Skip to content

Bump the minors group across 1 directory with 6 updates #302

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
dependabot wants to merge 1 commit into from
Closed

Bump the minors group across 1 directory with 6 updates #302

dependabot wants to merge 1 commit into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Nov 14, 2025
edited
Loading

Bumps the minors group with 6 updates in the /backup directory:

Package From To
@google-cloud/storage 7.16.0 7.17.3
age-encryption 0.2.3 0.2.4
morgan 1.10.0 1.10.1
@tsconfig/node22 22.0.2 22.0.3
@types/express 5.0.3 5.0.5
typescript 5.8.3 5.9.3

Updates @google-cloud/storage from 7.16.0 to 7.17.3

Release notes

Sourced from @​google-cloud/storage's releases.

v7.17.3

7.17.3 (2025-11-03)

Bug Fixes

  • 🐛 fix the issue 2667, do not mutate object given to options … (#2668) (8a9f259)
  • Revert implement path containment to prevent traversal attacks (254b6b2)

v7.17.2

7.17.2 (2025-10-06)

Bug Fixes

  • Common Service: should retry a request failed (#2652) (b38b5d2)
  • Implement path containment to prevent traversal attacks (#2654) (08d7abf)

v7.17.1

7.17.1 (2025-08-27)

Bug Fixes

  • Respect useAuthWithCustomEndpoint flag for resumable uploads (#2637) (707b4f2)

v7.17.0

7.17.0 (2025-08-18)

Features

Bug Fixes

Changelog

Sourced from @​google-cloud/storage's changelog.

7.17.3 (2025-11-03)

Bug Fixes

  • 🐛 fix the issue 2667, do not mutate object given to options … (#2668) (8a9f259)
  • Revert implement path containment to prevent traversal attacks (254b6b2)

7.17.2 (2025-10-06)

Bug Fixes

  • Common Service: should retry a request failed (#2652) (b38b5d2)
  • Implement path containment to prevent traversal attacks (#2654) (08d7abf)

7.17.1 (2025-08-27)

Bug Fixes

  • Respect useAuthWithCustomEndpoint flag for resumable uploads (#2637) (707b4f2)

7.17.0 (2025-08-18)

Features

Bug Fixes

Commits
  • 274fd4e chore(main): release 7.17.3 (#2670)
  • 71c0d05 chore(deps): update dependency @​types/node to v24 (#2665)
  • 642c3e8 Chore: Update move logic now to support non-HNS buckets (#2666)
  • 254b6b2 Revert "fix: Implement path containment to prevent traversal attacks (#2654)"...
  • f572456 chore: fix ignore regex in owlbot.yaml (#2671)
  • 8a9f259 fix: 🐛 fix the issue 2667, do not mutate object given to options … (#2668)
  • e0ac235 chore: Support Node 18+ (#2540)
  • 3477d1e chore: ignore samples-test.sh from owlbot (#2664)
  • 15da282 chore(deps): update dependency jsdoc-fresh to v5 (#2656)
  • 69036ce chore(deps): update dependency jsdoc-region-tag to v4 (#2657)
  • Additional commits viewable in compare view

Updates age-encryption from 0.2.3 to 0.2.4

Release notes

Sourced from age-encryption's releases.

v0.2.4 with streaming APIs

Typage can now encrypt and decrypt ReadableStreams. This can be useful for encrypting or decrypting large files, requests, or responses on the fly.

Decrypter.decryptHeader allows decrypting a file key from a detached header. This can be used to decrypt a header client-side without sharing the payload with the client.

Worked around oven-sh/bun#20148, unbreaking recent Bun versions.

Made header and CBOR parsing slightly stricter.

Commits
  • 31e8d9a Fix broken link in README
  • 005175c v0.2.4
  • 4945303 Add size method to ReadableStream returned by encrypt and decrypt
  • 4e6d0d7 Expose streaming APIs
  • 6075a35 Make STREAM processing streaming
  • 0db64f4 Make header parsing streaming
  • c566120 Fix header ASCII range check
  • ff6aa9d Enforce valid UTF-8 in CBOR decoding
  • 9e216bc Add Decrypter.decryptHeader for detached header decryption
  • 702e51b Catch NotSupportedError any time during WebCrypto operations
  • Additional commits viewable in compare view

Updates morgan from 1.10.0 to 1.10.1

Release notes

Sourced from morgan's releases.

1.10.1

What's Changed

New Contributors

Full Changelog: expressjs/morgan@1.10.0...1.10.1

Changelog

Sourced from morgan's changelog.

1.10.1 / 2025-07-17

Commits
Maintainer changes

This version was pushed to npm by ulisesgascon, a new releaser for morgan since your current version.


Updates @tsconfig/node22 from 22.0.2 to 22.0.3

Commits

Updates @types/express from 5.0.3 to 5.0.5

Commits

Updates typescript from 5.8.3 to 5.9.3

Release notes

Sourced from typescript's releases.

TypeScript 5.9.3

Note: this tag was recreated to point at the correct commit. The npm package contained the correct content.

For release notes, check out the release announcement

Downloads are available on:

TypeScript 5.9

Note: this tag was recreated to point at the correct commit. The npm package contained the correct content.

For release notes, check out the release announcement

Downloads are available on:

TypeScript 5.9 RC

Note: this tag was recreated to point at the correct commit. The npm package contained the correct content.

For release notes, check out the release announcement

Downloads are available on:

TypeScript 5.9 Beta

Note: this tag was recreated to point at the correct commit. The npm package contained the correct content.

For release notes, check out the release announcement.

Downloads are available on:

Commits
  • c63de15 Bump version to 5.9.3 and LKG
  • 8428ca4 🤖 Pick PR #62438 (Fix incorrectly ignored dts file fr...) into release-5.9 (#...
  • a131cac 🤖 Pick PR #62351 (Add missing Float16Array constructo...) into release-5.9 (#...
  • 0424333 🤖 Pick PR #62423 (Revert PR 61928) into release-5.9 (#62425)
  • bdb641a 🤖 Pick PR #62311 (Fix parenthesizer rules for manuall...) into release-5.9 (#...
  • 0d9b9b9 🤖 Pick PR #61978 (Restructure CI to prepare for requi...) into release-5.9 (#...
  • 2dce0c5 Intentionally regress one buggy declaration output to an older version (#62163)
  • 5be3346 Bump version to 5.9.2 and LKG
  • ad825f2 Bump version to 5.9.1-rc and LKG
  • 463a5bf Update LKG
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the minors group across 1 directory with 6 updates
2a89f0f 
Bumps the minors group with 6 updates in the /backup directory:

| Package | From | To |
| --- | --- | --- |
| [@google-cloud/storage](https://github.com/googleapis/nodejs-storage) | `7.16.0` | `7.17.3` |
| [age-encryption](https://github.com/FiloSottile/typage) | `0.2.3` | `0.2.4` |
| [morgan](https://github.com/expressjs/morgan) | `1.10.0` | `1.10.1` |
| [@tsconfig/node22](https://github.com/tsconfig/bases/tree/HEAD/bases) | `22.0.2` | `22.0.3` |
| [@types/express](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/express) | `5.0.3` | `5.0.5` |
| [typescript](https://github.com/microsoft/TypeScript) | `5.8.3` | `5.9.3` |



Updates `@google-cloud/storage` from 7.16.0 to 7.17.3
- [Release notes](https://github.com/googleapis/nodejs-storage/releases)
- [Changelog](https://github.com/googleapis/nodejs-storage/blob/main/CHANGELOG.md)
- [Commits](googleapis/nodejs-storage@v7.16.0...v7.17.3)

Updates `age-encryption` from 0.2.3 to 0.2.4
- [Release notes](https://github.com/FiloSottile/typage/releases)
- [Commits](FiloSottile/typage@v0.2.3...v0.2.4)

Updates `morgan` from 1.10.0 to 1.10.1
- [Release notes](https://github.com/expressjs/morgan/releases)
- [Changelog](https://github.com/expressjs/morgan/blob/master/HISTORY.md)
- [Commits](expressjs/morgan@1.10.0...1.10.1)

Updates `@tsconfig/node22` from 22.0.2 to 22.0.3
- [Commits](https://github.com/tsconfig/bases/commits/HEAD/bases)

Updates `@types/express` from 5.0.3 to 5.0.5
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/express)

Updates `typescript` from 5.8.3 to 5.9.3
- [Release notes](https://github.com/microsoft/TypeScript/releases)
- [Changelog](https://github.com/microsoft/TypeScript/blob/main/azure-pipelines.release-publish.yml)
- [Commits](microsoft/TypeScript@v5.8.3...v5.9.3)

---
updated-dependencies:
- dependency-name: "@google-cloud/storage"
  dependency-version: 7.17.3
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minors
- dependency-name: age-encryption
  dependency-version: 0.2.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minors
- dependency-name: morgan
  dependency-version: 1.10.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minors
- dependency-name: "@tsconfig/node22"
  dependency-version: 22.0.3
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: minors
- dependency-name: "@types/express"
  dependency-version: 5.0.5
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: minors
- dependency-name: typescript
  dependency-version: 5.9.3
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: minors
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Nov 14, 2025
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Dec 5, 2025

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Dec 5, 2025
@dependabot dependabot bot deleted the dependabot/npm_and_yarn/backup/minors-9b0a8ed867 branch December 5, 2025 19:03
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant