…pdates
Bumps the npm_and_yarn group with 12 updates in the / directory:
| Package | From | To |
| --- | --- | --- |
| [@fastify/express](https://github.com/fastify/fastify-express) | `4.0.4` | `4.0.5` |
| [@fastify/static](https://github.com/fastify/fastify-static) | `9.0.0` | `9.1.1` |
| [esbuild](https://github.com/evanw/esbuild) | `0.27.4` | `0.28.1` |
| [fastify](https://github.com/fastify/fastify) | `5.8.2` | `5.8.5` |
| [form-data](https://github.com/form-data/form-data) | `4.0.5` | `4.0.6` |
| [nodemailer](https://github.com/nodemailer/nodemailer) | `8.0.3` | `9.0.1` |
| [samlify](https://github.com/tngan/samlify) | `2.10.2` | `2.13.0` |
| [sanitize-html](https://github.com/apostrophecms/apostrophe/tree/HEAD/packages/sanitize-html) | `2.17.2` | `2.17.4` |
| [tmp](https://github.com/raszi/node-tmp) | `0.2.5` | `0.2.7` |
| [uuid](https://github.com/uuidjs/uuid) | `13.0.0` | `14.0.0` |
| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `7.3.1` | `7.3.5` |
| [ws](https://github.com/websockets/ws) | `8.20.0` | `8.21.0` |
Updates `@fastify/express` from 4.0.4 to 4.0.5
- [Release notes](https://github.com/fastify/fastify-express/releases)
- [Commits](fastify/fastify-express@v4.0.4...v4.0.5)
Updates `@fastify/static` from 9.0.0 to 9.1.1
- [Release notes](https://github.com/fastify/fastify-static/releases)
- [Commits](fastify/fastify-static@v9.0.0...v9.1.1)
Updates `esbuild` from 0.27.4 to 0.28.1
- [Release notes](https://github.com/evanw/esbuild/releases)
- [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md)
- [Commits](evanw/esbuild@v0.27.4...v0.28.1)
Updates `fastify` from 5.8.2 to 5.8.5
- [Release notes](https://github.com/fastify/fastify/releases)
- [Commits](fastify/fastify@v5.8.2...v5.8.5)
Updates `form-data` from 4.0.5 to 4.0.6
- [Changelog](https://github.com/form-data/form-data/blob/master/CHANGELOG.md)
- [Commits](form-data/form-data@v4.0.5...v4.0.6)
Updates `nodemailer` from 8.0.3 to 9.0.1
- [Release notes](https://github.com/nodemailer/nodemailer/releases)
- [Changelog](https://github.com/nodemailer/nodemailer/blob/master/CHANGELOG.md)
- [Commits](nodemailer/nodemailer@v8.0.3...v9.0.1)
Updates `samlify` from 2.10.2 to 2.13.0
- [Release notes](https://github.com/tngan/samlify/releases)
- [Commits](tngan/samlify@v2.10.2...v2.13.0)
Updates `sanitize-html` from 2.17.2 to 2.17.4
- [Changelog](https://github.com/apostrophecms/apostrophe/blob/main/packages/sanitize-html/CHANGELOG.md)
- [Commits](https://github.com/apostrophecms/apostrophe/commits/sanitize-html@2.17.4/packages/sanitize-html)
Updates `tmp` from 0.2.5 to 0.2.7
- [Changelog](https://github.com/raszi/node-tmp/blob/master/CHANGELOG.md)
- [Commits](raszi/node-tmp@v0.2.5...v0.2.7)
Updates `uuid` from 13.0.0 to 14.0.0
- [Release notes](https://github.com/uuidjs/uuid/releases)
- [Changelog](https://github.com/uuidjs/uuid/blob/main/CHANGELOG.md)
- [Commits](uuidjs/uuid@v13.0.0...v14.0.0)
Updates `vite` from 7.3.1 to 7.3.5
- [Release notes](https://github.com/vitejs/vite/releases)
- [Changelog](https://github.com/vitejs/vite/blob/v7.3.5/packages/vite/CHANGELOG.md)
- [Commits](https://github.com/vitejs/vite/commits/v7.3.5/packages/vite)
Updates `ws` from 8.20.0 to 8.21.0
- [Release notes](https://github.com/websockets/ws/releases)
- [Commits](websockets/ws@8.20.0...8.21.0)
Updates `@fastify/reply-from` from 12.6.1 to 12.6.2
- [Release notes](https://github.com/fastify/fastify-reply-from/releases)
- [Commits](fastify/fastify-reply-from@v12.6.1...v12.6.2)
Updates `@opentelemetry/exporter-prometheus` from 0.211.0 to 0.219.0
- [Release notes](https://github.com/open-telemetry/opentelemetry-js/releases)
- [Changelog](https://github.com/open-telemetry/opentelemetry-js/blob/main/CHANGELOG.md)
- [Commits](open-telemetry/opentelemetry-js@experimental/v0.211.0...experimental/v0.219.0)
---
updated-dependencies:
- dependency-name: "@fastify/express"
dependency-version: 4.0.5
dependency-type: direct:production
dependency-group: npm_and_yarn
- dependency-name: "@fastify/static"
dependency-version: 9.1.1
dependency-type: direct:production
dependency-group: npm_and_yarn
- dependency-name: esbuild
dependency-version: 0.28.1
dependency-type: direct:production
dependency-group: npm_and_yarn
- dependency-name: fastify
dependency-version: 5.8.5
dependency-type: direct:production
dependency-group: npm_and_yarn
- dependency-name: form-data
dependency-version: 4.0.6
dependency-type: direct:production
dependency-group: npm_and_yarn
- dependency-name: nodemailer
dependency-version: 9.0.1
dependency-type: direct:production
dependency-group: npm_and_yarn
- dependency-name: samlify
dependency-version: 2.13.0
dependency-type: direct:production
dependency-group: npm_and_yarn
- dependency-name: sanitize-html
dependency-version: 2.17.4
dependency-type: direct:production
dependency-group: npm_and_yarn
- dependency-name: tmp
dependency-version: 0.2.7
dependency-type: direct:production
dependency-group: npm_and_yarn
- dependency-name: uuid
dependency-version: 14.0.0
dependency-type: direct:production
dependency-group: npm_and_yarn
- dependency-name: vite
dependency-version: 7.3.5
dependency-type: direct:production
dependency-group: npm_and_yarn
- dependency-name: ws
dependency-version: 8.21.0
dependency-type: direct:production
dependency-group: npm_and_yarn
- dependency-name: "@fastify/reply-from"
dependency-version: 12.6.2
dependency-type: indirect
dependency-group: npm_and_yarn
- dependency-name: "@opentelemetry/exporter-prometheus"
dependency-version: 0.219.0
dependency-type: indirect
dependency-group: npm_and_yarn
...
Signed-off-by: dependabot[bot] <support@github.com>
Bumps the npm_and_yarn group with 12 updates in the / directory:
4.0.44.0.59.0.09.1.10.27.40.28.15.8.25.8.54.0.54.0.68.0.39.0.12.10.22.13.02.17.22.17.40.2.50.2.713.0.014.0.07.3.17.3.58.20.08.21.0Updates
@fastify/expressfrom 4.0.4 to 4.0.5Release notes
Sourced from @fastify/express's releases.
Commits
f52f447Bumped v4.0.5c4e49b5Merge commit from fork674020fMerge commit from fork96eb39bci: add lock-threads workflow (#188)65ddc99build(deps-dev): bump neostandard from 0.12.2 to 0.13.0 (#187)2746f1fbuild(deps): bump fastify/workflows/.github/workflows/plugins-ci.yml (#185)cce14b1chore(license): standardise license notice (#182)70a8094build(deps-dev): bump c8 from 10.1.3 to 11.0.0 (#183)6f627c6ci: remove stale.yml (#181)fa4a726build(deps): bump express from 4.22.1 to 5.2.1 (#179)Maintainer changes
This version was pushed to npm by climba03003, a new releaser for
@fastify/expresssince your current version.Updates
@fastify/staticfrom 9.0.0 to 9.1.1Release notes
Sourced from @fastify/static's releases.
Commits
48b136fBumped v9.1.1cc7b7f7Merge commit from fork9921faaMerge commit from fork4183d2dci: add lock-threads workflow (#570)a3a8cd6Bumped v9.1.08423c80build(deps): bump fastify/workflows/.github/workflows/plugins-ci.yml (#566)475dce1chore: upgrade c8 to v11.0.0 and improvements test (#564)3ff0f39fix: sendFile ignoring option overrides in some cases (#559)663baa7chore(license): standardise license notice (#560)51bb66echore: update syntax typescript (#558)Updates
esbuildfrom 0.27.4 to 0.28.1Release notes
Sourced from esbuild's releases.
... (truncated)
Changelog
Sourced from esbuild's changelog.
... (truncated)
Commits
bb9db84publish 0.28.1 to npm9ff053esecurity: add integrity checks to the Deno API0a9bf21enforce non-negative size in gzip parsere2a1a71security: forbid\\in local dev server requests83a2cbffix #4482: don't inlineusingdeclarations308ad74fix #4471: renaming of nestedvardeclarationsf013f5ffix some typosaafd6e4chore: fix some minor issues in comments (#4462)15300c3follow up: cjs evaluation fixes1bda0c3fix #4461, fix #4467: esm evaluation fixesUpdates
fastifyfrom 5.8.2 to 5.8.5Release notes
Sourced from fastify's releases.
... (truncated)
Commits
3983cceBumped v5.8.53ce3ae6Merge commit from forkb06a196docs(ecosystem): add@pompelmi/fastify-plugin(#6610)909c5d5chore: Bump actions/dependency-review-action from 4.8.3 to 4.9.0 (#6630)4db21a3chore: Bump borp from 0.21.0 to 1.0.0 (#6633)0f4e544chore: Bump markdownlint-cli2 from 0.21.0 to 0.22.0 (#6632)33a2fcdchore: Bump pnpm/action-setup from 4.2.0 to 5.0.0 (#6629)fd35d82ci: reduce cron schedules from daily/weekly to monthly (#6623)8dee9befix: restore trustProxy function for number and string types, add null check ...d457aedchore: upgrade to typescript v6.0.2 (#6605)Updates
form-datafrom 4.0.5 to 4.0.6Changelog
Sourced from form-data's changelog.
Commits
64190dbv4.0.692ae0eb[Deps] updatehasown,mime-typesf31d21e[Dev Deps] update@ljharb/eslint-config,auto-changelog,tape8dff42c[Fix] escape CR, LF, and"in field names and filenames67b0f65[Dev Deps] updatejs-randomness-predictorUpdates
nodemailerfrom 8.0.3 to 9.0.1Release notes
Sourced from nodemailer's releases.
... (truncated)
Changelog
Sourced from nodemailer's changelog.
... (truncated)
Commits
69cf625chore(master): release 9.0.1 (#1828)a82e060fix: enforce disableFileAccess/disableUrlAccess for raw message option4e58450chore: update dev dependencies541f5fdchore(master): release 9.0.0 (#1827)0c080fbfix: replace deprecated url.parse with a WHATWG URL wrapper6a947acfix!: validate TLS certificates by default when fetching remote contente3b1bdachore(master): release 8.0.11 (#1826)4358cafrefactor: remove dead checks flagged by Code Quality analysiscf5195cchore: harden workflow token permissions and update GitHub Actions067aebefix: parse Ethereal response props without polynomial regex backtrackingUpdates
samlifyfrom 2.10.2 to 2.13.0Release notes
Sourced from samlify's releases.
Commits
3230b2bchore: bump version to 2.13.0b37a65cfix: escape XML element text in replaceTagsByValue to prevent SAML attribute ...0235cabfeat: per-request AssertionConsumerServiceIndex for createLoginRequest (close...a3910b1feat: support RSASSA-PSS signature algorithms (closes #624) (#625)8f1cc8bfeat: support elementsOrder option on IdP metadata (closes #429) (#622)c393d81fix: invoke customTagReplacement even without explicit template (closes #549)...ee738ccfeat: support tagPrefix.protocol and tagPrefix.assertion on IdP (closes #388)...1c2b9fafeat: per-request ForceAuthn for createLoginRequest (closes #359) (#618)803acc1fix: default signatureConfig for SP when wantMessageSigned is true (closes #4...3ee2bc6fix: surface SP/IdP signing flags in ERR_METADATA_CONFLICT_REQUEST_SIGNED_FLA...Updates
sanitize-htmlfrom 2.17.2 to 2.17.4Changelog
Sourced from sanitize-html's changelog.
Commits
e9b0ab0release only (changelogs formatted) (#5408)f03fa5bLatest security merge (#5407)96cf174For release only (#5381)7ca2d16Merge commit from fork297a422Bump dependencies (#5376)Updates
tmpfrom 0.2.5 to 0.2.7Commits
8ea1f37Bump up the version8f24f78Merge commit from forkce787f3Reject non-string prefix, postfix, template41f7159Bump up the versionefa4a06Merge commit from fork7ef2728Check for relative valuesUpdates
uuidfrom 13.0.0 to 14.0.0Release notes
Sourced from uuid's releases.
Changelog
Sourced from uuid's changelog.
Commits