[PR #4746] [MERGED] bump body-parser patch version #4743

Closed
opened 2026-02-22 18:36:26 -05:00 by yindo · 0 comments
Owner

📋 Pull Request Information

Original PR: https://github.com/Mintplex-Labs/anything-llm/pull/4746
Author: @timothycarambat
Created: 12/9/2025
Status: Merged
Merged: 12/9/2025
Merged by: @timothycarambat

Base: masterHead: chore/bump-body-parser


📝 Commits (1)

  • a54f418 bump body-parser patch version

📊 Changes

4 files changed (+118 additions, -23 deletions)

View changed files

📝 collector/package.json (+1 -1)
📝 collector/yarn.lock (+61 -10)
📝 server/package.json (+1 -1)
📝 server/yarn.lock (+55 -11)

📄 Description

Pull Request Type

  • feat
  • 🐛 fix
  • ♻️ refactor
  • 💄 style
  • 🔨 chore
  • 📝 docs

Relevant Issues

resolves #xxx

What is in this change?

  • Bumps body-parser to 1.20.3 to patch CVE-2024-45590 in image. This was not in code execution path, but we should do it anyway.

Additional Information

Developer Validations

  • I ran yarn lint from the root of the repo & committed changes
  • Relevant documentation has been updated
  • I have tested my code functionality
  • Docker build succeeds locally

🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.

## 📋 Pull Request Information **Original PR:** https://github.com/Mintplex-Labs/anything-llm/pull/4746 **Author:** [@timothycarambat](https://github.com/timothycarambat) **Created:** 12/9/2025 **Status:** ✅ Merged **Merged:** 12/9/2025 **Merged by:** [@timothycarambat](https://github.com/timothycarambat) **Base:** `master` ← **Head:** `chore/bump-body-parser` --- ### 📝 Commits (1) - [`a54f418`](https://github.com/Mintplex-Labs/anything-llm/commit/a54f418e7f33eda7e3d72f4fe6145ff8be24551d) bump `body-parser` patch version ### 📊 Changes **4 files changed** (+118 additions, -23 deletions) <details> <summary>View changed files</summary> 📝 `collector/package.json` (+1 -1) 📝 `collector/yarn.lock` (+61 -10) 📝 `server/package.json` (+1 -1) 📝 `server/yarn.lock` (+55 -11) </details> ### 📄 Description ### Pull Request Type <!-- For change type, change [ ] to [x]. --> - [ ] ✨ feat - [ ] 🐛 fix - [ ] ♻️ refactor - [ ] 💄 style - [x] 🔨 chore - [ ] 📝 docs ### Relevant Issues <!-- Use "resolves #xxx" to auto resolve on merge. Otherwise, please use "connect #xxx" --> resolves #xxx ### What is in this change? - Bumps body-parser to `1.20.3` to patch `CVE-2024-45590` in image. This was not in code execution path, but we should do it anyway. <!-- Describe the changes in this PR that are impactful to the repo. --> ### Additional Information <!-- Add any other context about the Pull Request here that was not captured above. --> ### Developer Validations <!-- All of the applicable items should be checked. --> - [ ] I ran `yarn lint` from the root of the repo & committed changes - [ ] Relevant documentation has been updated - [ ] I have tested my code functionality - [ ] Docker build succeeds locally --- <sub>🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.</sub>
yindo added the pull-request label 2026-02-22 18:36:26 -05:00
yindo closed this issue 2026-02-22 18:36:26 -05:00
yindo changed title from [PR #4746] bump `body-parser` patch version to [PR #4746] [MERGED] bump `body-parser` patch version 2026-06-05 15:20:09 -04:00
Sign in to join this conversation.
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: Mintplex-Labs/anything-llm#4743