moleculer-web
Advanced tools
moleculer-web - npm Package Compare versions
Comparing version 0.10.5 to 0.10.6
@@ -0,1 +1,11 @@ | ||
| <a name="0.10.6"></a> | ||
| # 0.10.6 (2023-07-15) | ||
| ## Changes | ||
| - update qs package to mitigate CVE-2022-24999. [#320](https://github.com/moleculerjs/moleculer-web/pull/320) | ||
| - correct types for route middleware functions. [#327](https://github.com/moleculerjs/moleculer-web/pull/327) | ||
| - incorrect key for calloptions type. [#328](https://github.com/moleculerjs/moleculer-web/pull/328) | ||
| - add support for qs options. [#326](https://github.com/moleculerjs/moleculer-web/pull/326) | ||
| ----------------------------- | ||
| <a name="0.10.5"></a> | ||
@@ -2,0 +12,0 @@ # 0.10.5 (2022-12-17) |
@@ -14,2 +14,3 @@ declare module "moleculer-web" { | ||
| import { Errors } from "moleculer"; | ||
| import { IParseOptions } from 'qs'; | ||
@@ -407,7 +408,7 @@ // RateLimit | ||
| type routeMiddleware = (req: IncomingMessage, res: ServerResponse, next: NextFunction) => void; | ||
| type routeMiddleware = (req: IncomingRequest, res: GatewayResponse, next: NextFunction) => void; | ||
| type routeMiddlewareError = ( | ||
| err: any, | ||
| req: IncomingMessage, | ||
| res: ServerResponse, | ||
| req: IncomingRequest, | ||
| res: GatewayResponse, | ||
| next: NextFunction, | ||
@@ -532,3 +533,3 @@ ) => void; | ||
| */ | ||
| callingOptions?: CallingOptions; | ||
| callOptions?: CallingOptions; | ||
| /** | ||
@@ -703,2 +704,8 @@ * If alias handler not found, `api` will try to call service by action name<br> | ||
| /** | ||
| * Options passed on to qs | ||
| * @see https://moleculer.services/docs/0.14/moleculer-web.html#Query-string-parameters | ||
| */ | ||
| qsOptions?: IParseOptions; | ||
| /** | ||
| * for extra setting's keys | ||
@@ -705,0 +712,0 @@ */ |
| { | ||
| "name": "moleculer-web", | ||
| "version": "0.10.5", | ||
| "version": "0.10.6", | ||
| "description": "Official API Gateway service for Moleculer framework", | ||
@@ -55,6 +55,6 @@ "main": "index.js", | ||
| "nodemon": "^2.0.13", | ||
| "socket.io": "^4.3.1", | ||
| "socket.io": "^4.7.1", | ||
| "spdy": "^4.0.2", | ||
| "supertest": "^6.1.6", | ||
| "webpack": "^5.58.2", | ||
| "webpack": "^5.88.1", | ||
| "webpack-dev-middleware": "^5.2.1" | ||
@@ -75,3 +75,3 @@ }, | ||
| "path-to-regexp": "^3.1.0", | ||
| "qs": "^6.10.1", | ||
| "qs": "^6.11.0", | ||
| "serve-static": "^1.14.1" | ||
@@ -78,0 +78,0 @@ }, |
@@ -956,3 +956,3 @@ /* | ||
| if (questionIdx !== -1) { | ||
| query = queryString.parse(req.url.substring(questionIdx + 1)); | ||
| query = queryString.parse(req.url.substring(questionIdx + 1), this.settings.qsOptions); | ||
| url = req.url.substring(0, questionIdx); | ||
@@ -959,0 +959,0 @@ } |
New alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Fixed alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
- increased by0.54%
133462
- Lines of code
- increased by0.21%
2805
Dependency changes
Updatedqs@^6.11.0