66f8e9a1a87c\"\u003e\u003ccode\u003eb4e498c\u003c/code\u003e\u003c/a\u003e Stop looking in localStorage for temporary cache (\u003ca href=\"https://redirect.github.com/AzureAD/microsoft-authentication-library-for-js/issues/8579\"\u003e#8579\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/AzureAD/microsoft-authentication-library-for-js/commit/1b261b42eb983329ea7c062feae3d8e6513b8c7e\"\u003e\u003ccode\u003e1b261b4\u003c/code\u003e\u003c/a\u003e Bump uuid and \u003ccode\u003e@​actions/core\u003c/code\u003e in /.github/actions/issue_template_bot (\u003ca href=\"https://redirect.github.com/AzureAD/microsoft-authentication-library-for-js/issues/8571\"\u003e#8571\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/AzureAD/microsoft-authentication-library-for-js/compare/msal-node-v1.17.3...msal-node-v5.2.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dotenv` from 8.6.0 to 17.4.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/motdotla/dotenv/blob/master/CHANGELOG.md\"\u003edotenv's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/motdotla/dotenv/compare/v17.4.1...v17.4.2\"\u003e17.4.2\u003c/a\u003e (2026-04-12)\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eImproved skill files - tightened up details (\u003ca href=\"https://redirect.github.com/motdotla/dotenv/pull/1009\"\u003e#1009\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/motdotla/dotenv/compare/v17.4.0...v17.4.1\"\u003e17.4.1\u003c/a\u003e (2026-04-05)\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eChange text \u003ccode\u003einjecting\u003c/code\u003e to \u003ccode\u003einjected\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/motdotla/dotenv/pull/1005\"\u003e#1005\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/motdotla/dotenv/compare/v17.3.1...v17.4.0\"\u003e17.4.0\u003c/a\u003e (2026-04-01)\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eskills/\u003c/code\u003e folder with focused agent skills: \u003ccode\u003eskills/dotenv/SKILL.md\u003c/code\u003e (core usage) and \u003ccode\u003eskills/dotenvx/SKILL.md\u003c/code\u003e (encryption, multiple environments, variable expansion) for AI coding agent discovery via the skills.sh ecosystem (\u003ccode\u003enpx skills add motdotla/dotenv\u003c/code\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTighten up logs: \u003ccode\u003e◇ injecting env (14) from .env\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/motdotla/dotenv/pull/1003\"\u003e#1003\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/motdotla/dotenv/compare/v17.3.0...v17.3.1\"\u003e17.3.1\u003c/a\u003e (2026-02-12)\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix as2 example command in README and update spanish README\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/motdotla/dotenv/compare/v17.2.4...v17.3.0\"\u003e17.3.0\u003c/a\u003e (2026-02-12)\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd a new README section on dotenv’s approach to the agentic future.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRewrite README to get humans started more quickly with less noise while simultaneously making more accessible for llms and agents to go deeper into details.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/motdotla/dotenv/compare/v17.2.3...v17.2.4\"\u003e17.2.4\u003c/a\u003e (2026-02-05)\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMake \u003ccode\u003eDotenvPopulateInput\u003c/code\u003e accept \u003ccode\u003eNodeJS.ProcessEnv\u003c/code\u003e type (\u003ca href=\"https://redirect.github.com/motdotla/dotenv/pull/915\"\u003e#915\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cul\u003e\n\u003cli\u003eGive back to dotenv by checking out my newest project \u003ca href=\"https://github.com/vestauth/vestauth\"\u003evestauth\u003c/a\u003e. It is auth for agents. Thank you for using my software.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/motdotla/dotenv/compare/v17.2.2...v17.2.3\"\u003e17.2.3\u003c/a\u003e (2025-09-29)\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed typescript error definition (\u003ca href=\"https://redirect.github.com/motdotla/dotenv/pull/912\"\u003e#912\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/f116f70310abab44fbfddbaeb833698b5bf84a9b\"\u003e\u003ccode\u003ef116f70\u003c/code\u003e\u003c/a\u003e 17.4.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/3a8161274fdd745239b86e604f4a7e972a1d3902\"\u003e\u003ccode\u003e3a81612\u003c/code\u003e\u003c/a\u003e fix visual order of faq\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/13f55a89e136b2024e68d277b836dd5260fc16cf\"\u003e\u003ccode\u003e13f55a8\u003c/code\u003e\u003c/a\u003e Merge branch 'skill'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/4bbbf73f0906bd69975c48bf310a84b686e5b1b4\"\u003e\u003ccode\u003e4bbbf73\u003c/code\u003e\u003c/a\u003e reorganize faq\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/c3da64bb2ba1d0e02f8b9b2b7ccb7e6f7a51d56c\"\u003e\u003ccode\u003ec3da64b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/motdotla/dotenv/issues/1009\"\u003e#1009\u003c/a\u003e from motdotla/skill\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/6f743b173fbd6c26f7eab7040d251f9a6c8b977d\"\u003e\u003ccode\u003e6f743b1\u003c/code\u003e\u003c/a\u003e update source\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/fc2c6247e858a32d4024cb06a5b0c79aa35851f5\"\u003e\u003ccode\u003efc2c624\u003c/code\u003e\u003c/a\u003e update skill\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/972315ba74bb2bbba4483d112e853fd26006ef8a\"\u003e\u003ccode\u003e972315b\u003c/code\u003e\u003c/a\u003e Tighten up skill\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/2795fce3d1ed07b4c570f1e06ab1c0d533c86997\"\u003e\u003ccode\u003e2795fce\u003c/code\u003e\u003c/a\u003e reorganize faq\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motdotla/dotenv/commit/d5495d4ae8e4e41ef9a682c9e00c81552794274e\"\u003e\u003ccode\u003ed5495d4\u003c/code\u003e\u003c/a\u003e adjust skill\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/motdotla/dotenv/compare/v8.6.0...v17.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `express` from 4.18.2 to 5.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/expressjs/express/releases\"\u003eexpress's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.2.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!IMPORTANT]\u003cbr /\u003e\nThe prior release (5.2.0) included an erroneous breaking change related to the extended query parser. There is no actual security vulnerability associated with this behavior (CVE-2024-51999 has been rejected). The change has been fully reverted in this release.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cul\u003e\n\u003cli\u003eRelease: 5.2.1 by \u003ca href=\"https://github.com/UlisesGascon\"\u003e\u003ccode\u003e@​UlisesGascon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6933\"\u003eexpressjs/express#6933\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/expressjs/express/compare/v5.2.0...v5.2.1\"\u003ehttps://github.com/expressjs/express/compare/v5.2.0...v5.2.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.2.0\u003c/h2\u003e\n\u003ch2\u003eImportant: Security\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity fix for \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2024-51999\"\u003eCVE-2024-51999\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/express/security/advisories/GHSA-pj86-cfqh-vqx6\"\u003eGHSA-pj86-cfqh-vqx6\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.11 to 3.28.13 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6429\"\u003eexpressjs/express#6429\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRefactor: simplify \u003ccode\u003eacceptsLanguages\u003c/code\u003e implementation using spread operator by \u003ca href=\"https://github.com/Ayoub-Mabrouk\"\u003e\u003ccode\u003e@​Ayoub-Mabrouk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6137\"\u003eexpressjs/express#6137\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eincreased code coverage of utils.js file by \u003ca href=\"https://github.com/ashish3011\"\u003e\u003ccode\u003e@​ashish3011\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6386\"\u003eexpressjs/express#6386\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: remove duplicate word by \u003ca href=\"https://github.com/dufucun\"\u003e\u003ccode\u003e@​dufucun\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6456\"\u003eexpressjs/express#6456\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.13 to 3.28.16 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6498\"\u003eexpressjs/express#6498\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-node from 4.3.0 to 4.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6497\"\u003eexpressjs/express#6497\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/download-artifact from 4.2.1 to 4.3.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6496\"\u003eexpressjs/express#6496\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: add node.js 24 to test matrix by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6504\"\u003eexpressjs/express#6504\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: update codeql config by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6488\"\u003eexpressjs/express#6488\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: wider range for query test skip by \u003ca href=\"https://github.com/jonchurch\"\u003e\u003ccode\u003e@​jonchurch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6512\"\u003eexpressjs/express#6512\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: fix typos in test by \u003ca href=\"https://github.com/noritaka1166\"\u003e\u003ccode\u003e@​noritaka1166\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6535\"\u003eexpressjs/express#6535\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: disable credential persistence for checkout actions by \u003ca href=\"https://github.com/mertssmnoglu\"\u003e\u003ccode\u003e@​mertssmnoglu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6522\"\u003eexpressjs/express#6522\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: allow manual triggering of workflow by \u003ca href=\"https://github.com/shivarm\"\u003e\u003ccode\u003e@​shivarm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6515\"\u003eexpressjs/express#6515\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: add coverage for app.listen() variants by \u003ca href=\"https://github.com/kgarg1\"\u003e\u003ccode\u003e@​kgarg1\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6476\"\u003eexpressjs/express#6476\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: move documentation and charters to the discussions and .github … by \u003ca href=\"https://github.com/bjohansebas\"\u003e\u003ccode\u003e@​bjohansebas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6427\"\u003eexpressjs/express#6427\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.16 to 3.28.18 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6549\"\u003eexpressjs/express#6549\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6548\"\u003eexpressjs/express#6548\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: enforce explicit \u003ccode\u003eBuffer\u003c/code\u003e import and add lint rule by \u003ca href=\"https://github.com/shivarm\"\u003e\u003ccode\u003e@​shivarm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6525\"\u003eexpressjs/express#6525\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: use node protocol for querystring by \u003ca href=\"https://github.com/shivarm\"\u003e\u003ccode\u003e@​shivarm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6520\"\u003eexpressjs/express#6520\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: fix typo by \u003ca href=\"https://github.com/mountdisk\"\u003e\u003ccode\u003e@​mountdisk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6609\"\u003eexpressjs/express#6609\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.18 to 3.29.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6618\"\u003eexpressjs/express#6618\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd deprecation warnings for redirect arguments undefined by \u003ca href=\"https://github.com/bjohansebas\"\u003e\u003ccode\u003e@​bjohansebas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6405\"\u003eexpressjs/express#6405\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: run CI when the markdown changes by \u003ca href=\"https://github.com/bjohansebas\"\u003e\u003ccode\u003e@​bjohansebas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6632\"\u003eexpressjs/express#6632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edoc: fix CONTRIBUTING link by \u003ca href=\"https://github.com/jonchurch\"\u003e\u003ccode\u003e@​jonchurch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6653\"\u003eexpressjs/express#6653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edoc: update contributing guidelines and code of conduct links by \u003ca href=\"https://github.com/ShubhamOulkar\"\u003e\u003ccode\u003e@​ShubhamOulkar\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6601\"\u003eexpressjs/express#6601\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump morgan from 1.10.0 to 1.10.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6679\"\u003eexpressjs/express#6679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump cookie-session from 2.1.0 to 2.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6678\"\u003eexpressjs/express#6678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003elint: add --fix flag to automatic fix linting issue by \u003ca href=\"https://github.com/shivarm\"\u003e\u003ccode\u003e@​shivarm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6644\"\u003eexpressjs/express#6644\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: ignore yarn.lock file and update example by \u003ca href=\"https://github.com/shivarm\"\u003e\u003ccode\u003e@​shivarm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6588\"\u003eexpressjs/express#6588\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003elib: use req.socket over deprecated req.connection by \u003ca href=\"https://github.com/bjohansebas\"\u003e\u003ccode\u003e@​bjohansebas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6705\"\u003eexpressjs/express#6705\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edoc: update express app example by \u003ca href=\"https://github.com/shivarm\"\u003e\u003ccode\u003e@​shivarm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6718\"\u003eexpressjs/express#6718\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.2 to 3.29.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6675\"\u003eexpressjs/express#6675\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove history.md from being packaged on publish by \u003ca href=\"https://github.com/sheplu\"\u003e\u003ccode\u003e@​sheplu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/express/pull/6780\"\u003eexpressjs/express#6780\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/expressjs/express/blob/master/History.md\"\u003eexpress's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e5.2.1 / 2025-12-01\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eRevert security fix for \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2024-51999\"\u003eCVE-2024-51999\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/express/security/advisories/GHSA-pj86-cfqh-vqx6\"\u003eGHSA-pj86-cfqh-vqx6\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eThe prior release (5.2.0) included an erroneous breaking change related to the extended query parser. There is no actual security vulnerability associated with this behavior (CVE-2024-51999 has been rejected). The change has been fully reverted in this release.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e5.2.0 / 2025-12-01\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity fix for \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2024-51999\"\u003eCVE-2024-51999\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/express/security/advisories/GHSA-pj86-cfqh-vqx6\"\u003eGHSA-pj86-cfqh-vqx6\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edeps: \u003ccode\u003ebody-parser@^2.2.1\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eA deprecation warning was added when using \u003ccode\u003eres.redirect\u003c/code\u003e with undefined arguments, Express now emits a warning to help detect calls that pass undefined as the status or URL and make them easier to fix.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e5.1.0 / 2025-03-31\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for \u003ccode\u003eUint8Array\u003c/code\u003e in \u003ccode\u003eres.send()\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdd support for ETag option in \u003ccode\u003eres.sendFile()\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdd support for multiple links with the same rel in \u003ccode\u003eres.links()\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdd funding field to package.json\u003c/li\u003e\n\u003cli\u003eperf: use loop for acceptParams\u003c/li\u003e\n\u003cli\u003erefactor: prefix built-in node module imports\u003c/li\u003e\n\u003cli\u003edeps: remove \u003ccode\u003esetprototypeof\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003edeps: remove \u003ccode\u003esafe-buffer\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003edeps: remove \u003ccode\u003eutils-merge\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003edeps: remove \u003ccode\u003emethods\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003edeps: remove \u003ccode\u003edepd\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003edeps: \u003ccode\u003edebug@^4.4.0\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003edeps: \u003ccode\u003ebody-parser@^2.2.0\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003edeps: \u003ccode\u003erouter@^2.2.0\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003edeps: \u003ccode\u003econtent-type@^1.0.5\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003edeps: \u003ccode\u003efinalhandler@^2.1.0\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003edeps: \u003ccode\u003eqs@^6.14.0\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003edeps: \u003ccode\u003eserver-static@2.2.0\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003edeps: \u003ccode\u003etype-is@2.0.1\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e5.0.1 / 2024-10-08\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate \u003ccode\u003ecookie\u003c/code\u003e semver lock to address \u003ca href=\"https://nvd.nist.gov/vuln/detail/CVE-2024-47764\"\u003eCVE-2024-47764\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e5.0.0 / 2024-09-10\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eremove:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003epath-is-absolute\u003c/code\u003e dependency - use \u003ccode\u003epath.isAbsolute\u003c/code\u003e instead\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003ebreaking:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eres.status()\u003c/code\u003e accepts only integers, and input must be greater than 99 and less than 1000\n\u003cul\u003e\n\u003cli\u003ewill throw a \u003ccode\u003eRangeError: Invalid status code: ${code}. Status code must be greater than 99 and less than 1000.\u003c/code\u003e for inputs outside this range\u003c/li\u003e\n\u003cli\u003ewill throw a \u003ccode\u003eTypeError: Invalid status code: ${code}. Status code must be an integer.\u003c/code\u003e for non integer inputs\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003edeps: send@1.0.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/dbac741a49a5a64336b70c06e85c2e2706e36336\"\u003e\u003ccode\u003edbac741\u003c/code\u003e\u003c/a\u003e 5.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/697547cde621d8b0a47b4fff6e98b29337f8c980\"\u003e\u003ccode\u003e697547c\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;sec: security patch for CVE-2024-51999\u0026quot;\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/4007ad103ba29f6426b2ec9eccfb1ceb792682a8\"\u003e\u003ccode\u003e4007ad1\u003c/code\u003e\u003c/a\u003e Release: 5.2.0 (\u003ca href=\"https://redirect.github.com/expressjs/express/issues/6920\"\u003e#6920\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/2f64f68c37c64ae333e41ff38032d21860f22255\"\u003e\u003ccode\u003e2f64f68\u003c/code\u003e\u003c/a\u003e sec: security patch for CVE-2024-51999\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/ed0ba3f1dc905d6b62eabf23bd383abcae4901ba\"\u003e\u003ccode\u003eed0ba3f\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/checkout from 5.0.0 to 6.0.0 (\u003ca href=\"https://redirect.github.com/expressjs/express/issues/6928\"\u003e#6928\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/8eace4603cb2547608578a4fbb259dc984216f71\"\u003e\u003ccode\u003e8eace46\u003c/code\u003e\u003c/a\u003e build(deps): bump github/codeql-action from 4.31.2 to 4.31.6 (\u003ca href=\"https://redirect.github.com/expressjs/express/issues/6929\"\u003e#6929\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/30bae810279b2ea162bed5b14ce6c35a110a87f5\"\u003e\u003ccode\u003e30bae81\u003c/code\u003e\u003c/a\u003e build(deps): bump coverallsapp/github-action from 2.3.6 to 2.3.7 (\u003ca href=\"https://redirect.github.com/expressjs/express/issues/6930\"\u003e#6930\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/758d4355d45322b4c8cd347ebcefbf3b154c7e7f\"\u003e\u003ccode\u003e758d435\u003c/code\u003e\u003c/a\u003e deps: body-parser@^2.2.1 (\u003ca href=\"https://redirect.github.com/expressjs/express/issues/6922\"\u003e#6922\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/77bcd5274a87047e5b3fe2f17f6c342db3909c53\"\u003e\u003ccode\u003e77bcd52\u003c/code\u003e\u003c/a\u003e docs: update emeritus triagers (\u003ca href=\"https://redirect.github.com/expressjs/express/issues/6890\"\u003e#6890\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/express/commit/f33caf1f89a028f0ea98ff5a156a68e65a2eabdd\"\u003e\u003ccode\u003ef33caf1\u003c/code\u003e\u003c/a\u003e Nominate to \u003ca href=\"https://github.com/efekrskl\"\u003e\u003ccode\u003e@​efekrskl\u003c/code\u003e\u003c/a\u003e for triage team (\u003ca href=\"https://redirect.github.com/expressjs/express/issues/6888\"\u003e#6888\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/expressjs/express/compare/4.18.2...v5.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~jonchurch\"\u003ejonchurch\u003c/a\u003e, a new releaser for express since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `jwt-decode` from 2.2.0 to 4.0.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/auth0/jwt-decode/releases\"\u003ejwt-decode's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.0\u003c/h2\u003e\n\u003cp\u003eA new version of the library, including a couple of improvements:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eNo longer include a polyfill for \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/API/atob\"\u003eatob\u003c/a\u003e, as this is \u003ca href=\"https://caniuse.com/?search=atob\"\u003esupported in all major browsers\u003c/a\u003e (and \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/API/atob#browser_compatibility\"\u003enode environments \u0026gt; 14\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eCompile to ES2017, dropping support for anything that does not support ES2017 (which should be very limited \u003ca href=\"https://caniuse.com/?search=es2017\"\u003eaccording to caniuse\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse Node's atob when running on node.\u003c/li\u003e\n\u003cli\u003eDrop support for Node 14 and 16, add support for Node 20.\u003c/li\u003e\n\u003cli\u003eAdd support for package.json's \u003ccode\u003eexports\u003c/code\u003e field, for better CJS/ESM support\u003c/li\u003e\n\u003cli\u003eReorganize build artifacts for better CJS/ESM support (cjs and esm needs to be their own directory with a cjs specific package.json file)\u003c/li\u003e\n\u003cli\u003eDrop manual UMD bundle creation in \u003ccode\u003eindex.standalone.ts\u003c/code\u003e, but rely on rollup instead.\u003c/li\u003e\n\u003cli\u003eInfer JwtPayload and JwtHeader default types from the \u003ccode\u003eheader\u003c/code\u003e argument by using overloads.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eEven though some users might experience breaking changes, mostly because of the \u003ccode\u003eexports\u003c/code\u003e field, the majority should be able to update without making any changes, assuming the SDK is used in environments with support for \u003ccode\u003eatob\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eMigration to v4.0.0\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eThe \u003ccode\u003ejwtDecode\u003c/code\u003e function is now no longer the default export, and is instead provided as a named export. Make sure to update your code in places where you are importing this function:\u003c/p\u003e\n\u003cpre lang=\"diff\"\u003e\u003ccode\u003e-import jwtDecodefrom \u0026quot;jwt-decode\u0026quot;;\r\n+import { jwtDecode } from \u0026quot;jwt-decode\u0026quot;;\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch2\u003ev4.0.0-beta.4\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eBreaking changes\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRaise minimum Node.js version to 18 \u003ca href=\"https://redirect.github.com/auth0/jwt-decode/pull/209\"\u003e#209\u003c/a\u003e (\u003ca href=\"https://github.com/jonkoops\"\u003ejonkoops\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFixed\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003efix default condition should be the last one \u003ca href=\"https://redirect.github.com/auth0/jwt-decode/pull/199\"\u003e#199\u003c/a\u003e (\u003ca href=\"https://github.com/frederikprijck\"\u003efrederikprijck\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.0.0-beta.3\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eBreaking changes\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrop UMD bundle \u003ca href=\"https://redirect.github.com/auth0/jwt-decode/pull/193\"\u003e#193\u003c/a\u003e (\u003ca href=\"https://github.com/frederikprijck\"\u003efrederikprijck\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eChanged\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eUse modern JavaScript syntax \u003ca href=\"https://redirect.github.com/auth0/jwt-decode/pull/187\"\u003e#187\u003c/a\u003e (\u003ca href=\"https://github.com/jonkoops\"\u003ejonkoops\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse ESNext as default module system \u003ca href=\"https://redirect.github.com/auth0/jwt-decode/pull/188\"\u003e#188\u003c/a\u003e (\u003ca href=\"https://github.com/jonkoops\"\u003ejonkoops\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAvoid using any bundlers but use tsc instead \u003ca href=\"https://redirect.github.com/auth0/jwt-decode/pull/192\"\u003e#192\u003c/a\u003e (\u003ca href=\"https://github.com/frederikprijck\"\u003efrederikprijck\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.0.0-beta.2\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eChanged\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAvoid using default exports \u003ca href=\"https://redirect.github.com/auth0/jwt-decode/pull/175\"\u003e#175\u003c/a\u003e (\u003ca href=\"https://github.com/frederikprijck\"\u003efrederikprijck\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMake options optional no default function parameter initializer \u003ca href=\"https://redirect.github.com/auth0/jwt-decode/pull/179\"\u003e#179\u003c/a\u003e (\u003ca href=\"https://github.com/cristobal\"\u003ecristobal\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFixed\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure types are bundled and correctly linked \u003ca href=\"https://redirect.github.com/auth0/jwt-decode/pull/174\"\u003e#174\u003c/a\u003e (\u003ca href=\"https://github.com/jonkoops\"\u003ejonkoops\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.0.0-beta.1\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFixed\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure build is run on prepack \u003ca href=\"https://redirect.github.com/auth0/jwt-decode/pull/167\"\u003e#167\u003c/a\u003e (\u003ca href=\"https://github.com/frederikprijck\"\u003efrederikprijck\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/auth0/jwt-decode/blob/main/CHANGELOG.md\"\u003ejwt-decode's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eVersion \u003ca href=\"https://github.com/auth0/jwt-decode/releases/tag/v4.0.0\"\u003e4.0.0\u003c/a\u003e\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/auth0/jwt-decode/compare/v3.1.2..v4.0.0\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eA new version of the library, including a couple of improvements:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eNo longer include a polyfill for \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/API/atob\"\u003eatob\u003c/a\u003e, as this is \u003ca href=\"https://caniuse.com/?search=atob\"\u003esupported in all major browsers\u003c/a\u003e (and \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/API/atob#browser_compatibility\"\u003enode environments \u0026gt; 14\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eCompile to ES2017, dropping support for anything that does not support ES2017 (which should be very limited \u003ca href=\"https://caniuse.com/?search=es2017\"\u003eaccording to caniuse\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse Node's atob when running on node.\u003c/li\u003e\n\u003cli\u003eDrop support for Node 14 and 16, add support for Node 20.\u003c/li\u003e\n\u003cli\u003eAdd support for package.json's \u003ccode\u003eexports\u003c/code\u003e field, for better CJS/ESM support\u003c/li\u003e\n\u003cli\u003eReorganize build artifacts for better CJS/ESM support (cjs and esm needs to be their own directory with a cjs specific package.json file)\u003c/li\u003e\n\u003cli\u003eDrop manual UMD bundle creation in \u003ccode\u003eindex.standalone.ts\u003c/code\u003e, but rely on rollup instead.\u003c/li\u003e\n\u003cli\u003eInfer JwtPayload and JwtHeader default types from the \u003ccode\u003eheader\u003c/code\u003e argument by using overloads.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eEven though some users might experience breaking changes, mostly because of the \u003ccode\u003eexports\u003c/code\u003e field, the majority should be able to update without making any changes, assuming the SDK is used in environments with support for \u003ccode\u003eatob\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eMigration to v4.0.0\u003c/h3\u003e\n\u003cp\u003eThe \u003ccode\u003ejwtDecode\u003c/code\u003e function is now no longer the default export, and is instead provided as a named export. Make sure to update your code in places where you are importing this function:\u003c/p\u003e\n\u003cpre lang=\"diff\"\u003e\u003ccode\u003e-import jwtDecode from \u0026quot;jwt-decode\u0026quot;;\n+import { jwtDecode } from \u0026quot;jwt-decode\u0026quot;;\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch2\u003eVersion \u003ca href=\"https://github.com/auth0/jwt-decode/releases/tag/v4.0.0-beta.4\"\u003e4.0.0-beta.4\u003c/a\u003e\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/auth0/jwt-decode/compare/v4.0.0-beta.3..v4.0.0-beta.4\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eBreaking changes\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRaise minimum Node.js version to 18 \u003ca href=\"https://redirect.github.com/auth0/jwt-decode/pull/209\"\u003e#209\u003c/a\u003e (\u003ca href=\"https://github.com/jonkoops\"\u003ejonkoops\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFixed\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003efix default condition should be the last one \u003ca href=\"https://redirect.github.com/auth0/jwt-decode/pull/199\"\u003e#199\u003c/a\u003e (\u003ca href=\"https://github.com/frederikprijck\"\u003efrederikprijck\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eVersion \u003ca href=\"https://github.com/auth0/jwt-decode/releases/tag/v4.0.0-beta.3\"\u003e4.0.0-beta.3\u003c/a\u003e\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/auth0/jwt-decode/compare/v4.0.0-beta.2..v4.0.0-beta.3\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eBreaking changes\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDrop UMD bundle \u003ca href=\"https://redirect.github.com/auth0/jwt-decode/pull/193\"\u003e#193\u003c/a\u003e (\u003ca href=\"https://github.com/frederikprijck\"\u003efrederikprijck\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eChanged\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eUse modern JavaScript syntax \u003ca href=\"https://redirect.github.com/auth0/jwt-decode/pull/187\"\u003e#187\u003c/a\u003e (\u003ca href=\"https://github.com/jonkoops\"\u003ejonkoops\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse ESNext as default module system \u003ca href=\"https://redirect.github.com/auth0/jwt-decode/pull/188\"\u003e#188\u003c/a\u003e (\u003ca href=\"https://github.com/jonkoops\"\u003ejonkoops\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/jwt-decode/commit/3b2d105aa2ad4c5532f113b511c87171d89ee7a9\"\u003e\u003ccode\u003e3b2d105\u003c/code\u003e\u003c/a\u003e Update CHANGELOG.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/jwt-decode/commit/bd50db0a7fb0d49dc43359f299be2f9f41fc2950\"\u003e\u003ccode\u003ebd50db0\u003c/code\u003e\u003c/a\u003e Release v4.0.0 (\u003ca href=\"https://redirect.github.com/auth0/jwt-decode/issues/232\"\u003e#232\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/jwt-decode/commit/bcfd7daa6600d2667b052fa8c50a16cdcca993ca\"\u003e\u003ccode\u003ebcfd7da\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 3 to 4 (\u003ca href=\"https://redirect.github.com/auth0/jwt-decode/issues/228\"\u003e#228\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/jwt-decode/commit/6ec1cba3159e9816010b09ad76c3c6740a5dc205\"\u003e\u003ccode\u003e6ec1cba\u003c/code\u003e\u003c/a\u003e Bump concurrently from 8.2.0 to 8.2.2 (\u003ca href=\"https://redirect.github.com/auth0/jwt-decode/issues/226\"\u003e#226\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/jwt-decode/commit/807d123e363a3988263b92e2e14d9873670c2602\"\u003e\u003ccode\u003e807d123\u003c/code\u003e\u003c/a\u003e Bump \u003ccode\u003e@​typescript-eslint/eslint-plugin\u003c/code\u003e from 6.4.1 to 6.9.0 (\u003ca href=\"https://redirect.github.com/auth0/jwt-decode/issues/229\"\u003e#229\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/jwt-decode/commit/f68e2927a89ed6fe2332e717987c373840914b2e\"\u003e\u003ccode\u003ef68e292\u003c/code\u003e\u003c/a\u003e Bump eslint-plugin-import from 2.28.1 to 2.29.0 (\u003ca href=\"https://redirect.github.com/auth0/jwt-decode/issues/230\"\u003e#230\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/jwt-decode/commit/b2e748945b2e451a1440f81136ce4cc7c1fc8851\"\u003e\u003ccode\u003eb2e7489\u003c/code\u003e\u003c/a\u003e Bump eslint-import-resolver-typescript from 3.6.0 to 3.6.1 (\u003ca href=\"https://redirect.github.com/auth0/jwt-decode/issues/225\"\u003e#225\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/jwt-decode/commit/ccb64884406ca0be891de5bd0b75cc2c8be6b00d\"\u003e\u003ccode\u003eccb6488\u003c/code\u003e\u003c/a\u003e Bump lint-staged from 14.0.1 to 15.0.2 (\u003ca href=\"https://redirect.github.com/auth0/jwt-decode/issues/231\"\u003e#231\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/jwt-decode/commit/cf3cd4fd10142965bbea0034cde0499879bb2603\"\u003e\u003ccode\u003ecf3cd4f\u003c/code\u003e\u003c/a\u003e Bump actions/setup-node from 3 to 4 (\u003ca href=\"https://redirect.github.com/auth0/jwt-decode/issues/227\"\u003e#227\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/jwt-decode/commit/0ce80178454b72be3e346aed8c8c76a09258a415\"\u003e\u003ccode\u003e0ce8017\u003c/code\u003e\u003c/a\u003e pin babel/core to recent version and bump jest\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/auth0/jwt-decode/compare/v2.2.0...v4.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~auth0-oss\"\u003eauth0-oss\u003c/a\u003e, a new releaser for jwt-decode since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `node-fetch` from 2.6.12 to 3.3.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-fetch/node-fetch/releases\"\u003enode-fetch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.3.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.1...v3.3.2\"\u003e3.3.2\u003c/a\u003e (2023-07-25)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e8b3320d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1735\"\u003e#1735\u003c/a\u003e \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1473\"\u003e#1473\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.0...v3.3.1\"\u003e3.3.1\u003c/a\u003e (2023-03-11)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erelease \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e7b86e94\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.0\u003c/h2\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.10...v3.3.0\"\u003e3.3.0\u003c/a\u003e (2022-11-10)\u003c/h1\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd static Response.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1670\"\u003e#1670\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/55a4870ae5f805d8ff9a890ea2c652c9977e048e\"\u003e55a4870\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.10\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.9...v3.2.10\"\u003e3.2.10\u003c/a\u003e (2022-07-31)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDoS referrer (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1611\"\u003e#1611\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d\"\u003e2880238\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.9\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.8...v3.2.9\"\u003e3.2.9\u003c/a\u003e (2022-07-18)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHeaders:\u003c/strong\u003e don't forward secure headers on protocol change (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1599\"\u003e#1599\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7\"\u003ee87b093\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.8\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.7...v3.2.8\"\u003e3.2.8\u003c/a\u003e (2022-07-12)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003epossibly flaky test (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1523\"\u003e#1523\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/11b703361134340a8361f591d6e3a0bcf6a261fa\"\u003e11b7033\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e\u003ccode\u003e8b3320d\u003c/code\u003e\u003c/a\u003e fix: Remove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e\u003ccode\u003e7b86e94\u003c/code\u003e\u003c/a\u003e fix: release \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8ced5b941cf36d0d7e0c1017aa2a4abcb29ecd89\"\u003e\u003ccode\u003e8ced5b9\u003c/code\u003e\u003c/a\u003e docs: readme - non ESM example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1707\"\u003e#1707\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/71e376b0ca899a30bbda4d45f97ea87502956a62\"\u003e\u003ccode\u003e71e376b\u003c/code\u003e\u003c/a\u003e ci(release): use latest Node LTS (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1697\"\u003e#1697\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e093030b4a6625405a331ddf48bcfd82c079f43d\"\u003e\u003ccode\u003ee093030\u003c/code\u003e\u003c/a\u003e Allow URL class object as an argument for fetch() (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/55a4870ae5f805d8ff9a890ea2c652c9977e048e\"\u003e\u003ccode\u003e55a4870\u003c/code\u003e\u003c/a\u003e feat: add static Response.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1670\"\u003e#1670\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/c071406e193cce13959999982584ff27198e9e4a\"\u003e\u003ccode\u003ec071406\u003c/code\u003e\u003c/a\u003e (1138) - Fixed HTTPResponseError with correct constructor and usage (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1666\"\u003e#1666\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/6f72caa401a8ec574a22058431599ef47c222770\"\u003e\u003ccode\u003e6f72caa\u003c/code\u003e\u003c/a\u003e docs: fix missing comma in example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1623\"\u003e#1623\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d\"\u003e\u003ccode\u003e2880238\u003c/code\u003e\u003c/a\u003e fix: ReDoS referrer (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1611\"\u003e#1611\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7\"\u003e\u003ccode\u003ee87b093\u003c/code\u003e\u003c/a\u003e fix(Headers): don't forward secure headers on protocol change (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1599\"\u003e#1599\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v2.6.12...v3.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `esbuild` from 0.18.11 to 0.28.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/evanw/esbuild/releases\"\u003eesbuild's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.28.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdd support for \u003ccode\u003ewith { type: 'text' }\u003c/code\u003e imports (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4435\"\u003e#4435\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eThe \u003ca href=\"https://github.com/tc39/proposal-import-text\"\u003eimport text\u003c/a\u003e proposal has reached stage 3 in the TC39 process, which means that it's recommended for implementation. It has also already been implemented by \u003ca href=\"https://docs.deno.com/examples/importing_text/\"\u003eDeno\u003c/a\u003e and \u003ca href=\"https://bun.com/docs/guides/runtime/import-html\"\u003eBun\u003c/a\u003e. So with this release, esbuild also adds support for it. This behaves exactly the same as esbuild's existing \u003ca href=\"https://esbuild.github.io/content-types/#text\"\u003e\u003ccode\u003etext\u003c/code\u003e loader\u003c/a\u003e. Here's an example:\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003eimport string from './example.txt' with { type: 'text' }\nconsole.log(string)\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdd integrity checks to fallback download path (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4343\"\u003e#4343\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eInstalling esbuild via npm is somewhat complicated with several different edge cases (see \u003ca href=\"https://esbuild.github.io/getting-started/#additional-npm-flags\"\u003eesbuild's documentation\u003c/a\u003e for details). If the regular installation of esbuild's platform-specific package fails, esbuild's install script attempts to download the platform-specific package itself (first with the \u003ccode\u003enpm\u003c/code\u003e command, and then with a HTTP request to \u003ccode\u003eregistry.npmjs.org\u003c/code\u003e as a last resort).\u003c/p\u003e\n\u003cp\u003eThis last resort path previously didn't have any integrity checks. With this release, esbuild will now verify that the hash of the downloaded binary matches the expected hash for the current release. This means the hashes for all of esbuild's platform-specific binary packages will now be embedded in the top-level \u003ccode\u003eesbuild\u003c/code\u003e package. Hopefully this should work without any problems. But just in case, this change is being done as a breaking change release.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpdate the Go compiler from 1.25.7 to 1.26.1\u003c/p\u003e\n\u003cp\u003eThis upgrade should not affect anything. However, there have been some significant internal changes to the Go compiler, so esbuild could potentially behave differently in certain edge cases:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eIt now uses the \u003ca href=\"https://go.dev/doc/go1.26#new-garbage-collector\"\u003enew garbage collector\u003c/a\u003e that comes with Go 1.26.\u003c/li\u003e\n\u003cli\u003eThe Go compiler is now more aggressive with allocating memory on the stack.\u003c/li\u003e\n\u003cli\u003eThe executable format that the Go linker uses has undergone several changes.\u003c/li\u003e\n\u003cli\u003eThe WebAssembly build now unconditionally makes use of the sign extension and non-trapping floating-point to integer conversion instructions.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eYou can read the \u003ca href=\"https://go.dev/doc/go1.26\"\u003eGo 1.26 release notes\u003c/a\u003e for more information.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.27.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix lowering of define semantics for TypeScript parameter properties (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4421\"\u003e#4421\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eThe previous release incorrectly generated class fields for TypeScript parameter properties even when the configured target environment does not support class fields. With this release, the generated class fields will now be correctly lowered in this case:\u003c/p\u003e\n\u003cpre lang=\"ts\"\u003e\u003ccode\u003e// Original code\nclass Foo {\n  constructor(public x = 1) {}\n  y = 2\n}\n\u003cp\u003e// Old output (with --loader=ts --target=es2021)\u003cbr /\u003e\nclass Foo {\u003cbr /\u003e\nconstructor(x = 1) {\u003cbr /\u003e\nthis.x = x;\u003cbr /\u003e\n__publicField(this, \u0026quot;y\u0026quot;, 2);\u003cbr /\u003e\n}\u003cbr /\u003e\nx;\u003cbr /\u003e\n}\u003c/p\u003e\n\u003cp\u003e// New output (with --loader=ts --target=es2021)\u003cbr /\u003e\nclass Foo {\u003cbr /\u003e\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/evanw/esbuild/blob/main/CHANGELOG-2023.md\"\u003eesbuild's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog: 2023\u003c/h1\u003e\n\u003cp\u003eThis changelog documents all esbuild versions published in the year 2023 (versions 0.16.13 through 0.19.11).\u003c/p\u003e\n\u003ch2\u003e0.19.11\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix TypeScript-specific class transform edge case (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/3559\"\u003e#3559\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eThe previous release introduced an optimization that avoided transforming \u003ccode\u003esuper()\u003c/code\u003e in the class constructor for TypeScript code compiled with \u003ccode\u003euseDefineForClassFields\u003c/code\u003e set to \u003ccode\u003efalse\u003c/code\u003e if all class instance fields have no initializers. The rationale was that in this case, all class instance fields are omitted in the output so no changes to the constructor are needed. However, if all of this is the case \u003cem\u003eand\u003c/em\u003e there are \u003ccode\u003e#private\u003c/code\u003e instance fields with initializers, those private instance field initializers were still being moved into the constructor. This was problematic because they were being inserted before the call to \u003ccode\u003esuper()\u003c/code\u003e (since \u003ccode\u003esuper()\u003c/code\u003e is now no longer transformed in that case). This release introduces an additional optimization that avoids moving the private instance field initializers into the constructor in this edge case, which generates smaller code, matches the TypeScript compiler's output more closely, and avoids this bug:\u003c/p\u003e\n\u003cpre lang=\"ts\"\u003e\u003ccode\u003e// Original code\nclass Foo extends Bar {\n  #private = 1;\n  public: any;\n  constructor() {\n    super();\n  }\n}\n\u003cp\u003e// Old output (with esbuild v0.19.9)\u003cbr /\u003e\nclass Foo extends Bar {\u003cbr /\u003e\nconstructor() {\u003cbr /\u003e\nsuper();\u003cbr /\u003e\nthis.#private = 1;\u003cbr /\u003e\n}\u003cbr /\u003e\n#private;\u003cbr /\u003e\n}\u003c/p\u003e\n\u003cp\u003e// Old output (with esbuild v0.19.10)\u003cbr /\u003e\nclass Foo extends Bar {\u003cbr /\u003e\nconstructor() {\u003cbr /\u003e\nthis.#private = 1;\u003cbr /\u003e\nsuper();\u003cbr /\u003e\n}\u003cbr /\u003e\n#private;\u003cbr /\u003e\n}\u003c/p\u003e\n\u003cp\u003e// New output\u003cbr /\u003e\nclass Foo extends Bar {\u003cbr /\u003e\n#private = 1;\u003cbr /\u003e\nconstructor() {\u003cbr /\u003e\nsuper();\u003cbr /\u003e\n}\u003cbr /\u003e\n}\u003cbr /\u003e\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eMinifier: allow reording a primitive past a side-effect (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/3568\"\u003e#3568\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eThe minifier previously allowed reordering a side-effect past a primitive, but didn't handle the case of reordering a primitive past a side-effect. This additional case is now handled:\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/6a794dff68e6a43539f6da671e3080efdf11ca70\"\u003e\u003ccode\u003e6a794df\u003c/code\u003e\u003c/a\u003e publish 0.28.0 to npm\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/64ee0ea63b2ff303caafc9610c388dc72c882c23\"\u003e\u003ccode\u003e64ee0ea\u003c/code\u003e\u003c/a\u003e fix \u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4435\"\u003e#4435\u003c/a\u003e: support \u003ccode\u003ewith { type: text }\u003c/code\u003e imports\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/ef65aeeaacdb71eade186f888975b1de89574314\"\u003e\u003ccode\u003eef65aee\u003c/code\u003e\u003c/a\u003e fix sort order in \u003ccode\u003esnapshots_packagejson.txt\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/1a26a8ecbc39aaf1379c524a0274a08fbcbed655\"\u003e\u003ccode\u003e1a26a8e\u003c/code\u003e\u003c/a\u003e try to fix \u003ccode\u003etest-old-ts\u003c/code\u003e, also shuffle CI tasks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/556ce6c1fc00d7c0917fbfada01ed8e5251bc510\"\u003e\u003ccode\u003e556ce6c\u003c/code\u003e\u003c/a\u003e use \u003ccode\u003e''\u003c/code\u003e instead of \u003ccode\u003enull\u003c/code\u003e to omit build hashes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/8e675a81a473ea69a46a69792f1386bb110dd877\"\u003e\u003ccode\u003e8e675a8\u003c/code\u003e\u003c/a\u003e ci: allow missing binary hashes for tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/7067763b904fe8a522fa840a4a48c5fbd4c395e0\"\u003e\u003ccode\u003e7067763\u003c/code\u003e\u003c/a\u003e Reapply \u0026quot;update go 1.25.7 =\u0026gt; 1.26.1\u0026quot;\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/39473a952ab3b450d0578b698a8b8d2a02332e0d\"\u003e\u003ccode\u003e39473a9\u003c/code\u003e\u003c/a\u003e fix \u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4343\"\u003e#4343\u003c/a\u003e: integrity check for binary download\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/2025c9ff6ab15ba6b0f9d074fd732250cc46e4a3\"\u003e\u003ccode\u003e2025c9f\u003c/code\u003e\u003c/a\u003e publish 0.27.7 to npm\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/c6b586e4904f47e8d5f783a2813660c13e2672e7\"\u003e\u003ccode\u003ec6b586e\u003c/code\u003e\u003c/a\u003e fix typo in \u003ccode\u003eMakefile\u003c/code\u003e for \u003ccode\u003e@esbuild/win32-x64\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/evanw/esbuild/compare/v0.18.11...v0.28.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for esbuild since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n","html_url":"https://github.com/OfficeDev/Microsoft-Teams-Samples/pull/2018","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/OfficeDev%2FMicrosoft-Teams-Samples/issues/2018","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2018/packages"}},{"old_version":"2.7.0","new_version":"3.3.2","update_type":"major","path":null,"pr_created_at":"2026-05-06T10:27:27.000Z","version_change":"2.7.0 → 3.3.2","issue":{"uuid":"4390602261","node_id":"PR_kwDOOuOFAc7Yuc7v","number":34604,"state":"closed","title":"deps: bump the production-dependencies group across 1 directory with 3 updates","user":"dependabot[bot]","labels":["dependencies"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":"2026-05-10T10:37:33.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-06T10:27:27.000Z","updated_at":"2026-05-10T10:37:35.000Z","time_to_close":346206,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"deps: bump","group_name":"production-dependencies","update_count":3,"packages":[{"name":"lucide-react","old_version":"1.11.0","new_version":"1.14.0","repository_url":"https://github.com/lucide-icons/lucide"},{"name":"node-fetch","old_version":"2.7.0","new_version":"3.3.2","repository_url":"https://github.com/node-fetch/node-fetch"},{"name":"react-router-dom","old_version":"7.14.2","new_version":"7.15.0","repository_url":"https://github.com/remix-run/react-router"}],"path":null,"ecosystem":"npm"},"body":"Bumps the production-dependencies group with 3 updates in the / directory: [lucide-react](https://github.com/lucide-icons/lucide/tree/HEAD/packages/lucide-react), [node-fetch](https://github.com/node-fetch/node-fetch) and [react-router-dom](https://github.com/remix-run/react-router/tree/HEAD/packages/react-router-dom).\n\nUpdates `lucide-react` from 1.11.0 to 1.14.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lucide-icons/lucide/releases\"\u003elucide-react's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eVersion 1.14.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat(icons): added \u003ccode\u003erepeat-off\u003c/code\u003e icon by \u003ca href=\"https://github.com/jguddas\"\u003e\u003ccode\u003e@​jguddas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lucide-icons/lucide/pull/3102\"\u003elucide-icons/lucide#3102\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lucide-icons/lucide/compare/1.13.0...1.14.0\"\u003ehttps://github.com/lucide-icons/lucide/compare/1.13.0...1.14.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eVersion 1.13.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(docs): sync URL params with UI state on categories page by \u003ca href=\"https://github.com/taimar\"\u003e\u003ccode\u003e@​taimar\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lucide-icons/lucide/pull/4111\"\u003elucide-icons/lucide#4111\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(icons): add \u003ccode\u003ewaves-vertical\u003c/code\u003e icon by \u003ca href=\"https://github.com/jamiemlaw\"\u003e\u003ccode\u003e@​jamiemlaw\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lucide-icons/lucide/pull/3867\"\u003elucide-icons/lucide#3867\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lucide-icons/lucide/compare/1.12.0...1.13.0\"\u003ehttps://github.com/lucide-icons/lucide/compare/1.12.0...1.13.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eVersion 1.12.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat(icon): add folder-bookmark icon by \u003ca href=\"https://github.com/swastik7805\"\u003e\u003ccode\u003e@​swastik7805\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lucide-icons/lucide/pull/4262\"\u003elucide-icons/lucide#4262\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs(readme): Update readme files by \u003ca href=\"https://github.com/ericfennis\"\u003e\u003ccode\u003e@​ericfennis\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lucide-icons/lucide/pull/4320\"\u003elucide-icons/lucide#4320\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(icons): added \u003ccode\u003eastroid\u003c/code\u003e icon by \u003ca href=\"https://github.com/whoisBugsbunny\"\u003e\u003ccode\u003e@​whoisBugsbunny\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/lucide-icons/lucide/pull/4217\"\u003elucide-icons/lucide#4217\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lucide-icons/lucide/compare/1.10.0...1.12.0\"\u003ehttps://github.com/lucide-icons/lucide/compare/1.10.0...1.12.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lucide-icons/lucide/commit/50d8af5a1012e188f3d71ac8f1fc0fba1aab5357\"\u003e\u003ccode\u003e50d8af5\u003c/code\u003e\u003c/a\u003e docs(readme): Update readme files (\u003ca href=\"https://github.com/lucide-icons/lucide/tree/HEAD/packages/lucide-react/issues/4320\"\u003e#4320\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/lucide-icons/lucide/commits/1.14.0/packages/lucide-react\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `node-fetch` from 2.7.0 to 3.3.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-fetch/node-fetch/releases\"\u003enode-fetch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.3.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.1...v3.3.2\"\u003e3.3.2\u003c/a\u003e (2023-07-25)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e8b3320d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1735\"\u003e#1735\u003c/a\u003e \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1473\"\u003e#1473\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.0...v3.3.1\"\u003e3.3.1\u003c/a\u003e (2023-03-11)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erelease \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e7b86e94\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.0\u003c/h2\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.10...v3.3.0\"\u003e3.3.0\u003c/a\u003e (2022-11-10)\u003c/h1\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd static Response.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1670\"\u003e#1670\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/55a4870ae5f805d8ff9a890ea2c652c9977e048e\"\u003e55a4870\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.10\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.9...v3.2.10\"\u003e3.2.10\u003c/a\u003e (2022-07-31)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDoS referrer (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1611\"\u003e#1611\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d\"\u003e2880238\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.9\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.8...v3.2.9\"\u003e3.2.9\u003c/a\u003e (2022-07-18)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHeaders:\u003c/strong\u003e don't forward secure headers on protocol change (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1599\"\u003e#1599\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7\"\u003ee87b093\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.8\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.7...v3.2.8\"\u003e3.2.8\u003c/a\u003e (2022-07-12)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003epossibly flaky test (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1523\"\u003e#1523\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/11b703361134340a8361f591d6e3a0bcf6a261fa\"\u003e11b7033\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e\u003ccode\u003e8b3320d\u003c/code\u003e\u003c/a\u003e fix: Remove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e\u003ccode\u003e7b86e94\u003c/code\u003e\u003c/a\u003e fix: release \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8ced5b941cf36d0d7e0c1017aa2a4abcb29ecd89\"\u003e\u003ccode\u003e8ced5b9\u003c/code\u003e\u003c/a\u003e docs: readme - non ESM example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1707\"\u003e#1707\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/71e376b0ca899a30bbda4d45f97ea87502956a62\"\u003e\u003ccode\u003e71e376b\u003c/code\u003e\u003c/a\u003e ci(release): use latest Node LTS (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1697\"\u003e#1697\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e093030b4a6625405a331ddf48bcfd82c079f43d\"\u003e\u003ccode\u003ee093030\u003c/code\u003e\u003c/a\u003e Allow URL class object as an argument for fetch() (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/55a4870ae5f805d8ff9a890ea2c652c9977e048e\"\u003e\u003ccode\u003e55a4870\u003c/code\u003e\u003c/a\u003e feat: add static Response.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1670\"\u003e#1670\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/c071406e193cce13959999982584ff27198e9e4a\"\u003e\u003ccode\u003ec071406\u003c/code\u003e\u003c/a\u003e (1138) - Fixed HTTPResponseError with correct constructor and usage (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1666\"\u003e#1666\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/6f72caa401a8ec574a22058431599ef47c222770\"\u003e\u003ccode\u003e6f72caa\u003c/code\u003e\u003c/a\u003e docs: fix missing comma in example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1623\"\u003e#1623\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d\"\u003e\u003ccode\u003e2880238\u003c/code\u003e\u003c/a\u003e fix: ReDoS referrer (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1611\"\u003e#1611\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7\"\u003e\u003ccode\u003ee87b093\u003c/code\u003e\u003c/a\u003e fix(Headers): don't forward secure headers on protocol change (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1599\"\u003e#1599\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v2.7.0...v3.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `react-router-dom` from 7.14.2 to 7.15.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/remix-run/react-router/blob/main/packages/react-router-dom/CHANGELOG.md\"\u003ereact-router-dom's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.15.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies:\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/remix-run/react-router/releases/tag/react-router@7.15.0\"\u003e\u003ccode\u003ereact-router@7.15.0\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/remix-run/react-router/commit/97c8de79c38f107acd15f74d8295c7bf75894a5d\"\u003e\u003ccode\u003e97c8de7\u003c/code\u003e\u003c/a\u003e Release v7.15.0 (\u003ca href=\"https://github.com/remix-run/react-router/tree/HEAD/packages/react-router-dom/issues/15018\"\u003e#15018\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/remix-run/react-router/commits/react-router-dom@7.15.0/packages/react-router-dom\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/Zion-support/zion.app/pull/34604","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Zion-support%2Fzion.app/issues/34604","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/34604/packages"}},{"old_version":"3.3.0","new_version":"3.3.2","update_type":"patch","path":null,"pr_created_at":"2026-05-06T07:17:08.000Z","version_change":"3.3.0 → 3.3.2","issue":{"uuid":"4389501593","node_id":"PR_kwDOH8zbys7Yq1Dt","number":310,"state":"open","title":"Bump node-fetch from 3.3.0 to 3.3.2","user":"dependabot[bot]","labels":["dependencies","Stale","javascript"],"assignees":[],"locked":false,"comments_count":4,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-06T07:17:08.000Z","updated_at":"2026-06-11T06:00:13.900Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"node-fetch","old_version":"3.3.0","new_version":"3.3.2","repository_url":"https://github.com/node-fetch/node-fetch"}],"path":null,"ecosystem":"npm"},"body":"Bumps [node-fetch](https://github.com/node-fetch/node-fetch) from 3.3.0 to 3.3.2.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-fetch/node-fetch/releases\"\u003enode-fetch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.3.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.1...v3.3.2\"\u003e3.3.2\u003c/a\u003e (2023-07-25)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e8b3320d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1735\"\u003e#1735\u003c/a\u003e \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1473\"\u003e#1473\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.0...v3.3.1\"\u003e3.3.1\u003c/a\u003e (2023-03-11)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erelease \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e7b86e94\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e\u003ccode\u003e8b3320d\u003c/code\u003e\u003c/a\u003e fix: Remove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e\u003ccode\u003e7b86e94\u003c/code\u003e\u003c/a\u003e fix: release \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8ced5b941cf36d0d7e0c1017aa2a4abcb29ecd89\"\u003e\u003ccode\u003e8ced5b9\u003c/code\u003e\u003c/a\u003e docs: readme - non ESM example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1707\"\u003e#1707\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/71e376b0ca899a30bbda4d45f97ea87502956a62\"\u003e\u003ccode\u003e71e376b\u003c/code\u003e\u003c/a\u003e ci(release): use latest Node LTS (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1697\"\u003e#1697\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e093030b4a6625405a331ddf48bcfd82c079f43d\"\u003e\u003ccode\u003ee093030\u003c/code\u003e\u003c/a\u003e Allow URL class object as an argument for fetch() (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.0...v3.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=node-fetch\u0026package-manager=npm_and_yarn\u0026previous-version=3.3.0\u0026new-version=3.3.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/jischr/taraforboulder/pull/310","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/jischr%2Ftaraforboulder/issues/310","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/310/packages"}},{"old_version":"2.6.0","new_version":"2.7.0","update_type":"minor","path":null,"pr_created_at":"2026-05-04T17:17:43.000Z","version_change":"2.6.0 → 2.7.0","issue":{"uuid":"4378326451","node_id":"PR_kwDOQK0Xy87YGRy-","number":12,"state":"closed","title":"chore(deps): bump the npm_and_yarn group across 21 directories with 18 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-28T00:54:10.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-04T17:17:43.000Z","updated_at":"2026-05-28T00:54:11.000Z","time_to_close":2014587,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm_and_yarn","update_count":18,"packages":[{"name":"uuid","old_version":"3.2.1","new_version":"14.0.0","repository_url":"https://github.com/uuidjs/uuid"},{"name":"lodash","old_version":"4.17.14","new_version":"4.18.1","repository_url":"https://github.com/lodash/lodash"},{"name":"js-yaml","old_version":"3.13.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"node-fetch","old_version":"2.6.0","new_version":"2.7.0","repository_url":"https://github.com/node-fetch/node-fetch"},{"name":"tmp","old_version":"0.0.33","new_version":"removed","repository_url":"https://github.com/raszi/node-tmp"},{"name":"y18n","old_version":"3.2.1","new_version":"3.2.2","repository_url":"https://github.com/yargs/y18n"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 3 updates in the / directory: [uuid](https://github.com/uuidjs/uuid), [cookie](https://github.com/jshttp/cookie) and [js-yaml](https://github.com/nodeca/js-yaml).\nBumps the npm_and_yarn group with 6 updates in the /test/acceptance/workspaces/monorepo-with-nuget/src/paymentservice directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [uuid](https://github.com/uuidjs/uuid) | `3.2.1` | `14.0.0` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.14` | `4.18.1` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.13.1` | `3.14.2` |\n| [node-fetch](https://github.com/node-fetch/node-fetch) | `2.6.0` | `2.7.0` |\n| [tmp](https://github.com/raszi/node-tmp) | `0.0.33` | `removed` |\n| [y18n](https://github.com/yargs/y18n) | `3.2.1` | `3.2.2` |\n\nBumps the npm_and_yarn group with 4 updates in the /test/acceptance/workspaces/npm-lock-v2-with-npm-prefixed-sub-dep-version directory: [lodash](https://github.com/lodash/lodash), [picomatch](https://github.com/micromatch/picomatch), [braces](https://github.com/micromatch/braces) and [js-yaml](https://github.com/nodeca/js-yaml).\nBumps the npm_and_yarn group with 7 updates in the /test/acceptance/workspaces/npm-out-of-sync-graph directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [debug](https://github.com/debug-js/debug) | `4.1.0` | `4.4.3` |\n| [debug](https://github.com/debug-js/debug) | `3.2.6` | `3.2.7` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.11` | `4.18.1` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.0.4` | `3.1.5` |\n| [braces](https://github.com/micromatch/braces) | `1.8.5` | `3.0.3` |\n| [minimist](https://github.com/minimistjs/minimist) | `0.0.8` | `1.2.8` |\n| [tmp](https://github.com/raszi/node-tmp) | `0.0.33` | `removed` |\n| [follow-redirects](https://github.com/follow-redirects/follow-redirects) | `1.5.10` | `1.16.0` |\n\nBumps the npm_and_yarn group with 1 update in the /test/acceptance/workspaces/npm-package-with-dist-tag-subdependency directory: [cookie](https://github.com/jshttp/cookie).\nBumps the npm_and_yarn group with 1 update in the /test/acceptance/workspaces/yarn-package directory: [debug](https://github.com/debug-js/debug).\nBumps the npm_and_yarn group with 1 update in the /test/acceptance/workspaces/yarn-v2 directory: [lodash](https://github.com/lodash/lodash).\nBumps the npm_and_yarn group with 5 updates in the /test/acceptance/workspaces/yarn-workspace-out-of-sync directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [debug](https://github.com/debug-js/debug) | `4.1.1` | `4.3.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.15` | `4.18.1` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.0.4` | `3.1.5` |\n| [node-fetch](https://github.com/node-fetch/node-fetch) | `2.6.0` | `2.6.7` |\n| [y18n](https://github.com/yargs/y18n) | `3.2.1` | `3.2.2` |\n\nBumps the npm_and_yarn group with 1 update in the /test/acceptance/workspaces/yarn-workspace-out-of-sync/packages/not_a_workspace/deeply_nested directory: [uuid](https://github.com/uuidjs/uuid).\nBumps the npm_and_yarn group with 1 update in the /test/acceptance/workspaces/yarn-workspace-out-of-sync/packages/tomatoes directory: [node-fetch](https://github.com/node-fetch/node-fetch).\nBumps the npm_and_yarn group with 5 updates in the /test/acceptance/workspaces/yarn-workspaces directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [lodash](https://github.com/lodash/lodash) | `4.17.15` | `4.18.1` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.0.4` | `3.1.5` |\n| [node-fetch](https://github.com/node-fetch/node-fetch) | `2.6.0` | `2.6.7` |\n| [y18n](https://github.com/yargs/y18n) | `3.2.1` | `3.2.2` |\n| [node-uuid](https://github.com/broofa/node-uuid) | `1.3.0` | `1.4.8` |\n\nBumps the npm_and_yarn group with 2 updates in the /test/acceptance/workspaces/yarn-workspaces-v2 directory: [node-fetch](https://github.com/node-fetch/node-fetch) and [node-uuid](https://github.com/broofa/node-uuid).\nBumps the npm_and_yarn group with 2 updates in the /test/acceptance/workspaces/yarn-workspaces-v2-resolutions directory: [node-fetch](https://github.com/node-fetch/node-fetch) and [node-uuid](https://github.com/broofa/node-uuid).\nBumps the npm_and_yarn group with 1 update in the /test/acceptance/workspaces/yarn-workspaces-v2-resolutions/packages/apples directory: [node-uuid](https://github.com/broofa/node-uuid).\nBumps the npm_and_yarn group with 1 update in the /test/acceptance/workspaces/yarn-workspaces-v2-resolutions/packages/tomatoes directory: [node-fetch](https://github.com/node-fetch/node-fetch).\nBumps the npm_and_yarn group with 1 update in the /test/acceptance/workspaces/yarn-workspaces-v2/packages/apples directory: [node-uuid](https://github.com/broofa/node-uuid).\nBumps the npm_and_yarn group with 1 update in the /test/acceptance/workspaces/yarn-workspaces-v2/packages/tomatoes directory: [node-fetch](https://github.com/node-fetch/node-fetch).\nBumps the npm_and_yarn group with 1 update in the /test/acceptance/workspaces/yarn-workspaces/libs/apple-lib directory: [node-uuid](https://github.com/broofa/node-uuid).\nBumps the npm_and_yarn group with 1 update in the /test/acceptance/workspaces/yarn-workspaces/packages/apples directory: [node-uuid](https://github.com/broofa/node-uuid).\nBumps the npm_and_yarn group with 1 update in the /test/acceptance/workspaces/yarn-workspaces/packages/tomatoes directory: [node-fetch](https://github.com/node-fetch/node-fetch).\nBumps the npm_and_yarn group with 7 updates in the /ts-binary-wrapper directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [semver](https://github.com/npm/node-semver) | `6.3.0` | `6.3.1` |\n| [@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse) | `7.20.13` | `7.29.0` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `3.1.5` |\n| [cookie](https://github.com/jshttp/cookie) | `0.4.2` | `removed` |\n| [picomatch](https://github.com/micromatch/picomatch) | `2.3.1` | `2.3.2` |\n| [braces](https://github.com/micromatch/braces) | `3.0.2` | `3.0.3` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n\n\nUpdates `uuid` from 8.3.2 to 14.0.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/uuidjs/uuid/releases\"\u003euuid's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev14.0.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.0...v14.0.0\"\u003e14.0.0\u003c/a\u003e (2026-04-19)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eexpect \u003ccode\u003ecrypto\u003c/code\u003e to be global everywhere (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003edrop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/dc4ddb87272ed2843faccd130bcc41d492688bd3\"\u003edc4ddb8\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eexpect \u003ccode\u003ecrypto\u003c/code\u003e to be global everywhere (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/f2c235f93059325fa43e1106e624b5291bb523c4\"\u003ef2c235f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse GITHUB_TOKEN for release-please and enable npm provenance (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/925\"\u003e#925\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/ffa31383e8e4e1f0b4e22e504561272041b8738c\"\u003effa3138\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev13.0.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.1...v13.0.2\"\u003e13.0.2\u003c/a\u003e (2026-05-04)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ererelease to fix provenance. (\u003ca href=\"https://github.com/uuidjs/uuid/commit/49ccb35f78c0c4ce1409dd2f1d89f83caadba10b\"\u003e49ccb35\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev13.0.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.0...v13.0.1\"\u003e13.0.1\u003c/a\u003e (2026-04-27)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebackport fix for GHSA-w5hq-g745-h8pq (\u003ca href=\"https://github.com/uuidjs/uuid/commit/9d27ddf7046ce496ef39569ff84d948eeff9cb2a\"\u003e9d27ddf\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev13.0.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v12.0.0...v13.0.0\"\u003e13.0.0\u003c/a\u003e (2025-09-08)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/bce9d72a3ae5b9a3dcd8eb21ef6d1820288a427a\"\u003ebce9d72\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev12.0.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v12.0.0...v12.0.1\"\u003e12.0.1\u003c/a\u003e (2026-04-29)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/uuidjs/uuid/blob/main/CHANGELOG.md\"\u003euuid's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.0...v14.0.0\"\u003e14.0.0\u003c/a\u003e (2026-04-19)\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixes \u003ca href=\"https://github.com/uuidjs/uuid/security/advisories/GHSA-w5hq-g745-h8pq\"\u003eGHSA-w5hq-g745-h8pq\u003c/a\u003e: \u003ccode\u003ev3()\u003c/code\u003e, \u003ccode\u003ev5()\u003c/code\u003e, and \u003ccode\u003ev6()\u003c/code\u003e did not validate that writes would remain within the bounds of a caller-supplied buffer, allowing out-of-bounds writes when an invalid \u003ccode\u003eoffset\u003c/code\u003e was provided. A \u003ccode\u003eRangeError\u003c/code\u003e is now thrown if \u003ccode\u003eoffset \u0026lt; 0\u003c/code\u003e or \u003ccode\u003eoffset + 16 \u0026gt; buf.length\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ecrypto\u003c/code\u003e is now expected to be globally defined (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupgrade minimum supported TypeScript version to 5.4.3, in keeping with the project's policy of supporting TypeScript versions released within the last two years\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v12.0.0...v13.0.0\"\u003e13.0.0\u003c/a\u003e (2025-09-08)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/bce9d72a3ae5b9a3dcd8eb21ef6d1820288a427a\"\u003ebce9d72\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.1.0...v12.0.0\"\u003e12.0.0\u003c/a\u003e (2025-09-05)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdate to typescript@5.2 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/887\"\u003e#887\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove CommonJS support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/886\"\u003e#886\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@16 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/883\"\u003e#883\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd node@24 to ci matrix (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/879\"\u003e#879\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/42b6178aa21a593257f0a72abacd220f0b7b8a92\"\u003e42b6178\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@16 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/883\"\u003e#883\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/0f38cf10366ab074f9328ae2021eea04d5f2e530\"\u003e0f38cf1\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove CommonJS support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/886\"\u003e#886\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/ae786e27265f50bcf7cead196c29f1869297c42f\"\u003eae786e2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate to typescript@5.2 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/887\"\u003e#887\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/c7ee40598ed78584d81ab78dffded9fe5ff20b01\"\u003ec7ee405\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimprove v4() performance (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/894\"\u003e#894\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/5fd974c12718c8848035650b69b8948f12ace197\"\u003e5fd974c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erestore node: prefix (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/889\"\u003e#889\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/e1f42a354593093ba0479f0b4047dae82d28c507\"\u003ee1f42a3\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.0.5...v11.1.0\"\u003e11.1.0\u003c/a\u003e (2025-02-19)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/7c1ea087a8149b57380fc8bb7f68c3a215cb6e4b\"\u003e\u003ccode\u003e7c1ea08\u003c/code\u003e\u003c/a\u003e chore(main): release 14.0.0 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/926\"\u003e#926\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/3d2c5b0342f0fcb52a5ac681c3d47c13e7444b34\"\u003e\u003ccode\u003e3d2c5b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/f2c235f93059325fa43e1106e624b5291bb523c4\"\u003e\u003ccode\u003ef2c235f\u003c/code\u003e\u003c/a\u003e fix!: expect \u003ccode\u003ecrypto\u003c/code\u003e to be global everywhere (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/529ef0899f5dd503d2ee90d690585d63d78bc212\"\u003e\u003ccode\u003e529ef08\u003c/code\u003e\u003c/a\u003e chore: upgrade TypeScript and fixup types (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/927\"\u003e#927\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/086fd7976f11433edf9ac80be876b3ad243fe087\"\u003e\u003ccode\u003e086fd79\u003c/code\u003e\u003c/a\u003e chore: update dependencies (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/933\"\u003e#933\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/dc4ddb87272ed2843faccd130bcc41d492688bd3\"\u003e\u003ccode\u003edc4ddb8\u003c/code\u003e\u003c/a\u003e feat!: drop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/0f1f9c9c9cedbae5a1d363d5406c5dfbabe81404\"\u003e\u003ccode\u003e0f1f9c9\u003c/code\u003e\u003c/a\u003e chore: switch to Biome for parsing and linting (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/932\"\u003e#932\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/e2879e64bf125add903c1eff6e0860542c605013\"\u003e\u003ccode\u003ee2879e6\u003c/code\u003e\u003c/a\u003e chore: use maintained version of npm-run-all (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/930\"\u003e#930\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/ffa31383e8e4e1f0b4e22e504561272041b8738c\"\u003e\u003ccode\u003effa3138\u003c/code\u003e\u003c/a\u003e fix: Use GITHUB_TOKEN for release-please and enable npm provenance (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/925\"\u003e#925\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/0423d49df2dc8efc300c804731d25f4d7e0fccc4\"\u003e\u003ccode\u003e0423d49\u003c/code\u003e\u003c/a\u003e docs: remove obsolete v1 option notes (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/915\"\u003e#915\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/uuidjs/uuid/compare/v8.3.2...v14.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for uuid since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `cookie` from 0.4.0 to 0.7.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jshttp/cookie/releases\"\u003ecookie's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.7.2\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFixed\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eFix object assignment of \u003ccode\u003ehasOwnProperty\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/177\"\u003e#177\u003c/a\u003e)  bc38ffd\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jshttp/cookie/compare/v0.7.1...v0.7.2\"\u003ehttps://github.com/jshttp/cookie/compare/v0.7.1...v0.7.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.7.1\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFixed\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAllow leading dot for domain (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/174\"\u003e#174\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eAlthough not permitted in the spec, some users expect this to work and user agents ignore the leading dot according to spec\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eAdd fast path for \u003ccode\u003eserialize\u003c/code\u003e without options, use \u003ccode\u003eobj.hasOwnProperty\u003c/code\u003e when parsing (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/172\"\u003e#172\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jshttp/cookie/compare/v0.7.0...v0.7.1\"\u003ehttps://github.com/jshttp/cookie/compare/v0.7.0...v0.7.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eperf: parse cookies ~10% faster (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/144\"\u003e#144\u003c/a\u003e by \u003ca href=\"https://github.com/kurtextrem\"\u003e\u003ccode\u003e@​kurtextrem\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/170\"\u003e#170\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix: narrow the validation of cookies to match RFC6265 (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/167\"\u003e#167\u003c/a\u003e by \u003ca href=\"https://github.com/bewinsnw\"\u003e\u003ccode\u003e@​bewinsnw\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix: add \u003ccode\u003emain\u003c/code\u003e to \u003ccode\u003epackage.json\u003c/code\u003e for rspack (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/166\"\u003e#166\u003c/a\u003e by \u003ca href=\"https://github.com/proudparrot2\"\u003e\u003ccode\u003e@​proudparrot2\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jshttp/cookie/compare/v0.6.0...v0.7.0\"\u003ehttps://github.com/jshttp/cookie/compare/v0.6.0...v0.7.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.6.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003epartitioned\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.5.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003epriority\u003c/code\u003e option\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eexpires\u003c/code\u003e option to reject invalid dates\u003c/li\u003e\n\u003cli\u003epref: improve default decode speed\u003c/li\u003e\n\u003cli\u003epref: remove slow string split in parse\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.4.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epref: read value only when assigning in parse\u003c/li\u003e\n\u003cli\u003epref: remove unnecessary regexp in parse\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.4.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ccode\u003emaxAge\u003c/code\u003e option to reject invalid values\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/d19eaa1a2bb9ca43ac0951edd852ba4e88e410e0\"\u003e\u003ccode\u003ed19eaa1\u003c/code\u003e\u003c/a\u003e 0.7.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/bc38ffd0eae716b199236dda061d0bdc74192dd3\"\u003e\u003ccode\u003ebc38ffd\u003c/code\u003e\u003c/a\u003e Fix object assignment of \u003ccode\u003ehasOwnProperty\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/177\"\u003e#177\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/cf4658f492c5bd96aeaf5693c3500f8495031014\"\u003e\u003ccode\u003ecf4658f\u003c/code\u003e\u003c/a\u003e 0.7.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/6a8b8f5a49af7897b98ebfb29a1c4955afa3d33e\"\u003e\u003ccode\u003e6a8b8f5\u003c/code\u003e\u003c/a\u003e Allow leading dot for domain (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/174\"\u003e#174\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/58015c0b93de0b63db245cfdc5a108e511a81ad0\"\u003e\u003ccode\u003e58015c0\u003c/code\u003e\u003c/a\u003e Remove more code and perf wins (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/172\"\u003e#172\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/ab057d6c06b94a7b1e3358e69a685ae49c97b627\"\u003e\u003ccode\u003eab057d6\u003c/code\u003e\u003c/a\u003e 0.7.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/5f02ca87688481dbcf155e49ca8b61732f30e542\"\u003e\u003ccode\u003e5f02ca8\u003c/code\u003e\u003c/a\u003e Migrate history to GitHub releases\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/a5d591ce8447dd63821779724f96ad3c774c8579\"\u003e\u003ccode\u003ea5d591c\u003c/code\u003e\u003c/a\u003e Migrate history to GitHub releases\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/51968f94b5e820adeceef505539fa193ffe2d105\"\u003e\u003ccode\u003e51968f9\u003c/code\u003e\u003c/a\u003e Skip isNaN\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/9e7ca51ade4b325307eedd6b4dec190983e9e2cc\"\u003e\u003ccode\u003e9e7ca51\u003c/code\u003e\u003c/a\u003e perf(parse): cache length, return early (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/144\"\u003e#144\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jshttp/cookie/compare/v0.4.0...v0.7.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~blakeembrey\"\u003eblakeembrey\u003c/a\u003e, a new releaser for cookie since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 3.14.1 to 3.14.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.14.2] - 2025-11-15\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBackported v4.1.1 fix to v3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.0] - 2021-04-15\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTypes are now exported as \u003ccode\u003eyaml.types.XXX\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eEvery type now has \u003ccode\u003eoptions\u003c/code\u003e property with original arguments kept as they were\n(see \u003ccode\u003eyaml.types.int.options\u003c/code\u003e as an example).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eSchema.extend()\u003c/code\u003e now keeps old type order in case of conflicts\n(e.g. Schema.extend([ a, b, c ]).extend([ b, a, d ]) is now ordered as \u003ccode\u003eabcd\u003c/code\u003e instead of \u003ccode\u003ecbad\u003c/code\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.0.0] - 2021-01-03\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCheck \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/migrate_v3_to_v4.md\"\u003emigration guide\u003c/a\u003e to see details for all breaking changes.\u003c/li\u003e\n\u003cli\u003eBreaking: \u0026quot;unsafe\u0026quot; tags \u003ccode\u003e!!js/function\u003c/code\u003e, \u003ccode\u003e!!js/regexp\u003c/code\u003e, \u003ccode\u003e!!js/undefined\u003c/code\u003e are\nmoved to \u003ca href=\"https://github.com/nodeca/js-yaml-js-types\"\u003ejs-yaml-js-types\u003c/a\u003e package.\u003c/li\u003e\n\u003cli\u003eBreaking: removed \u003ccode\u003esafe*\u003c/code\u003e functions. Use \u003ccode\u003eload\u003c/code\u003e, \u003ccode\u003eloadAll\u003c/code\u003e, \u003ccode\u003edump\u003c/code\u003e\ninstead which are all now safe by default.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.DEFAULT_SAFE_SCHEMA\u003c/code\u003e and \u003ccode\u003eyaml.DEFAULT_FULL_SCHEMA\u003c/code\u003e are removed, use\n\u003ccode\u003eyaml.DEFAULT_SCHEMA\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.Schema.create(schema, tags)\u003c/code\u003e is removed, use \u003ccode\u003eschema.extend(tags)\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e!!binary\u003c/code\u003e now always mapped to \u003ccode\u003eUint8Array\u003c/code\u003e on load.\u003c/li\u003e\n\u003cli\u003eReduced nesting of \u003ccode\u003e/lib\u003c/code\u003e folder.\u003c/li\u003e\n\u003cli\u003eParse numbers according to YAML 1.2 instead of YAML 1.1 (\u003ccode\u003e01234\u003c/code\u003e is now decimal,\n\u003ccode\u003e0o1234\u003c/code\u003e is octal, \u003ccode\u003e1:23\u003c/code\u003e is parsed as string instead of base60).\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e no longer quotes \u003ccode\u003e:\u003c/code\u003e, \u003ccode\u003e[\u003c/code\u003e, \u003ccode\u003e]\u003c/code\u003e, \u003ccode\u003e(\u003c/code\u003e, \u003ccode\u003e)\u003c/code\u003e except when necessary, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/470\"\u003e#470\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/557\"\u003e#557\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eLine and column in exceptions are now formatted as \u003ccode\u003e(X:Y)\u003c/code\u003e instead of\n\u003ccode\u003eat line X, column Y\u003c/code\u003e (also present in compact format), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/332\"\u003e#332\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCode snippet created in exceptions now contains multiple lines with line numbers.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e now serializes \u003ccode\u003eundefined\u003c/code\u003e as \u003ccode\u003enull\u003c/code\u003e in collections and removes keys with\n\u003ccode\u003eundefined\u003c/code\u003e in mappings, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/571\"\u003e#571\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e with \u003ccode\u003eskipInvalid=true\u003c/code\u003e now serializes invalid items in collections as null.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003e!\u003c/code\u003e are now dumped as \u003ccode\u003e!tag\u003c/code\u003e instead of \u003ccode\u003e!\u0026lt;!tag\u0026gt;\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/576\"\u003e#576\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003etag:yaml.org,2002:\u003c/code\u003e are now shorthanded using \u003ccode\u003e!!\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/258\"\u003e#258\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003e.mjs\u003c/code\u003e (es modules) support.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003equotingType\u003c/code\u003e and \u003ccode\u003eforceQuotes\u003c/code\u003e options for dumper to configure\nstring literal style, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/290\"\u003e#290\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/529\"\u003e#529\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003estyles: { '!!null': 'empty' }\u003c/code\u003e option for dumper\n(serializes \u003ccode\u003e{ foo: null }\u003c/code\u003e as \u0026quot;\u003ccode\u003efoo: \u003c/code\u003e\u0026quot;), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/570\"\u003e#570\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/9963d366dfbde0c69722452bcd40b41e7e4160a0\"\u003e\u003ccode\u003e9963d36\u003c/code\u003e\u003c/a\u003e 3.14.2 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/10d3c8e70a6888543f5cdb656bb39f73e0ea77c1\"\u003e\u003ccode\u003e10d3c8e\u003c/code\u003e\u003c/a\u003e dist rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/5278870a17454fe8621dbd8c445c412529525266\"\u003e\u003ccode\u003e5278870\u003c/code\u003e\u003c/a\u003e fix prototype pollution in merge (\u0026lt;\u0026lt;) (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/731\"\u003e#731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nodeca/js-yaml/compare/3.14.1...3.14.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 4.1.0 to 4.1.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.14.2] - 2025-11-15\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBackported v4.1.1 fix to v3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.0] - 2021-04-15\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTypes are now exported as \u003ccode\u003eyaml.types.XXX\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eEvery type now has \u003ccode\u003eoptions\u003c/code\u003e property with original arguments kept as they were\n(see \u003ccode\u003eyaml.types.int.options\u003c/code\u003e as an example).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eSchema.extend()\u003c/code\u003e now keeps old type order in case of conflicts\n(e.g. Schema.extend([ a, b, c ]).extend([ b, a, d ]) is now ordered as \u003ccode\u003eabcd\u003c/code\u003e instead of \u003ccode\u003ecbad\u003c/code\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.0.0] - 2021-01-03\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCheck \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/migrate_v3_to_v4.md\"\u003emigration guide\u003c/a\u003e to see details for all breaking changes.\u003c/li\u003e\n\u003cli\u003eBreaking: \u0026quot;unsafe\u0026quot; tags \u003ccode\u003e!!js/function\u003c/code\u003e, \u003ccode\u003e!!js/regexp\u003c/code\u003e, \u003ccode\u003e!!js/undefined\u003c/code\u003e are\nmoved to \u003ca href=\"https://github.com/nodeca/js-yaml-js-types\"\u003ejs-yaml-js-types\u003c/a\u003e package.\u003c/li\u003e\n\u003cli\u003eBreaking: removed \u003ccode\u003esafe*\u003c/code\u003e functions. Use \u003ccode\u003eload\u003c/code\u003e, \u003ccode\u003eloadAll\u003c/code\u003e, \u003ccode\u003edump\u003c/code\u003e\ninstead which are all now safe by default.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.DEFAULT_SAFE_SCHEMA\u003c/code\u003e and \u003ccode\u003eyaml.DEFAULT_FULL_SCHEMA\u003c/code\u003e are removed, use\n\u003ccode\u003eyaml.DEFAULT_SCHEMA\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.Schema.create(schema, tags)\u003c/code\u003e is removed, use \u003ccode\u003eschema.extend(tags)\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e!!binary\u003c/code\u003e now always mapped to \u003ccode\u003eUint8Array\u003c/code\u003e on load.\u003c/li\u003e\n\u003cli\u003eReduced nesting of \u003ccode\u003e/lib\u003c/code\u003e folder.\u003c/li\u003e\n\u003cli\u003eParse numbers according to YAML 1.2 instead of YAML 1.1 (\u003ccode\u003e01234\u003c/code\u003e is now decimal,\n\u003ccode\u003e0o1234\u003c/code\u003e is octal, \u003ccode\u003e1:23\u003c/code\u003e is parsed as string instead of base60).\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e no longer quotes \u003ccode\u003e:\u003c/code\u003e, \u003ccode\u003e[\u003c/code\u003e, \u003ccode\u003e]\u003c/code\u003e, \u003ccode\u003e(\u003c/code\u003e, \u003ccode\u003e)\u003c/code\u003e except when necessary, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/470\"\u003e#470\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/557\"\u003e#557\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eLine and column in exceptions are now formatted as \u003ccode\u003e(X:Y)\u003c/code\u003e instead of\n\u003ccode\u003eat line X, column Y\u003c/code\u003e (also present in compact format), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/332\"\u003e#332\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCode snippet created in exceptions now contains multiple lines with line numbers.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e now serializes \u003ccode\u003eundefined\u003c/code\u003e as \u003ccode\u003enull\u003c/code\u003e in collections and removes keys with\n\u003ccode\u003eundefined\u003c/code\u003e in mappings, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/571\"\u003e#571\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e with \u003ccode\u003eskipInvalid=true\u003c/code\u003e now serializes invalid items in collections as null.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003e!\u003c/code\u003e are now dumped as \u003ccode\u003e!tag\u003c/code\u003e instead of \u003ccode\u003e!\u0026lt;!tag\u0026gt;\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/576\"\u003e#576\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003etag:yaml.org,2002:\u003c/code\u003e are now shorthanded using \u003ccode\u003e!!\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/258\"\u003e#258\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003e.mjs\u003c/code\u003e (es modules) support.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003equotingType\u003c/code\u003e and \u003ccode\u003eforceQuotes\u003c/code\u003e options for dumper to configure\nstring literal style, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/290\"\u003e#290\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/529\"\u003e#529\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003estyles: { '!!null': 'empty' }\u003c/code\u003e option for dumper\n(serializes \u003ccode\u003e{ foo: null }\u003c/code\u003e as \u0026quot;\u003ccode\u003efoo: \u003c/code\u003e\u0026quot;), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/570\"\u003e#570\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/9963d366dfbde0c69722452bcd40b41e7e4160a0\"\u003e\u003ccode\u003e9963d36\u003c/code\u003e\u003c/a\u003e 3.14.2 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/10d3c8e70a6888543f5cdb656bb39f73e0ea77c1\"\u003e\u003ccode\u003e10d3c8e\u003c/code\u003e\u003c/a\u003e dist rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/5278870a17454fe8621dbd8c445c412529525266\"\u003e\u003ccode\u003e5278870\u003c/code\u003e\u003c/a\u003e fix prototype pollution in merge (\u0026lt;\u0026lt;) (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/731\"\u003e#731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nodeca/js-yaml/compare/3.14.1...3.14.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `uuid` from 3.2.1 to 14.0.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/uuidjs/uuid/releases\"\u003euuid's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev14.0.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.0...v14.0.0\"\u003e14.0.0\u003c/a\u003e (2026-04-19)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eexpect \u003ccode\u003ecrypto\u003c/code\u003e to be global everywhere (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003edrop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/dc4ddb87272ed2843faccd130bcc41d492688bd3\"\u003edc4ddb8\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eexpect \u003ccode\u003ecrypto\u003c/code\u003e to be global everywhere (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/f2c235f93059325fa43e1106e624b5291bb523c4\"\u003ef2c235f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse GITHUB_TOKEN for release-please and enable npm provenance (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/925\"\u003e#925\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/ffa31383e8e4e1f0b4e22e504561272041b8738c\"\u003effa3138\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev13.0.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.1...v13.0.2\"\u003e13.0.2\u003c/a\u003e (2026-05-04)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ererelease to fix provenance. (\u003ca href=\"https://github.com/uuidjs/uuid/commit/49ccb35f78c0c4ce1409dd2f1d89f83caadba10b\"\u003e49ccb35\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev13.0.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.0...v13.0.1\"\u003e13.0.1\u003c/a\u003e (2026-04-27)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebackport fix for GHSA-w5hq-g745-h8pq (\u003ca href=\"https://github.com/uuidjs/uuid/commit/9d27ddf7046ce496ef39569ff84d948eeff9cb2a\"\u003e9d27ddf\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev13.0.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v12.0.0...v13.0.0\"\u003e13.0.0\u003c/a\u003e (2025-09-08)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/bce9d72a3ae5b9a3dcd8eb21ef6d1820288a427a\"\u003ebce9d72\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev12.0.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v12.0.0...v12.0.1\"\u003e12.0.1\u003c/a\u003e (2026-04-29)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/uuidjs/uuid/blob/main/CHANGELOG.md\"\u003euuid's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.0...v14.0.0\"\u003e14.0.0\u003c/a\u003e (2026-04-19)\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixes \u003ca href=\"https://github.com/uuidjs/uuid/security/advisories/GHSA-w5hq-g745-h8pq\"\u003eGHSA-w5hq-g745-h8pq\u003c/a\u003e: \u003ccode\u003ev3()\u003c/code\u003e, \u003ccode\u003ev5()\u003c/code\u003e, and \u003ccode\u003ev6()\u003c/code\u003e did not validate that writes would remain within the bounds of a caller-supplied buffer, allowing out-of-bounds writes when an invalid \u003ccode\u003eoffset\u003c/code\u003e was provided. A \u003ccode\u003eRangeError\u003c/code\u003e is now thrown if \u003ccode\u003eoffset \u0026lt; 0\u003c/code\u003e or \u003ccode\u003eoffset + 16 \u0026gt; buf.length\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ecrypto\u003c/code\u003e is now expected to be globally defined (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupgrade minimum supported TypeScript version to 5.4.3, in keeping with the project's policy of supporting TypeScript versions released within the last two years\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v12.0.0...v13.0.0\"\u003e13.0.0\u003c/a\u003e (2025-09-08)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/bce9d72a3ae5b9a3dcd8eb21ef6d1820288a427a\"\u003ebce9d72\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.1.0...v12.0.0\"\u003e12.0.0\u003c/a\u003e (2025-09-05)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdate to typescript@5.2 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/887\"\u003e#887\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove CommonJS support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/886\"\u003e#886\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@16 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/883\"\u003e#883\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd node@24 to ci matrix (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/879\"\u003e#879\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/42b6178aa21a593257f0a72abacd220f0b7b8a92\"\u003e42b6178\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@16 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/883\"\u003e#883\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/0f38cf10366ab074f9328ae2021eea04d5f2e530\"\u003e0f38cf1\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove CommonJS support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/886\"\u003e#886\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/ae786e27265f50bcf7cead196c29f1869297c42f\"\u003eae786e2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate to typescript@5.2 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/887\"\u003e#887\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/c7ee40598ed78584d81ab78dffded9fe5ff20b01\"\u003ec7ee405\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimprove v4() performance (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/894\"\u003e#894\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/5fd974c12718c8848035650b69b8948f12ace197\"\u003e5fd974c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erestore node: prefix (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/889\"\u003e#889\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/e1f42a354593093ba0479f0b4047dae82d28c507\"\u003ee1f42a3\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.0.5...v11.1.0\"\u003e11.1.0\u003c/a\u003e (2025-02-19)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/7c1ea087a8149b57380fc8bb7f68c3a215cb6e4b\"\u003e\u003ccode\u003e7c1ea08\u003c/code\u003e\u003c/a\u003e chore(main): release 14.0.0 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/926\"\u003e#926\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/3d2c5b0342f0fcb52a5ac681c3d47c13e7444b34\"\u003e\u003ccode\u003e3d2c5b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/f2c235f93059325fa43e1106e624b5291bb523c4\"\u003e\u003ccode\u003ef2c235f\u003c/code\u003e\u003c/a\u003e fix!: expect \u003ccode\u003ecrypto\u003c/code\u003e to be global everywhere (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/529ef0899f5dd503d2ee90d690585d63d78bc212\"\u003e\u003ccode\u003e529ef08\u003c/code\u003e\u003c/a\u003e chore: upgrade TypeScript and fixup types (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/927\"\u003e#927\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/086fd7976f11433edf9ac80be876b3ad243fe087\"\u003e\u003ccode\u003e086fd79\u003c/code\u003e\u003c/a\u003e chore: update dependencies (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/933\"\u003e#933\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/dc4ddb87272ed2843faccd130bcc41d492688bd3\"\u003e\u003ccode\u003edc4ddb8\u003c/code\u003e\u003c/a\u003e feat!: drop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/0f1f9c9c9cedbae5a1d363d5406c5dfbabe81404\"\u003e\u003ccode\u003e0f1f9c9\u003c/code\u003e\u003c/a\u003e chore: switch to Biome for parsing and linting (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/932\"\u003e#932\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/e2879e64bf125add903c1eff6e0860542c605013\"\u003e\u003ccode\u003ee2879e6\u003c/code\u003e\u003c/a\u003e chore: use maintained version of npm-run-all (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/930\"\u003e#930\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/ffa31383e8e4e1f0b4e22e504561272041b8738c\"\u003e\u003ccode\u003effa3138\u003c/code\u003e\u003c/a\u003e fix: Use GITHUB_TOKEN for release-please and enable npm provenance (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/925\"\u003e#925\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/0423d49df2dc8efc300c804731d25f4d7e0fccc4\"\u003e\u003ccode\u003e0423d49\u003c/code\u003e\u003c/a\u003e docs: remove obsolete v1 option notes (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/915\"\u003e#915\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/uuidjs/uuid/compare/v8.3.2...v14.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for uuid since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.14 to 4.18.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lodash/lodash/releases\"\u003elodash's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.18.1\u003c/h2\u003e\n\u003ch2\u003eBugs\u003c/h2\u003e\n\u003cp\u003eFixes a \u003ccode\u003eReferenceError\u003c/code\u003e issue in \u003ccode\u003elodash\u003c/code\u003e \u003ccode\u003elodash-es\u003c/code\u003e \u003ccode\u003elodash-amd\u003c/code\u003e and \u003ccode\u003elodash.template\u003c/code\u003e when using the \u003ccode\u003etemplate\u003c/code\u003e and \u003ccode\u003efromPairs\u003c/code\u003e functions from the modular builds. See \u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6167#issuecomment-4165269769\"\u003elodash/lodash#6167\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eThese defects were related to how lodash distributions are built from the main branch using \u003ca href=\"https://github.com/lodash-archive/lodash-cli\"\u003ehttps://github.com/lodash-archive/lodash-cli\u003c/a\u003e. When internal dependencies change inside lodash functions, equivalent updates need to be made to a mapping in the lodash-cli. (hey, it was ahead of its time once upon a time!). We know this, but we missed it in the last release. It's the kind of thing that passes in CI, but fails bc the build is not the same thing you tested.\u003c/p\u003e\n\u003cp\u003eThere is no diff on main for this, but you can see the diffs for each of the npm packages on their respective branches:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003elodash\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-es\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-amd\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash.template\u003c/code\u003e\u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.18.0\u003c/h2\u003e\n\u003ch2\u003ev4.18.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.23...4.18.0\"\u003ehttps://github.com/lodash/lodash/compare/4.17.23...4.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.unset\u003c/code\u003e / \u003ccode\u003e_.omit\u003c/code\u003e\u003c/strong\u003e: Fixed prototype pollution via \u003ccode\u003econstructor\u003c/code\u003e/\u003ccode\u003eprototype\u003c/code\u003e path traversal (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-f23m-r3pf-42rh\"\u003eGHSA-f23m-r3pf-42rh\u003c/a\u003e, \u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003efe8d32e\u003c/a\u003e). Previously, array-wrapped path segments and primitive roots could bypass the existing guards, allowing deletion of properties from built-in prototypes. Now \u003ccode\u003econstructor\u003c/code\u003e and \u003ccode\u003eprototype\u003c/code\u003e are blocked unconditionally as non-terminal path keys, matching \u003ccode\u003ebaseSet\u003c/code\u003e. Calls that previously returned \u003ccode\u003etrue\u003c/code\u003e and deleted the property now return \u003ccode\u003efalse\u003c/code\u003e and leave the target untouched.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.template\u003c/code\u003e\u003c/strong\u003e: Fixed code injection via \u003ccode\u003eimports\u003c/code\u003e keys (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-r5fr-rjxr-66jc\"\u003eGHSA-r5fr-rjxr-66jc\u003c/a\u003e, CVE-2026-4800, \u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e879aaa9\u003c/a\u003e). Fixes an incomplete patch for CVE-2021-23337. The \u003ccode\u003evariable\u003c/code\u003e option was validated against \u003ccode\u003ereForbiddenIdentifierChars\u003c/code\u003e but \u003ccode\u003eimportsKeys\u003c/code\u003e was left unguarded, allowing code injection via the same \u003ccode\u003eFunction()\u003c/code\u003e constructor sink. \u003ccode\u003eimports\u003c/code\u003e keys containing forbidden identifier characters now throw \u003ccode\u003e\u0026quot;Invalid imports option passed into _.template\u0026quot;\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eDocs\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd security notice for \u003ccode\u003e_.template\u003c/code\u003e in threat model and API docs (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6099\"\u003e#6099\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDocument \u003ccode\u003elower \u0026gt; upper\u003c/code\u003e behavior in \u003ccode\u003e_.random\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6115\"\u003e#6115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix quotes in \u003ccode\u003e_.compact\u003c/code\u003e jsdoc (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6090\"\u003e#6090\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ccode\u003elodash.*\u003c/code\u003e modular packages\u003c/h3\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6157\"\u003eDiff\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eWe have also regenerated and published a select number of the \u003ccode\u003elodash.*\u003c/code\u003e modular packages.\u003c/p\u003e\n\u003cp\u003eThese modular packages had fallen out of sync significantly from the minor/patch updates to lodash. Specifically, we have brought the following packages up to parity w/ the latest lodash release because they have had CVEs on them in the past:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.orderby\"\u003elodash.orderby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.tonumber\"\u003elodash.tonumber\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trim\"\u003elodash.trim\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trimend\"\u003elodash.trimend\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.sortedindexby\"\u003elodash.sortedindexby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.zipobjectdeep\"\u003elodash.zipobjectdeep\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.unset\"\u003elodash.unset\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.omit\"\u003elodash.omit\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.template\"\u003elodash.template\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/cb0b9b9212521c08e3eafe7c8cb0af1b42b6649e\"\u003e\u003ccode\u003ecb0b9b9\u003c/code\u003e\u003c/a\u003e release(patch): bump main to 4.18.1 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6177\"\u003e#6177\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/75535f57883b7225adb96de1cfc1cd4169cfcb51\"\u003e\u003ccode\u003e75535f5\u003c/code\u003e\u003c/a\u003e chore: prune stale advisory refs (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6170\"\u003e#6170\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/62e91bc6a39c98d85b9ada8c44d40593deaf82a4\"\u003e\u003ccode\u003e62e91bc\u003c/code\u003e\u003c/a\u003e docs: remove n_ Node.js \u0026lt; 6 REPL note from README (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6165\"\u003e#6165\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/59be2de61f8aa9461c7856533b51d31b7d8babc4\"\u003e\u003ccode\u003e59be2de\u003c/code\u003e\u003c/a\u003e release(minor): bump to 4.18.0 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6161\"\u003e#6161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/af634573030f979194871da7c68f79420992f53d\"\u003e\u003ccode\u003eaf63457\u003c/code\u003e\u003c/a\u003e fix: broken tests for _.template 879aaa9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/1073a7693e1727e0cf3641e5f71f75ddcf8de7c0\"\u003e\u003ccode\u003e1073a76\u003c/code\u003e\u003c/a\u003e fix: linting issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e\u003ccode\u003e879aaa9\u003c/code\u003e\u003c/a\u003e fix: validate imports keys in _.template\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003e\u003ccode\u003efe8d32e\u003c/code\u003e\u003c/a\u003e fix: block prototype pollution in baseUnset via constructor/prototype traversal\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/18ba0a32f42fd02117f096b032f89c984173462d\"\u003e\u003ccode\u003e18ba0a3\u003c/code\u003e\u003c/a\u003e refactor(fromPairs): use baseAssignValue for consistent assignment (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6153\"\u003e#6153\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b8190803d48d60b8c80ad45d39125f32fa618cb2\"\u003e\u003ccode\u003eb819080\u003c/code\u003e\u003c/a\u003e ci: add dist sync validation workflow (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6137\"\u003e#6137\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.14...4.18.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 3.13.1 to 3.14.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.14.2] - 2025-11-15\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBackported v4.1.1 fix to v3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.0] - 2021-04-15\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTypes are now exported as \u003ccode\u003eyaml.types.XXX\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eEvery type now has \u003ccode\u003eoptions\u003c/code\u003e property with original arguments kept as they were\n(see \u003ccode\u003eyaml.types.int.options\u003c/code\u003e as an example).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eSchema.extend()\u003c/code\u003e now keeps old type order in case of conflicts\n(e.g. Schema.extend([ a, b, c ]).extend([ b, a, d ]) is now ordered as \u003ccode\u003eabcd\u003c/code\u003e instead of \u003ccode\u003ecbad\u003c/code\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.0.0] - 2021-01-03\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCheck \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/migrate_v3_to_v4.md\"\u003emigration guide\u003c/a\u003e to see details for all breaking changes.\u003c/li\u003e\n\u003cli\u003eBreaking: \u0026quot;unsafe\u0026quot; tags \u003ccode\u003e!!js/function\u003c/code\u003e, \u003ccode\u003e!!js/regexp\u003c/code\u003e, \u003ccode\u003e!!js/undefined\u003c/code\u003e are\nmoved to \u003ca href=\"https://github.com/nodeca/js-yaml-js-types\"\u003ejs-yaml-js-types\u003c/a\u003e package.\u003c/li\u003e\n\u003cli\u003eBreaking: removed \u003ccode\u003esafe*\u003c/code\u003e functions. Use \u003ccode\u003eload\u003c/code\u003e, \u003ccode\u003eloadAll\u003c/code\u003e, \u003ccode\u003edump\u003c/code\u003e\ninstead which are all now safe by default.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.DEFAULT_SAFE_SCHEMA\u003c/code\u003e and \u003ccode\u003eyaml.DEFAULT_FULL_SCHEMA\u003c/code\u003e are removed, use\n\u003ccode\u003eyaml.DEFAULT_SCHEMA\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.Schema.create(schema, tags)\u003c/code\u003e is removed, use \u003ccode\u003eschema.extend(tags)\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e!!binary\u003c/code\u003e now always mapped to \u003ccode\u003eUint8Array\u003c/code\u003e on load.\u003c/li\u003e\n\u003cli\u003eReduced nesting of \u003ccode\u003e/lib\u003c/code\u003e folder.\u003c/li\u003e\n\u003cli\u003eParse numbers according to YAML 1.2 instead of YAML 1.1 (\u003ccode\u003e01234\u003c/code\u003e is now decimal,\n\u003ccode\u003e0o1234\u003c/code\u003e is octal, \u003ccode\u003e1:23\u003c/code\u003e is parsed as string instead of base60).\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e no longer quotes \u003ccode\u003e:\u003c/code\u003e, \u003ccode\u003e[\u003c/code\u003e, \u003ccode\u003e]\u003c/code\u003e, \u003ccode\u003e(\u003c/code\u003e, \u003ccode\u003e)\u003c/code\u003e except when necessary, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/470\"\u003e#470\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/557\"\u003e#557\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eLine and column in exceptions are now formatted as \u003ccode\u003e(X:Y)\u003c/code\u003e instead of\n\u003ccode\u003eat line X, column Y\u003c/code\u003e (also present in compact format), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/332\"\u003e#332\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCode snippet created in exceptions now contains multiple lines with line numbers.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e now serializes \u003ccode\u003eundefined\u003c/code\u003e as \u003ccode\u003enull\u003c/code\u003e in collections and removes keys with\n\u003ccode\u003eundefined\u003c/code\u003e in mappings, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/571\"\u003e#571\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e with \u003ccode\u003eskipInvalid=true\u003c/code\u003e now serializes invalid items in collections as null.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003e!\u003c/code\u003e are now dumped as \u003ccode\u003e!tag\u003c/code\u003e instead of \u003ccode\u003e!\u0026lt;!tag\u0026gt;\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/576\"\u003e#576\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003etag:yaml.org,2002:\u003c/code\u003e are now shorthanded using \u003ccode\u003e!!\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/258\"\u003e#258\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003e.mjs\u003c/code\u003e (es modules) support.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003equotingType\u003c/code\u003e and \u003ccode\u003eforceQuotes\u003c/code\u003e options for dumper to configure\nstring literal style, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/290\"\u003e#290\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/529\"\u003e#529\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003estyles: { '!!null': 'empty' }\u003c/code\u003e option for dumper\n(serializes \u003ccode\u003e{ foo: null }\u003c/code\u003e as \u0026quot;\u003ccode\u003efoo: \u003c/code\u003e\u0026quot;), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/570\"\u003e#570\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/9963d366dfbde0c69722452bcd40b41e7e4160a0\"\u003e\u003ccode\u003e9963d36\u003c/code\u003e\u003c/a\u003e 3.14.2 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/10d3c8e70a6888543f5cdb656bb39f73e0ea77c1\"\u003e\u003ccode\u003e10d3c8e\u003c/code\u003e\u003c/a\u003e dist rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/5278870a17454fe8621dbd8c445c412529525266\"\u003e\u003ccode\u003e5278870\u003c/code\u003e\u003c/a\u003e fix prototype pollution in merge (\u0026lt;\u0026lt;) (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/731\"\u003e#731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nodeca/js-yaml/compare/3.14.1...3.14.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `node-fetch` from 2.6.0 to 2.7.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-fetch/node-fetch/releases\"\u003enode-fetch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.7.0\u003c/h2\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/bitinn/node-fetch/compare/v2.6.13...v2.7.0\"\u003e2.7.0\u003c/a\u003e (2023-08-23)\u003c/h1\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eAbortError\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/bitinn/node-fetch/issues/1744\"\u003e#1744\u003c/a\u003e) (\u003ca href=\"https://github.com/bitinn/node-fetch/commit/9b9d45881e5ca68757077726b3c0ecf8fdca1f29\"\u003e9b9d458\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.6.13\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/bitinn/node-fetch/compare/v2.6.12...v2.6.13\"\u003e2.6.13\u003c/a\u003e (2023-08-18)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the default connection close header (\u003ca href=\"https://redirect.github.com/bitinn/node-fetch/issues/1765\"\u003e#1765\u003c/a\u003e) (\u003ca href=\"https://github.com/bitinn/node-fetch/commit/65ae25a1da2834b046c218685f2085a06f679492\"\u003e65ae25a\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/bitinn/node-fetch/issues/1735\"\u003e#1735\u003c/a\u003e \u003ca href=\"https://redirect.github.com/bitinn/node-fetch/issues/1473\"\u003e#1473\u003c/a\u003e \u003ca href=\"https://redirect.github.com/bitinn/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.6.12\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/bitinn/node-fetch/compare/v2.6.11...v2.6.12\"\u003e2.6.12\u003c/a\u003e (2023-06-29)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esocket variable testing for undefined (\u003ca href=\"https://redirect.github.com/bitinn/node-fetch/issues/1726\"\u003e#1726\u003c/a\u003e) (\u003ca href=\"https://github.com/bitinn/node-fetch/commit/8bc3a7c85f67fb81bb3d71c8254e68f3b88e9169\"\u003e8bc3a7c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.6.11\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/bitinn/node-fetch/compare/v2.6.10...v2.6.11\"\u003e2.6.11\u003c/a\u003e (2023-05-09)\u003c/h2\u003e\n\u003ch3\u003eReverts\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRevert \u0026quot;fix: handle bom in text and json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1739\"\u003e#1739\u003c/a\u003e)\u0026quot; (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1741\"\u003e#1741\u003c/a\u003e) (\u003ca href=\"https://github.com/bitinn/node-fetch/commit/afb36f6c178342488d71947dfc87e7ddd19fab9e\"\u003eafb36f6\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/bitinn/node-fetch/issues/1739\"\u003e#1739\u003c/a\u003e \u003ca href=\"https://redirect.github.com/bitinn/node-fetch/issues/1741\"\u003e#1741\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.6.10\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/bitinn/node-fetch/compare/v2.6.9...v2.6.10\"\u003e2.6.10\u003c/a\u003e (2023-05-08)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ehandle bom in text and json (\u003ca href=\"https://redirect.github.com/bitinn/node-fetch/issues/1739\"\u003e#1739\u003c/a\u003e) (\u003ca href=\"https://github.com/bitinn/node-fetch/commit/29909d75c62d51e0d1c23758e526dba74bfd463d\"\u003e29909d7\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.6.9\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/bitinn/node-fetch/compare/v2.6.8...v2.6.9\"\u003e2.6.9\u003c/a\u003e (2023-01-30)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u0026quot;global is not defined\u0026quot; (\u003ca href=\"https://redirect.github.com/bitinn/node-fetch/issues/1704\"\u003e#1704\u003c/a\u003e) (\u003ca href=\"https://github.com/bitinn/node-fetch/commit/70f592d9d2da959df1cebc2dd2314286a4bcf345\"\u003e70f592d\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.6.8\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/bitinn/node-fetch/compare/v2.6.7...v2.6.8\"\u003e2.6.8\u003c/a\u003e (2023-01-13)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/9b9d45881e5ca68757077726b3c0ecf8fdca1f29\"\u003e\u003ccode\u003e9b9d458\u003c/code\u003e\u003c/a\u003e feat: \u003ccode\u003eAbortError\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1744\"\u003e#1744\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/65ae25a1da2834b046c218685f2085a06f679492\"\u003e\u003ccode\u003e65ae25a\u003c/code\u003e\u003c/a\u003e fix: Remove the default connection close header (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1765\"\u003e#1765\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8bc3a7c85f67fb81bb3d71c8254e68f3b88e9169\"\u003e\u003ccode\u003e8bc3a7c\u003c/code\u003e\u003c/a\u003e fix: socket variable testing for undefined (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1726\"\u003e#1726\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/afb36f6c178342488d71947dfc87e7ddd19fab9e\"\u003e\u003ccode\u003eafb36f6\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;fix: handle bom in text and json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1739\"\u003e#1739\u003c/a\u003e)\u0026quot; (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1741\"\u003e#1741\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/29909d75c62d51e0d1c23758e526dba74bfd463d\"\u003e\u003ccode\u003e29909d7\u003c/code\u003e\u003c/a\u003e fix: handle bom in text and json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1739\"\u003e#1739\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/70f592d9d2da959df1cebc2dd2314286a4bcf345\"\u003e\u003ccode\u003e70f592d\u003c/code\u003e\u003c/a\u003e fix: \u0026quot;global is not defined\u0026quot; (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1704\"\u003e#1704\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/0f1ebb0d9d9726351a83a50eaaccf66342f04e06\"\u003e\u003ccode\u003e0f1ebb0\u003c/code\u003e\u003c/a\u003e Prevent error when response is null (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1699\"\u003e#1699\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/6e9464d7e34dc323edf4dabad7615dd94ab847bd\"\u003e\u003ccode\u003e6e9464d\u003c/code\u003e\u003c/a\u003e ci(release): install dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/dd2a0ba0fb1ed0d321fcde46562e824d9f40fea1\"\u003e\u003ccode\u003edd2a0ba\u003c/code\u003e\u003c/a\u003e ci(release): install dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/49bef02a2f630bb083d1920cb40ff09363479ef2\"\u003e\u003ccode\u003e49bef02\u003c/code\u003e\u003c/a\u003e ci(release): use latest Node LTS\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v2.6.0...v2.7.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~node-fetch-bot\"\u003enode-fetch-bot\u003c/a\u003e, a new releaser for node-fetch since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nRemoves `tmp`\n\nUpdates `y18n` from 3.2.1 to 3.2.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/yargs/y18n/releases\"\u003ey18n's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ey18n y18n-v4.0.3\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003erelease:\u003c/strong\u003e 4.x.x should not enforce Node 10 (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/126\"\u003e#126\u003c/a\u003e) (\u003ca href=\"https://www.github.com/yargs/y18n/commit/1e21a536e9135d8403a47be88922157a706b7cde\"\u003e1e21a53\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ey18n y18n-v4.0.2\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003esecurity:\u003c/strong\u003e ensure entry exists for backport (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/120\"\u003e#120\u003c/a\u003e) (\u003ca href=\"https://www.github.com/yargs/y18n/commit/b22c0df59d0851d7be9fd1d51f6a5ee974c9fc94\"\u003eb22c0df\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/yargs/y18n/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~oss-bot\"\u003eoss-bot\u003c/a\u003e, a new releaser for y18n since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.18.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lodash/lodash/releases\"\u003elodash's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.18.1\u003c/h2\u003e\n\u003ch2\u003eBugs\u003c/h2\u003e\n\u003cp\u003eFixes a \u003ccode\u003eReferenceError\u003c/code\u003e issue in \u003ccode\u003elodash\u003c/code\u003e \u003ccode\u003elodash-es\u003c/code\u003e \u003ccode\u003elodash-amd\u003c/code\u003e and \u003ccode\u003elodash.template\u003c/code\u003e when using the \u003ccode\u003etemplate\u003c/code\u003e and \u003ccode\u003efromPairs\u003c/code\u003e functions from the modular builds. See \u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6167#issuecomment-4165269769\"\u003elodash/lodash#6167\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eThese defects were related to how lodash distributions are built from the main branch using \u003ca href=\"https://github.com/lodash-archive/lodash-cli\"\u003ehttps://github.com/lodash-archive/lodash-cli\u003c/a\u003e. When internal dependencies change inside lodash functions, equivalent updates need to be made to a mapping in the lodash-cli. (hey, it was ahead of its time once upon a time!). We know this, but we missed it in the last release. It's the kind of thing that passes in CI, but fails bc the build is not the same thing you tested.\u003c/p\u003e\n\u003cp\u003eThere is no diff on main for this, but you can see the diffs for each of the npm packages on their respective branches:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003elodash\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-es\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-amd\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash.template\u003c/code\u003e\u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.18.0\u003c/h2\u003e\n\u003ch2\u003ev4.18.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.23...4.18.0\"\u003ehttps://github.com/lodash/lodash/compare/4.17.23...4.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.unset\u003c/code\u003e / \u003ccode\u003e_.omit\u003c/code\u003e\u003c/strong\u003e: Fixed prototype pollution via \u003ccode\u003econstructor\u003c/code\u003e/\u003ccode\u003eprototype\u003c/code\u003e path traversal (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-f23m-r3pf-42rh\"\u003eGHSA-f23m-r3pf-42rh\u003c/a\u003e, \u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003efe8d32e\u003c/a\u003e). Previously, array-wrapped path segments and primitive roots could bypass the existing guards, allowing deletion of properties from built-in prototypes. Now \u003ccode\u003econstructor\u003c/code\u003e and \u003ccode\u003eprototype\u003c/code\u003e are blocked unconditionally as non-terminal path keys, matching \u003ccode\u003ebaseSet\u003c/code\u003e. Calls that previously returned \u003ccode\u003etrue\u003c/code\u003e and deleted the property now return \u003ccode\u003efalse\u003c/code\u003e and leave the target untouched.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.template\u003c/code\u003e\u003c/strong\u003e: Fixed code injection via \u003ccode\u003eimports\u003c/code\u003e keys (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-r5fr-rjxr-66jc\"\u003eGHSA-r5fr-rjxr-66jc\u003c/a\u003e, CVE-2026-4800, \u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e879aaa9\u003c/a\u003e). Fixes an incomplete patch for CVE-2021-23337. The \u003ccode\u003evariable\u003c/code\u003e option was validated against \u003ccode\u003ereForbiddenIdentifierChars\u003c/code\u003e but \u003ccode\u003eimportsKeys\u003c/code\u003e was left unguarded, allowing code injection via the same \u003ccode\u003eFunction()\u003c/code\u003e constructor sink. \u003ccode\u003eimports\u003c/code\u003e keys containing forbidden identifier characters now throw \u003ccode\u003e\u0026quot;Invalid imports option passed into _.template\u0026quot;\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eDocs\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd security notice for \u003ccode\u003e_.template\u003c/code\u003e in threat model and API docs (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6099\"\u003e#6099\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDocument \u003ccode\u003elower \u0026gt; upper\u003c/code\u003e behavior in \u003ccode\u003e_.random\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6115\"\u003e#6115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix quotes in \u003ccode\u003e_.compact\u003c/code\u003e jsdoc (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6090\"\u003e#6090\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ccode\u003elodash.*\u003c/code\u003e modular packages\u003c/h3\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6157\"\u003eDiff\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eWe have also regenerated and published a select number of the \u003ccode\u003elodash.*\u003c/code\u003e modular packages.\u003c/p\u003e\n\u003cp\u003eThese modular packages had fallen out of sync significantly from the minor/patch updates to lodash. Specifically, we have brought the following packages up to parity w/ the latest lodash release because they have had CVEs on them in the past:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.orderby\"\u003elodash.orderby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.tonumber\"\u003elodash.tonumber\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trim\"\u003elodash.trim\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trimend\"\u003elodash.trimend\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.sortedindexby\"\u003elodash.sortedindexby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.zipobjectdeep\"\u003elodash.zipobjectdeep\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.unset\"\u003elodash.unset\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.omit\"\u003elodash.omit\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.template\"\u003elodash.template\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/cb0b9b9212521c08e3eafe7c8cb0af1b42b6649e\"\u003e\u003ccode\u003ecb0b9b9\u003c/code\u003e\u003c/a\u003e release(patch): bump main to 4.18.1 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6177\"\u003e#6177\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/75535f57883b7225adb96de1cfc1cd4169cfcb51\"\u003e\u003ccode\u003e75535f5\u003c/code\u003e\u003c/a\u003e chore: prune stale advisory refs (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6170\"\u003e#6170\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/62e91bc6a39c98d85b9ada8c44d40593deaf82a4\"\u003e\u003ccode\u003e62e91bc\u003c/code\u003e\u003c/a\u003e docs: remove n_ Node.js \u0026lt; 6 REPL note from README (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6165\"\u003e#6165\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/59be2de61f8aa9461c7856533b51d31b7d8babc4\"\u003e\u003ccode\u003e59be2de\u003c/code\u003e\u003c/a\u003e release(minor): bump to 4.18.0 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6161\"\u003e#6161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=...\n\n_Description has been truncated_","html_url":"https://github.com/ScorpionBytes/snyk-cli/pull/12","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/ScorpionBytes%2Fsnyk-cli/issues/12","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/12/packages"}},{"old_version":"3.3.0","new_version":"3.3.2","update_type":"patch","path":null,"pr_created_at":"2026-05-04T11:34:34.000Z","version_change":"3.3.0 → 3.3.2","issue":{"uuid":"4376198147","node_id":"PR_kwDOIQXBmM7X_QVi","number":315,"state":"open","title":"build(deps-dev): bump node-fetch from 3.3.0 to 3.3.2","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-04T11:34:34.000Z","updated_at":"2026-05-04T11:34:37.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps-dev)","packages":[{"name":"node-fetch","old_version":"3.3.0","new_version":"3.3.2","repository_url":"https://github.com/node-fetch/node-fetch"}],"path":null,"ecosystem":"npm"},"body":"Bumps [node-fetch](https://github.com/node-fetch/node-fetch) from 3.3.0 to 3.3.2.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-fetch/node-fetch/releases\"\u003enode-fetch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.3.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.1...v3.3.2\"\u003e3.3.2\u003c/a\u003e (2023-07-25)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e8b3320d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1735\"\u003e#1735\u003c/a\u003e \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1473\"\u003e#1473\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.0...v3.3.1\"\u003e3.3.1\u003c/a\u003e (2023-03-11)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erelease \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e7b86e94\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e\u003ccode\u003e8b3320d\u003c/code\u003e\u003c/a\u003e fix: Remove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e\u003ccode\u003e7b86e94\u003c/code\u003e\u003c/a\u003e fix: release \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8ced5b941cf36d0d7e0c1017aa2a4abcb29ecd89\"\u003e\u003ccode\u003e8ced5b9\u003c/code\u003e\u003c/a\u003e docs: readme - non ESM example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1707\"\u003e#1707\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/71e376b0ca899a30bbda4d45f97ea87502956a62\"\u003e\u003ccode\u003e71e376b\u003c/code\u003e\u003c/a\u003e ci(release): use latest Node LTS (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1697\"\u003e#1697\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e093030b4a6625405a331ddf48bcfd82c079f43d\"\u003e\u003ccode\u003ee093030\u003c/code\u003e\u003c/a\u003e Allow URL class object as an argument for fetch() (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.0...v3.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=node-fetch\u0026package-manager=npm_and_yarn\u0026previous-version=3.3.0\u0026new-version=3.3.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/rdwz/doks/pull/315","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/rdwz%2Fdoks/issues/315","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/315/packages"}},{"old_version":"3.2.6","new_version":"3.3.2","update_type":"minor","path":null,"pr_created_at":"2026-05-04T05:00:14.000Z","version_change":"3.2.6 → 3.3.2","issue":{"uuid":"4374113475","node_id":"PR_kwDOIebGLc7X4XfQ","number":286,"state":"open","title":"build(deps-dev): bump node-fetch from 3.2.6 to 3.3.2","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-04T05:00:14.000Z","updated_at":"2026-05-04T05:01:21.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps-dev)","packages":[{"name":"node-fetch","old_version":"3.2.6","new_version":"3.3.2","repository_url":"https://github.com/node-fetch/node-fetch"}],"path":null,"ecosystem":"npm"},"body":"Bumps [node-fetch](https://github.com/node-fetch/node-fetch) from 3.2.6 to 3.3.2.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-fetch/node-fetch/releases\"\u003enode-fetch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.3.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.1...v3.3.2\"\u003e3.3.2\u003c/a\u003e (2023-07-25)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e8b3320d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1735\"\u003e#1735\u003c/a\u003e \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1473\"\u003e#1473\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.0...v3.3.1\"\u003e3.3.1\u003c/a\u003e (2023-03-11)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erelease \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e7b86e94\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.0\u003c/h2\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.10...v3.3.0\"\u003e3.3.0\u003c/a\u003e (2022-11-10)\u003c/h1\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd static Response.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1670\"\u003e#1670\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/55a4870ae5f805d8ff9a890ea2c652c9977e048e\"\u003e55a4870\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.10\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.9...v3.2.10\"\u003e3.2.10\u003c/a\u003e (2022-07-31)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDoS referrer (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1611\"\u003e#1611\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d\"\u003e2880238\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.9\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.8...v3.2.9\"\u003e3.2.9\u003c/a\u003e (2022-07-18)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHeaders:\u003c/strong\u003e don't forward secure headers on protocol change (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1599\"\u003e#1599\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7\"\u003ee87b093\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.8\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.7...v3.2.8\"\u003e3.2.8\u003c/a\u003e (2022-07-12)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003epossibly flaky test (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1523\"\u003e#1523\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/11b703361134340a8361f591d6e3a0bcf6a261fa\"\u003e11b7033\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e\u003ccode\u003e8b3320d\u003c/code\u003e\u003c/a\u003e fix: Remove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e\u003ccode\u003e7b86e94\u003c/code\u003e\u003c/a\u003e fix: release \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8ced5b941cf36d0d7e0c1017aa2a4abcb29ecd89\"\u003e\u003ccode\u003e8ced5b9\u003c/code\u003e\u003c/a\u003e docs: readme - non ESM example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1707\"\u003e#1707\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/71e376b0ca899a30bbda4d45f97ea87502956a62\"\u003e\u003ccode\u003e71e376b\u003c/code\u003e\u003c/a\u003e ci(release): use latest Node LTS (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1697\"\u003e#1697\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e093030b4a6625405a331ddf48bcfd82c079f43d\"\u003e\u003ccode\u003ee093030\u003c/code\u003e\u003c/a\u003e Allow URL class object as an argument for fetch() (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/55a4870ae5f805d8ff9a890ea2c652c9977e048e\"\u003e\u003ccode\u003e55a4870\u003c/code\u003e\u003c/a\u003e feat: add static Response.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1670\"\u003e#1670\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/c071406e193cce13959999982584ff27198e9e4a\"\u003e\u003ccode\u003ec071406\u003c/code\u003e\u003c/a\u003e (1138) - Fixed HTTPResponseError with correct constructor and usage (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1666\"\u003e#1666\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/6f72caa401a8ec574a22058431599ef47c222770\"\u003e\u003ccode\u003e6f72caa\u003c/code\u003e\u003c/a\u003e docs: fix missing comma in example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1623\"\u003e#1623\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d\"\u003e\u003ccode\u003e2880238\u003c/code\u003e\u003c/a\u003e fix: ReDoS referrer (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1611\"\u003e#1611\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7\"\u003e\u003ccode\u003ee87b093\u003c/code\u003e\u003c/a\u003e fix(Headers): don't forward secure headers on protocol change (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1599\"\u003e#1599\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.6...v3.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=node-fetch\u0026package-manager=npm_and_yarn\u0026previous-version=3.2.6\u0026new-version=3.3.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/KushWeedim/doks/pull/286","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/KushWeedim%2Fdoks/issues/286","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/286/packages"}},{"old_version":"1.7.3","new_version":"3.3.2","update_type":"major","path":null,"pr_created_at":"2026-05-03T20:21:38.000Z","version_change":"1.7.3 → 3.3.2","issue":{"uuid":"4372870824","node_id":"PR_kwDOCeNfHs7X0irb","number":6,"state":"closed","title":"Bump the npm_and_yarn group across 13 directories with 15 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-04T01:10:37.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-03T20:21:38.000Z","updated_at":"2026-05-04T01:10:38.000Z","time_to_close":17339,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"npm_and_yarn","update_count":15,"packages":[{"name":"axios","old_version":"0.18.1","new_version":"1.16.0","repository_url":"https://github.com/axios/axios"},{"name":"shelljs","old_version":"0.7.8","new_version":"0.10.0","repository_url":"https://github.com/shelljs/shelljs"},{"name":"node-fetch","old_version":"1.7.3","new_version":"3.3.2","repository_url":"https://github.com/node-fetch/node-fetch"},{"name":"uuid","old_version":"3.4.0","new_version":"14.0.0","repository_url":"https://github.com/uuidjs/uuid"},{"name":"node-sass","old_version":"4.14.1","new_version":"9.0.0","repository_url":"https://github.com/sass/node-sass"},{"name":"webpack-bundle-analyzer","old_version":"2.13.1","new_version":"5.3.0","repository_url":"https://github.com/webpack/webpack-bundle-analyzer"},{"name":"webpack-dev-middleware","old_version":"1.12.2","new_version":"8.0.3","repository_url":"https://github.com/webpack/webpack-dev-middleware"},{"name":"knex","old_version":"0.13.0","new_version":"3.2.10","repository_url":"https://github.com/knex/knex"},{"name":"mongoose","old_version":"5.13.23","new_version":"9.6.1","repository_url":"https://github.com/Automattic/mongoose"},{"name":"showdown","old_version":"1.9.1","new_version":"2.1.0","repository_url":"https://github.com/showdownjs/showdown"},{"name":"path-to-regexp","old_version":"2.4.0","new_version":"8.4.2","repository_url":"https://github.com/pillarjs/path-to-regexp"},{"name":"swagger-ui-dist","old_version":"3.52.5","new_version":"5.32.5","repository_url":"https://github.com/swagger-api/swagger-ui"},{"name":"jsonwebtoken","old_version":"8.5.1","new_version":"9.0.3","repository_url":"https://github.com/auth0/node-jsonwebtoken"},{"name":"cloudinary","old_version":"1.41.3","new_version":"2.10.0","repository_url":"https://github.com/cloudinary/cloudinary_npm"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 14 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [axios](https://github.com/axios/axios) | `0.18.1` | `1.16.0` |\n| [shelljs](https://github.com/shelljs/shelljs) | `0.7.8` | `0.10.0` |\n| [node-fetch](https://github.com/node-fetch/node-fetch) | `1.7.3` | `3.3.2` |\n| [uuid](https://github.com/uuidjs/uuid) | `3.4.0` | `14.0.0` |\n| [node-sass](https://github.com/sass/node-sass) | `4.14.1` | `9.0.0` |\n| [webpack-bundle-analyzer](https://github.com/webpack/webpack-bundle-analyzer) | `2.13.1` | `5.3.0` |\n| [webpack-dev-middleware](https://github.com/webpack/webpack-dev-middleware) | `1.12.2` | `8.0.3` |\n| [knex](https://github.com/knex/knex) | `0.13.0` | `3.2.10` |\n| [mongoose](https://github.com/Automattic/mongoose) | `5.13.23` | `9.6.1` |\n| [showdown](https://github.com/showdownjs/showdown) | `1.9.1` | `2.1.0` |\n| [path-to-regexp](https://github.com/pillarjs/path-to-regexp) | `2.4.0` | `8.4.2` |\n| [swagger-ui-dist](https://github.com/swagger-api/swagger-ui) | `3.52.5` | `5.32.5` |\n| [jsonwebtoken](https://github.com/auth0/node-jsonwebtoken) | `8.5.1` | `9.0.3` |\n| [cloudinary](https://github.com/cloudinary/cloudinary_npm) | `1.41.3` | `2.10.0` |\n\nBumps the npm_and_yarn group with 1 update in the /packages/strapi directory: [node-fetch](https://github.com/node-fetch/node-fetch).\nBumps the npm_and_yarn group with 1 update in the /packages/strapi-admin directory: [shelljs](https://github.com/shelljs/shelljs).\nBumps the npm_and_yarn group with 1 update in the /packages/strapi-generate-admin directory: [strapi-admin](https://github.com/strapi/strapi).\nBumps the npm_and_yarn group with 1 update in the /packages/strapi-generate-new directory: [uuid](https://github.com/uuidjs/uuid).\nBumps the npm_and_yarn group with 4 updates in the /packages/strapi-helper-plugin directory: [shelljs](https://github.com/shelljs/shelljs), [node-sass](https://github.com/sass/node-sass), [webpack-bundle-analyzer](https://github.com/webpack/webpack-bundle-analyzer) and [webpack-dev-middleware](https://github.com/webpack/webpack-dev-middleware).\nBumps the npm_and_yarn group with 1 update in the /packages/strapi-hook-knex directory: [knex](https://github.com/knex/knex).\nBumps the npm_and_yarn group with 1 update in the /packages/strapi-hook-mongoose directory: [mongoose](https://github.com/Automattic/mongoose).\nBumps the npm_and_yarn group with 1 update in the /packages/strapi-plugin-content-manager directory: [showdown](https://github.com/showdownjs/showdown).\nBumps the npm_and_yarn group with 2 updates in the /packages/strapi-plugin-documentation directory: [path-to-regexp](https://github.com/pillarjs/path-to-regexp) and [swagger-ui-dist](https://github.com/swagger-api/swagger-ui).\nBumps the npm_and_yarn group with 2 updates in the /packages/strapi-plugin-users-permissions directory: [uuid](https://github.com/uuidjs/uuid) and [jsonwebtoken](https://github.com/auth0/node-jsonwebtoken).\nBumps the npm_and_yarn group with 1 update in the /packages/strapi-provider-upload-cloudinary directory: [cloudinary](https://github.com/cloudinary/cloudinary_npm).\nBumps the npm_and_yarn group with 2 updates in the /packages/strapi-utils directory: [shelljs](https://github.com/shelljs/shelljs) and [knex](https://github.com/knex/knex).\n\nUpdates `axios` from 0.18.1 to 1.16.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.16.0 — May 2, 2026\u003c/h2\u003e\n\u003cp\u003eThis release adds support for the QUERY HTTP method and a new \u003ccode\u003eECONNREFUSED\u003c/code\u003e error constant, lands a substantial wave of HTTP, fetch, and XHR adapter bug fixes around redirects, aborts, headers, and timeouts, and welcomes 23 new contributors.\u003c/p\u003e\n\u003ch2\u003e⚠️ Notable Changes\u003c/h2\u003e\n\u003cp\u003eA handful of fixes in this release are either security-adjacent or change observable behaviour. Please review before upgrading:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFetch adapter now enforces \u003ccode\u003emaxBodyLength\u003c/code\u003e and \u003ccode\u003emaxContentLength\u003c/code\u003e.\u003c/strong\u003e These limits were silently ignored on the fetch adapter prior to 1.16.0 — anyone relying on them as a safety net (DoS protection, accidental large uploads) had no protection. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10795\"\u003e#10795\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eProxy requests now preserve user-supplied \u003ccode\u003eHost\u003c/code\u003e headers.\u003c/strong\u003e Previously, the proxy path could overwrite a custom \u003ccode\u003eHost\u003c/code\u003e. Virtual-host-style routing through a proxy will now behave correctly. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10822\"\u003e#10822\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eBasic auth credentials embedded in URLs are now URL-decoded.\u003c/strong\u003e If you have percent-encoded credentials in a URL (e.g. \u003ccode\u003ehttps://user:p%40ss@host\u003c/code\u003e), the decoded value is what now goes on the wire. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10825\"\u003e#10825\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003eparseProtocol\u003c/code\u003e now strictly requires a colon in the protocol separator.\u003c/strong\u003e Strings that loosely parsed as protocols before may no longer match. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10729\"\u003e#10729\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDeprecated \u003ccode\u003eunescape()\u003c/code\u003e replaced with modern UTF-8 encoding.\u003c/strong\u003e Non-ASCII URL handling is now spec-correct; consumers depending on legacy \u003ccode\u003eunescape()\u003c/code\u003e quirks may see different output bytes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7378\"\u003e#7378\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003etransformRequest\u003c/code\u003e input typing change was reverted.\u003c/strong\u003e The typing change introduced in \u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e was reverted in \u003ca href=\"https://redirect.github.com/axios/axios/issues/10810\"\u003e#10810\u003c/a\u003e after follow-up review — net behavior is unchanged from 1.15.2. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10810\"\u003e#10810\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eQUERY HTTP Method:\u003c/strong\u003e Added support for the QUERY HTTP method across adapters and type definitions. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10802\"\u003e#10802\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eECONNREFUSED Error Constant:\u003c/strong\u003e Exposed \u003ccode\u003eECONNREFUSED\u003c/code\u003e as a constant on \u003ccode\u003eAxiosError\u003c/code\u003e so callers can match connection-refused failures without comparing string literals (closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/6485\"\u003e#6485\u003c/a\u003e). (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10680\"\u003e#10680\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eEncode Helper Export:\u003c/strong\u003e Exported the internal \u003ccode\u003eencode\u003c/code\u003e helper from \u003ccode\u003ebuildURL\u003c/code\u003e so userland param serializers can reuse the same encoding logic that axios uses internally. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6897\"\u003e#6897\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHTTP Adapter — Redirects \u0026amp; Headers:\u003c/strong\u003e Cleared stale headers when a redirect targets a no-proxy host, fixed the redirect listener chain so listeners no longer stack across hops, restored the missing \u003ccode\u003erequestDetails\u003c/code\u003e argument on \u003ccode\u003ebeforeRedirect\u003c/code\u003e, preserved user-supplied \u003ccode\u003eHost\u003c/code\u003e headers when forwarding through a proxy, and properly URL-decoded basic auth credentials. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10794\"\u003e#10794\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10800\"\u003e#10800\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6241\"\u003e#6241\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10822\"\u003e#10822\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10825\"\u003e#10825\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHTTP Adapter — Streams \u0026amp; Timeouts:\u003c/strong\u003e Preserved the partial response object on \u003ccode\u003eAxiosError\u003c/code\u003e when a stream is aborted after headers arrive, honoured the \u003ccode\u003etimeout\u003c/code\u003e option during the connect phase when redirects are disabled, and resolved an unsettled-promise hang when an aborted request was combined with compression and \u003ccode\u003emaxRedirects: 0\u003c/code\u003e. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10708\"\u003e#10708\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10819\"\u003e#10819\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7149\"\u003e#7149\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFetch Adapter:\u003c/strong\u003e Enforced \u003ccode\u003emaxBodyLength\u003c/code\u003e / \u003ccode\u003emaxContentLength\u003c/code\u003e in the fetch adapter, set the \u003ccode\u003eUser-Agent\u003c/code\u003e header to match the HTTP adapter, preserved the original abort reason instead of replacing it with a generic error, and deferred global access so importing the module no longer throws a \u003ccode\u003eTypeError\u003c/code\u003e in restricted environments. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10795\"\u003e#10795\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10772\"\u003e#10772\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10806\"\u003e#10806\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7260\"\u003e#7260\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eXHR Adapter:\u003c/strong\u003e Unsubscribed the \u003ccode\u003ecancelToken\u003c/code\u003e and \u003ccode\u003eAbortSignal\u003c/code\u003e listeners on the error, timeout, and abort code paths to prevent leaked subscriptions. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10787\"\u003e#10787\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eError Handling:\u003c/strong\u003e Attached the parsed response to \u003ccode\u003eAxiosError\u003c/code\u003e when \u003ccode\u003eJSON.parse\u003c/code\u003e fails inside \u003ccode\u003edispatchRequest\u003c/code\u003e, prevented \u003ccode\u003esettle\u003c/code\u003e from emitting \u003ccode\u003eundefined\u003c/code\u003e error codes, and tightened the \u003ccode\u003eparseProtocol\u003c/code\u003e regex to require a colon in the protocol separator. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10724\"\u003e#10724\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7276\"\u003e#7276\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10729\"\u003e#10729\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTypes \u0026amp; Exports:\u003c/strong\u003e Aligned the CommonJS \u003ccode\u003eCancelToken\u003c/code\u003e typings with the ESM build, fixed a compiler error caused by \u003ccode\u003eRawAxiosHeaders\u003c/code\u003e, and re-exported \u003ccode\u003ecreate\u003c/code\u003e from the package index. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7414\"\u003e#7414\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6389\"\u003e#6389\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6460\"\u003e#6460\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eUTF-8 Encoding:\u003c/strong\u003e Replaced the deprecated \u003ccode\u003eunescape()\u003c/code\u003e call with a modern UTF-8 encoding implementation. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7378\"\u003e#7378\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eMisc Cleanup:\u003c/strong\u003e Resolved a batch of small inconsistencies and gadget-level issues across the codebase. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10833\"\u003e#10833\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRefactor — ES6 Modernisation:\u003c/strong\u003e Modernised the \u003ccode\u003eutils\u003c/code\u003e module and XHR adapter to use ES6 features, and tidied the multipart boundary error message. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10588\"\u003e#10588\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7419\"\u003e#7419\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTests:\u003c/strong\u003e Hardened the HTTP test server lifecycle to fix flaky \u003ccode\u003eFormData\u003c/code\u003e EPIPE failures, fixed Win32 platform support for the pipe tests, and corrected an incorrect test assumption. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10820\"\u003e#10820\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10791\"\u003e#10791\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10796\"\u003e#10796\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDocs:\u003c/strong\u003e Documented \u003ccode\u003eparamsSerializer.encode\u003c/code\u003e for strict RFC 3986 query encoding, updated the \u003ccode\u003eparseReviver\u003c/code\u003e TypeScript definitions and configuration docs for ES2023, added timeout guidance to the README's first async example, and expanded notes around the recent type changes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10821\"\u003e#10821\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10782\"\u003e#10782\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10759\"\u003e#10759\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10804\"\u003e#10804\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eReverted:\u003c/strong\u003e Reverted the \u003ccode\u003etransformRequest\u003c/code\u003e input typing change from \u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e after follow-up review. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10810\"\u003e#10810\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDependencies:\u003c/strong\u003e Bumped \u003ccode\u003eactions/setup-node\u003c/code\u003e, the \u003ccode\u003egithub-actions\u003c/code\u003e group, and \u003ccode\u003epostcss\u003c/code\u003e (in \u003ccode\u003e/docs\u003c/code\u003e) to their latest versions. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10785\"\u003e#10785\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10813\"\u003e#10813\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10814\"\u003e#10814\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eRelease:\u003c/strong\u003e Updated changelog and packages, and prepared the 1.16.0 release. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10790\"\u003e#10790\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10834\"\u003e#10834\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🌟 New Contributors\u003c/h2\u003e\n\u003cp\u003eWe are thrilled to welcome our new contributors. Thank you for helping improve axios:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/singhankit001\"\u003e\u003ccode\u003e@​singhankit001\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10588\"\u003e#10588\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/cuiweixie\"\u003e\u003ccode\u003e@​cuiweixie\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7419\"\u003e#7419\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/iruizsalinas\"\u003e\u003ccode\u003e@​iruizsalinas\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10787\"\u003e#10787\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/MarcosNocetti\"\u003e\u003ccode\u003e@​MarcosNocetti\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10680\"\u003e#10680\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/deepview-autofix\"\u003e\u003ccode\u003e@​deepview-autofix\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10729\"\u003e#10729\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/blob/v1.x/CHANGELOG.md\"\u003eaxios's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003ev1.15.2 - April 21, 2026\u003c/h2\u003e\n\u003cp\u003eThis release delivers prototype-pollution hardening for the Node HTTP adapter, adds an opt-in \u003ccode\u003eallowedSocketPaths\u003c/code\u003e allowlist to mitigate SSRF via Unix domain sockets, fixes a keep-alive socket memory leak, and ships supply-chain hardening across CI and security docs.\u003c/p\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ePrototype Pollution Hardening (HTTP Adapter):\u003c/strong\u003e Hardened the Node HTTP adapter and \u003ccode\u003eresolveConfig\u003c/code\u003e/\u003ccode\u003emergeConfig\u003c/code\u003e/validator paths to read only own properties and use null-prototype config objects, preventing polluted \u003ccode\u003eauth\u003c/code\u003e, \u003ccode\u003ebaseURL\u003c/code\u003e, \u003ccode\u003esocketPath\u003c/code\u003e, \u003ccode\u003ebeforeRedirect\u003c/code\u003e, and \u003ccode\u003einsecureHTTPParser\u003c/code\u003e from influencing requests. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10779\"\u003e#10779\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eSSRF via \u003ccode\u003esocketPath\u003c/code\u003e:\u003c/strong\u003e Rejects non-string \u003ccode\u003esocketPath\u003c/code\u003e values and adds an opt-in \u003ccode\u003eallowedSocketPaths\u003c/code\u003e config option to restrict permitted Unix domain socket paths, returning \u003ccode\u003eAxiosError\u003c/code\u003e \u003ccode\u003eERR_BAD_OPTION_VALUE\u003c/code\u003e on mismatch. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10777\"\u003e#10777\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eSupply-chain Hardening:\u003c/strong\u003e Added \u003ccode\u003e.npmrc\u003c/code\u003e with \u003ccode\u003eignore-scripts=true\u003c/code\u003e, lockfile lint CI, non-blocking reproducible build diff, scoped CODEOWNERS, expanded \u003ccode\u003eSECURITY.md\u003c/code\u003e/\u003ccode\u003eTHREATMODEL.md\u003c/code\u003e with provenance verification (\u003ccode\u003enpm audit signatures\u003c/code\u003e), 60-day resolution policy, and maintainer incident-response runbook. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10776\"\u003e#10776\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003eallowedSocketPaths\u003c/code\u003e Config Option:\u003c/strong\u003e New request config option (and TypeScript types) to allowlist Unix domain socket paths used by the Node http adapter; backwards compatible when unset. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10777\"\u003e#10777\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eKeep-alive Socket Memory Leak:\u003c/strong\u003e Installs a single per-socket \u003ccode\u003eerror\u003c/code\u003e listener tracking the active request via \u003ccode\u003ekAxiosSocketListener\u003c/code\u003e/\u003ccode\u003ekAxiosCurrentReq\u003c/code\u003e, eliminating per-request listener accumulation, \u003ccode\u003eMaxListenersExceededWarning\u003c/code\u003e, and linear heap growth under concurrent or long-running keep-alive workloads (fixes \u003ca href=\"https://redirect.github.com/axios/axios/issues/10780\"\u003e#10780\u003c/a\u003e). (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10788\"\u003e#10788\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eChangelog:\u003c/strong\u003e Updated \u003ccode\u003eCHANGELOG.md\u003c/code\u003e with v1.15.1 release notes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10781\"\u003e#10781\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/axios/axios/compare/v1.15.1...v1.15.2\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003chr /\u003e\n\u003ch2\u003ev1.15.1 - April 19, 2026\u003c/h2\u003e\n\u003cp\u003eThis release ships a coordinated set of security hardening fixes across headers, body/redirect limits, multipart handling, and XSRF/prototype-pollution vectors, alongside a broad sweep of bug fixes, test migrations, and threat-model documentation updates.\u003c/p\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eHeader Injection Hardening:\u003c/strong\u003e Tightened validation and sanitisation across request header construction to close the header-injection attack surface. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10749\"\u003e#10749\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eCRLF Stripping in Multipart Headers:\u003c/strong\u003e Correctly strips CR/LF from multipart header values to prevent injection via field names and filenames. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10758\"\u003e#10758\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003ePrototype Pollution / Auth Bypass:\u003c/strong\u003e Replaced unsafe \u003ccode\u003ein\u003c/code\u003e checks with \u003ccode\u003ehasOwnProperty\u003c/code\u003e to prevent authentication bypass via prototype pollution on config objects, with additional regression tests. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10761\"\u003e#10761\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10760\"\u003e#10760\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003ewithXSRFToken\u003c/code\u003e Truthy Bypass:\u003c/strong\u003e Short-circuits on any truthy non-boolean value, so an ambiguous config no longer silently leaks the XSRF token cross-origin. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10762\"\u003e#10762\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003emaxBodyLength\u003c/code\u003e With Zero Redirects:\u003c/strong\u003e Enforces \u003ccode\u003emaxBodyLength\u003c/code\u003e even when \u003ccode\u003emaxRedirects\u003c/code\u003e is set to \u003ccode\u003e0\u003c/code\u003e, closing a bypass path for oversized request bodies. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10753\"\u003e#10753\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eStreamed Response \u003ccode\u003emaxContentLength\u003c/code\u003e Bypass:\u003c/strong\u003e Applies \u003ccode\u003emaxContentLength\u003c/code\u003e to streamed responses that previously bypassed the cap. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10754\"\u003e#10754\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eFollow-up CVE Completion:\u003c/strong\u003e Completes an earlier incomplete CVE fix to fully close the regression window. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10755\"\u003e#10755\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/df53d7dd99b202fb194217abd127ae6a630e70dc\"\u003e\u003ccode\u003edf53d7d\u003c/code\u003e\u003c/a\u003e chore(release): prepare release 1.16.0 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10834\"\u003e#10834\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/9d92bcd32639d1eea5b89f03ae45f248d3bb058e\"\u003e\u003ccode\u003e9d92bcd\u003c/code\u003e\u003c/a\u003e fix: gadgets and smaller issues (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10833\"\u003e#10833\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/5107ee69aee527b19eabaf80000ca65752135435\"\u003e\u003ccode\u003e5107ee6\u003c/code\u003e\u003c/a\u003e fix: prevent undefined error codes in settle (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7276\"\u003e#7276\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/e57349992f230b6b13e80613eb84302560aa5ba8\"\u003e\u003ccode\u003ee573499\u003c/code\u003e\u003c/a\u003e fix(fetch): defer global access in fetch adapter (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7260\"\u003e#7260\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/ad68e1a484b50086af427f767bbd7d6e3aab7ac3\"\u003e\u003ccode\u003ead68e1a\u003c/code\u003e\u003c/a\u003e fix(http): honor timeout during connect without redirects (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10819\"\u003e#10819\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/2a51828213128691d2e37502b5eb2cf4965a737d\"\u003e\u003ccode\u003e2a51828\u003c/code\u003e\u003c/a\u003e fix(http): decode URL basic auth credentials (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10825\"\u003e#10825\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/0e8b6bbb542131bae9940618d84d5286255d4db1\"\u003e\u003ccode\u003e0e8b6bb\u003c/code\u003e\u003c/a\u003e fix(http): preserve user-supplied Host header when forwarding through a proxy...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/79f39e1d041dca87173226d0255f90eaf252564b\"\u003e\u003ccode\u003e79f39e1\u003c/code\u003e\u003c/a\u003e docs: document paramsSerializer.encode for strict RFC 3986 query encoding (\u003ca href=\"https://redirect.github.com/axios/axios/issues/1\"\u003e#1\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/0fe3a5fc14829535e1d517c662d448e86c33438e\"\u003e\u003ccode\u003e0fe3a5f\u003c/code\u003e\u003c/a\u003e [Docs/Types] Update \u003ccode\u003eparseReviver\u003c/code\u003e TypeScript definitions for ES2023 and add ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/cd6737fd84bdb7caf2a319d3579573a49f9d238d\"\u003e\u003ccode\u003ecd6737f\u003c/code\u003e\u003c/a\u003e chore: matches the sibling responseStream.on(aborted) handler and added tests...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/axios/axios/compare/v0.18.1...v1.16.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for axios since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `shelljs` from 0.7.8 to 0.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/shelljs/shelljs/releases\"\u003eshelljs's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.10.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: update deps by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1201\"\u003eshelljs/shelljs#1201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: rename master -\u0026gt; main by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1203\"\u003eshelljs/shelljs#1203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: avoid dependency cycle by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1204\"\u003eshelljs/shelljs#1204\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnforce single quotes by \u003ca href=\"https://github.com/abluescarab\"\u003e\u003ccode\u003e@​abluescarab\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1207\"\u003eshelljs/shelljs#1207\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update deps by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1209\"\u003eshelljs/shelljs#1209\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: use require instead of import by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1212\"\u003eshelljs/shelljs#1212\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: use promises for utils.runScript by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1211\"\u003eshelljs/shelljs#1211\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: use expectations for t.throws by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1213\"\u003eshelljs/shelljs#1213\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: prefer promises over test.cb by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1214\"\u003eshelljs/shelljs#1214\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: allow es6 language features by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1215\"\u003eshelljs/shelljs#1215\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: use es6 class syntax for CommandError by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1217\"\u003eshelljs/shelljs#1217\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update ava by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1218\"\u003eshelljs/shelljs#1218\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: cmd is compatible with node 22.10 by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1219\"\u003eshelljs/shelljs#1219\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: explicit handling for execa errors by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1220\"\u003eshelljs/shelljs#1220\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd -B, -A, and -C options to grep by \u003ca href=\"https://github.com/abluescarab\"\u003e\u003ccode\u003e@​abluescarab\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1206\"\u003eshelljs/shelljs#1206\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: change how internal errors are handled by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1222\"\u003eshelljs/shelljs#1222\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate the shjs binary by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1225\"\u003eshelljs/shelljs#1225\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebump execa dependency version by \u003ca href=\"https://github.com/y-nk\"\u003e\u003ccode\u003e@​y-nk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1216\"\u003eshelljs/shelljs#1216\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/abluescarab\"\u003e\u003ccode\u003e@​abluescarab\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1207\"\u003eshelljs/shelljs#1207\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/y-nk\"\u003e\u003ccode\u003e@​y-nk\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1216\"\u003eshelljs/shelljs#1216\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/shelljs/shelljs/compare/v0.9.2...v0.10.0\"\u003ehttps://github.com/shelljs/shelljs/compare/v0.9.2...v0.10.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.9.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003etest: add tests for shelljs glob expansion by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1198\"\u003eshelljs/shelljs#1198\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: remove unused env var by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1199\"\u003eshelljs/shelljs#1199\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: add package.json to exports list by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1200\"\u003eshelljs/shelljs#1200\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/shelljs/shelljs/compare/v0.9.1...v0.9.2\"\u003ehttps://github.com/shelljs/shelljs/compare/v0.9.1...v0.9.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.9.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: add global.js and plugin.js to exports list by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/1196\"\u003eshelljs/shelljs#1196\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/shelljs/shelljs/compare/v0.9.0...v0.9.1\"\u003ehttps://github.com/shelljs/shelljs/compare/v0.9.0...v0.9.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: Exit 1 with empty string if no match by \u003ca href=\"https://github.com/wyardley\"\u003e\u003ccode\u003e@​wyardley\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/901\"\u003eshelljs/shelljs#901\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(cp): support update flag when recursing by \u003ca href=\"https://github.com/joshi-sh\"\u003e\u003ccode\u003e@​joshi-sh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/889\"\u003eshelljs/shelljs#889\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: change language to node_js and remove obsolete scripts by \u003ca href=\"https://github.com/DanielRuf\"\u003e\u003ccode\u003e@​DanielRuf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/910\"\u003eshelljs/shelljs#910\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: remove gitter integration by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/907\"\u003eshelljs/shelljs#907\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(npm): remove lockfile by \u003ca href=\"https://github.com/nfischer\"\u003e\u003ccode\u003e@​nfischer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/911\"\u003eshelljs/shelljs#911\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/shelljs/shelljs/blob/main/CHANGELOG.md\"\u003eshelljs's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChange Log\u003c/h1\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/shelljs/shelljs/tree/v0.8.5\"\u003ev0.8.5\u003c/a\u003e (2022-01-13)\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/shelljs/shelljs/compare/v0.8.4...v0.8.5\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eThis was a small security fix for \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/1058\"\u003e#1058\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/shelljs/shelljs/tree/v0.8.4\"\u003ev0.8.4\u003c/a\u003e (2020-04-24)\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/shelljs/shelljs/compare/v0.8.3...v0.8.4\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eSmall patch release to fix a circular dependency warning in node v14. See \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/973\"\u003e#973\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/shelljs/shelljs/tree/v0.8.3\"\u003ev0.8.3\u003c/a\u003e (2018-11-13)\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/shelljs/shelljs/compare/v0.8.2...v0.8.3\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eClosed issues:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eShelljs print stderr to console even if exec-only \u0026quot;silent\u0026quot; is true \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/905\"\u003e#905\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: remove common.state.tempDir \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/902\"\u003e#902\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCan't suppress stdout for echo \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/899\"\u003e#899\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eexec() doesn't apply the arguments correctly \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/895\"\u003e#895\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eshell.exec('npm pack') painfully slow \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/885\"\u003e#885\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eshelljs.exec cannot find app.asar/node_modules/shelljs/src/exec-child.js \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/881\"\u003e#881\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest infra: mocks and skipOnWin conflict \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/862\"\u003e#862\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport for shell function completion on IDE \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/859\"\u003e#859\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eecho command shows options in stdout \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/855\"\u003e#855\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esilent does not always work \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/851\"\u003e#851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAppveyor installs the latest npm, instead of the latest compatible npm \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/844\"\u003e#844\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eForce symbolic link (ln -sf) does not overwrite/recreate existing destination \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/830\"\u003e#830\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003einconsistent result when trying to echo to a file \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/798\"\u003e#798\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrevent require()ing executable-only files \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/789\"\u003e#789\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCannot set property to of [object String] which has only a getter \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/752\"\u003e#752\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ewhich() should check executability before returning a value \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/657\"\u003e#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBad encoding experience \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/456\"\u003e#456\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ephpcs very slow \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/440\"\u003e#440\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eError shown when triggering a sigint during shelljs.exec if process.on sigint is defined \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/254\"\u003e#254\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e.to\\(file\\)\u003c/code\u003e does not mute STDIO output \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/146\"\u003e#146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEscaping shell arguments to exec() \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/143\"\u003e#143\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAllow multiple string arguments for exec() \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/103\"\u003e#103\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecp does not recursively copy from readonly location  \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/98\"\u003e#98\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHandling permissions errors on file I/O \u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/64\"\u003e#64\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eMerged pull requests:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd test case for sed on empty file \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/904\"\u003e#904\u003c/a\u003e (\u003ca href=\"https://github.com/wyardley\"\u003ewyardley\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor: don't expose tempdir in common.state \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/903\"\u003e#903\u003c/a\u003e (\u003ca href=\"https://github.com/nfischer\"\u003enfischer\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore(ci): fix codecov on travis \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/897\"\u003e#897\u003c/a\u003e (\u003ca href=\"https://github.com/nfischer\"\u003enfischer\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore(npm): add ci-or-install script \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/896\"\u003e#896\u003c/a\u003e (\u003ca href=\"https://github.com/nfischer\"\u003enfischer\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix silent exec \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/892\"\u003e#892\u003c/a\u003e (\u003ca href=\"https://github.com/nfischer\"\u003enfischer\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore(appveyor): run entire test matrix \u003ca href=\"https://redirect.github.com/shelljs/shelljs/pull/886\"\u003e#886\u003c/a\u003e (\u003ca href=\"https://github.com/nfischer\"\u003enfischer\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shelljs/shelljs/commit/4580c00398982618ff075dd4354b0234a1d679dc\"\u003e\u003ccode\u003e4580c00\u003c/code\u003e\u003c/a\u003e 0.10.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shelljs/shelljs/commit/9a06336bc15ea36597054be5dacf6f8259ea6520\"\u003e\u003ccode\u003e9a06336\u003c/code\u003e\u003c/a\u003e Deprecate the shjs binary\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shelljs/shelljs/commit/3b03c85ef6442a1ebafca99db606c6c851215e9b\"\u003e\u003ccode\u003e3b03c85\u003c/code\u003e\u003c/a\u003e chore: remove accidental audit dep\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shelljs/shelljs/commit/33db5147e23f8d76e768eefc2f1d4a82da449ed3\"\u003e\u003ccode\u003e33db514\u003c/code\u003e\u003c/a\u003e Regenerate package-lock.json with npm 9.2.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shelljs/shelljs/commit/6577d5490f4737b1aa0a6c6db2c2ff0693531a90\"\u003e\u003ccode\u003e6577d54\u003c/code\u003e\u003c/a\u003e Merge branch 'y-nk-main'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shelljs/shelljs/commit/e48e9195438e10f06273734d3ab67d941eeaecc8\"\u003e\u003ccode\u003ee48e919\u003c/code\u003e\u003c/a\u003e bump execa (\u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/1216\"\u003e#1216\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shelljs/shelljs/commit/67a26e2ccc2c5ffa2610912621ad4de26c93c6cb\"\u003e\u003ccode\u003e67a26e2\u003c/code\u003e\u003c/a\u003e refactor: change how internal errors are handled\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shelljs/shelljs/commit/bfd06fa0967b441c5aecfcb992500b9ee240a267\"\u003e\u003ccode\u003ebfd06fa\u003c/code\u003e\u003c/a\u003e Add -B, -A, and -C options to grep (\u003ca href=\"https://redirect.github.com/shelljs/shelljs/issues/1206\"\u003e#1206\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shelljs/shelljs/commit/3149e09d5fb1c6af74ffc0128f0f7daf18d3c858\"\u003e\u003ccode\u003e3149e09\u003c/code\u003e\u003c/a\u003e refactor: explicit handling for execa errors\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shelljs/shelljs/commit/75d26de5b31f71bc8784e3d9329375e83c7b6d49\"\u003e\u003ccode\u003e75d26de\u003c/code\u003e\u003c/a\u003e fix: cmd is compatible with node 22.10\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/shelljs/shelljs/compare/v0.7.8...v0.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `node-fetch` from 1.7.3 to 3.3.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-fetch/node-fetch/releases\"\u003enode-fetch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.3.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.1...v3.3.2\"\u003e3.3.2\u003c/a\u003e (2023-07-25)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e8b3320d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1735\"\u003e#1735\u003c/a\u003e \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1473\"\u003e#1473\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.0...v3.3.1\"\u003e3.3.1\u003c/a\u003e (2023-03-11)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erelease \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e7b86e94\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.0\u003c/h2\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.10...v3.3.0\"\u003e3.3.0\u003c/a\u003e (2022-11-10)\u003c/h1\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd static Response.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1670\"\u003e#1670\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/55a4870ae5f805d8ff9a890ea2c652c9977e048e\"\u003e55a4870\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.10\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.9...v3.2.10\"\u003e3.2.10\u003c/a\u003e (2022-07-31)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDoS referrer (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1611\"\u003e#1611\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d\"\u003e2880238\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.9\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.8...v3.2.9\"\u003e3.2.9\u003c/a\u003e (2022-07-18)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHeaders:\u003c/strong\u003e don't forward secure headers on protocol change (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1599\"\u003e#1599\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7\"\u003ee87b093\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.8\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.7...v3.2.8\"\u003e3.2.8\u003c/a\u003e (2022-07-12)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003epossibly flaky test (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1523\"\u003e#1523\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/11b703361134340a8361f591d6e3a0bcf6a261fa\"\u003e11b7033\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e\u003ccode\u003e8b3320d\u003c/code\u003e\u003c/a\u003e fix: Remove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e\u003ccode\u003e7b86e94\u003c/code\u003e\u003c/a\u003e fix: release \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8ced5b941cf36d0d7e0c1017aa2a4abcb29ecd89\"\u003e\u003ccode\u003e8ced5b9\u003c/code\u003e\u003c/a\u003e docs: readme - non ESM example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1707\"\u003e#1707\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/71e376b0ca899a30bbda4d45f97ea87502956a62\"\u003e\u003ccode\u003e71e376b\u003c/code\u003e\u003c/a\u003e ci(release): use latest Node LTS (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1697\"\u003e#1697\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e093030b4a6625405a331ddf48bcfd82c079f43d\"\u003e\u003ccode\u003ee093030\u003c/code\u003e\u003c/a\u003e Allow URL class object as an argument for fetch() (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/55a4870ae5f805d8ff9a890ea2c652c9977e048e\"\u003e\u003ccode\u003e55a4870\u003c/code\u003e\u003c/a\u003e feat: add static Response.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1670\"\u003e#1670\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/c071406e193cce13959999982584ff27198e9e4a\"\u003e\u003ccode\u003ec071406\u003c/code\u003e\u003c/a\u003e (1138) - Fixed HTTPResponseError with correct constructor and usage (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1666\"\u003e#1666\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/6f72caa401a8ec574a22058431599ef47c222770\"\u003e\u003ccode\u003e6f72caa\u003c/code\u003e\u003c/a\u003e docs: fix missing comma in example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1623\"\u003e#1623\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d\"\u003e\u003ccode\u003e2880238\u003c/code\u003e\u003c/a\u003e fix: ReDoS referrer (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1611\"\u003e#1611\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7\"\u003e\u003ccode\u003ee87b093\u003c/code\u003e\u003c/a\u003e fix(Headers): don't forward secure headers on protocol change (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1599\"\u003e#1599\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/1.7.3...v3.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~node-fetch-bot\"\u003enode-fetch-bot\u003c/a\u003e, a new releaser for node-fetch since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `uuid` from 3.4.0 to 14.0.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/uuidjs/uuid/releases\"\u003euuid's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev14.0.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.0...v14.0.0\"\u003e14.0.0\u003c/a\u003e (2026-04-19)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eexpect \u003ccode\u003ecrypto\u003c/code\u003e to be global everywhere (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003edrop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/dc4ddb87272ed2843faccd130bcc41d492688bd3\"\u003edc4ddb8\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eexpect \u003ccode\u003ecrypto\u003c/code\u003e to be global everywhere (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/f2c235f93059325fa43e1106e624b5291bb523c4\"\u003ef2c235f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse GITHUB_TOKEN for release-please and enable npm provenance (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/925\"\u003e#925\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/ffa31383e8e4e1f0b4e22e504561272041b8738c\"\u003effa3138\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev13.0.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.0...v13.0.1\"\u003e13.0.1\u003c/a\u003e (2026-04-27)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebackport fix for GHSA-w5hq-g745-h8pq (\u003ca href=\"https://github.com/uuidjs/uuid/commit/9d27ddf7046ce496ef39569ff84d948eeff9cb2a\"\u003e9d27ddf\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev13.0.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v12.0.0...v13.0.0\"\u003e13.0.0\u003c/a\u003e (2025-09-08)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/bce9d72a3ae5b9a3dcd8eb21ef6d1820288a427a\"\u003ebce9d72\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev12.0.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v12.0.0...v12.0.1\"\u003e12.0.1\u003c/a\u003e (2026-04-29)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebackport fix for GHSA-w5hq-g745-h8pq (\u003ca href=\"https://github.com/uuidjs/uuid/commit/3d61d6ac1f782cf6b1dd8661c60f11722cd49a0d\"\u003e3d61d6a\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev12.0.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.1.0...v12.0.0\"\u003e12.0.0\u003c/a\u003e (2025-09-05)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/uuidjs/uuid/blob/main/CHANGELOG.md\"\u003euuid's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.0...v14.0.0\"\u003e14.0.0\u003c/a\u003e (2026-04-19)\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixes \u003ca href=\"https://github.com/uuidjs/uuid/security/advisories/GHSA-w5hq-g745-h8pq\"\u003eGHSA-w5hq-g745-h8pq\u003c/a\u003e: \u003ccode\u003ev3()\u003c/code\u003e, \u003ccode\u003ev5()\u003c/code\u003e, and \u003ccode\u003ev6()\u003c/code\u003e did not validate that writes would remain within the bounds of a caller-supplied buffer, allowing out-of-bounds writes when an invalid \u003ccode\u003eoffset\u003c/code\u003e was provided. A \u003ccode\u003eRangeError\u003c/code\u003e is now thrown if \u003ccode\u003eoffset \u0026lt; 0\u003c/code\u003e or \u003ccode\u003eoffset + 16 \u0026gt; buf.length\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ecrypto\u003c/code\u003e is now expected to be globally defined (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupgrade minimum supported TypeScript version to 5.4.3, in keeping with the project's policy of supporting TypeScript versions released within the last two years\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v12.0.0...v13.0.0\"\u003e13.0.0\u003c/a\u003e (2025-09-08)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/bce9d72a3ae5b9a3dcd8eb21ef6d1820288a427a\"\u003ebce9d72\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.1.0...v12.0.0\"\u003e12.0.0\u003c/a\u003e (2025-09-05)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdate to typescript@5.2 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/887\"\u003e#887\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove CommonJS support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/886\"\u003e#886\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@16 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/883\"\u003e#883\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd node@24 to ci matrix (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/879\"\u003e#879\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/42b6178aa21a593257f0a72abacd220f0b7b8a92\"\u003e42b6178\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@16 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/883\"\u003e#883\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/0f38cf10366ab074f9328ae2021eea04d5f2e530\"\u003e0f38cf1\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove CommonJS support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/886\"\u003e#886\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/ae786e27265f50bcf7cead196c29f1869297c42f\"\u003eae786e2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate to typescript@5.2 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/887\"\u003e#887\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/c7ee40598ed78584d81ab78dffded9fe5ff20b01\"\u003ec7ee405\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimprove v4() performance (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/894\"\u003e#894\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/5fd974c12718c8848035650b69b8948f12ace197\"\u003e5fd974c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erestore node: prefix (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/889\"\u003e#889\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/e1f42a354593093ba0479f0b4047dae82d28c507\"\u003ee1f42a3\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.0.5...v11.1.0\"\u003e11.1.0\u003c/a\u003e (2025-02-19)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/7c1ea087a8149b57380fc8bb7f68c3a215cb6e4b\"\u003e\u003ccode\u003e7c1ea08\u003c/code\u003e\u003c/a\u003e chore(main): release 14.0.0 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/926\"\u003e#926\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/3d2c5b0342f0fcb52a5ac681c3d47c13e7444b34\"\u003e\u003ccode\u003e3d2c5b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/f2c235f93059325fa43e1106e624b5291bb523c4\"\u003e\u003ccode\u003ef2c235f\u003c/code\u003e\u003c/a\u003e fix!: expect \u003ccode\u003ecrypto\u003c/code\u003e to be global everywhere (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/529ef0899f5dd503d2ee90d690585d63d78bc212\"\u003e\u003ccode\u003e529ef08\u003c/code\u003e\u003c/a\u003e chore: upgrade TypeScript and fixup types (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/927\"\u003e#927\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/086fd7976f11433edf9ac80be876b3ad243fe087\"\u003e\u003ccode\u003e086fd79\u003c/code\u003e\u003c/a\u003e chore: update dependencies (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/933\"\u003e#933\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/dc4ddb87272ed2843faccd130bcc41d492688bd3\"\u003e\u003ccode\u003edc4ddb8\u003c/code\u003e\u003c/a\u003e feat!: drop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/0f1f9c9c9cedbae5a1d363d5406c5dfbabe81404\"\u003e\u003ccode\u003e0f1f9c9\u003c/code\u003e\u003c/a\u003e chore: switch to Biome for parsing and linting (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/932\"\u003e#932\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/e2879e64bf125add903c1eff6e0860542c605013\"\u003e\u003ccode\u003ee2879e6\u003c/code\u003e\u003c/a\u003e chore: use maintained version of npm-run-all (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/930\"\u003e#930\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/ffa31383e8e4e1f0b4e22e504561272041b8738c\"\u003e\u003ccode\u003effa3138\u003c/code\u003e\u003c/a\u003e fix: Use GITHUB_TOKEN for release-please and enable npm provenance (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/925\"\u003e#925\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/0423d49df2dc8efc300c804731d25f4d7e0fccc4\"\u003e\u003ccode\u003e0423d49\u003c/code\u003e\u003c/a\u003e docs: remove obsolete v1 option notes (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/915\"\u003e#915\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/uuidjs/uuid/compare/v3.4.0...v14.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for uuid since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `node-sass` from 4.14.1 to 9.0.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sass/node-sass/releases\"\u003enode-sass's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev9.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNode 20 support by \u003ca href=\"https://github.com/nschonni\"\u003e\u003ccode\u003e@​nschonni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/sass/node-sass/pull/3355\"\u003esass/node-sass#3355\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBreaking changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for Node 14 (\u003ca href=\"https://github.com/nschonni\"\u003e\u003ccode\u003e@​nschonni\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eSupported Environments\u003c/h2\u003e\n\u003ctable\u003e\n\u003cthead\u003e\n\u003ctr\u003e\n\u003cth\u003eOS\u003c/th\u003e\n\u003cth\u003eArchitecture\u003c/th\u003e\n\u003cth\u003eNode\u003c/th\u003e\n\u003c/tr\u003e\n\u003c/thead\u003e\n\u003ctbody\u003e\n\u003ctr\u003e\n\u003ctd\u003eWindows\u003c/td\u003e\n\u003ctd\u003ex86 \u0026amp; x64\u003c/td\u003e\n\u003ctd\u003e16, 18, 19, 20\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003eOSX\u003c/td\u003e\n\u003ctd\u003ex64\u003c/td\u003e\n\u003ctd\u003e16, 18, 19, 20\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003eLinux*\u003c/td\u003e\n\u003ctd\u003ex64\u003c/td\u003e\n\u003ctd\u003e16, 18, 19, 20\u003c/td\u003e\n\u003c/tr\u003e\n\u003ctr\u003e\n\u003ctd\u003eAlpine Linux\u003c/td\u003e\n\u003ctd\u003ex64\u003c/td\u003e\n\u003ctd\u003e16, 18, 19, 20\u003c/td\u003e\n\u003c/tr\u003e\n\u003c/tbody\u003e\n\u003c/table\u003e\n\u003cp\u003e*Linux support refers to major distributions like Ubuntu, and Debian\u003c/p\u003e\n\u003ch2\u003ev8.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix binaries being partially downloaded by \u003ca href=\"https://github.com/xzyfer\"\u003e\u003ccode\u003e@​xzyfer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/sass/node-sass/pull/3313\"\u003esass/node-sass#3313\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump node-gyp and nan for node 19 support by \u003ca href=\"https://github.com/xzyfer\"\u003e\u003ccode\u003e@​xzyfer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/sass/node-sass/pull/3314\"\u003esass/node-sass#3314\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: Node 18 and 19 support and drop Node 17 by \u003ca href=\"https://github.com/nschonni\"\u003e\u003ccode\u003e@​nschonni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/sass/node-sass/pull/3257\"\u003esass/node-sass#3257\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBreaking changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for Node 12 (\u003ca href=\"https://github.com/nschonni\"\u003e\u003ccode\u003e@​nschonni\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDrop support for Node 17 (\u003ca href=\"https://github.com/nschonni\"\u003e\u003ccode\u003e@​nschonni\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSet \u003ccode\u003erejectUnauthorized\u003c/code\u003e to \u003ccode\u003etrue\u003c/code\u003e by default (\u003ca href=\"https://github.com/scott-ut\"\u003e\u003ccode\u003e@​scott-ut\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/sass/node-sass/issues/3149\"\u003e#3149\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for Node 18 (\u003ca href=\"https://github.com/nschonni\"\u003e\u003ccode\u003e@​nschonni\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for Node 19 (\u003ca href=\"https://github.com/nschonni\"\u003e\u003ccode\u003e@​nschonni\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReplace \u003ccode\u003erequest\u003c/code\u003e with \u003ccode\u003emake-fetch-happen\u003c/code\u003e (\u003ca href=\"https://github.com/CamilleDrapier\"\u003e\u003ccode\u003e@​CamilleDrapier\u003c/code\u003e\u003c/a\u003e  \u003ca href=\"https://github.com/xzyfer\"\u003e\u003ccode\u003e@​xzyfer\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/sass/node-sass/issues/3193\"\u003e#3193\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/sass/node-sass/issues/3313\"\u003e#3313\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump true-case-path@2.2.1\u003c/li\u003e\n\u003cli\u003eBump node-gyp \u003ca href=\"https://github.com/9\"\u003e\u003ccode\u003e@​9\u003c/code\u003e\u003c/a\u003e.0.0\u003c/li\u003e\n\u003cli\u003eBump nan@^2.17.0\u003c/li\u003e\n\u003cli\u003eBump sass-graph@^4.0.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eMisc\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump various GitHub Actions dependencies (\u003ca href=\"https://github.com/nschonni\"\u003e\u003ccode\u003e@​nschonni\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/node-sass/commit/87f38998da059d13a87a7fc9f3d29d5728128e2c\"\u003e\u003ccode\u003e87f3899\u003c/code\u003e\u003c/a\u003e feat: Node 20 support (\u003ca href=\"https://redirect.github.com/sass/node-sass/issues/3355\"\u003e#3355\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/node-sass/commit/06ae4c70f792287c28bb765811014c7c56012d72\"\u003e\u003ccode\u003e06ae4c7\u003c/code\u003e\u003c/a\u003e build(deps): bump coverallsapp/github-action from 2.0.0 to 2.1.0 (\u003ca href=\"https://redirect.github.com/sass/node-sass/issues/3350\"\u003e#3350\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/node-sass/commit/e069f7356b76b286a51d0c4a48f93fb14bd0bdfc\"\u003e\u003ccode\u003ee069f73\u003c/code\u003e\u003c/a\u003e build(deps): bump coverallsapp/github-action from 1.2.0 to 2.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/node-sass/commit/c34837d7bfab1ef86a8d9989e83602895373a0a0\"\u003e\u003ccode\u003ec34837d\u003c/code\u003e\u003c/a\u003e build(deps): bump coverallsapp/github-action from 1.1.3 to 1.2.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/node-sass/commit/ee13eb9c62449d1e535189a063cbdd15583ebf32\"\u003e\u003ccode\u003eee13eb9\u003c/code\u003e\u003c/a\u003e 8.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/node-sass/commit/98e75b39e22ba2fdf7726eefa23ba5f7247540c4\"\u003e\u003ccode\u003e98e75b3\u003c/code\u003e\u003c/a\u003e feat: Node 18 and 19 support and drop Node 17 (\u003ca href=\"https://redirect.github.com/sass/node-sass/issues/3257\"\u003e#3257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/node-sass/commit/e9bb866b0cfec9f9f98c370be325289d25be5c62\"\u003e\u003ccode\u003ee9bb866\u003c/code\u003e\u003c/a\u003e Bump node-gyp and nan for node 19 support (\u003ca href=\"https://redirect.github.com/sass/node-sass/issues/3314\"\u003e#3314\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/node-sass/commit/ab7840b335d58f59731315354f2ea18d6bdf8fd6\"\u003e\u003ccode\u003eab7840b\u003c/code\u003e\u003c/a\u003e Fix binaries being partially downloaded (\u003ca href=\"https://redirect.github.com/sass/node-sass/issues/3313\"\u003e#3313\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/node-sass/commit/d595abf2ed3e8013509c04b1205005e95d3fcc2e\"\u003e\u003ccode\u003ed595abf\u003c/code\u003e\u003c/a\u003e 7.0.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sass/node-sass/commit/3b556c1c9a79e87fd54fdaa9a1a18741a7616025\"\u003e\u003ccode\u003e3b556c1\u003c/code\u003e\u003c/a\u003e 7.0.2\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sass/node-sass/compare/v4.14.1...v9.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `webpack-bundle-analyzer` from 2.13.1 to 5.3.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/webpack/webpack-bundle-analyzer/releases\"\u003ewebpack-bundle-analyzer's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.3.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eUse new ECMA features in code. (by \u003ca href=\"https://github.com/alexander-akait\"\u003e\u003ccode\u003e@​alexander-akait\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/713\"\u003e#713\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded \u003ccode\u003epropTypes\u003c/code\u003e to client components. (by \u003ca href=\"https://github.com/alexander-akait\"\u003e\u003ccode\u003e@​alexander-akait\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/713\"\u003e#713\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix a race condition in \u003ccode\u003ewriteStats\u003c/code\u003e that could lead to incorrect content in \u003ccode\u003estats.json\u003c/code\u003e. (by \u003ca href=\"https://github.com/alexander-akait\"\u003e\u003ccode\u003e@​alexander-akait\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/713\"\u003e#713\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eApply \u003ccode\u003eprettier\u003c/code\u003e and update dependencies. (by \u003ca href=\"https://github.com/alexander-akait\"\u003e\u003ccode\u003e@​alexander-akait\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/713\"\u003e#713\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/webpack/webpack-bundle-analyzer/blob/main/CHANGELOG.md\"\u003ewebpack-bundle-analyzer's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.3.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eUse new ECMA features in code. (by \u003ca href=\"https://github.com/alexander-akait\"\u003e\u003ccode\u003e@​alexander-akait\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/713\"\u003e#713\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded \u003ccode\u003epropTypes\u003c/code\u003e to client components. (by \u003ca href=\"https://github.com/alexander-akait\"\u003e\u003ccode\u003e@​alexander-akait\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/713\"\u003e#713\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix a race condition in \u003ccode\u003ewriteStats\u003c/code\u003e that could lead to incorrect content in \u003ccode\u003estats.json\u003c/code\u003e. (by \u003ca href=\"https://github.com/alexander-akait\"\u003e\u003ccode\u003e@​alexander-akait\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/713\"\u003e#713\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eApply \u003ccode\u003eprettier\u003c/code\u003e and update dependencies. (by \u003ca href=\"https://github.com/alexander-akait\"\u003e\u003ccode\u003e@​alexander-akait\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/713\"\u003e#713\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.2.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eNew Feature\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for Zstandard compression (\u003ca href=\"https://redirect.github.com/webpack-contrib/webpack-bundle-analyzer/pull/693\"\u003e#693\u003c/a\u003e by \u003ca href=\"https://github.com/bjohansebas\"\u003e\u003ccode\u003e@​bjohansebas\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eInternal\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ePrettier applied to the code base (\u003ca href=\"https://redirect.github.com/webpack-contrib/webpack-bundle-analyzer/pull/694\"\u003e#693\u003c/a\u003e by \u003ca href=\"https://github.com/alexander-akait\"\u003e\u003ccode\u003e@​alexander-akait\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdate \u003ccode\u003esirv\u003c/code\u003e dependency (\u003ca href=\"https://redirect.github.com/webpack-contrib/webpack-bundle-analyzer/pull/692\"\u003e#692\u003c/a\u003e by \u003ca href=\"https://github.com/bjohansebas\"\u003e\u003ccode\u003e@​bjohansebas\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdate \u003ccode\u003ews\u003c/code\u003e dependency (\u003ca href=\"https://redirect.github.com/webpack-contrib/webpack-bundle-analyzer/pull/691\"\u003e#691\u003c/a\u003e by \u003ca href=\"https://github.com/bjohansebas\"\u003e\u003ccode\u003e@​bjohansebas\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.1.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBug Fix\u003c/strong\u003e\n\u003cul\u003e\n\u003cli\u003eFix tooltip styling in dark mode when using CSS Modules (\u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/688\"\u003e#688\u003c/a\u003e by \u003ca href=\"https://github.com/theEquinoxDev\"\u003e\u003ccode\u003e@​theEquinoxDev\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAvoid parse failures for bundles with IIFE (\u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/685\"\u003e#685\u003c/a\u003e by \u003ca href=\"https://github.com/hai-x\"\u003e\u003ccode\u003e@​hai-x\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.1.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eBug Fix\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ePrevent \u003ccode\u003eTypeError\u003c/code\u003e when \u003ccode\u003eassets\u003c/code\u003e or \u003ccode\u003emodules\u003c/code\u003e are undefined in \u003ccode\u003eanalyzer.js\u003c/code\u003e\n(\u003ca href=\"https://redirect.github.com/webpack-contrib/webpack-bundle-analyzer/pull/679\"\u003e#679\u003c/a\u003e by \u003ca href=\"https://github.com/Srushti-33\"\u003e\u003ccode\u003e@​Srushti-33\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eNew Feature\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd optional dark/light mode toggle (\u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/pull/683\"\u003e#683\u003c/a\u003e by \u003ca href=\"https://github.com/theEquinoxDev\"\u003e\u003ccode\u003e@​theEquinoxDev\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBug Fix\u003c/strong\u003e\n\u003cul\u003e\n\u003cli\u003eRestore \u003ccode\u003e@babel/plugin-transform-class-properties\u003c/code\u003e to fix HTML report (\u003ca href=\"https://redirect.github.com/webpack-contrib/webpack-bundle-analyzer/pull/682\"\u003e#682\u003c/a\u003e by \u003ca href=\"https://github.com/valscion\"\u003e\u003ccode\u003e@​valscion\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eBreaking Change\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRemove explicit support for Node versions below 20.9.0 (\u003ca href=\"https://redirect.github.com/webpack-contrib/webpack-bundle-analyzer/pull/676\"\u003e#676\u003c/a\u003e by \u003ca href=\"https://github.com/valscion\"\u003e\u003ccode\u003e@​valscion\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eImprovement\u003c/strong\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/webpack/webpack-bundle-analyzer/commit/9ba43c79a0113d3fd35dbcc55a637ffebaad7581\"\u003e\u003ccode\u003e9ba43c7\u003c/code\u003e\u003c/a\u003e chore(release): new release (\u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/issues/714\"\u003e#714\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/webpack/webpack-bundle-analyzer/commit/8a91940b09aee67718c26cb57e4f0f10d37ba243\"\u003e\u003ccode\u003e8a91940\u003c/code\u003e\u003c/a\u003e ci: trusted publishers (\u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/issues/713\"\u003e#713\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/webpack/webpack-bundle-analyzer/commit/b3f44b0de81eb7109f1691a1258fa781f0b0e193\"\u003e\u003ccode\u003eb3f44b0\u003c/code\u003e\u003c/a\u003e fix: race condition in \u003ccode\u003ewriteStats\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/webpack/webpack-bundle-analyzer/issues/711\"\u003e#711\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://...\n\n_Description has been truncated_","html_url":"https://github.com/sumonst21/strapi/pull/6","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/sumonst21%2Fstrapi/issues/6","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/6/packages"}},{"old_version":"2.6.12","new_version":"3.3.2","update_type":"major","path":"the dev-dependencies-node-fetch group","pr_created_at":"2026-05-02T00:29:14.000Z","version_change":"2.6.12 → 3.3.2","issue":{"uuid":"4367255374","node_id":"PR_kwDOC3mYnc7Xj5wW","number":678,"state":"closed","title":"build(deps-dev): bump node-fetch from 2.6.12 to 3.3.2 in the dev-dependencies-node-fetch group","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-02T05:32:41.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-02T00:29:14.000Z","updated_at":"2026-05-02T05:32:49.000Z","time_to_close":18207,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps-dev)","packages":[{"name":"node-fetch","old_version":"2.6.12","new_version":"3.3.2","repository_url":"https://github.com/node-fetch/node-fetch"}],"path":"the dev-dependencies-node-fetch group","ecosystem":"npm"},"body":"Bumps the dev-dependencies-node-fetch group with 1 update: [node-fetch](https://github.com/node-fetch/node-fetch).\n\nUpdates `node-fetch` from 2.6.12 to 3.3.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-fetch/node-fetch/releases\"\u003enode-fetch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.3.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.1...v3.3.2\"\u003e3.3.2\u003c/a\u003e (2023-07-25)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e8b3320d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1735\"\u003e#1735\u003c/a\u003e \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1473\"\u003e#1473\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.0...v3.3.1\"\u003e3.3.1\u003c/a\u003e (2023-03-11)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erelease \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e7b86e94\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.0\u003c/h2\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.10...v3.3.0\"\u003e3.3.0\u003c/a\u003e (2022-11-10)\u003c/h1\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd static Response.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1670\"\u003e#1670\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/55a4870ae5f805d8ff9a890ea2c652c9977e048e\"\u003e55a4870\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.10\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.9...v3.2.10\"\u003e3.2.10\u003c/a\u003e (2022-07-31)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDoS referrer (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1611\"\u003e#1611\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d\"\u003e2880238\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.9\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.8...v3.2.9\"\u003e3.2.9\u003c/a\u003e (2022-07-18)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHeaders:\u003c/strong\u003e don't forward secure headers on protocol change (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1599\"\u003e#1599\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7\"\u003ee87b093\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.8\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.7...v3.2.8\"\u003e3.2.8\u003c/a\u003e (2022-07-12)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003epossibly flaky test (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1523\"\u003e#1523\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/11b703361134340a8361f591d6e3a0bcf6a261fa\"\u003e11b7033\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e\u003ccode\u003e8b3320d\u003c/code\u003e\u003c/a\u003e fix: Remove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e\u003ccode\u003e7b86e94\u003c/code\u003e\u003c/a\u003e fix: release \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8ced5b941cf36d0d7e0c1017aa2a4abcb29ecd89\"\u003e\u003ccode\u003e8ced5b9\u003c/code\u003e\u003c/a\u003e docs: readme - non ESM example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1707\"\u003e#1707\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/71e376b0ca899a30bbda4d45f97ea87502956a62\"\u003e\u003ccode\u003e71e376b\u003c/code\u003e\u003c/a\u003e ci(release): use latest Node LTS (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1697\"\u003e#1697\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e093030b4a6625405a331ddf48bcfd82c079f43d\"\u003e\u003ccode\u003ee093030\u003c/code\u003e\u003c/a\u003e Allow URL class object as an argument for fetch() (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/55a4870ae5f805d8ff9a890ea2c652c9977e048e\"\u003e\u003ccode\u003e55a4870\u003c/code\u003e\u003c/a\u003e feat: add static Response.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1670\"\u003e#1670\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/c071406e193cce13959999982584ff27198e9e4a\"\u003e\u003ccode\u003ec071406\u003c/code\u003e\u003c/a\u003e (1138) - Fixed HTTPResponseError with correct constructor and usage (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1666\"\u003e#1666\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/6f72caa401a8ec574a22058431599ef47c222770\"\u003e\u003ccode\u003e6f72caa\u003c/code\u003e\u003c/a\u003e docs: fix missing comma in example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1623\"\u003e#1623\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d\"\u003e\u003ccode\u003e2880238\u003c/code\u003e\u003c/a\u003e fix: ReDoS referrer (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1611\"\u003e#1611\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7\"\u003e\u003ccode\u003ee87b093\u003c/code\u003e\u003c/a\u003e fix(Headers): don't forward secure headers on protocol change (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1599\"\u003e#1599\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v2.6.12...v3.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=node-fetch\u0026package-manager=npm_and_yarn\u0026previous-version=2.6.12\u0026new-version=3.3.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/fannheyward/coc-xml/pull/678","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/fannheyward%2Fcoc-xml/issues/678","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/678/packages"}},{"old_version":"3.2.6","new_version":"3.3.2","update_type":"minor","path":null,"pr_created_at":"2026-05-01T22:11:48.000Z","version_change":"3.2.6 → 3.3.2","issue":{"uuid":"4366887964","node_id":"PR_kwDOIaGlms7XiwU7","number":298,"state":"open","title":"Bump node-fetch from 3.2.6 to 3.3.2","user":"dependabot[bot]","labels":["dependencies","Stale","javascript"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-01T22:11:48.000Z","updated_at":"2026-06-01T00:24:24.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"node-fetch","old_version":"3.2.6","new_version":"3.3.2","repository_url":"https://github.com/node-fetch/node-fetch"}],"path":null,"ecosystem":"npm"},"body":"Bumps [node-fetch](https://github.com/node-fetch/node-fetch) from 3.2.6 to 3.3.2.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-fetch/node-fetch/releases\"\u003enode-fetch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.3.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.1...v3.3.2\"\u003e3.3.2\u003c/a\u003e (2023-07-25)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e8b3320d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1735\"\u003e#1735\u003c/a\u003e \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1473\"\u003e#1473\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.0...v3.3.1\"\u003e3.3.1\u003c/a\u003e (2023-03-11)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erelease \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e7b86e94\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.0\u003c/h2\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.10...v3.3.0\"\u003e3.3.0\u003c/a\u003e (2022-11-10)\u003c/h1\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd static Response.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1670\"\u003e#1670\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/55a4870ae5f805d8ff9a890ea2c652c9977e048e\"\u003e55a4870\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.10\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.9...v3.2.10\"\u003e3.2.10\u003c/a\u003e (2022-07-31)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDoS referrer (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1611\"\u003e#1611\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d\"\u003e2880238\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.9\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.8...v3.2.9\"\u003e3.2.9\u003c/a\u003e (2022-07-18)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHeaders:\u003c/strong\u003e don't forward secure headers on protocol change (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1599\"\u003e#1599\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7\"\u003ee87b093\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.8\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.7...v3.2.8\"\u003e3.2.8\u003c/a\u003e (2022-07-12)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003epossibly flaky test (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1523\"\u003e#1523\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/11b703361134340a8361f591d6e3a0bcf6a261fa\"\u003e11b7033\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e\u003ccode\u003e8b3320d\u003c/code\u003e\u003c/a\u003e fix: Remove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e\u003ccode\u003e7b86e94\u003c/code\u003e\u003c/a\u003e fix: release \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8ced5b941cf36d0d7e0c1017aa2a4abcb29ecd89\"\u003e\u003ccode\u003e8ced5b9\u003c/code\u003e\u003c/a\u003e docs: readme - non ESM example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1707\"\u003e#1707\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/71e376b0ca899a30bbda4d45f97ea87502956a62\"\u003e\u003ccode\u003e71e376b\u003c/code\u003e\u003c/a\u003e ci(release): use latest Node LTS (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1697\"\u003e#1697\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e093030b4a6625405a331ddf48bcfd82c079f43d\"\u003e\u003ccode\u003ee093030\u003c/code\u003e\u003c/a\u003e Allow URL class object as an argument for fetch() (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/55a4870ae5f805d8ff9a890ea2c652c9977e048e\"\u003e\u003ccode\u003e55a4870\u003c/code\u003e\u003c/a\u003e feat: add static Response.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1670\"\u003e#1670\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/c071406e193cce13959999982584ff27198e9e4a\"\u003e\u003ccode\u003ec071406\u003c/code\u003e\u003c/a\u003e (1138) - Fixed HTTPResponseError with correct constructor and usage (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1666\"\u003e#1666\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/6f72caa401a8ec574a22058431599ef47c222770\"\u003e\u003ccode\u003e6f72caa\u003c/code\u003e\u003c/a\u003e docs: fix missing comma in example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1623\"\u003e#1623\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d\"\u003e\u003ccode\u003e2880238\u003c/code\u003e\u003c/a\u003e fix: ReDoS referrer (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1611\"\u003e#1611\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7\"\u003e\u003ccode\u003ee87b093\u003c/code\u003e\u003c/a\u003e fix(Headers): don't forward secure headers on protocol change (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1599\"\u003e#1599\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.6...v3.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=node-fetch\u0026package-manager=npm_and_yarn\u0026previous-version=3.2.6\u0026new-version=3.3.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/magnusnosnes/Disentangling_Streptococcus_AMR/pull/298","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/magnusnosnes%2FDisentangling_Streptococcus_AMR/issues/298","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/298/packages"}},{"old_version":"3.2.3","new_version":"3.3.2","update_type":"minor","path":null,"pr_created_at":"2026-05-01T18:47:51.000Z","version_change":"3.2.3 → 3.3.2","issue":{"uuid":"4366102735","node_id":"PR_kwDOHRRhds7XgPkm","number":325,"state":"open","title":"chore(deps-dev): bump node-fetch from 3.2.3 to 3.3.2","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-01T18:47:51.000Z","updated_at":"2026-05-01T18:48:33.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps-dev)","packages":[{"name":"node-fetch","old_version":"3.2.3","new_version":"3.3.2","repository_url":"https://github.com/node-fetch/node-fetch"}],"path":null,"ecosystem":"npm"},"body":"Bumps [node-fetch](https://github.com/node-fetch/node-fetch) from 3.2.3 to 3.3.2.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-fetch/node-fetch/releases\"\u003enode-fetch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.3.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.1...v3.3.2\"\u003e3.3.2\u003c/a\u003e (2023-07-25)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e8b3320d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1735\"\u003e#1735\u003c/a\u003e \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1473\"\u003e#1473\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.0...v3.3.1\"\u003e3.3.1\u003c/a\u003e (2023-03-11)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erelease \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e7b86e94\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.0\u003c/h2\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.10...v3.3.0\"\u003e3.3.0\u003c/a\u003e (2022-11-10)\u003c/h1\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd static Response.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1670\"\u003e#1670\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/55a4870ae5f805d8ff9a890ea2c652c9977e048e\"\u003e55a4870\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.10\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.9...v3.2.10\"\u003e3.2.10\u003c/a\u003e (2022-07-31)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReDoS referrer (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1611\"\u003e#1611\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d\"\u003e2880238\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.9\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.8...v3.2.9\"\u003e3.2.9\u003c/a\u003e (2022-07-18)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHeaders:\u003c/strong\u003e don't forward secure headers on protocol change (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1599\"\u003e#1599\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7\"\u003ee87b093\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.2.8\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.7...v3.2.8\"\u003e3.2.8\u003c/a\u003e (2022-07-12)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003epossibly flaky test (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1523\"\u003e#1523\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/11b703361134340a8361f591d6e3a0bcf6a261fa\"\u003e11b7033\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e\u003ccode\u003e8b3320d\u003c/code\u003e\u003c/a\u003e fix: Remove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e\u003ccode\u003e7b86e94\u003c/code\u003e\u003c/a\u003e fix: release \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8ced5b941cf36d0d7e0c1017aa2a4abcb29ecd89\"\u003e\u003ccode\u003e8ced5b9\u003c/code\u003e\u003c/a\u003e docs: readme - non ESM example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1707\"\u003e#1707\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/71e376b0ca899a30bbda4d45f97ea87502956a62\"\u003e\u003ccode\u003e71e376b\u003c/code\u003e\u003c/a\u003e ci(release): use latest Node LTS (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1697\"\u003e#1697\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e093030b4a6625405a331ddf48bcfd82c079f43d\"\u003e\u003ccode\u003ee093030\u003c/code\u003e\u003c/a\u003e Allow URL class object as an argument for fetch() (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/55a4870ae5f805d8ff9a890ea2c652c9977e048e\"\u003e\u003ccode\u003e55a4870\u003c/code\u003e\u003c/a\u003e feat: add static Response.json (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1670\"\u003e#1670\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/c071406e193cce13959999982584ff27198e9e4a\"\u003e\u003ccode\u003ec071406\u003c/code\u003e\u003c/a\u003e (1138) - Fixed HTTPResponseError with correct constructor and usage (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1666\"\u003e#1666\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/6f72caa401a8ec574a22058431599ef47c222770\"\u003e\u003ccode\u003e6f72caa\u003c/code\u003e\u003c/a\u003e docs: fix missing comma in example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1623\"\u003e#1623\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/28802387292baee467e042e168d92597b5bbbe3d\"\u003e\u003ccode\u003e2880238\u003c/code\u003e\u003c/a\u003e fix: ReDoS referrer (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1611\"\u003e#1611\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e87b093fd678a9ea39c5b17b2a1bdfc4691eedc7\"\u003e\u003ccode\u003ee87b093\u003c/code\u003e\u003c/a\u003e fix(Headers): don't forward secure headers on protocol change (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1599\"\u003e#1599\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.2.3...v3.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=node-fetch\u0026package-manager=npm_and_yarn\u0026previous-version=3.2.3\u0026new-version=3.3.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/tube-sh/website/pull/325","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/tube-sh%2Fwebsite/issues/325","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/325/packages"}},{"old_version":"3.3.0","new_version":"3.3.2","update_type":"patch","path":null,"pr_created_at":"2026-05-01T18:24:55.000Z","version_change":"3.3.0 → 3.3.2","issue":{"uuid":"4365986627","node_id":"PR_kwDOIq5ldM7Xf3Ra","number":276,"state":"open","title":"Bump node-fetch from 3.3.0 to 3.3.2","user":"dependabot[bot]","labels":["dependencies","Stale","javascript"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-01T18:24:55.000Z","updated_at":"2026-06-07T02:02:43.918Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"node-fetch","old_version":"3.3.0","new_version":"3.3.2","repository_url":"https://github.com/node-fetch/node-fetch"}],"path":null,"ecosystem":"npm"},"body":"Bumps [node-fetch](https://github.com/node-fetch/node-fetch) from 3.3.0 to 3.3.2.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-fetch/node-fetch/releases\"\u003enode-fetch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.3.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.1...v3.3.2\"\u003e3.3.2\u003c/a\u003e (2023-07-25)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e8b3320d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1735\"\u003e#1735\u003c/a\u003e \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1473\"\u003e#1473\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.3.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.0...v3.3.1\"\u003e3.3.1\u003c/a\u003e (2023-03-11)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erelease \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e) (\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e7b86e94\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8b3320d2a7c07bce4afc6b2bf6c3bbddda85b01f\"\u003e\u003ccode\u003e8b3320d\u003c/code\u003e\u003c/a\u003e fix: Remove the default connection close header. (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1736\"\u003e#1736\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/7b86e946b02dfdd28f4f8fca3d73a022cbb5ca1e\"\u003e\u003ccode\u003e7b86e94\u003c/code\u003e\u003c/a\u003e fix: release \u0026quot;Allow URL class object as an argument for fetch()\u0026quot; \u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1716\"\u003e#1716\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/8ced5b941cf36d0d7e0c1017aa2a4abcb29ecd89\"\u003e\u003ccode\u003e8ced5b9\u003c/code\u003e\u003c/a\u003e docs: readme - non ESM example (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1707\"\u003e#1707\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/71e376b0ca899a30bbda4d45f97ea87502956a62\"\u003e\u003ccode\u003e71e376b\u003c/code\u003e\u003c/a\u003e ci(release): use latest Node LTS (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1697\"\u003e#1697\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-fetch/node-fetch/commit/e093030b4a6625405a331ddf48bcfd82c079f43d\"\u003e\u003ccode\u003ee093030\u003c/code\u003e\u003c/a\u003e Allow URL class object as an argument for fetch() (\u003ca href=\"https://redirect.github.com/node-fetch/node-fetch/issues/1696\"\u003e#1696\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/node-fetch/node-fetch/compare/v3.3.0...v3.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=node-fetch\u0026package-manager=npm_and_yarn\u0026previous-version=3.3.0\u0026new-version=3.3.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/newale/docs/pull/276","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/newale%2Fdocs/issues/276","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/276/packages"}}]}