[PR #4760] [MERGED] Bump expressJS from 4.18.2 -> 4.21.2 #4752

Closed
opened 2026-02-22 18:36:27 -05:00 by yindo · 0 comments
Owner

📋 Pull Request Information

Original PR: https://github.com/Mintplex-Labs/anything-llm/pull/4760
Author: @timothycarambat
Created: 12/10/2025
Status: Merged
Merged: 12/10/2025
Merged by: @timothycarambat

Base: masterHead: chore/bump-express-js


📝 Commits (1)

  • 325f4b1 Bump expressJS from 4.18.2 -> 4.21.2 to patch body-parser CVE-2024-45590 as general maintence task'

📊 Changes

5 files changed (+171 additions, -203 deletions)

View changed files

📝 .github/workflows/dev-build.yaml (+1 -1)
📝 collector/package.json (+1 -1)
📝 collector/yarn.lock (+67 -83)
📝 server/package.json (+1 -1)
📝 server/yarn.lock (+101 -117)

📄 Description

Pull Request Type

  • feat
  • 🐛 fix
  • ♻️ refactor
  • 💄 style
  • 🔨 chore
  • 📝 docs

Bumps ExpressJS to patch body-parser CVE-2024-45590 as general maintenance task. Reported from Docker Scout


🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.

## 📋 Pull Request Information **Original PR:** https://github.com/Mintplex-Labs/anything-llm/pull/4760 **Author:** [@timothycarambat](https://github.com/timothycarambat) **Created:** 12/10/2025 **Status:** ✅ Merged **Merged:** 12/10/2025 **Merged by:** [@timothycarambat](https://github.com/timothycarambat) **Base:** `master` ← **Head:** `chore/bump-express-js` --- ### 📝 Commits (1) - [`325f4b1`](https://github.com/Mintplex-Labs/anything-llm/commit/325f4b14a0b769cb6f1a7b5c6ff03dbd2b17d09e) Bump expressJS from 4.18.2 -> 4.21.2 to patch body-parser CVE-2024-45590 as general maintence task' ### 📊 Changes **5 files changed** (+171 additions, -203 deletions) <details> <summary>View changed files</summary> 📝 `.github/workflows/dev-build.yaml` (+1 -1) 📝 `collector/package.json` (+1 -1) 📝 `collector/yarn.lock` (+67 -83) 📝 `server/package.json` (+1 -1) 📝 `server/yarn.lock` (+101 -117) </details> ### 📄 Description ### Pull Request Type <!-- For change type, change [ ] to [x]. --> - [ ] ✨ feat - [ ] 🐛 fix - [ ] ♻️ refactor - [ ] 💄 style - [x] 🔨 chore - [ ] 📝 docs Bumps ExpressJS to patch `body-parser` CVE-2024-45590 as general maintenance task. Reported from Docker Scout --- <sub>🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.</sub>
yindo added the pull-request label 2026-02-22 18:36:27 -05:00
yindo closed this issue 2026-02-22 18:36:28 -05:00
yindo changed title from [PR #4760] Bump expressJS from 4.18.2 -> 4.21.2 to [PR #4760] [MERGED] Bump expressJS from 4.18.2 -> 4.21.2 2026-06-05 15:20:12 -04:00
Sign in to join this conversation.
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: Mintplex-Labs/anything-llm#4752