[PR #957] [MERGED] Bump express-rate-limit from 7.5.0 to 7.5.1 in the prod-patch-updates group #17418

New Issue

GiteaMirror · 2026-05-18T17:51:51-05:00

GiteaMirror commented

2026-05-18 17:51:51 -05:00

📋 Pull Request Information

Original PR: https://github.com/fosrl/pangolin/pull/957
Author: @dependabot[bot]
Created: 6/23/2025
Status: ✅ Merged
Merged: 6/23/2025
Merged by: @oschwartz10612

Base: main ← Head: dependabot/npm_and_yarn/prod-patch-updates-86f5eb48c3

📝 Commits (1)

2918a3f Bump express-rate-limit in the prod-patch-updates group

📊 Changes

2 files changed (+6 additions, -6 deletions)

View changed files

📝 package-lock.json (+5 -5)
📝 package.json (+1 -1)

📄 Description

Bumps the prod-patch-updates group with 1 update: express-rate-limit.

Updates express-rate-limit from 7.5.0 to 7.5.1

Release notes

Sourced from express-rate-limit's releases.

v7.5.1

You can view the changelog here.

Commits

f228717 7.5.1
aede183 7.5.1 changelog
62bfcae fix: type of DraftHeadersVersion (#506)
e2d7fa0 docs: add note about ietf rate limit headers draft 9
2b84976 fix: allow using express v4.11+, since v5 is out of beta
89ab85a build(deps): bump tar-fs, @babel/code-frame (#501)
60530e1 chore: fix lint issues
98bf0a3 build(deps): bump tar-fs (#499)
78f42a6 build(deps-dev): bump axios from 1.7.5 to 1.9.0 (#498)
6a6e699 Add unit test for resetKey method in MemoryStore (#496)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

_{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

## 📋 Pull Request Information **Original PR:** https://github.com/fosrl/pangolin/pull/957 **Author:** [@dependabot[bot]](https://github.com/apps/dependabot) **Created:** 6/23/2025 **Status:** ✅ Merged **Merged:** 6/23/2025 **Merged by:** [@oschwartz10612](https://github.com/oschwartz10612) **Base:** `main` ← **Head:** `dependabot/npm_and_yarn/prod-patch-updates-86f5eb48c3` --- ### 📝 Commits (1) - [`2918a3f`](https://github.com/fosrl/pangolin/commit/2918a3f767222ab6e491b50c40fae427044d629c) Bump express-rate-limit in the prod-patch-updates group ### 📊 Changes **2 files changed** (+6 additions, -6 deletions) <details> <summary>View changed files</summary> 📝 `package-lock.json` (+5 -5) 📝 `package.json` (+1 -1) </details> ### 📄 Description Bumps the prod-patch-updates group with 1 update: [express-rate-limit](https://github.com/express-rate-limit/express-rate-limit). Updates `express-rate-limit` from 7.5.0 to 7.5.1 <details> <summary>Release notes</summary> Sourced from <a href="https://github.com/express-rate-limit/express-rate-limit/releases">express-rate-limit's releases</a>. <blockquote> <h2>v7.5.1</h2> You can view the changelog <a href="https://express-rate-limit.mintlify.app/reference/changelog">here</a>. </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/express-rate-limit/express-rate-limit/commit/f2287179c3785fe0377006d23cb9fa3c8bdb2574"><code>f228717</code></a> 7.5.1</li> <li><a href="https://github.com/express-rate-limit/express-rate-limit/commit/aede183142909f76145f42e741d6920f2659c3d7"><code>aede183</code></a> 7.5.1 changelog</li> <li><a href="https://github.com/express-rate-limit/express-rate-limit/commit/62bfcaec8e9f95d2200c67f30510a784df359eb2"><code>62bfcae</code></a> fix: type of DraftHeadersVersion (<a href="https://redirect.github.com/express-rate-limit/express-rate-limit/issues/506">#506</a>)</li> <li><a href="https://github.com/express-rate-limit/express-rate-limit/commit/e2d7fa073735623edcaa253cdd7ba007b4b0685f"><code>e2d7fa0</code></a> docs: add note about ietf rate limit headers draft 9</li> <li><a href="https://github.com/express-rate-limit/express-rate-limit/commit/2b849762a1102600f2ef1902896b0341b084534d"><code>2b84976</code></a> fix: allow using express v4.11+, since v5 is out of beta</li> <li><a href="https://github.com/express-rate-limit/express-rate-limit/commit/89ab85ae581f0d3ccccc067d7c9b4648719b398d"><code>89ab85a</code></a> build(deps): bump tar-fs, <code>@babel/code-frame</code> (<a href="https://redirect.github.com/express-rate-limit/express-rate-limit/issues/501">#501</a>)</li> <li><a href="https://github.com/express-rate-limit/express-rate-limit/commit/60530e1e4d76e1f74c85c6535d49a81a5d30acc9"><code>60530e1</code></a> chore: fix lint issues</li> <li><a href="https://github.com/express-rate-limit/express-rate-limit/commit/98bf0a3ebb15714f723ba3cc5658b6ef05151e7a"><code>98bf0a3</code></a> build(deps): bump tar-fs (<a href="https://redirect.github.com/express-rate-limit/express-rate-limit/issues/499">#499</a>)</li> <li><a href="https://github.com/express-rate-limit/express-rate-limit/commit/78f42a62ee554b6e02a2ea3ba7a56eb5b7f42320"><code>78f42a6</code></a> build(deps-dev): bump axios from 1.7.5 to 1.9.0 (<a href="https://redirect.github.com/express-rate-limit/express-rate-limit/issues/498">#498</a>)</li> <li><a href="https://github.com/express-rate-limit/express-rate-limit/commit/6a6e699e568b8a324c90ff49dc871f5ed6bf0eb3"><code>6a6e699</code></a> Add unit test for resetKey method in MemoryStore (<a href="https://redirect.github.com/express-rate-limit/express-rate-limit/issues/496">#496</a>)</li> <li>Additional commits viewable in <a href="https://github.com/express-rate-limit/express-rate-limit/compare/v7.5.0...v7.5.1">compare view</a></li> </ul> </details> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=express-rate-limit&package-manager=npm_and_yarn&previous-version=7.5.0&new-version=7.5.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore <dependency name> major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore <dependency name> minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore <dependency name>` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore <dependency name>` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore <dependency name> <ignore condition>` will remove the ignore condition of the specified dependency and ignore conditions </details> --- 🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.

GiteaMirror added the pull-request label 2026-05-18 17:51:51 -05:00

GiteaMirror closed this issue

2026-05-18 17:51:53 -05:00

Sign in to join this conversation.

Branches Tags

main

dependabot/npm_and_yarn/prod-patch-updates-94425a55d0

dependabot/npm_and_yarn/dev-minor-updates-4aaf4dbce4

dependabot/go_modules/install/minor-updates-a249525a56

dev

dependabot/github_actions/actions/stale-10.3.0

dependabot/github_actions/docker/login-action-4.2.0

dependabot/npm_and_yarn/qs-6.15.2

rdp-ssh

crowdin_dev

auto-update

fix-site-delete

fix-3104

exit-node-reconnect

fix-logoUrl

button-to-rebuild-association

dependabot/npm_and_yarn/brace-expansion-5.0.6

copilot/fix-documentation-input-output-types

dependabot/github_actions/sigstore/cosign-installer-4.1.2

redis

resource-policies

dependabot/npm_and_yarn/next-15.5.18

dependabot/npm_and_yarn/fast-uri-3.1.2

s3

dependabot/npm_and_yarn/fast-xml-builder-1.2.0

dependabot/npm_and_yarn/axios-1.15.2

dependabot/npm_and_yarn/next-intl-4.9.2

dependabot/docker/node-26-alpine

dependabot/docker/docker/library/node-26-slim

dependabot/npm_and_yarn/multi-7bdfbe8666

dependabot/npm_and_yarn/multi-d2fd79378c

dependabot/npm_and_yarn/uuid-14.0.0

dependabot/npm_and_yarn/postcss-8.5.10

dependabot/github_actions/actions/setup-node-6.4.0

dependabot/npm_and_yarn/next-16.2.1

dependabot/npm_and_yarn/recharts-3.8.1

cross-org-idp

breakout-sites-tables

ssh

delete-account

msg-delivery

org-only-idp

cicd

patch

site-targets-auto-login

1 Participants

Notifications

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/pangolin#17418