Skip to content

Bump http-proxy-middleware and netlify-cli#15968

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/multi-c8e7c646c3
Open

Bump http-proxy-middleware and netlify-cli#15968
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/multi-c8e7c646c3

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 23, 2026

Copy link
Copy Markdown
Contributor

Bumps http-proxy-middleware to 3.0.7 and updates ancestor dependency netlify-cli. These dependencies need to be updated together.

Updates http-proxy-middleware from 2.0.7 to 3.0.7

Release notes

Sourced from http-proxy-middleware's releases.

v3.0.7

What's Changed

Full Changelog: chimurai/http-proxy-middleware@v3.0.6...v3.0.7

v3.0.6

What's Changed

... (truncated)

Changelog

Sourced from http-proxy-middleware's changelog.

v3.0.7

  • fix(fixRequestBody): harden form-data stringification

v3.0.6

  • fix(types): fix Logger type
  • fix(error-response-plugin): sanitize input
  • fix(router): harden proxy-table matching (exact host for host+path keys, prefix-only path matching) to prevent routing bypass

v3.0.5

  • fix(fixRequestBody): check readableLength (#1096)

v3.0.4

  • fix(fixRequestBody): handle invalid request (#1092)
  • fix(fixRequestBody): prevent multiple .write() calls (#1089)
  • fix(websocket): handle errors in handleUpgrade (#823)
  • ci(package): patch http-proxy (#1084)
  • fix(fixRequestBody): support multipart/form-data (#896)
  • feat(types): export Plugin type (#1071)

v3.0.3

  • fix(pathFilter): handle errors

v3.0.2

  • refactor(dependency): replace is-plain-obj with is-plain-object (#1031)
  • chore(package): upgrade to eslint v9 (#1032)
  • fix(logger-plugin): handle undefined protocol and hostname (#1036)

v3.0.1

  • fix(type): fix RequestHandler return type (#980)
  • refactor(errors): improve pathFilter error message (#987)
  • fix(logger-plugin): fix missing target port (#989)
  • ci(package): npm package provenance (#991)
  • fix(logger-plugin): log target port when router option is used (#1001)
  • refactor: fix circular dependencies (#1010)
  • fix(fix-request-body): support '+json' content-type suffix (#1015)

v3.0.0

This release contains some breaking changes.

Please read the V3 discussion chimurai/http-proxy-middleware#768 or follow the MIGRATION.md guide.

... (truncated)

Commits
  • 8cc4eba chore(package.json): v3.0.7 (#1261)
  • c13a99c fix(fixRequestBody): harden form-data stringification (#1259)
  • ea0bb98 chore(package.json): v3.0.6 (#1256)
  • f377520 fix(router): harden proxy-table matching (#1254)
  • f6be2c6 chore(yarn.lock): bump to follow-redirects 1.16.0
  • a36f009 ci(publish.yml): npm stage publish
  • 3471790 ci(github actions): update publish.yml for 3.x branch
  • bcf1864 build(vscode): use workspace version of TypeScript (#1173)
  • 48ed092 docs(examples): fix websocket example (#1170)
  • 0fe7c24 chore(package.json): bump dev-deps (#1171)
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for http-proxy-middleware since your current version.

Install script changes

This version modifies prepare script that runs during installation. Review the package contents before updating.


Updates netlify-cli from 18.1.0 to 26.1.0

Release notes

Sourced from netlify-cli's releases.

v26.1.0

26.1.0 (2026-05-31)

Features

  • add support for new function config properties (#8278) (826fde7)

Bug Fixes

v26.0.2

26.0.2 (2026-05-15)

Bug Fixes

  • deps: unpin all dependencies (#8171) (47da71e)
  • deps: update dependency @​netlify/blobs to ^10.7.5 (#8245) (54a2334)
  • deps: update dependency @​netlify/dev to ^4.18.3 (#8246) (7141b22)
  • deps: update dependency @​netlify/dev to ^4.18.4 (#8253) (0a70cf4)
  • deps: update dependency @​netlify/functions to ^5.2.1 (#8254) (5d11c29)
  • deps: update dependency uuid to v13.0.1 [security] (#8193) (b267a5e)
  • deps: update netlify packages (#8247) (0875c46)
  • deps: update netlify packages (#8251) (6194536)

v26.0.1

26.0.1 (2026-05-04)

Bug Fixes

  • adjust import path to account for function specific directory (#8221) (e439393)
  • deps: update dependency @​fastify/static to v9.1.1 [security] (#8165) (c3ffebf)
  • don't use inquirer for non-interactive variant of "database migrations new" command (#8232) (41fc777)
  • filter out more user error messages (#8230) (c94f4b7)

v26.0.0

26.0.0 (2026-04-28)

⚠ BREAKING CHANGES

  • add support for new Netlify Database primitive (#8212)

... (truncated)

Changelog

Sourced from netlify-cli's changelog.

26.1.0 (2026-05-31)

Features

  • add support for new function config properties (#8278) (826fde7)

Bug Fixes

26.0.2 (2026-05-15)

Bug Fixes

  • deps: unpin all dependencies (#8171) (47da71e)
  • deps: update dependency @​netlify/blobs to ^10.7.5 (#8245) (54a2334)
  • deps: update dependency @​netlify/dev to ^4.18.3 (#8246) (7141b22)
  • deps: update dependency @​netlify/dev to ^4.18.4 (#8253) (0a70cf4)
  • deps: update dependency @​netlify/functions to ^5.2.1 (#8254) (5d11c29)
  • deps: update dependency uuid to v13.0.1 [security] (#8193) (b267a5e)
  • deps: update netlify packages (#8247) (0875c46)
  • deps: update netlify packages (#8251) (6194536)

26.0.1 (2026-05-04)

Bug Fixes

  • adjust import path to account for function specific directory (#8221) (e439393)
  • deps: update dependency @​fastify/static to v9.1.1 [security] (#8165) (c3ffebf)
  • don't use inquirer for non-interactive variant of "database migrations new" command (#8232) (41fc777)
  • filter out more user error messages (#8230) (c94f4b7)

26.0.0 (2026-04-28)

⚠ BREAKING CHANGES

  • add support for new Netlify Database primitive (#8212)

Features

  • add support for new Netlify Database primitive (#8212) (a153489)

... (truncated)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
Bump http-proxy-middleware and netlify-cli
10b7b44 
Bumps [http-proxy-middleware](https://github.com/chimurai/http-proxy-middleware) to 3.0.7 and updates ancestor dependency [netlify-cli](https://github.com/netlify/cli). These dependencies need to be updated together.


Updates `http-proxy-middleware` from 2.0.7 to 3.0.7
- [Release notes](https://github.com/chimurai/http-proxy-middleware/releases)
- [Changelog](https://github.com/chimurai/http-proxy-middleware/blob/v3.0.7/CHANGELOG.md)
- [Commits](chimurai/http-proxy-middleware@v2.0.7...v3.0.7)

Updates `netlify-cli` from 18.1.0 to 26.1.0
- [Release notes](https://github.com/netlify/cli/releases)
- [Changelog](https://github.com/netlify/cli/blob/main/CHANGELOG.md)
- [Commits](netlify/cli@v18.1.0...v26.1.0)

---
updated-dependencies:
- dependency-name: http-proxy-middleware
  dependency-version: 3.0.7
  dependency-type: indirect
- dependency-name: netlify-cli
  dependency-version: 26.1.0
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot requested a review from a team as a code owner June 23, 2026 08:36
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jun 23, 2026
@netlify

netlify Bot commented Jun 23, 2026
edited
Loading

Copy link
Copy Markdown

Deploy Preview for devopsdays-web ready!

Name Link
🔨 Latest commit 10b7b44
🔍 Latest deploy log https://app.netlify.com/projects/devopsdays-web/deploys/6a3a459c2865c300086f3f57
😎 Deploy Preview https://deploy-preview-15968--devopsdays-web.netlify.app
📱 Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.
🤖 Make changes Run an agent on this branch

To edit notification comments on pull requests, go to your Netlify project configuration.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants