express-fileupload
Advanced tools
Comparing version 1.1.10 to 1.2.0
@@ -97,2 +97,6 @@ const Busboy = require('busboy'); | ||
if (!name && size === 0) { | ||
if (options.useTempFiles) { | ||
cleanup(); | ||
debugLog(options, `Removing the empty file ${field}->${filename}`); | ||
} | ||
return debugLog(options, `Don't add file instance if original name and size are empty`); | ||
@@ -99,0 +103,0 @@ } |
{ | ||
"name": "express-fileupload", | ||
"version": "1.1.10", | ||
"version": "1.2.0", | ||
"author": "Richard Girges <richardgirges@gmail.com>", | ||
@@ -5,0 +5,0 @@ "description": "Simple express file upload middleware that wraps around Busboy", |
@@ -9,2 +9,5 @@ # express-fileupload | ||
# Security Notice | ||
Please install version 1.1.10+ of this package to avoid a security vulnerability in Node/EJS related to JS prototype pollution. This vulnerability is only applicable if you have the `parseNested` option set to `true` (it is `false` by default). | ||
# Install | ||
@@ -11,0 +14,0 @@ ```bash |
1213311
2251
126