dependabot[bot] opened a new pull request, #27: URL: https://github.com/apache/casbin-node-casbin-nest-authz-example/pull/27
Bumps [path-to-regexp](https://github.com/pillarjs/path-to-regexp) to 3.3.0 and updates ancestor dependencies [path-to-regexp](https://github.com/pillarjs/path-to-regexp), [@nestjs/core](https://github.com/nestjs/nest/tree/HEAD/packages/core), [@nestjs/platform-express](https://github.com/nestjs/nest/tree/HEAD/packages/platform-express), [@nestjs/swagger](https://github.com/nestjs/swagger) and [express](https://github.com/expressjs/express). These dependencies need to be updated together. Updates `path-to-regexp` from 0.1.7 to 3.3.0 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/pillarjs/path-to-regexp/releases";>path-to-regexp's releases</a>.</em></p> <blockquote> <h2>Add backtracking protection</h2> <p><strong>Fixed</strong></p> <ul> <li>Add backtrack protection to 3.x release (<a href="https://redirect.github.com/pillarjs/path-to-regexp/issues/321";>#321</a>) d31670a</li> </ul> <p><a href="https://github.com/pillarjs/path-to-regexp/compare/v3.2.0...v3.3.0";>https://github.com/pillarjs/path-to-regexp/compare/v3.2.0...v3.3.0</a></p> <h2>Fix backtracking in 1.x</h2> <p><strong>Fixed</strong></p> <ul> <li>Add backtrack protection to 1.x release (<a href="https://redirect.github.com/pillarjs/path-to-regexp/issues/320";>#320</a>) 925ac8e</li> <li>Fix <code>re.exec(&[#39](https://github.com/pillarjs/path-to-regexp/issues/39);/test/route&[#39](https://github.com/pillarjs/path-to-regexp/issues/39);)</code> result (<a href="https://redirect.github.com/pillarjs/path-to-regexp/issues/267";>#267</a>) 32a14b0</li> </ul> <p><a href="https://github.com/pillarjs/path-to-regexp/compare/v1.8.0...v1.9.0";>https://github.com/pillarjs/path-to-regexp/compare/v1.8.0...v1.9.0</a></p> <h2>Backtrack protection</h2> <p><strong>Fixed</strong></p> <ul> <li>Add backtrack protection to parameters 29b96b4 <ul> <li>This will break some edge cases but should improve performance</li> </ul> </li> </ul> <p><a href="https://github.com/pillarjs/path-to-regexp/compare/v0.1.9...v0.1.10";>https://github.com/pillarjs/path-to-regexp/compare/v0.1.9...v0.1.10</a></p> <h2>Support non-lookahead regex output</h2> <p><strong>Added</strong></p> <ul> <li>Allow a non-lookahead regex (<a href="https://redirect.github.com/pillarjs/path-to-regexp/issues/312";>#312</a>) c4272e4</li> </ul> <p><a href="https://github.com/component/path-to-regexp/compare/v0.1.8...v0.1.9";>https://github.com/component/path-to-regexp/compare/v0.1.8...v0.1.9</a></p> <h2>Support named matching groups in <code>RegExp</code></h2> <p><strong>Added</strong></p> <ul> <li>Add support for named matching groups (<a href="https://redirect.github.com/pillarjs/path-to-regexp/issues/301";>#301</a>) 114f62d</li> </ul> <p><a href="https://github.com/pillarjs/path-to-regexp/compare/v0.1.7...v0.1.8";>https://github.com/pillarjs/path-to-regexp/compare/v0.1.7...v0.1.8</a></p> <h2>Match Function</h2> <p><strong>Added</strong></p> <ul> <li>Add native <code>match</code> function to library</li> </ul> <h2>Backport token to function options</h2> <p><strong>Added</strong></p> <ul> <li>Backport <code>TokensToFunctionOptions</code></li> </ul> <h2>Validate and sensitive options</h2> <ul> <li>Add <code>sensitive</code> option for <code>tokensToFunction</code> (<a href="https://redirect.github.com/pillarjs/path-to-regexp/issues/191";>#191</a>)</li> <li>Add <code>validate</code> option to path functions (<a href="https://redirect.github.com/pillarjs/path-to-regexp/issues/178";>#178</a>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/pillarjs/path-to-regexp/blob/master/History.md";>path-to-regexp's changelog</a>.</em></p> <blockquote> <h1>Moved to <a href="https://github.com/pillarjs/path-to-regexp/releases";>GitHub Releases</a></h1> <h2>3.0.0 / 2019-01-13</h2> <ul> <li>Always use prefix character as delimiter token, allowing any character to be a delimiter (e.g. <code>/:att1-:att2-:att3-:att4-:att5</code>)</li> <li>Remove <code>partial</code> support, prefer escaping the prefix delimiter explicitly (e.g. <code>\\/(apple-)?icon-:res(\\d+).png</code>)</li> </ul> <h2>2.4.0 / 2018-08-26</h2> <ul> <li>Support <code>start</code> option to disable anchoring from beginning of the string</li> </ul> <h2>2.3.0 / 2018-08-20</h2> <ul> <li>Use <code>delimiter</code> when processing repeated matching groups (e.g. <code>foo/bar</code> has no prefix, but has a delimiter)</li> </ul> <h2>2.2.1 / 2018-04-24</h2> <ul> <li>Allow empty string with <code>end: false</code> to match both relative and absolute paths</li> </ul> <h2>2.2.0 / 2018-03-06</h2> <ul> <li>Pass <code>token</code> as second argument to <code>encode</code> option (e.g. <code>encode(value, token)</code>)</li> </ul> <h2>2.1.0 / 2017-10-20</h2> <ul> <li>Handle non-ending paths where the final character is a delimiter <ul> <li>E.g. <code>/foo/</code> before required either <code>/foo/</code> or <code>/foo//</code> to match in non-ending mode</li> </ul> </li> </ul> <h2>2.0.0 / 2017-08-23</h2> <ul> <li>New option! Ability to set <code>endsWith</code> to match paths like <code>/test?query=string</code> up to the query string</li> <li>New option! Set <code>delimiters</code> for specific characters to be treated as parameter prefixes (e.g. <code>/:test</code>)</li> <li>Remove <code>isarray</code> dependency</li> <li>Explicitly handle trailing delimiters instead of trimming them (e.g. <code>/test/</code> is now treated as <code>/test/</code> instead of <code>/test</code> when matching)</li> <li>Remove overloaded <code>keys</code> argument that accepted <code>options</code></li> <li>Remove <code>keys</code> list attached to the <code>RegExp</code> output</li> <li>Remove asterisk functionality (it's a real pain to properly encode)</li> <li>Change <code>tokensToFunction</code> (e.g. <code>compile</code>) to accept an <code>encode</code> function for pretty encoding (e.g. pass your own implementation)</li> </ul> <h2>1.7.0 / 2016-11-08</h2> <ul> <li>Allow a <code>delimiter</code> option to be passed in with <code>tokensToRegExp</code> which will be used for "non-ending" token match situations</li> </ul> <h2>1.6.0 / 2016-10-03</h2> <ul> <li>Populate <code>RegExp.keys</code> when using the <code>tokensToRegExp</code> method (making it consistent with the main export)</li> <li>Allow a <code>delimiter</code> option to be passed in with <code>parse</code></li> <li>Updated TypeScript definition with <code>Keys</code> and <code>Options</code> updated</li> </ul> <h2>1.5.3 / 2016-06-15</h2> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/pillarjs/path-to-regexp/commit/2eb12934fc1f15d3b9bad010709717fc53a14b8e";><code>2eb1293</code></a> 3.3.0</li> <li><a href="https://github.com/pillarjs/path-to-regexp/commit/d31670ae8f6e69cbfd56e835742195b7d10942ef";><code>d31670a</code></a> Add backtrack protection to 3.x release (<a href="https://redirect.github.com/pillarjs/path-to-regexp/issues/321";>#321</a>)</li> <li><a href="https://github.com/pillarjs/path-to-regexp/commit/6d2e8db0f1260921c63330c006f3b9f492b69aed";><code>6d2e8db</code></a> 3.2.0</li> <li><a href="https://github.com/pillarjs/path-to-regexp/commit/0e0dce99b91b3deba85c2b5e97b161762a13c5d9";><code>0e0dce9</code></a> Add native <code>match</code> function to library</li> <li><a href="https://github.com/pillarjs/path-to-regexp/commit/dd966ea4f0e6f43f64a97314a1bcd791cfd717bb";><code>dd966ea</code></a> Fix <code>validate: false</code> examples in README</li> <li><a href="https://github.com/pillarjs/path-to-regexp/commit/ead0298da8f3ecdbc93680af317663be30492620";><code>ead0298</code></a> Changed coverage tool to nyc (<a href="https://redirect.github.com/pillarjs/path-to-regexp/issues/201";>#201</a>)</li> <li><a href="https://github.com/pillarjs/path-to-regexp/commit/1aa2238437aeb10a5949b11fee4a743f92ff3597";><code>1aa2238</code></a> Bump node version tests</li> <li><a href="https://github.com/pillarjs/path-to-regexp/commit/f232e6d3fc256fc4def7062c7542c4230c6bf6cd";><code>f232e6d</code></a> 3.1.0</li> <li><a href="https://github.com/pillarjs/path-to-regexp/commit/cb331c6f753b2b00fa582d678fbc72e526e918f7";><code>cb331c6</code></a> Update dev dependencies</li> <li><a href="https://github.com/pillarjs/path-to-regexp/commit/36344dce03215e6e7cb568761dd0d9f022bcc364";><code>36344dc</code></a> Rename <code>noValidate</code> option to <code>validate</code></li> <li>Additional commits viewable in <a href="https://github.com/pillarjs/path-to-regexp/compare/v0.1.7...v3.3.0";>compare view</a></li> </ul> </details> <br /> Updates `@nestjs/core` from 10.3.5 to 10.4.22 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/nestjs/nest/releases";><code>@nestjs/core</code>'s releases</a>.</em></p> <blockquote> <h2>v10.4.22</h2> <h2>What's Changed</h2> <ul> <li>fix(express): Update body-parser to 1.20.4 for CVE-2025-15284 by <a href="https://github.com/Xilis";><code>@Xilis</code></a> in <a href="https://redirect.github.com/nestjs/nest/pull/16178";>nestjs/nest#16178</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/nestjs/nest/compare/v10.4.21...v10.4.22";>https://github.com/nestjs/nest/compare/v10.4.21...v10.4.22</a></p> <h2>v10.4.21</h2> <h2>What's Changed</h2> <ul> <li>fix(express): Update express to 4.22.1 to address CVE-2025-15284 by <a href="https://github.com/Xilis";><code>@Xilis</code></a> in <a href="https://redirect.github.com/nestjs/nest/pull/16157";>nestjs/nest#16157</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/Xilis";><code>@Xilis</code></a> made their first contribution in <a href="https://redirect.github.com/nestjs/nest/pull/16157";>nestjs/nest#16157</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/nestjs/nest/compare/v10.4.20...v10.4.21";>https://github.com/nestjs/nest/compare/v10.4.20...v10.4.21</a></p> <h2>v10.4.19 (2025-06-09)</h2> <h4>Dependencies</h4> <ul> <li><code>platform-express</code> <ul> <li>chore(deps): bump multer from 2.0.0 to 2.0.1 (<a href="https://github.com/apps/dependabot";><code>@dependabot[bot]</code></a>)</li> </ul> </li> </ul> <h2>v10.4.18 (2025-05-26)</h2> <h4>Dependencies</h4> <ul> <li><code>platform-express</code> <ul> <li>chore(deps): bump multer from 1.4.5-lts.2 to 2.0.0</li> </ul> </li> </ul> <h2>v10.4.16</h2> <h2>What's Changed</h2> <ul> <li>fix(common): introduce magic file type validator to nestjs common by <a href="https://github.com/Chathula";><code>@Chathula</code></a> in <a href="https://redirect.github.com/nestjs/nest/pull/14948";>nestjs/nest#14948</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/nestjs/nest/compare/v10.4.15...v10.4.16";>https://github.com/nestjs/nest/compare/v10.4.15...v10.4.16</a></p> <h2>v10.4.15 (2024-12-09)</h2> <h4>Dependencies</h4> <ul> <li><code>platform-express</code> <ul> <li><a href="https://redirect.github.com/nestjs/nest/pull/14282";>#14282</a> fix(deps): update dependency express to v4.21.2 (<a href="https://github.com/apps/renovate";><code>@renovate[bot]</code></a>)</li> </ul> </li> </ul> <h2>v10.4.13 (2024-12-03)</h2> <h4>Bug fixes</h4> <ul> <li><code>common</code> <ul> <li><a href="https://redirect.github.com/nestjs/nest/pull/14256";>#14256</a> chore(common): Add type declaration for RawBody decorator with pipes (<a href="https://github.com/sapenlei";><code>@sapenlei</code></a>)</li> </ul> </li> </ul> <h4>Dependencies</h4> <ul> <li><a href="https://redirect.github.com/nestjs/nest/pull/14257";>#14257</a> fix(deps): update dependency <code>@fastify/static</code> to v7.0.4 (<a href="https://github.com/apps/renovate";><code>@renovate[bot]</code></a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/nestjs/nest/commit/58ebae08771f97ce32852d538dacbd28e18355a3";><code>58ebae0</code></a> chore: revert lerna change</li> <li><a href="https://github.com/nestjs/nest/commit/44969b12aea587a6f000265aaf16ece9a5150f15";><code>44969b1</code></a> chore(release): publish v10.4.22 release</li> <li><a href="https://github.com/nestjs/nest/commit/5a59810c9c0266cc3e53020db60d4994f190905d";><code>5a59810</code></a> chore(<a href="https://github.com/nestjs";><code>@nestjs</code></a>) publish v10.4.21 release</li> <li><a href="https://github.com/nestjs/nest/commit/f8021ab3e93fbc2f9e450523289d603fdbf2da05";><code>f8021ab</code></a> chore(<a href="https://github.com/nestjs";><code>@nestjs</code></a>) publish v10.4.20 release</li> <li><a href="https://github.com/nestjs/nest/commit/421a5802fff8eb60333ce535e81fe343301e08f3";><code>421a580</code></a> chore(<a href="https://github.com/nestjs";><code>@nestjs</code></a>) publish v10.4.19 release</li> <li><a href="https://github.com/nestjs/nest/commit/9da1249256a97a4bd375aaeca66494b0b08543ab";><code>9da1249</code></a> chore(<a href="https://github.com/nestjs";><code>@nestjs</code></a>) publish v10.4.18 release</li> <li><a href="https://github.com/nestjs/nest/commit/dc2a3c0d31621dbb569c17f8f69c8b2e36eae3e3";><code>dc2a3c0</code></a> chore(<a href="https://github.com/nestjs";><code>@nestjs</code></a>) publish v10.4.17 release</li> <li><a href="https://github.com/nestjs/nest/commit/6c8aec63b4828ecb96dd62c5c5edb838539c45e6";><code>6c8aec6</code></a> chore(<a href="https://github.com/nestjs";><code>@nestjs</code></a>) publish v10.4.16 release</li> <li><a href="https://github.com/nestjs/nest/commit/d0fb875e23e3e6baae8537efd41d54709acade0c";><code>d0fb875</code></a> chore(<a href="https://github.com/nestjs";><code>@nestjs</code></a>) publish v10.4.15 release</li> <li><a href="https://github.com/nestjs/nest/commit/1d457fe79f00956ef41a8bdc595d686f980eed40";><code>1d457fe</code></a> chore(<a href="https://github.com/nestjs";><code>@nestjs</code></a>) publish v10.4.14 release</li> <li>Additional commits viewable in <a href="https://github.com/nestjs/nest/commits/v10.4.22/packages/core";>compare view</a></li> </ul> </details> <br /> Updates `@nestjs/platform-express` from 10.3.5 to 10.4.22 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/nestjs/nest/releases";><code>@nestjs/platform-express</code>'s releases</a>.</em></p> <blockquote> <h2>v10.4.22</h2> <h2>What's Changed</h2> <ul> <li>fix(express): Update body-parser to 1.20.4 for CVE-2025-15284 by <a href="https://github.com/Xilis";><code>@Xilis</code></a> in <a href="https://redirect.github.com/nestjs/nest/pull/16178";>nestjs/nest#16178</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/nestjs/nest/compare/v10.4.21...v10.4.22";>https://github.com/nestjs/nest/compare/v10.4.21...v10.4.22</a></p> <h2>v10.4.21</h2> <h2>What's Changed</h2> <ul> <li>fix(express): Update express to 4.22.1 to address CVE-2025-15284 by <a href="https://github.com/Xilis";><code>@Xilis</code></a> in <a href="https://redirect.github.com/nestjs/nest/pull/16157";>nestjs/nest#16157</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/Xilis";><code>@Xilis</code></a> made their first contribution in <a href="https://redirect.github.com/nestjs/nest/pull/16157";>nestjs/nest#16157</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/nestjs/nest/compare/v10.4.20...v10.4.21";>https://github.com/nestjs/nest/compare/v10.4.20...v10.4.21</a></p> <h2>v10.4.19 (2025-06-09)</h2> <h4>Dependencies</h4> <ul> <li><code>platform-express</code> <ul> <li>chore(deps): bump multer from 2.0.0 to 2.0.1 (<a href="https://github.com/apps/dependabot";><code>@dependabot[bot]</code></a>)</li> </ul> </li> </ul> <h2>v10.4.18 (2025-05-26)</h2> <h4>Dependencies</h4> <ul> <li><code>platform-express</code> <ul> <li>chore(deps): bump multer from 1.4.5-lts.2 to 2.0.0</li> </ul> </li> </ul> <h2>v10.4.16</h2> <h2>What's Changed</h2> <ul> <li>fix(common): introduce magic file type validator to nestjs common by <a href="https://github.com/Chathula";><code>@Chathula</code></a> in <a href="https://redirect.github.com/nestjs/nest/pull/14948";>nestjs/nest#14948</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/nestjs/nest/compare/v10.4.15...v10.4.16";>https://github.com/nestjs/nest/compare/v10.4.15...v10.4.16</a></p> <h2>v10.4.15 (2024-12-09)</h2> <h4>Dependencies</h4> <ul> <li><code>platform-express</code> <ul> <li><a href="https://redirect.github.com/nestjs/nest/pull/14282";>#14282</a> fix(deps): update dependency express to v4.21.2 (<a href="https://github.com/apps/renovate";><code>@renovate[bot]</code></a>)</li> </ul> </li> </ul> <h2>v10.4.13 (2024-12-03)</h2> <h4>Bug fixes</h4> <ul> <li><code>common</code> <ul> <li><a href="https://redirect.github.com/nestjs/nest/pull/14256";>#14256</a> chore(common): Add type declaration for RawBody decorator with pipes (<a href="https://github.com/sapenlei";><code>@sapenlei</code></a>)</li> </ul> </li> </ul> <h4>Dependencies</h4> <ul> <li><a href="https://redirect.github.com/nestjs/nest/pull/14257";>#14257</a> fix(deps): update dependency <code>@fastify/static</code> to v7.0.4 (<a href="https://github.com/apps/renovate";><code>@renovate[bot]</code></a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/nestjs/nest/commit/58ebae08771f97ce32852d538dacbd28e18355a3";><code>58ebae0</code></a> chore: revert lerna change</li> <li><a href="https://github.com/nestjs/nest/commit/44969b12aea587a6f000265aaf16ece9a5150f15";><code>44969b1</code></a> chore(release): publish v10.4.22 release</li> <li><a href="https://github.com/nestjs/nest/commit/b9ec98fee72b1cd841fa8d63e69fc60e062b3fa8";><code>b9ec98f</code></a> fix(express): Update body-parser to 1.20.4 for CVE-2025-15284</li> <li><a href="https://github.com/nestjs/nest/commit/5a59810c9c0266cc3e53020db60d4994f190905d";><code>5a59810</code></a> chore(<a href="https://github.com/nestjs";><code>@nestjs</code></a>) publish v10.4.21 release</li> <li><a href="https://github.com/nestjs/nest/commit/eb0f29d3b7f5647be97175390f18ee16f65324b4";><code>eb0f29d</code></a> fix(express): update express to 4.22.1 to address CVE-2025-15284</li> <li><a href="https://github.com/nestjs/nest/commit/f8021ab3e93fbc2f9e450523289d603fdbf2da05";><code>f8021ab</code></a> chore(<a href="https://github.com/nestjs";><code>@nestjs</code></a>) publish v10.4.20 release</li> <li><a href="https://github.com/nestjs/nest/commit/0402529e56ff5c0c614c04fcfb713770ace4df52";><code>0402529</code></a> chore: bump multer</li> <li><a href="https://github.com/nestjs/nest/commit/421a5802fff8eb60333ce535e81fe343301e08f3";><code>421a580</code></a> chore(<a href="https://github.com/nestjs";><code>@nestjs</code></a>) publish v10.4.19 release</li> <li><a href="https://github.com/nestjs/nest/commit/2e9f312e9d405ae2764021f4a326cab4a8db8f11";><code>2e9f312</code></a> chore(common): bump multer to 2.0.1</li> <li><a href="https://github.com/nestjs/nest/commit/9da1249256a97a4bd375aaeca66494b0b08543ab";><code>9da1249</code></a> chore(<a href="https://github.com/nestjs";><code>@nestjs</code></a>) publish v10.4.18 release</li> <li>Additional commits viewable in <a href="https://github.com/nestjs/nest/commits/v10.4.22/packages/platform-express";>compare view</a></li> </ul> </details> <br /> Updates `@nestjs/swagger` from 7.3.0 to 7.4.2 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/nestjs/swagger/releases";><code>@nestjs/swagger</code>'s releases</a>.</em></p> <blockquote> <h2>Release 7.4.2</h2> <ul> <li>Merge pull request <a href="https://redirect.github.com/nestjs/swagger/issues/3031";>#3031</a> from danielsharvey/feature/example-support (391abb3)</li> <li>Merge pull request <a href="https://redirect.github.com/nestjs/swagger/issues/3037";>#3037</a> from blended-bram/patch-1 (00a6b80)</li> <li>Merge pull request <a href="https://redirect.github.com/nestjs/swagger/issues/3067";>#3067</a> from nadavhalfon/feat/x-enumNames (5cb058e)</li> <li>Merge pull request <a href="https://redirect.github.com/nestjs/swagger/issues/3062";>#3062</a> from thiagotognoli/master (fdf9c1c)</li> <li>chore(deps): update typescript-eslint monorepo to v8.6.0 (276b4fa)</li> <li>chore(deps): update dependency eslint to v8.57.1 (f389bd4)</li> <li>chore(deps): update dependency express to v4.21.0 (3b9c7f9)</li> <li>chore(deps): update nest monorepo to v10.4.2 (1c27db8)</li> <li>feat: support x-enumNames param for client code generations, supporting numeric enums (bdd0ac8)</li> <li>bugfix: correct param in map (f28b947)</li> <li>fix: support <code>examples</code> field in <code>@ApiHeader</code> (c7721d6)</li> <li>feat: Add schema support for "example" annotations (bd75d0a)</li> </ul> <h2>Release 7.4.1</h2> <ul> <li>Merge pull request <a href="https://redirect.github.com/nestjs/swagger/issues/3071";>#3071</a> from nestjs/renovate/npm-path-to-regexp-vulnerability (057e560)</li> <li>chore(deps): update dependency <code>@types/jest</code> to v29.5.13 (7721ad5)</li> <li>chore(deps): update dependency husky to v9.1.6 (ba963e1)</li> <li>fix(deps): update dependency path-to-regexp to v3.3.0 [security] (0c1e756)</li> <li>chore(deps): update commitlint monorepo to v19.5.0 (4e13bb0)</li> <li>chore(deps): update dependency express to v4.20.0 (df76aa1)</li> <li>chore(deps): update typescript-eslint monorepo to v8.5.0 (f5f1b02)</li> <li>chore(deps): update dependency <code>@types/node</code> to v20.16.5 (d1a3da6)</li> <li>chore(deps): update dependency <code>@types/node</code> to v20.16.4 (f7098ce)</li> <li>chore(deps): update dependency eslint-plugin-import to v2.30.0 (bdbbeb9)</li> <li>chore(deps): update typescript-eslint monorepo to v8.4.0 (e3976b5)</li> <li>chore(deps): update dependency lint-staged to v15.2.10 (2ef9f9e)</li> <li>chore(deps): update dependency <code>@types/node</code> to v20.16.3 (526801f)</li> <li>chore(deps): update commitlint monorepo to v19.4.1 (375e3ac)</li> <li>chore(deps): update dependency <code>@types/node</code> to v20.16.2 (7f0b3a9)</li> <li>chore(deps): update typescript-eslint monorepo to v8.3.0 (84cfcd2)</li> <li>chore(deps): update dependency ts-jest to v29.2.5 (1374005)</li> <li>chore(deps): update dependency husky to v9.1.5 (39a5a15)</li> <li>chore(deps): update typescript-eslint monorepo to v8.2.0 (c3f98b2)</li> <li>chore(deps): update dependency <code>@types/node</code> to v20.16.1 (ca5f7a5)</li> <li>chore(deps): update dependency <code>@types/node</code> to v20.16.0 (5d4436f)</li> <li>chore(deps): update dependency <code>@types/node</code> to v20.15.0 (986351f)</li> <li>chore(deps): update nest monorepo to v10.4.1 (2e11b2d)</li> <li>chore(deps): update dependency lint-staged to v15.2.9 (2e4b4dd)</li> <li>chore(deps): update typescript-eslint monorepo to v8.1.0 (f499e54)</li> <li>chore(deps): update nest monorepo to v10.4.0 (15ad2b6)</li> <li>chore(deps): update dependency <code>@types/node</code> to v20.14.15 (ea25697)</li> <li>chore(deps): update dependency <code>@commitlint/cli</code> to v19.4.0 (51d7f50)</li> <li>chore(deps): update typescript-eslint monorepo to v8.0.1 (341918a)</li> <li>chore(deps): update dependency lint-staged to v15.2.8 (02e0341)</li> <li>chore(deps): update dependency <code>@types/node</code> to v20.14.14 (9cb4742)</li> <li>chore(deps): update dependency ts-jest to v29.2.4 (ab74629)</li> <li>chore(deps): update typescript-eslint monorepo to v8 (c5964c0)</li> <li>chore(deps): update typescript-eslint monorepo to v7.18.0 (13f99fe)</li> <li>chore(deps): update dependency husky to v9.1.4 (6715367)</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/nestjs/swagger/commit/d2afd8b7005b8f60025746962e6c376dbe45bb99";><code>d2afd8b</code></a> chore(): release v7.4.2</li> <li><a href="https://github.com/nestjs/swagger/commit/391abb31db72adc8073ff9b7b1a01ca2517aa769";><code>391abb3</code></a> Merge pull request <a href="https://redirect.github.com/nestjs/swagger/issues/3031";>#3031</a> from danielsharvey/feature/example-support</li> <li><a href="https://github.com/nestjs/swagger/commit/00a6b80d76be6c0cf9f40380bf01b48b742111f7";><code>00a6b80</code></a> Merge pull request <a href="https://redirect.github.com/nestjs/swagger/issues/3037";>#3037</a> from blended-bram/patch-1</li> <li><a href="https://github.com/nestjs/swagger/commit/5cb058e05bab81f90587c83d7e29ce8460dbd63c";><code>5cb058e</code></a> Merge pull request <a href="https://redirect.github.com/nestjs/swagger/issues/3067";>#3067</a> from nadavhalfon/feat/x-enumNames</li> <li><a href="https://github.com/nestjs/swagger/commit/fdf9c1ce1a04790774ca0c9887c61f13e235367b";><code>fdf9c1c</code></a> Merge pull request <a href="https://redirect.github.com/nestjs/swagger/issues/3062";>#3062</a> from thiagotognoli/master</li> <li><a href="https://github.com/nestjs/swagger/commit/276b4fa8cb0ffc597d816ed0e245c2cd7c7ca3f8";><code>276b4fa</code></a> chore(deps): update typescript-eslint monorepo to v8.6.0</li> <li><a href="https://github.com/nestjs/swagger/commit/f389bd41fe3e5ba45c371ad563a4879004fa81bc";><code>f389bd4</code></a> chore(deps): update dependency eslint to v8.57.1</li> <li><a href="https://github.com/nestjs/swagger/commit/3b9c7f9358a89635554bc8025b883a30d86f7196";><code>3b9c7f9</code></a> chore(deps): update dependency express to v4.21.0</li> <li><a href="https://github.com/nestjs/swagger/commit/1c27db86a82ce1042b7b6f8f9e4c6db84b8845dc";><code>1c27db8</code></a> chore(deps): update nest monorepo to v10.4.2</li> <li><a href="https://github.com/nestjs/swagger/commit/14f652154ff61ba30b827d5e5407d674ebfc8e92";><code>14f6521</code></a> chore(): release v7.4.1</li> <li>Additional commits viewable in <a href="https://github.com/nestjs/swagger/compare/7.3.0...7.4.2";>compare view</a></li> </ul> </details> <br /> Updates `express` from 4.18.3 to 4.22.1 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/expressjs/express/releases";>express's releases</a>.</em></p> <blockquote> <h2>v4.22.1</h2> <h2>What's Changed</h2> <blockquote> <p>[!IMPORTANT]<br /> The prior release (4.22.0) included an erroneous breaking change related to the extended query parser. There is no actual security vulnerability associated with this behavior (CVE-2024-51999 has been rejected). The change has been fully reverted in this release.</p> </blockquote> <ul> <li>Release: 4.22.1 by <a href="https://github.com/UlisesGascon";><code>@UlisesGascon</code></a> in <a href="https://redirect.github.com/expressjs/express/pull/6934";>expressjs/express#6934</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/expressjs/express/compare/4.22.0...v4.22.1";>https://github.com/expressjs/express/compare/4.22.0...v4.22.1</a></p> <h2>4.22.0</h2> <h2>Important: Security</h2> <ul> <li>Security fix for <a href="https://www.cve.org/CVERecord?id=CVE-2024-51999";>CVE-2024-51999</a> (<a href="https://github.com/expressjs/express/security/advisories/GHSA-pj86-cfqh-vqx6";>GHSA-pj86-cfqh-vqx6</a>)</li> </ul> <h2>What's Changed</h2> <ul> <li>Refactor: improve readability by <a href="https://github.com/sazk07";><code>@sazk07</code></a> in <a href="https://redirect.github.com/expressjs/express/pull/6190";>expressjs/express#6190</a></li> <li>ci: add support for [email protected] by <a href="https://github.com/UlisesGascon";><code>@UlisesGascon</code></a> in <a href="https://redirect.github.com/expressjs/express/pull/6080";>expressjs/express#6080</a></li> <li>Method functions with no path should error by <a href="https://github.com/wesleytodd";><code>@wesleytodd</code></a> in <a href="https://redirect.github.com/expressjs/express/pull/5957";>expressjs/express#5957</a></li> <li>ci: updated github actions ci workflow by <a href="https://github.com/Phillip9587";><code>@Phillip9587</code></a> in <a href="https://redirect.github.com/expressjs/express/pull/6323";>expressjs/express#6323</a></li> <li>ci: reorder <code>npm i</code> steps to fix ci for older node versions by <a href="https://github.com/Phillip9587";><code>@Phillip9587</code></a> in <a href="https://redirect.github.com/expressjs/express/pull/6336";>expressjs/express#6336</a></li> <li>Backport: ci: add node.js 24 to test matrix by <a href="https://github.com/Phillip9587";><code>@Phillip9587</code></a> in <a href="https://redirect.github.com/expressjs/express/pull/6506";>expressjs/express#6506</a></li> <li>chore(4.x): wider range for query test skip by <a href="https://github.com/jonchurch";><code>@jonchurch</code></a> in <a href="https://redirect.github.com/expressjs/express/pull/6513";>expressjs/express#6513</a></li> <li>use tilde notation for certain dependencies by <a href="https://github.com/UlisesGascon";><code>@UlisesGascon</code></a> in <a href="https://redirect.github.com/expressjs/express/pull/6905";>expressjs/express#6905</a></li> <li>deps: [email protected] by <a href="https://github.com/UlisesGascon";><code>@UlisesGascon</code></a> in <a href="https://redirect.github.com/expressjs/express/pull/6909";>expressjs/express#6909</a></li> <li>deps: use tilde notation for <code>qs</code> by <a href="https://github.com/Phillip9587";><code>@Phillip9587</code></a> in <a href="https://redirect.github.com/expressjs/express/pull/6919";>expressjs/express#6919</a></li> <li>Release: 4.22.0 by <a href="https://github.com/UlisesGascon";><code>@UlisesGascon</code></a> in <a href="https://redirect.github.com/expressjs/express/pull/6921";>expressjs/express#6921</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/expressjs/express/compare/4.21.2...4.22.0";>https://github.com/expressjs/express/compare/4.21.2...4.22.0</a></p> <h2>4.21.2</h2> <h2>What's Changed</h2> <ul> <li>Add funding field (v4) by <a href="https://github.com/bjohansebas";><code>@bjohansebas</code></a> in <a href="https://redirect.github.com/expressjs/express/pull/6065";>expressjs/express#6065</a></li> <li>deps: [email protected] by <a href="https://github.com/blakeembrey";><code>@blakeembrey</code></a> in <a href="https://redirect.github.com/expressjs/express/pull/5956";>expressjs/express#5956</a></li> <li>deps: bump [email protected] by <a href="https://github.com/jonchurch";><code>@jonchurch</code></a> in <a href="https://redirect.github.com/expressjs/express/pull/6209";>expressjs/express#6209</a></li> <li>Release: 4.21.2 by <a href="https://github.com/UlisesGascon";><code>@UlisesGascon</code></a> in <a href="https://redirect.github.com/expressjs/express/pull/6094";>expressjs/express#6094</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/expressjs/express/compare/4.21.1...4.21.2";>https://github.com/expressjs/express/compare/4.21.1...4.21.2</a></p> <h2>4.21.1</h2> <h2>What's Changed</h2> <ul> <li>Backport a fix for CVE-2024-47764 to the 4.x branch by <a href="https://github.com/joshbuker";><code>@joshbuker</code></a> in <a href="https://redirect.github.com/expressjs/express/pull/6029";>expressjs/express#6029</a></li> <li>Release: 4.21.1 by <a href="https://github.com/UlisesGascon";><code>@UlisesGascon</code></a> in <a href="https://redirect.github.com/expressjs/express/pull/6031";>expressjs/express#6031</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/expressjs/express/compare/4.21.0...4.21.1";>https://github.com/expressjs/express/compare/4.21.0...4.21.1</a></p> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/expressjs/express/blob/v4.22.1/History.md";>express's changelog</a>.</em></p> <blockquote> <h1>4.22.1 / 2025-12-01</h1> <ul> <li>Revert security fix for <a href="https://www.cve.org/CVERecord?id=CVE-2024-51999";>CVE-2024-51999</a> (<a href="https://github.com/expressjs/express/security/advisories/GHSA-pj86-cfqh-vqx6";>GHSA-pj86-cfqh-vqx6</a>)</li> </ul> <h1>4.22.0 / 2025-12-01</h1> <ul> <li>Security fix for <a href="https://www.cve.org/CVERecord?id=CVE-2024-51999";>CVE-2024-51999</a> (<a href="https://github.com/expressjs/express/security/advisories/GHSA-pj86-cfqh-vqx6";>GHSA-pj86-cfqh-vqx6</a>)</li> <li>deps: use tilde notation for dependencies</li> <li>deps: [email protected]</li> </ul> <h1>4.21.2 / 2024-11-06</h1> <ul> <li>deps: [email protected] <ul> <li>Fix backtracking protection</li> </ul> </li> <li>deps: [email protected] <ul> <li>Throws an error on invalid path values</li> </ul> </li> </ul> <h1>4.21.1 / 2024-10-08</h1> <ul> <li>Backported a fix for <a href="https://nvd.nist.gov/vuln/detail/CVE-2024-47764";>CVE-2024-47764</a></li> </ul> <h1>4.21.0 / 2024-09-11</h1> <ul> <li>Deprecate <code>res.location("back")</code> and <code>res.redirect("back")</code> magic string</li> <li>deps: [email protected] <ul> <li>includes [email protected]</li> </ul> </li> <li>deps: [email protected]</li> <li>deps: [email protected]</li> </ul> <h1>4.20.0 / 2024-09-10</h1> <ul> <li>deps: [email protected] <ul> <li>Remove link renderization in html while redirecting</li> </ul> </li> <li>deps: [email protected] <ul> <li>Remove link renderization in html while redirecting</li> </ul> </li> <li>deps: [email protected] <ul> <li>add <code>depth</code> option to customize the depth level in the parser</li> <li>IMPORTANT: The default <code>depth</code> level for parsing URL-encoded data is now <code>32</code> (previously was <code>Infinity</code>)</li> </ul> </li> <li>Remove link renderization in html while using <code>res.redirect</code></li> <li>deps: [email protected] <ul> <li>Adds support for named matching groups in the routes using a regex</li> <li>Adds backtracking protection to parameters without regexes defined</li> </ul> </li> <li>deps: encodeurl@~2.0.0 <ul> <li>Removes encoding of <code>\</code>, <code>|</code>, and <code>^</code> to align better with URL spec</li> </ul> </li> <li>Deprecate passing <code>options.maxAge</code> and <code>options.expires</code> to <code>res.clearCookie</code></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/expressjs/express/commit/12fae14531a78f19a2caaa5d4f58d9b01eaf3194";><code>12fae14</code></a> 4.22.1</li> <li><a href="https://github.com/expressjs/express/commit/5ddf311af32e772a77fd48b6266ce2f1ba330e1a";><code>5ddf311</code></a> Revert "sec: security patch for CVE-2024-51999"</li> <li><a href="https://github.com/expressjs/express/commit/49744abd1120484fe64d7bde1cd3197c32523b6e";><code>49744ab</code></a> 4.22.0 (<a href="https://redirect.github.com/expressjs/express/issues/6921";>#6921</a>)</li> <li><a href="https://github.com/expressjs/express/commit/6e97452f600a3b01719fbc5517d833c7646b0bb7";><code>6e97452</code></a> sec: security patch for CVE-2024-51999</li> <li><a href="https://github.com/expressjs/express/commit/6a23d34d652b9e69a4486d2a2a0dea54b9685fa5";><code>6a23d34</code></a> deps: use tilde notation for <code>qs</code> (<a href="https://redirect.github.com/expressjs/express/issues/6919";>#6919</a>)</li> <li><a href="https://github.com/expressjs/express/commit/8c12cdf93b89a4628b59179e3cc0722fc517d6b3";><code>8c12cdf</code></a> deps: [email protected] (<a href="https://redirect.github.com/expressjs/express/issues/6909";>#6909</a>)</li> <li><a href="https://github.com/expressjs/express/commit/7fea74fcf02764580f38f2a7f1932dfa54cddd90";><code>7fea74f</code></a> deps: use tilde notation for certain dependencies (<a href="https://redirect.github.com/expressjs/express/issues/6905";>#6905</a>)</li> <li><a href="https://github.com/expressjs/express/commit/dac7a0475a99e9dfc57b3b8e6d5bdf52813f1944";><code>dac7a04</code></a> chore: wider range for query test skip (<a href="https://redirect.github.com/expressjs/express/issues/6513";>#6513</a>)</li> <li><a href="https://github.com/expressjs/express/commit/997919b48879bbd53171c3b4e5dd1b04ad139241";><code>997919b</code></a> ci: add node.js 24 to test matrix (<a href="https://redirect.github.com/expressjs/express/issues/6506";>#6506</a>)</li> <li><a href="https://github.com/expressjs/express/commit/36fb59c6c7d9dfca0b08dfeafb5b6e4a249234a1";><code>36fb59c</code></a> fix(ci): reorder <code>npm i</code> steps to fix ci for older node versions (<a href="https://redirect.github.com/expressjs/express/issues/6336";>#6336</a>)</li> <li>Additional commits viewable in <a href="https://github.com/expressjs/express/compare/4.18.3...v4.22.1";>compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~jonchurch";>jonchurch</a>, a new releaser for express since your current version.</p> </details> <br /> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/apache/casbin-node-casbin-nest-authz-example/network/alerts). </details> -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
