Sourced from express-rate-limit's releases.

v7.5.0

Added

• Implemented the combined RateLimit header according to the eighth draft of the IETF RateLimit header specificiation. Enable by setting standardHeaders: 'draft-8'.
• Added a new identifier option, used as the name for the quota policy in the draft-8 headers.
• Added a new headersDraftVersion validation check to identifies cases where an unsupported version string is passed to the standardHeaders option.

---

You can view the full changelog here.

v7.4.1

Fixed

• Made the passOnStoreError return after calling next() rather than continuing execution.

---

You can view the full changelog here.

v7.4.0

Added

• Added passOnStoreError option to allow a way to "fail open" in the event of a backend error.

---

You can view the full changelog here.

v7.3.1

Fixed

• Changed error displayed for the creationStack validation check when a store with localKeys set to false is used.
• Improved documentation for the creationStack check.

---

You can view the full changelog here.

v7.3.0

Added

• Added a new unsharedStore validation check that identifies cases where a single store instance is shared across multiple limiters.

---

You can view the full changelog here.

... (truncated)

• fe46b43 7.5.0
• 919bb8a docs: add changelog for v7.5.0
• 69a1c20 feat(headers): implement ietf draft-8 (#486)
• 413995b build(deps): bump cookie, express and socket.io (#483)
• eaea95b 7.4.1
• 3a2fdba fix: return after calling next() when passOnStoreError is used (#482)
• 53f3aac build(deps): bump body-parser and express (#480)
• f18932c build(deps-dev): bump axios from 1.6.2 to 1.7.5 (#477)
• 00458ea build(deps-dev): bump webpack from 5.76.3 to 5.94.0 (#476)
• 9d7c8cf build(deps): bump ws, engine.io and socket.io-adapter (#474)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)