Skip to content

chore: Bump http-proxy-middleware from 3.0.5 to 3.0.7#11127

Open
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/npm_and_yarn/http-proxy-middleware-3.0.7
Open

chore: Bump http-proxy-middleware from 3.0.5 to 3.0.7#11127
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/npm_and_yarn/http-proxy-middleware-3.0.7

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 20, 2026

Copy link
Copy Markdown
Contributor

Bumps http-proxy-middleware from 3.0.5 to 3.0.7.

Release notes

Sourced from http-proxy-middleware's releases.

v3.0.7

What's Changed

Full Changelog: chimurai/http-proxy-middleware@v3.0.6...v3.0.7

v3.0.6

What's Changed

... (truncated)

Changelog

Sourced from http-proxy-middleware's changelog.

v3.0.7

  • fix(fixRequestBody): harden form-data stringification

v3.0.6

  • fix(types): fix Logger type
  • fix(error-response-plugin): sanitize input
  • fix(router): harden proxy-table matching (exact host for host+path keys, prefix-only path matching) to prevent routing bypass
Commits
  • 8cc4eba chore(package.json): v3.0.7 (#1261)
  • c13a99c fix(fixRequestBody): harden form-data stringification (#1259)
  • ea0bb98 chore(package.json): v3.0.6 (#1256)
  • f377520 fix(router): harden proxy-table matching (#1254)
  • f6be2c6 chore(yarn.lock): bump to follow-redirects 1.16.0
  • a36f009 ci(publish.yml): npm stage publish
  • 3471790 ci(github actions): update publish.yml for 3.x branch
  • bcf1864 build(vscode): use workspace version of TypeScript (#1173)
  • 48ed092 docs(examples): fix websocket example (#1170)
  • 0fe7c24 chore(package.json): bump dev-deps (#1171)
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for http-proxy-middleware since your current version.


@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Jun 20, 2026
@github-actions github-actions Bot added the pr:community Contribution from Cube.js community members. label Jun 20, 2026
Bumps [http-proxy-middleware](https://github.com/chimurai/http-proxy-middleware) from 3.0.5 to 3.0.7.
- [Release notes](https://github.com/chimurai/http-proxy-middleware/releases)
- [Changelog](https://github.com/chimurai/http-proxy-middleware/blob/v3.0.7/CHANGELOG.md)
- [Commits](chimurai/http-proxy-middleware@v3.0.5...v3.0.7)

---
updated-dependencies:
- dependency-name: http-proxy-middleware
  dependency-version: 3.0.7
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot changed the title build(deps): bump http-proxy-middleware from 3.0.5 to 3.0.7 chore: Bump http-proxy-middleware from 3.0.5 to 3.0.7 Jul 6, 2026
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/http-proxy-middleware-3.0.7 branch from 2607036 to ddc6f86 Compare July 6, 2026 14:28
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code pr:community Contribution from Cube.js community members.

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants