chore(deps): bump body-parser from 1.20.4 to 2.3.0 in /test/crashtracker#140
chore(deps): bump body-parser from 1.20.4 to 2.3.0 in /test/crashtracker#140dependabot[bot] wants to merge 1 commit into
Conversation
LabelsThe following labels could not be found: Please fix the above issues or remove invalid values from |
There was a problem hiding this comment.
💡 Codex Review
Here are some automated review suggestions for this pull request.
Reviewed commit: 881daa1035
ℹ️ About Codex in GitHub
Codex has been enabled to automatically review pull requests in this repo. Reviews are triggered when you
- Open a pull request for review
- Mark a draft as ready
- Comment "@codex review".
If Codex has suggestions, it will comment; otherwise it will react with 👍.
When you sign up for Codex through ChatGPT, Codex can also answer questions or update the PR, like "@codex address that feedback".
| body-parser@^2.3.0: | ||
| version "2.3.0" | ||
| resolved "https://registry.yarnpkg.com/body-parser/-/body-parser-2.3.0.tgz#6d8662f4d8c336028b8ac9aa24251b0ca64ba437" | ||
| integrity sha512-2cGmJupaNgg+QUwVLAucDuWuoMZ6EX9iHDRswZ5lsNYEmwPaRknMPCLZz07yTzVq/83p4o/wzbDZbBrTvGGTIw== |
There was a problem hiding this comment.
Update the transitive Yarn body-parser lock entry
Because the build workflow runs yarn install in test/crashtracker (.github/workflows/build.yml lines 16-18), this lockfile is what CI installs. This new direct 2.3.0 entry splits the previous combined lock entry, but body-parser@~1.20.3 for Express remains locked to 1.20.4 a few lines below, so Yarn installs still contain the old copy this bump is meant to remove while the npm lock already moved that transitive copy to 1.20.5. Please refresh the Yarn lock or add a resolution so no 1.20.4 copy remains.
Useful? React with 👍 / 👎.
Overall package sizeSelf size: 30.05 MB Dependency sizes| name | version | self size | total size | |------|---------|-----------|------------|🤖 This report was automatically generated by heaviest-objects-in-the-universe |
|
@dependabot rebase |
Bumps [body-parser](https://github.com/expressjs/body-parser) from 1.20.4 to 2.3.0. - [Release notes](https://github.com/expressjs/body-parser/releases) - [Changelog](https://github.com/expressjs/body-parser/blob/master/HISTORY.md) - [Commits](expressjs/body-parser@1.20.4...v2.3.0) --- updated-dependencies: - dependency-name: body-parser dependency-version: 2.3.0 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
881daa1 to
1367bfe
Compare
Bumps body-parser from 1.20.4 to 2.3.0.
Release notes
Sourced from body-parser's releases.
... (truncated)
Changelog
Sourced from body-parser's changelog.
... (truncated)
Commits
d0f2ace2.3.0 (#735)7d03f2fchore: updated deps to latest (#733)8024ba7build(deps): bump actions/checkout from 6.0.2 to 6.0.3 (#732)32b4ed4build(deps): bump github/codeql-action from 4.35.3 to 4.36.1 (#731)ff0f6b9docs: update outdated reference to MDN docs (#730)14d001arefactor: switch to const/let and enable eslint no-var rule (#729)37f36a2deps: update content-type and type-is (#728)e1c244bbuild(deps): bump github/codeql-action from 4.35.1 to 4.35.3 (#723)e01087fbuild(deps): bump actions/upload-artifact from 7.0.0 to 7.0.1 (#724)a7698d3build(deps): bump actions/setup-node from 6.3.0 to 6.4.0 (#725)