Bump compression from 1.7.5 to 1.8.0 #7548

dependabot · 2025-02-13T10:17:21Z

Bumps compression from 1.7.5 to 1.8.0.

Release notes

v1.8.0

What's Changed

Refactor chunkLength function for improved readability and consistency by @Ayoub-Mabrouk in expressjs/compression#203

Refactor toBuffer function to simplify buffer check logic by @Ayoub-Mabrouk in expressjs/compression#201

ci: add CodeQL (SAST) by @bjohansebas in expressjs/compression#204

Use headersSent instead of _header by @maritz in expressjs/compression#129

Bugfix/use write head instead of implicit header by @Icehunter in expressjs/compression#170

feat: add default option by @bjohansebas in expressjs/compression#191

ci: update ci workflow by @bjohansebas in expressjs/compression#206

feat: support for brotli by @bjohansebas in expressjs/compression#194

docs: improve readme by @bjohansebas in expressjs/compression#209

docs: keywords field by @bjohansebas in expressjs/compression#210

refactor: simplify encoding negotiation logic by @bjohansebas in expressjs/compression#213

New Contributors

@Ayoub-Mabrouk made their first contribution in expressjs/compression#203

@maritz made their first contribution in expressjs/compression#129

@Icehunter made their first contribution in expressjs/compression#170

Full Changelog: expressjs/compression@1.7.5...v1.8.0

Changelog

Sourced from compression's changelog.

1.8.0 / 2025-02-10

Use res.headersSent when available

Replace _implicitHeader with writeHead property

add brotli support for versions of node that support it

Add the enforceEncoding option for requests without Accept-Encoding header

Commits

c7ace2c v1.8.0
0af2a9a fix: don't handle * in enforceEncoding (#213)
82c9cb5 fix(docs): keywords field (#210)
0cf7d3f fix(docs): improve readme (#209)
d272132 feat: support for brotli (#194)
96df7c5 improve ci workflow (#206)
f4e596c feat: add default option (#191)
b7d5d77 Bugfix/use write head instead of implicit header (#170)
8e5641c Use headersSent instead of _header (#129)
7b7f84b ci: add CodeQL (SAST) (#204)
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by wesleytodd, a new releaser for compression since your current version.

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [compression](https://github.com/expressjs/compression) from 1.7.5 to 1.8.0. - [Release notes](https://github.com/expressjs/compression/releases) - [Changelog](https://github.com/expressjs/compression/blob/master/HISTORY.md) - [Commits](expressjs/compression@1.7.5...1.8.0) --- updated-dependencies: - dependency-name: compression dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

cypress · 2025-02-13T10:26:34Z

data-hub-frontend Run #59276

Run Properties: Passed #59276 • bfcea9f6f5: Bump compression from 1.7.5 to 1.8.0

Project	`data-hub-frontend`
Branch Review	`dependabot/npm_and_yarn/compression-1.8.0`
Run status	`Passed #59276`
Run duration	`01m 37s`
Commit	`bfcea9f6f5: Bump compression from 1.7.5 to 1.8.0`
Committer	`dependabot[bot]`
View all properties for this run ↗︎

Test results
Failures	`0`
Flaky	`0`
Pending	`0`
Skipped	`0`
Passing	`15`
View all changes introduced in this branch ↗︎

codecov · 2025-02-13T10:38:45Z

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 88.59%. Comparing base (7d55779) to head (bfcea9f).
Report is 9 commits behind head on chore/dependencies-2025-02-14.

Additional details and impacted files

@@                      Coverage Diff                       @@
##           chore/dependencies-2025-02-14    #7548   +/-   ##
==============================================================
  Coverage                          88.59%   88.59%           
==============================================================
  Files                               1151     1151           
  Lines                              17826    17826           
  Branches                            5115     5115           
==============================================================
  Hits                               15793    15793           
  Misses                              2033     2033

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

* Bump cypress from 14.0.2 to 14.0.3 (#7549) Bumps [cypress](https://github.com/cypress-io/cypress) from 14.0.2 to 14.0.3. - [Release notes](https://github.com/cypress-io/cypress/releases) - [Changelog](https://github.com/cypress-io/cypress/blob/develop/CHANGELOG.md) - [Commits](cypress-io/cypress@v14.0.2...v14.0.3) --- updated-dependencies: - dependency-name: cypress dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump compression from 1.7.5 to 1.8.0 (#7548) Bumps [compression](https://github.com/expressjs/compression) from 1.7.5 to 1.8.0. - [Release notes](https://github.com/expressjs/compression/releases) - [Changelog](https://github.com/expressjs/compression/blob/master/HISTORY.md) - [Commits](expressjs/compression@1.7.5...1.8.0) --- updated-dependencies: - dependency-name: compression dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump remark-gfm from 4.0.0 to 4.0.1 (#7546) Bumps [remark-gfm](https://github.com/remarkjs/remark-gfm) from 4.0.0 to 4.0.1. - [Release notes](https://github.com/remarkjs/remark-gfm/releases) - [Commits](remarkjs/remark-gfm@4.0.0...4.0.1) --- updated-dependencies: - dependency-name: remark-gfm dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump mochapack from 2.1.4 to 2.1.5 (#7544) Bumps [mochapack](https://github.com/sysgears/mochapack) from 2.1.4 to 2.1.5. - [Release notes](https://github.com/sysgears/mochapack/releases) - [Commits](https://github.com/sysgears/mochapack/commits/v2.1.5) --- updated-dependencies: - dependency-name: mochapack dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump js-beautify from 1.15.2 to 1.15.3 (#7543) Bumps [js-beautify](https://github.com/beautifier/js-beautify) from 1.15.2 to 1.15.3. - [Release notes](https://github.com/beautifier/js-beautify/releases) - [Changelog](https://github.com/beautifier/js-beautify/blob/main/CHANGELOG.md) - [Commits](beautifier/js-beautify@v1.15.2...v1.15.3) --- updated-dependencies: - dependency-name: js-beautify dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump @faker-js/faker from 9.4.0 to 9.5.0 in /test/sandbox (#7541) Bumps [@faker-js/faker](https://github.com/faker-js/faker) from 9.4.0 to 9.5.0. - [Release notes](https://github.com/faker-js/faker/releases) - [Changelog](https://github.com/faker-js/faker/blob/next/CHANGELOG.md) - [Commits](faker-js/faker@v9.4.0...v9.5.0) --- updated-dependencies: - dependency-name: "@faker-js/faker" dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump actions/checkout from 3 to 4 (#7540) Bumps [actions/checkout](https://github.com/actions/checkout) from 3 to 4. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@v3...v4) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump cirrus-actions/rebase from 1.2 to 1.8 (#7539) Bumps [cirrus-actions/rebase](https://github.com/cirrus-actions/rebase) from 1.2 to 1.8. - [Release notes](https://github.com/cirrus-actions/rebase/releases) - [Commits](cirrus-actions/rebase@1.2...1.8) --- updated-dependencies: - dependency-name: cirrus-actions/rebase dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump @storybook/react from 8.5.3 to 8.5.5 (#7542) * Bump @storybook/react from 8.5.3 to 8.5.5 Bumps [@storybook/react](https://github.com/storybookjs/storybook/tree/HEAD/code/renderers/react) from 8.5.3 to 8.5.5. - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.5.5/code/renderers/react) --- updated-dependencies: - dependency-name: "@storybook/react" dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> * Fixup! --------- Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Christopher <[email protected]> * Bump @sentry/browser from 8.54.0 to 9.1.0 (#7553) * Bump @sentry/browser from 8.54.0 to 9.1.0 Bumps [@sentry/browser](https://github.com/getsentry/sentry-javascript) from 8.54.0 to 9.1.0. - [Release notes](https://github.com/getsentry/sentry-javascript/releases) - [Changelog](https://github.com/getsentry/sentry-javascript/blob/9.1.0/CHANGELOG.md) - [Commits](getsentry/sentry-javascript@8.54.0...9.1.0) --- updated-dependencies: - dependency-name: "@sentry/browser" dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]> * Fixup! --------- Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Christopher <[email protected]> * Bump @faker-js/faker from 9.4.0 to 9.5.0 (#7545) Bumps [@faker-js/faker](https://github.com/faker-js/faker) from 9.4.0 to 9.5.0. - [Release notes](https://github.com/faker-js/faker/releases) - [Changelog](https://github.com/faker-js/faker/blob/next/CHANGELOG.md) - [Commits](faker-js/faker@v9.4.0...v9.5.0) --- updated-dependencies: - dependency-name: "@faker-js/faker" dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Build new dependency iage --------- Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

dependabot bot requested a review from a team as a code owner February 13, 2025 10:17

dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Feb 13, 2025

cgsunkel changed the base branch from main to chore/dependencies-2025-02-14 February 14, 2025 11:14

cgsunkel merged commit 93751b3 into chore/dependencies-2025-02-14 Feb 14, 2025
16 checks passed

cgsunkel deleted the dependabot/npm_and_yarn/compression-1.8.0 branch February 14, 2025 11:14

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump compression from 1.7.5 to 1.8.0 #7548

Bump compression from 1.7.5 to 1.8.0 #7548

dependabot bot commented on behalf of github Feb 13, 2025

cypress bot commented Feb 13, 2025 •

edited

Loading

codecov bot commented Feb 13, 2025 •

edited

Loading

Bump compression from 1.7.5 to 1.8.0 #7548

Bump compression from 1.7.5 to 1.8.0 #7548

Conversation

dependabot bot commented on behalf of github Feb 13, 2025

v1.8.0

What's Changed

New Contributors

1.8.0 / 2025-02-10

cypress bot commented Feb 13, 2025 • edited Loading

data-hub-frontend Run #59276

codecov bot commented Feb 13, 2025 • edited Loading

Codecov Report

cypress bot commented Feb 13, 2025 •

edited

Loading

codecov bot commented Feb 13, 2025 •

edited

Loading