Skip to content

Commit aea78e3

Browse files
ananzhananzh
authored
[1.3][CVE-2024-29041] Bump express from 4.18.2 to 4.19.2 (#7738)
Issue Resolve: CVE-2024-29041 Signed-off-by: Anan Zhuang <ananzh@amazon.com>
1 parent 41e024d commit aea78e3

File tree

2 files changed

+26
-21
lines changed

2 files changed

+26
-21
lines changed

package.json

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -93,7 +93,7 @@
9393
"chromedriver/**/axios": "^0.27.2",
9494
"chromedriver/**/debug": "^4.3.1",
9595
"**/ejs": "^3.1.6",
96-
"**/express": "^4.18.0",
96+
"**/express": "^4.19.2",
9797
"**/flat": "^5.0.2",
9898
"**/follow-redirects": "^1.15.6",
9999
"**/front-matter": "^4.0.2",

yarn.lock

Lines changed: 25 additions & 20 deletions
Original file line numberDiff line numberDiff line change
@@ -5194,21 +5194,21 @@ bn.js@^5.0.0, bn.js@^5.2.1:
51945194
resolved "https://registry.yarnpkg.com/bn.js/-/bn.js-5.2.1.tgz#0bc527a6a0d18d0aa8d5b0538ce4a77dccfa7b70"
51955195
integrity sha512-eXRvHzWyYPBuB4NBy0cmYQjGitUrtqwbvlzP3G6VFnNRbsZQIxQ10PbKKHt8gZ/HW/D/747aDl+QkDqg3KQLMQ==
51965196

5197-
body-parser@1.20.1:
5198-
version "1.20.1"
5199-
resolved "https://registry.yarnpkg.com/body-parser/-/body-parser-1.20.1.tgz#b1812a8912c195cd371a3ee5e66faa2338a5c668"
5200-
integrity sha512-jWi7abTbYwajOytWCQc37VulmWiRae5RyTpaCyDcS5/lMdtwSz5lOpDE67srw/HYe35f1z3fDQw+3txg7gNtWw==
5197+
body-parser@1.20.2:
5198+
version "1.20.2"
5199+
resolved "https://registry.yarnpkg.com/body-parser/-/body-parser-1.20.2.tgz#6feb0e21c4724d06de7ff38da36dad4f57a747fd"
5200+
integrity sha512-ml9pReCu3M61kGlqoTm2umSXTlRTuGTx0bfYj+uIUKKYycG5NtSbeetV3faSU6R7ajOPw0g/J1PvK4qNy7s5bA==
52015201
dependencies:
52025202
bytes "3.1.2"
5203-
content-type "~1.0.4"
5203+
content-type "~1.0.5"
52045204
debug "2.6.9"
52055205
depd "2.0.0"
52065206
destroy "1.2.0"
52075207
http-errors "2.0.0"
52085208
iconv-lite "0.4.24"
52095209
on-finished "2.4.1"
52105210
qs "6.11.0"
5211-
raw-body "2.5.1"
5211+
raw-body "2.5.2"
52125212
type-is "~1.6.18"
52135213
unpipe "1.0.0"
52145214

@@ -6690,6 +6690,11 @@ content-type@~1.0.4:
66906690
resolved "https://registry.yarnpkg.com/content-type/-/content-type-1.0.4.tgz#e138cc75e040c727b1966fe5e5f8c9aee256fe3b"
66916691
integrity sha512-hIP3EEPs8tB9AT1L+NUqtwOAps4mk2Zob89MWXMHjHWg9milF/j4osnnQLXBCBFBk/tvIG/tUc9mOUJiPBhPXA==
66926692

6693+
content-type@~1.0.5:
6694+
version "1.0.5"
6695+
resolved "https://registry.yarnpkg.com/content-type/-/content-type-1.0.5.tgz#8b773162656d1d1086784c8f23a54ce6d73d7918"
6696+
integrity sha512-nTjqfcBFEipKdXCv4YDQWCfmcLZKm81ldF0pAopTvyrFGVbcR6P/VAAd5G7N+0tTr8QqiU0tFadD6FK4NtJwOA==
6697+
66936698
content@4.x.x:
66946699
version "4.0.5"
66956700
resolved "https://registry.yarnpkg.com/content/-/content-4.0.5.tgz#bc547deabc889ab69bce17faf3585c29f4c41bf2"
@@ -6714,10 +6719,10 @@ cookie-signature@1.0.6:
67146719
resolved "https://registry.yarnpkg.com/cookie-signature/-/cookie-signature-1.0.6.tgz#e303a882b342cc3ee8ca513a79999734dab3ae2c"
67156720
integrity sha1-4wOogrNCzD7oylE6eZmXNNqzriw=
67166721

6717-
cookie@0.5.0:
6718-
version "0.5.0"
6719-
resolved "https://registry.yarnpkg.com/cookie/-/cookie-0.5.0.tgz#d1f5d71adec6558c58f389987c366aa47e994f8b"
6720-
integrity sha512-YZ3GUyn/o8gfKJlnlX7g7xq4gyO6OSuhGPKaaGssGB2qgDUS0gPgtTvoyZLTt9Ab6dC4hfc9dV5arkvc/OCmrw==
6722+
cookie@0.6.0:
6723+
version "0.6.0"
6724+
resolved "https://registry.yarnpkg.com/cookie/-/cookie-0.6.0.tgz#2798b04b071b0ecbff0dbb62a505a8efa4e19051"
6725+
integrity sha512-U71cyTamuh1CRNCfpGY6to28lxvNwPG4Guz/EVjgf3Jmzv0vlDp1atT9eS5dDjMYHucpHbWns6Lwf3BKz6svdw==
67216726

67226727
cookie@^0.4.0:
67236728
version "0.4.0"
@@ -9214,17 +9219,17 @@ expose-loader@^0.7.5:
92149219
resolved "https://registry.yarnpkg.com/expose-loader/-/expose-loader-0.7.5.tgz#e29ea2d9aeeed3254a3faa1b35f502db9f9c3f6f"
92159220
integrity sha512-iPowgKUZkTPX5PznYsmifVj9Bob0w2wTHVkt/eYNPSzyebkUgIedmskf/kcfEIWpiWjg3JRjnW+a17XypySMuw==
92169221

9217-
express@^4.16.3, express@^4.17.1, express@^4.18.0:
9218-
version "4.18.2"
9219-
resolved "https://registry.yarnpkg.com/express/-/express-4.18.2.tgz#3fabe08296e930c796c19e3c516979386ba9fd59"
9220-
integrity sha512-5/PsL6iGPdfQ/lKM1UuielYgv3BUoJfz1aUwU9vHZ+J7gyvwdQXFEBIEIaxeGf0GIcreATNyBExtalisDbuMqQ==
9222+
express@^4.16.3, express@^4.17.1, express@^4.19.2:
9223+
version "4.19.2"
9224+
resolved "https://registry.yarnpkg.com/express/-/express-4.19.2.tgz#e25437827a3aa7f2a827bc8171bbbb664a356465"
9225+
integrity sha512-5T6nhjsT+EOMzuck8JjBHARTHfMht0POzlA60WV2pMD3gyXw2LZnZ+ueGdNxG+0calOJcWKbpFcuzLZ91YWq9Q==
92219226
dependencies:
92229227
accepts "~1.3.8"
92239228
array-flatten "1.1.1"
9224-
body-parser "1.20.1"
9229+
body-parser "1.20.2"
92259230
content-disposition "0.5.4"
92269231
content-type "~1.0.4"
9227-
cookie "0.5.0"
9232+
cookie "0.6.0"
92289233
cookie-signature "1.0.6"
92299234
debug "2.6.9"
92309235
depd "2.0.0"
@@ -17354,10 +17359,10 @@ raw-body@2.4.0:
1735417359
iconv-lite "0.4.24"
1735517360
unpipe "1.0.0"
1735617361

17357-
raw-body@2.5.1:
17358-
version "2.5.1"
17359-
resolved "https://registry.yarnpkg.com/raw-body/-/raw-body-2.5.1.tgz#fe1b1628b181b700215e5fd42389f98b71392857"
17360-
integrity sha512-qqJBtEyVgS0ZmPGdCFPWJ3FreoqvG4MVQln/kCgF7Olq95IbOp0/BWyMwbdtn4VTvkM8Y7khCQ2Xgk/tcrCXig==
17362+
raw-body@2.5.2:
17363+
version "2.5.2"
17364+
resolved "https://registry.yarnpkg.com/raw-body/-/raw-body-2.5.2.tgz#99febd83b90e08975087e8f1f9419a149366b68a"
17365+
integrity sha512-8zGqypfENjCIqGhgXToC8aB2r7YrBX+AQAfIPs/Mlk+BtPTztOvTS01NRW/3Eh60J+a48lt8qsCzirQ6loCVfA==
1736117366
dependencies:
1736217367
bytes "3.1.2"
1736317368
http-errors "2.0.0"

0 commit comments

Comments
 (0)