🚀 Socket Launch Week Day 5:Introducing Repository Access Permissions and Custom Roles.Learn more
Sign In

body-parser

Package Overview
Dependencies
Maintainers
3
Versions
83
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

body-parser - npm Package Compare versions

Comparing version
1.20.3
 to
1.20.4
+8
-0
HISTORY.md

@@ -0,1 +1,9 @@

1.20.4 / 2025-12-01
===================
* deps: qs@~6.14.0
* deps: use tilde notation for dependencies
* deps: http-errors@~2.0.1
* deps: raw-body@~2.5.3
1.20.3 / 2024-09-10

@@ -2,0 +10,0 @@ ===================

+2
-9
lib/types/urlencoded.js

@@ -58,5 +58,2 @@ /*!

var verify = opts.verify || false
var depth = typeof opts.depth !== 'number'
? Number(opts.depth || 32)
: opts.depth

@@ -125,4 +122,3 @@ if (verify !== false && typeof verify !== 'function') {

limit: limit,
verify: verify,
depth: depth
verify: verify
})

@@ -142,6 +138,3 @@ }

: 1000
var depth = typeof options.depth !== 'number'
? Number(options.depth || 32)
: options.depth
var depth = options.depth !== undefined ? options.depth : 32
var parse = parser('qs')

@@ -148,0 +141,0 @@ 

+9
-10
package.json
{
"name": "body-parser",
"description": "Node.js body parsing middleware",
"version": "1.20.3",
"version": "1.20.4",
"contributors": [

@@ -12,14 +12,14 @@ "Douglas Christopher Wilson <doug@somethingdoug.com>",

"dependencies": {
"bytes": "3.1.2",
"bytes": "~3.1.2",
"content-type": "~1.0.5",
"debug": "2.6.9",
"depd": "2.0.0",
"destroy": "1.2.0",
"http-errors": "2.0.0",
"iconv-lite": "0.4.24",
"on-finished": "2.4.1",
"qs": "6.13.0",
"raw-body": "2.5.2",
"destroy": "~1.2.0",
"http-errors": "~2.0.1",
"iconv-lite": "~0.4.24",
"on-finished": "~2.4.1",
"qs": "~6.14.0",
"raw-body": "~2.5.3",
"type-is": "~1.6.18",
"unpipe": "1.0.0"
"unpipe": "~1.0.0"
},

@@ -44,3 +44,2 @@ "devDependencies": {

"HISTORY.md",
"SECURITY.md",
"index.js"

@@ -47,0 +46,0 @@ ],

-25
SECURITY.md
# Security Policies and Procedures
## Reporting a Bug
The Express team and community take all security bugs seriously. Thank you
for improving the security of Express. We appreciate your efforts and
responsible disclosure and will make every effort to acknowledge your
contributions.
Report security bugs by emailing the current owner(s) of `body-parser`. This
information can be found in the npm registry using the command
`npm owner ls body-parser`.
If unsure or unable to get the information from the above, open an issue
in the [project issue tracker](https://github.com/expressjs/body-parser/issues)
asking for the current contact information.
To ensure the timely response to your report, please ensure that the entirety
of the report is contained within the email body and not solely behind a web
link or an attachment.
At least one owner will acknowledge your email within 48 hours, and will send a
more detailed response within 48 hours indicating the next steps in handling
your report. After the initial reply to your report, the owners will
endeavor to keep you informed of the progress towards a fix and full
announcement, and may ask for additional information or guidance.