[Snyk] Upgrade body-parser from 1.18.3 to 2.2.0

[Gabo-Tech]

Snyk has created this PR to upgrade body-parser from 1.18.3 to 2.2.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

⚠️ Warning: This PR contains major version upgrade(s), and may be a breaking change.

• The recommended version is 14 versions ahead of your current version.

• The recommended version was released 6 months ago.

Release notes

Package name: body-parser

• 2.2.0 - 2025-03-27
  

  What's Changed

  • test: remove --bail from test script by @ Phillip9587 in #583
  • ci: separate lint step by @ Phillip9587 in #582
  • fix: remove skip of test by @ bjohansebas in #589
  • ci: use lcovonly reporter for the test-ci script by @ Phillip9587 in #584
  • docs: remove security file by @ bjohansebas in #590
  • fix(docs): replace var with let or const in ReadMe by @ Binilkks in #581
  • chore: update test dependencies by @ Phillip9587 in #585
  • dep: upgrade iconv-lite to ^0.6.3 by @ aqeelat in #588
  • Refactor parameterCount to optimize performance by @ wojtekmaj in #591
  • refactor: normalize common options for all parsers by @ Phillip9587 in #551
  • refactor: cleanup parser options by @ Phillip9587 in #596
  • Release 2.2.0 by @ UlisesGascon in #597

  New Contributors

  • @ Binilkks made their first contribution in #581
  • @ aqeelat made their first contribution in #588
  • @ wojtekmaj made their first contribution in #591

  Full Changelog: v2.1.0...v2.2.0

• 2.1.0 - 2025-02-10
  

  What's Changed

  • fix: update package.json engines field to reflect minimum supported node version by @ Phillip9587 in #541
  • fix: remove brotli support check by @ Phillip9587 in #542
  • fix: remove unpipe package and use native unpipe method by @ Phillip9587 in #543
  • Remove unused devDependency methods by @ Phillip9587 in #548
  • ci: updated github actions ci workflow by @ Phillip9587 in #546
  • Remove devDependency safe-buffer by @ Phillip9587 in #547
  • test: remove AsyncLocalStorage check by @ Phillip9587 in #549
  • perf: use the node require cache instead of custom caching by @ Phillip9587 in #562
  • ci: disable fail-fast in CI workflow by @ Phillip9587 in #565
  • chore(deps): update type-is to v2.0.0 by @ Phillip9587 in #571
  • refactor: prefix built-in node module imports by @ Phillip9587 in #573
  • fix: remove obsolete dependency destroy by @ Phillip9587 in #570
  • cleanup: remove obsolete test env file by @ Phillip9587 in #569
  • Refactor decompression stream creation to remove code duplication by @ Phillip9587 in #564
  • Add caret for body-parser dependencies by @ wesleytodd in #577
  • ci: add CodeQL (SAST) by @ bjohansebas in #559
  • chore(deps): update debug to ^4.4.0 by @ Phillip9587 in #579
  • Release v2.1.0 by @ wesleytodd in #578

  Full Changelog: 2.0.1...v2.1.0

• 2.0.2 - 2024-10-31
  

  What's Changed

  • fix: update package.json engines field to reflect minimum supported node version by @ Phillip9587 in #541
  • fix: remove brotli support check by @ Phillip9587 in #542
  • fix: remove unpipe package and use native unpipe method by @ Phillip9587 in #543
  • Remove unused devDependency methods by @ Phillip9587 in #548
  • ci: updated github actions ci workflow by @ Phillip9587 in #546

  New Contributors

  • @ Phillip9587 made their first contribution in #541

  Full Changelog: 2.0.1...2.0.2

• 2.0.1 - 2024-09-10
  

  What's Changed

  • Fix defaulting to extended url parsing by @ blakeembrey in #536
  • Release: 2.0.1 by @ UlisesGascon in #537

  New Contributors

  • @ blakeembrey made their first contribution in #536

  Full Changelog: 2.0.0...2.0.1

• 2.0.0 - 2024-09-10
  

  What's Changed

  Important

  • add brotli support #406
  • Breaking Change: Node.js 18 is the minimum supported version

  Details

  • chore: add support for OSSF scorecard reporting by @ inigomarquinez in #522
  • ci: fix errors in ci github action for node 8 and 9 by @ inigomarquinez in #523
  • fix: pin to [email protected] by @ wesleytodd in #527
  • deps: [email protected] by @ melikhov-dev in #521
  • Drop support for less than LTS node versions in v2 by @ wesleytodd in #528
  • Also use the qs module for the simple parser by @ papandreou in #387
  • raw-body@3 by @ wesleytodd in #529
  • urlencoded: Support iso-8859-1, utf8 sentinel, and numeric entities by @ papandreou in #326
  • Added support for brotli ('br') content-encoding by @ danielgindi in #406
  • Add OSSF Scorecard badge by @ bjohansebas in #531
  • Linter by @ UlisesGascon in #534
  • Release: 1.20.3 by @ UlisesGascon in #535

  New Contributors

  • @ inigomarquinez made their first contribution in #522
  • @ wesleytodd made their first contribution in #527
  • @ melikhov-dev made their first contribution in #521
  • @ papandreou made their first contribution in #387
  • @ danielgindi made their first contribution in #406
  • @ bjohansebas made their first contribution in #531
  • @ UlisesGascon made their first contribution in #534

  Full Changelog: 1.20.2...2.0.0

• 2.0.0-beta.2 - 2023-02-23
  

  This incorporates all changes after 1.19.1 up to 1.20.2.

  • Remove deprecated bodyParser() combination middleware
  • deps: [email protected]
    • Add DEBUG_HIDE_DATE environment variable
    • Change timer to per-namespace instead of global
    • Change non-TTY date format
    • Remove DEBUG_FD environment variable support
    • Support 256 namespace colors
  • deps: [email protected]
    • Add encoding cp720
    • Add encoding UTF-32
  • deps: [email protected]
• 2.0.0-beta.1 - 2021-12-18
• 1.20.3 - 2024-09-09
  

  What's Changed

  Important

  • deps: [email protected]
  • add depth option to customize the depth level in the parser
  • IMPORTANT: The default depth level for parsing URL-encoded data is now 32 (previously was Infinity). Documentation

  Other changes

  • chore: add support for OSSF scorecard reporting by @ inigomarquinez in #522
  • ci: fix errors in ci github action for node 8 and 9 by @ inigomarquinez in #523
  • fix: pin to [email protected] by @ wesleytodd in #527
  • deps: [email protected] by @ melikhov-dev in #521
  • Add OSSF Scorecard badge by @ bjohansebas in #531
  • Linter by @ UlisesGascon in #534
  • Release: 1.20.3 by @ UlisesGascon in #535

  New Contributors

  • @ inigomarquinez made their first contribution in #522
  • @ melikhov-dev made their first contribution in #521
  • @ bjohansebas made their first contribution in #531
  • @ UlisesGascon made their first contribution in #534

  Full Changelog: 1.20.2...1.20.3

• 1.20.2 - 2023-02-22
  
  • Fix strict json error message on Node.js 19+
  • deps: content-type@~1.0.5
    • perf: skip value escaping when unnecessary
  • deps: [email protected]
• 1.20.1 - 2022-10-06
  
  • deps: [email protected]
  • perf: remove unnecessary object clone
• 1.20.0 - 2022-04-03
  
  • Fix error message for json parse whitespace in strict
  • Fix internal error when inflated body exceeds limit
  • Prevent loss of async hooks context
  • Prevent hanging when request already read
  • deps: [email protected]
    • Replace internal eval usage with Function constructor
    • Use instance methods on process to check for listeners
  • deps: [email protected]
    • deps: [email protected]
    • deps: [email protected]
  • deps: [email protected]
  • deps: [email protected]
  • deps: [email protected]
    • deps: [email protected]
• 1.19.2 - 2022-02-16
• 1.19.1 - 2021-12-10
• 1.19.0 - 2019-04-26
• 1.18.3 - 2018-05-14

from body-parser GitHub release notes

---

Important

• Warning: This PR contains a major version upgrade, and may be a breaking change.
• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[Gabo-Tech]

🎉 Snyk checks have passed. No issues have been found so far.

✅ security/snyk check is complete. No issues have been found. (View Details)