csurf - npm Package Compare versions

Comparing version 1.6.3 to 1.6.4

HISTORY.md

@@ -0,6 +1,18 @@
+1.6.4 / 2014-12-30
+==================
+
+  * deps: csrf@~2.0.3
+    - Slight speed improvement for `verify`
+    - deps: base64-url@1.1.0
+    - deps: rndm@~1.1.0
+  * deps: http-errors@~1.2.8
+   - Fix stack trace from exported function
+
 1.6.3 / 2014-11-09
 ==================
 
- * bump csrf
- * bump http-errors
+  * deps: csrf@~2.0.2
+    - deps: scmp@1.0.0
+  * deps: http-errors@~1.2.7
+   - Remove duplicate line
 
@@ -10,4 +22,7 @@ 1.6.2 / 2014-10-14
 
- * bump http-errors
- * fix cookie name when using `cookie: true`
+  * Fix cookie name when using `cookie: true`
+  * deps: http-errors@~1.2.6
+    - Fix `expose` to be `true` for `ClientError` constructor
+    - Use `inherits` instead of `util`
+    - deps: statuses@1
 
@@ -17,3 +32,3 @@ 1.6.1 / 2014-09-05
 
- * bump cookie-signature
+  * deps: cookie-signature@1.0.5
 
@@ -23,3 +38,3 @@ 1.6.0 / 2014-09-03
 
- * set `code` property on CSRF token errors
+  * Set `code` property on CSRF token errors
 
@@ -29,3 +44,3 @@ 1.5.0 / 2014-08-24
 
- * add `ignoreMethods` option
+  * Add `ignoreMethods` option
 
@@ -35,3 +50,3 @@ 1.4.1 / 2014-08-22
 
- * csrf-tokens -> csrf
+  * Use `csrf-tokens` instead of `csrf`
  
@@ -41,4 +56,4 @@ 1.4.0 / 2014-07-30
 
- * Support changing `req.session` after `csurf` middleware
-   - Calling `res.csrfToken()` after `req.session.destroy()` will now work
+  * Support changing `req.session` after `csurf` middleware
+    - Calling `res.csrfToken()` after `req.session.destroy()` will now work
 
@@ -48,3 +63,3 @@ 1.3.0 / 2014-07-03
 
- * add support for environments without `res.cookie` (connect@3)
+  * Add support for environments without `res.cookie` (connect@3)
 
@@ -54,3 +69,3 @@ 1.2.2 / 2014-06-18
 
- * bump csrf-tokens
+  * deps: csrf-tokens@~2.0.0
 
@@ -60,3 +75,3 @@ 1.2.1 / 2014-06-09
 
- * refactor to use csrf-tokens
+  * Refactor to use `csrf-tokens` module
 
@@ -66,3 +81,3 @@ 1.2.0 / 2014-05-13
 
- * add support for double-submit cookie
+  * Add support for double-submit cookie
 
@@ -72,2 +87,2 @@ 1.1.0 / 2014-04-06
 
- * add constant-time string compare
+  * Add constant-time string compare

package.json

 {
   "name": "csurf",
   "description": "CSRF token middleware",
-  "version": "1.6.3",
+  "version": "1.6.4",
   "author": "Jonathan Ong <me@jongleberry.com> (http://jongleberry.com)",
@@ -14,13 +14,13 @@ "contributors": [
     "cookie-signature": "1.0.5",
-    "csrf": "~2.0.2",
-    "http-errors": "~1.2.7"
+    "csrf": "~2.0.3",
+    "http-errors": "~1.2.8"
   },
   "devDependencies": {
-    "body-parser": "~1.9.2",
+    "body-parser": "~1.10.0",
     "connect": "3",
     "cookie-parser": "~1.3.3",
     "cookie-session": "~1.1.0",
-    "istanbul": "0.3.2",
-    "mocha": "~2.0.1",
-    "supertest": "~0.14.0"
+    "istanbul": "0.3.5",
+    "mocha": "~2.1.0",
+    "supertest": "~0.15.0"
   },
@@ -27,0 +27,0 @@ "engines": {

README.md

@@ -10,5 +10,5 @@ # csurf
 
-Requires either a session middleware or [cookie-parser](https://github.com/expressjs/cookie-parser) to be initialized first.
-- [session](https://github.com/expressjs/session)
-- [cookie-session](https://github.com/expressjs/cookie-session)
+Requires either a session middleware or [cookie-parser](https://www.npmjs.com/package/cookie-parser) to be initialized first.
+- [express-session](https://www.npmjs.com/package/express-session)
+- [cookie-session](https://www.npmjs.com/package/cookie-session)
 
@@ -15,0 +15,0 @@ ### Install

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

12540

increased by4.2%

Dependency changes

• Updatedcsrf@~2.0.3

• Updatedhttp-errors@~1.2.8