build(deps-dev): bump cookie-session from 2.0.0 to 2.1.0 by dependabot[bot] · Pull Request #6399

build(deps-dev): bump cookie-session from 2.0.0 to 2.1.0 by dependabot[bot] · Pull Request #6399 · expressjs/express

Bumps cookie-session from 2.0.0 to 2.1.0.

Release notes

Sourced from cookie-session's releases.

2.1.0

Fix loading sessions with special keys

deps: cookies@0.9.1

Add partitioned option for CHIPS support

Add priority option for Priority cookie support

Fix accidental cookie name/value truncation when given invalid chars

Fix maxAge option to reject invalid values

Remove quotes from returned quoted cookie value

Use req.socket over deprecated req.connection

pref: small lookup regexp optimization

Changelog

Sourced from cookie-session's changelog.

2.1.0 / 2024-01-23

Fix loading sessions with special keys

deps: cookies@0.9.1

Add partitioned option for CHIPS support

Add priority option for Priority cookie support

Fix accidental cookie name/value truncation when given invalid chars

Fix maxAge option to reject invalid values

Remove quotes from returned quoted cookie value

Use req.socket over deprecated req.connection

pref: small lookup regexp optimization

Commits

ff7c2b2 2.1.0
51e7ce4 Fix loading sessions with special keys
16c12cf tests: add more tests around signed cookies
0dc9683 deps: cookies@0.9.1
f77fa09 build: Node.js@20.11
db0ff50 build: supertest@6.3.4
e060228 build: Node.js@21.6
7dc0c5d docs: update link to cookie limits
08e8d62 build: eslint-plugin-import@2.29.1
0c4d5af build: eslint@8.56.0
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)