Skip to content

Commit a382cd3

Browse files
dependabot[bot]dependabot[bot]
authored
Bump morgan from 1.10.0 to 1.10.1 (#530)
Bumps [morgan](https://github.com/expressjs/morgan) from 1.10.0 to 1.10.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/expressjs/morgan/releases">morgan's releases</a>.</em></p> <blockquote> <h2>1.10.1</h2> <h2>What's Changed</h2> <ul> <li>renaming simple to sample in readme by <a href="https://github.com/ryhinchey"><code>@​ryhinchey</code></a> in <a href="https://redirect.github.com/expressjs/morgan/pull/237">expressjs/morgan#237</a></li> <li>adding installation instructions to readme by <a href="https://github.com/ryhinchey"><code>@​ryhinchey</code></a> in <a href="https://redirect.github.com/expressjs/morgan/pull/233">expressjs/morgan#233</a></li> <li>chore: add support for OSSF scorecard reporting by <a href="https://github.com/inigomarquinez"><code>@​inigomarquinez</code></a> in <a href="https://redirect.github.com/expressjs/morgan/pull/291">expressjs/morgan#291</a></li> <li>ci: replace travis with github actions by <a href="https://github.com/inigomarquinez"><code>@​inigomarquinez</code></a> in <a href="https://redirect.github.com/expressjs/morgan/pull/290">expressjs/morgan#290</a></li> <li>docs: add example output for log formats by <a href="https://github.com/jonchurch"><code>@​jonchurch</code></a> in <a href="https://redirect.github.com/expressjs/morgan/pull/299">expressjs/morgan#299</a></li> <li>ci: use ubuntu-latest by <a href="https://github.com/bjohansebas"><code>@​bjohansebas</code></a> in <a href="https://redirect.github.com/expressjs/morgan/pull/301">expressjs/morgan#301</a></li> <li>ci: apply OSSF Scorecard security best practices by <a href="https://github.com/UlisesGascon"><code>@​UlisesGascon</code></a> in <a href="https://redirect.github.com/expressjs/morgan/pull/300">expressjs/morgan#300</a></li> <li>remove --bail by <a href="https://github.com/jonchurch"><code>@​jonchurch</code></a> in <a href="https://redirect.github.com/expressjs/morgan/pull/314">expressjs/morgan#314</a></li> <li>⬆️ bump on-headers by <a href="https://github.com/ctcpip"><code>@​ctcpip</code></a> in <a href="https://redirect.github.com/expressjs/morgan/pull/319">expressjs/morgan#319</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/inigomarquinez"><code>@​inigomarquinez</code></a> made their first contribution in <a href="https://redirect.github.com/expressjs/morgan/pull/291">expressjs/morgan#291</a></li> <li><a href="https://github.com/jonchurch"><code>@​jonchurch</code></a> made their first contribution in <a href="https://redirect.github.com/expressjs/morgan/pull/299">expressjs/morgan#299</a></li> <li><a href="https://github.com/bjohansebas"><code>@​bjohansebas</code></a> made their first contribution in <a href="https://redirect.github.com/expressjs/morgan/pull/301">expressjs/morgan#301</a></li> <li><a href="https://github.com/UlisesGascon"><code>@​UlisesGascon</code></a> made their first contribution in <a href="https://redirect.github.com/expressjs/morgan/pull/300">expressjs/morgan#300</a></li> <li><a href="https://github.com/ctcpip"><code>@​ctcpip</code></a> made their first contribution in <a href="https://redirect.github.com/expressjs/morgan/pull/319">expressjs/morgan#319</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/expressjs/morgan/compare/1.10.0...1.10.1">https://github.com/expressjs/morgan/compare/1.10.0...1.10.1</a></p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/expressjs/morgan/blob/master/HISTORY.md">morgan's changelog</a>.</em></p> <blockquote> <h1>1.10.1 / 2025-07-17</h1> <ul> <li>deps: on-headers@~1.1.0 <ul> <li>Fix <a href="https://www.cve.org/CVERecord?id=CVE-2025-7339">CVE-2025-7339</a> (<a href="https://github.com/expressjs/on-headers/security/advisories/GHSA-76c9-3jph-rj3q">GHSA-76c9-3jph-rj3q</a>)</li> </ul> </li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/expressjs/morgan/commit/c1c7f107d2b58d4b9af655b7347cfe29815a897c"><code>c1c7f10</code></a> 🔖 1.10.1</li> <li><a href="https://github.com/expressjs/morgan/commit/eb896c2421d54de95b75d3c382072e5b7ae52dd0"><code>eb896c2</code></a> ⬆️ bump on-headers</li> <li><a href="https://github.com/expressjs/morgan/commit/1c3eec6ca544da81420f935fbc26e22e51adfeb8"><code>1c3eec6</code></a> remove --bail (<a href="https://redirect.github.com/expressjs/morgan/issues/314">#314</a>)</li> <li><a href="https://github.com/expressjs/morgan/commit/b144728e07dc7c9f61577b1e67c50a4b8b3c4265"><code>b144728</code></a> ci: apply OSSF Scorecard security best practices (<a href="https://redirect.github.com/expressjs/morgan/issues/300">#300</a>)</li> <li><a href="https://github.com/expressjs/morgan/commit/68c2d2140d85904eb4799d040769459dd268184e"><code>68c2d21</code></a> ci: use ubuntu-latest (<a href="https://redirect.github.com/expressjs/morgan/issues/301">#301</a>)</li> <li><a href="https://github.com/expressjs/morgan/commit/8740a194bf64628c7cf359b285e5ab2a64037d0e"><code>8740a19</code></a> docs: add example output for log formats (<a href="https://redirect.github.com/expressjs/morgan/issues/299">#299</a>)</li> <li><a href="https://github.com/expressjs/morgan/commit/efd6bff1adae9418f12a8827614336c72e2c4300"><code>efd6bff</code></a> ci: migra to GitHub actions (<a href="https://redirect.github.com/expressjs/morgan/issues/290">#290</a>)</li> <li><a href="https://github.com/expressjs/morgan/commit/3b89789447e6b7dc4dbf7de61db18c405fe72801"><code>3b89789</code></a> ci: add support for OSSF scorecard reporting (<a href="https://redirect.github.com/expressjs/morgan/issues/291">#291</a>)</li> <li><a href="https://github.com/expressjs/morgan/commit/19a6aa5369220b522e9dac007975ee66b1c38283"><code>19a6aa5</code></a> docs: add installation section</li> <li><a href="https://github.com/expressjs/morgan/commit/b94f3ffe5c346740b704321da6bd47e7d436a0d6"><code>b94f3ff</code></a> docs: change simple to sample in example descriptions</li> <li>Additional commits viewable in <a href="https://github.com/expressjs/morgan/compare/1.10.0...1.10.1">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~ulisesgascon">ulisesgascon</a>, a new releaser for morgan since your current version.</p> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=morgan&package-manager=npm_and_yarn&previous-version=1.10.0&new-version=1.10.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) You can trigger a rebase of this PR by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details>
1 parent 2226c94 commit a382cd3

File tree

2 files changed

+11
-11
lines changed

2 files changed

+11
-11
lines changed

package.json

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -36,7 +36,7 @@
3636
"http-status-codes": "^2.3.0",
3737
"https-proxy-agent": "^7.0.6",
3838
"lodash": "^4.17.21",
39-
"morgan": "^1.10.0",
39+
"morgan": "^1.10.1",
4040
"snakecase-keys": "^9.0.2",
4141
"swagger-client": "^3.18.5",
4242
"winston": "^3.17.0",

yarn.lock

Lines changed: 10 additions & 10 deletions
Original file line numberDiff line numberDiff line change
@@ -6009,7 +6009,7 @@ laboperator-middleware-development@labforward/laboperator-middleware-development
60096009
https-proxy-agent: "npm:^7.0.6"
60106010
laboperator-middleware-development: labforward/laboperator-middleware-development
60116011
lodash: "npm:^4.17.21"
6012-
morgan: "npm:^1.10.0"
6012+
morgan: "npm:^1.10.1"
60136013
prettier: "npm:^3.6.2"
60146014
snakecase-keys: "npm:^9.0.2"
60156015
swagger-client: "npm:^3.18.5"
@@ -6406,16 +6406,16 @@ laboperator-middleware-development@labforward/laboperator-middleware-development
64066406
languageName: node
64076407
linkType: hard
64086408

6409-
"morgan@npm:^1.10.0":
6410-
version: 1.10.0
6411-
resolution: "morgan@npm:1.10.0"
6409+
"morgan@npm:^1.10.1":
6410+
version: 1.10.1
6411+
resolution: "morgan@npm:1.10.1"
64126412
dependencies:
64136413
basic-auth: "npm:~2.0.1"
64146414
debug: "npm:2.6.9"
64156415
depd: "npm:~2.0.0"
64166416
on-finished: "npm:~2.3.0"
6417-
on-headers: "npm:~1.0.2"
6418-
checksum: 10c0/684db061daca28f8d8e3bfd50bd0d21734401b46f74ea76f6df7785d45698fcd98f6d3b81a6bad59f8288c429183afba728c428e8f66d2e8c30fd277af3b5b3a
6417+
on-headers: "npm:~1.1.0"
6418+
checksum: 10c0/2ecd68504d29151b516a6233839e4f27ae0312acc4dbcb1fe84ff9b5db0eb9b25f31258a931dcf689184b4858839572095fcc62eef3cbd7339287d59f1424346
64196419
languageName: node
64206420
linkType: hard
64216421

@@ -6662,10 +6662,10 @@ laboperator-middleware-development@labforward/laboperator-middleware-development
66626662
languageName: node
66636663
linkType: hard
66646664

6665-
"on-headers@npm:~1.0.2":
6666-
version: 1.0.2
6667-
resolution: "on-headers@npm:1.0.2"
6668-
checksum: 10c0/f649e65c197bf31505a4c0444875db0258e198292f34b884d73c2f751e91792ef96bb5cf89aa0f4fecc2e4dc662461dda606b1274b0e564f539cae5d2f5fc32f
6665+
"on-headers@npm:~1.1.0":
6666+
version: 1.1.0
6667+
resolution: "on-headers@npm:1.1.0"
6668+
checksum: 10c0/2c3b6b0d68ec9adbd561dc2d61c9b14da8ac03d8a2f0fd9e97bdf0600c887d5d97f664ff3be6876cf40cda6e3c587d73a4745e10b426ac50c7664fc5a0dfc0a1
66696669
languageName: node
66706670
linkType: hard
66716671

0 commit comments

Comments
 (0)