Bump http-proxy-middleware from 2.0.7 to 2.0.9 in /web #5742

dependabot · 2025-04-17T04:36:28Z

Bumps http-proxy-middleware from 2.0.7 to 2.0.9.

Release notes

Sourced from http-proxy-middleware's releases.

v2.0.9

What's Changed

fix(fixRequestBody): check readableLength by @chimurai in chimurai/http-proxy-middleware#1097

chore(package): v2.0.9 by @chimurai in chimurai/http-proxy-middleware#1099

Full Changelog: chimurai/http-proxy-middleware@v2.0.8...v2.0.9

v2.0.8

What's Changed

fix(fixRequestBody): prevent multiple .write() calls by @chimurai in chimurai/http-proxy-middleware#1090

fix(fixRequestBody): handle invalid request by @chimurai in chimurai/http-proxy-middleware#1091

chore(package): v2.0.8 by @chimurai in chimurai/http-proxy-middleware#1094

Full Changelog: chimurai/http-proxy-middleware@v2.0.7...v2.0.8

Changelog

Sourced from http-proxy-middleware's changelog.

v2.0.9

fix(fixRequestBody): check readableLength

v2.0.8

fix(fixRequestBody): prevent multiple .write() calls

fix(fixRequestBody): handle invalid request

Commits

617a7c9 chore(package): v2.0.9 (#1099)
d22d587 fix(fixRequestBody): check readableLength (#1097)
d03d51b chore(package): v2.0.8 (#1094)
c50dd06 fix(fixRequestBody): handle invalid request (#1091)
76a9d8d fix(fixRequestBody): prevent multiple .write() calls (#1090)
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the Security Alerts page.

Bumps [http-proxy-middleware](https://github.com/chimurai/http-proxy-middleware) from 2.0.7 to 2.0.9. - [Release notes](https://github.com/chimurai/http-proxy-middleware/releases) - [Changelog](https://github.com/chimurai/http-proxy-middleware/blob/v2.0.9/CHANGELOG.md) - [Commits](chimurai/http-proxy-middleware@v2.0.7...v2.0.9) --- updated-dependencies: - dependency-name: http-proxy-middleware dependency-version: 2.0.9 dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]>

khanhtc1202

LGTM 👍

Bumps [http-proxy-middleware](https://github.com/chimurai/http-proxy-middleware) from 2.0.7 to 2.0.9. - [Release notes](https://github.com/chimurai/http-proxy-middleware/releases) - [Changelog](https://github.com/chimurai/http-proxy-middleware/blob/v2.0.9/CHANGELOG.md) - [Commits](chimurai/http-proxy-middleware@v2.0.7...v2.0.9) --- updated-dependencies: - dependency-name: http-proxy-middleware dependency-version: 2.0.9 dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Signed-off-by: pipecd-bot <[email protected]>

@ren510dev

* fix: upgrade react-router-dom from 6.29.0 to 6.30.0 (#5686) Snyk has created this PR to upgrade react-router-dom from 6.29.0 to 6.30.0. See this package in yarn: react-router-dom See this project in Snyk: https://app.snyk.io/org/pipecd/project/f41c5767-b506-4f59-beb9-ef662258eb9a?utm_source=github&utm_medium=referral&page=upgrade-pr Signed-off-by: t-kikuc <[email protected]> Co-authored-by: snyk-bot <[email protected]> Signed-off-by: pipecd-bot <[email protected]> * Revert "Temporary disable v1 add application form on UI (#5694)" (#5696) This reverts commit dca04f9. Signed-off-by: khanhtc1202 <[email protected]> Signed-off-by: pipecd-bot <[email protected]> * Use nodejs 20 as web image builder (#5726) Signed-off-by: Shinnosuke Sawada-Dazai <[email protected]> Signed-off-by: pipecd-bot <[email protected]> * add labels to application delete dialog box (#5727) Signed-off-by: pipecd-bot <[email protected]> * fix: regex based tag replacement scheme (#5730) * fix: regex based tag replacement scheme Signed-off-by: GotoRen <[email protected]> * fix: nits comment Signed-off-by: GotoRen <[email protected]> * fix: copy changes into main implementation Signed-off-by: GotoRen <[email protected]> --------- Signed-off-by: GotoRen <[email protected]> Signed-off-by: pipecd-bot <[email protected]> * Modify pvc name attached to deployment (#5734) Signed-off-by: Yoshiki Fujikane <[email protected]> Signed-off-by: pipecd-bot <[email protected]> * fix piped name suggestion when adding new application (#5735) Signed-off-by: Dave Canton <[email protected]> Signed-off-by: pipecd-bot <[email protected]> * Disable register app for pipedv1 form (#5739) Signed-off-by: khanhtc1202 <[email protected]> Signed-off-by: pipecd-bot <[email protected]> * Bump golang.org/x/net from 0.36.0 to 0.38.0 in /tool/actions-gh-release (#5741) Bumps [golang.org/x/net](https://github.com/golang/net) from 0.36.0 to 0.38.0. - [Commits](golang/net@v0.36.0...v0.38.0) --- updated-dependencies: - dependency-name: golang.org/x/net dependency-version: 0.38.0 dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Signed-off-by: pipecd-bot <[email protected]> * Bump http-proxy-middleware from 2.0.7 to 2.0.9 in /web (#5742) Bumps [http-proxy-middleware](https://github.com/chimurai/http-proxy-middleware) from 2.0.7 to 2.0.9. - [Release notes](https://github.com/chimurai/http-proxy-middleware/releases) - [Changelog](https://github.com/chimurai/http-proxy-middleware/blob/v2.0.9/CHANGELOG.md) - [Commits](chimurai/http-proxy-middleware@v2.0.7...v2.0.9) --- updated-dependencies: - dependency-name: http-proxy-middleware dependency-version: 2.0.9 dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Signed-off-by: pipecd-bot <[email protected]> * Update go-jwt to version 5.2.2 (#5743) * Update go-jwt to version 5.2.2 Signed-off-by: khanhtc1202 <[email protected]> * Use the previous signing method Signed-off-by: khanhtc1202 <[email protected]> --------- Signed-off-by: khanhtc1202 <[email protected]> Signed-off-by: pipecd-bot <[email protected]> * Bump golang.org/x/net in /tool/actions-plan-preview (#5745) Bumps [golang.org/x/net](https://github.com/golang/net) from 0.36.0 to 0.38.0. - [Commits](golang/net@v0.36.0...v0.38.0) --- updated-dependencies: - dependency-name: golang.org/x/net dependency-version: 0.38.0 dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Signed-off-by: pipecd-bot <[email protected]> * Bump golang.org/x/net from 0.36.0 to 0.38.0 (#5746) Bumps [golang.org/x/net](https://github.com/golang/net) from 0.36.0 to 0.38.0. - [Commits](golang/net@v0.36.0...v0.38.0) --- updated-dependencies: - dependency-name: golang.org/x/net dependency-version: 0.38.0 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Signed-off-by: pipecd-bot <[email protected]> * Cut release v0.51.2 (#5753) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: khanhtc1202 <[email protected]> Signed-off-by: pipecd-bot <[email protected]> --------- Signed-off-by: t-kikuc <[email protected]> Signed-off-by: pipecd-bot <[email protected]> Signed-off-by: khanhtc1202 <[email protected]> Signed-off-by: Shinnosuke Sawada-Dazai <[email protected]> Signed-off-by: GotoRen <[email protected]> Signed-off-by: Yoshiki Fujikane <[email protected]> Signed-off-by: Dave Canton <[email protected]> Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: Chris Aniszczyk <[email protected]> Co-authored-by: snyk-bot <[email protected]> Co-authored-by: Khanh Tran <[email protected]> Co-authored-by: Shinnosuke Sawada-Dazai <[email protected]> Co-authored-by: Harshit Gupta <[email protected]> Co-authored-by: Ren Goto (@ren510dev) <[email protected]> Co-authored-by: Yoshiki Fujikane <[email protected]> Co-authored-by: Dave <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>

dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Apr 17, 2025

dependabot bot requested review from khanhtc1202, ffjlabo, t-kikuc and Warashi as code owners April 17, 2025 04:36

github-actions bot added the area/web label Apr 17, 2025

khanhtc1202 approved these changes Apr 17, 2025

View reviewed changes

khanhtc1202 enabled auto-merge (squash) April 17, 2025 05:45

khanhtc1202 added cherry-pick v0.51.2 labels Apr 18, 2025

Warashi approved these changes Apr 18, 2025

View reviewed changes

khanhtc1202 merged commit 61b5363 into master Apr 18, 2025
16 checks passed

khanhtc1202 deleted the dependabot/npm_and_yarn/web/http-proxy-middleware-2.0.9 branch April 18, 2025 09:13

github-actions bot mentioned this pull request Apr 18, 2025

Cherry-pick to release-v0.51.x #5757

Merged

github-actions bot mentioned this pull request May 15, 2025

Release v0.51.3 #5821

Merged

github-actions bot mentioned this pull request May 28, 2025

[bot] Release v0.52.0 #5888

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Bump http-proxy-middleware from 2.0.7 to 2.0.9 in /web #5742

Bump http-proxy-middleware from 2.0.7 to 2.0.9 in /web #5742

Uh oh!

dependabot bot commented on behalf of github Apr 17, 2025

Uh oh!

khanhtc1202 left a comment

Uh oh!

Uh oh!

Uh oh!

Bump http-proxy-middleware from 2.0.7 to 2.0.9 in /web #5742

Bump http-proxy-middleware from 2.0.7 to 2.0.9 in /web #5742

Uh oh!

Conversation

dependabot bot commented on behalf of github Apr 17, 2025

v2.0.9

What's Changed

v2.0.8

What's Changed

v2.0.9

v2.0.8

Uh oh!

khanhtc1202 left a comment

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Uh oh!