Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): update dependency express-rate-limit to v7 #89

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

chore(deps): update dependency express-rate-limit to v7 #89

wants to merge 1 commit into from

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Jan 24, 2025
edited
Loading

This PR contains the following updates:

Package Type Update Change OpenSSF
express-rate-limit dependencies major ^5.0.0 -> ^7.0.0 OpenSSF Scorecard

Release Notes

express-rate-limit/express-rate-limit (express-rate-limit)

v7.5.0

Compare Source

Added
  • Implemented the combined RateLimit header according to the eighth draft of the IETF RateLimit header specificiation. Enable by setting standardHeaders: 'draft-8'.
  • Added a new identifier option, used as the name for the quota policy in the draft-8 headers.
  • Added a new headersDraftVersion validation check to identifies cases where an unsupported version string is passed to the standardHeaders option.

You can view the full changelog here.

v7.4.1

Compare Source

You can view the changelog here.

v7.4.0

Compare Source

You can view the changelog here.

v7.3.1

Compare Source

Fixed
  • Changed error displayed for the creationStack validation check when a store
    with localKeys set to false is used.
  • Improved documentation for the creationStack check.

You can view the full changelog here.

v7.3.0

Compare Source

You can view the changelog here.

v7.2.0

Compare Source

Added
  • Added a new creationStack validation check that looks for instances created
    in a request handler.

You can view the full changelog here.

v7.1.5

Compare Source

Fixed
  • Enable async requestWasSuccessful methods to work as documented.

You can view the full changelog here.

v7.1.4

Compare Source

Fixed
  • Ensure header values are strings rather than numbers, for compatibility with
    Bun.

You can view the full changelog here.

v7.1.3

Compare Source

Changed
  • Loosened peer dependencies to explicitly allow the Express 5 beta. (See
    #​415)

You can view the full changelog here.

v7.1.2

Compare Source

Changed
  • Re-organized documentation from readme into docs/ folder and added
    documentation website.

You can view the full changelog here.

v7.1.1

Compare Source

Misc

You can view the full changelog here.

v7.1.0

Compare Source

Changed
  • The getKey method is now always defined. If the store does not have the
    required get method, getKey will throw an error explaining this.

You can view the full changelog here.

v7.0.2

Compare Source

Added
  • Added cluster-memory-store to the readme and made a couple of other minor
    clarifications.

You can view the full changelog here.

v7.0.1

Compare Source

Added
  • Added rate-limit-postgresql to the stores list in the readme.

You can view the full changelog here.

v7.0.0

Compare Source

Breaking
  • Changed behavior when max is set to 0:
    • Previously, max: 0 was treated as a 'disable' flag and would allow all requests through.
    • Starting with v7, all requests will be blocked when max is set to 0.
    • To replicate the old behavior, use the skip function instead.
  • Renamed req.rateLimit.current to req.rateLimit.used.
    • current is now a hidden getter that will return the used value, but it will not appear when iterating over the keys or calling JSON.stringify().
  • Changed the minimum required Node version from v14 to v16.
    • express-rate-limit now targets es2022 in TypeScript/ESBuild.
  • Bumped TypeScript from v4 to v5 and dts-bundle-generator from v7 to v8.
Deprecated
  • Removed the draft_polli_ratelimit_headers option (it was deprecated in v6).
    • Use standardHeaders: 'draft-6' instead.
  • Removed the onLimitReached option (it was deprecated in v6).
    • This is an example of how to replicate it's behavior with a custom handler option.
Changed
  • The MemoryStore now uses precise, per-user reset times rather than a global window that resets all users at once.
  • The limit configuration option is now prefered to max.
    • It still shows the same behavior, and max is still supported. The change was made to better align with terminology used in the IETF standard drafts.
Added
  • The validate config option can now be an object with keys to enable or disable specific validation checks. For more information, see this.

v6.11.2

Compare Source

Fixed
  • Restored IncrementResponse TypeScript type (See
    #​397)

v6.11.1

Compare Source

Fixed
  • Check for prefixed keys when validating that the stores have single counted
    keys (See
    #​395).

v6.11.0

Compare Source

Added
  • Support for retrieving the current hit count and reset time for a given key
    from a store (See
    #​390).

v6.10.0

Compare Source

Added
  • Support for combined RateLimit header from the
    RateLimit header fields for HTTP standardization draft
    adopted by the IETF. Enable by setting standardHeaders: 'draft-7'.
  • New standardHeaders: 'draft-6' option, treated equivalent to
    standardHeaders: true from previous releases. Note that true and false
    are still supported.
  • New RateLimit-Policy header added when standardHeaders is set to
    'draft-6', 'draft-7', or true.
  • Warning when using deprecated draft_polli_ratelimit_headers option.
  • Warning when using deprecated onLimitReached option.
  • Warning when totalHits value returned from Store is invalid.

v6.9.0

Compare Source

Added
  • New validaion check for double-counted requests.
  • Added help link to each validation error, directing users to the appropriate
    wiki page for more info.
Changed
  • Miscellaneous documenation improvements.

v6.8.1

Compare Source

Changed
  • Revert 6.7.1 change that bumped typescript from 5.x to 4.x and
    dts-bundle-generator from 8.x to 7.x (See
    #​360).

v6.8.0

Compare Source

Added

v6.7.2

Compare Source

Changed
  • Revert 6.7.1 change that bumped typescript from 5.x to 4.x and
    dts-bundle-generator from 8.x to 7.x (See
    #​360).

v6.7.1

Compare Source

Fixed
  • Fixed compatibility with TypeScript's TypeScript new node16 module
    resolution strategy (See
    #​355).
Changed
  • Bumped development dependencies
    • This initially include bumping typescript from 4.x to 5.x and
      dts-bundle-generator from 7.x to 8.x
  • Added node 20 to list of versions the CI jobs run on.

No functional changes.

v6.7.0

Compare Source

Changed
  • Updated links to point to the new express-rate-limit organization on GitHub.
  • Added advertisement to readme.md for project sponsor
    Zuplo.
  • Updated to typescript version 5 and bumped other dependencies.
  • Dropped node 12, and added node 19 to the list of versions the CI jobs run
    on.

No functional changes.

v6.6.0

Compare Source

Added
  • Added shutdown method to the Store interface and the MemoryStore. (#​322)

You can view the full changelog here.

v6.5.2

Compare Source

Fixed
  • Fixed an issue with missing types in ESM monorepos. (#​321)

You can view the changelog here.

v6.5.1

Compare Source

Changed

  • The message option can now be a (sync/asynx) function that returns a value (#​311)
  • Updated all dependencies

v6.4.0

Compare Source

Added

  • Adds Express 5 (5.0.0-beta.1) as a supported peer dependency (#​304)

Changed

  • Tests are now run on Node 12, 14, 16 and 18 on CI (#​305)
  • Updated all development dependencies (#​306)

v6.3.0

Compare Source

Changed
  • Changes the build target to es2019 so that ESBuild outputs code that can run with Node 12.
  • Changes the minimum required Node version to 12.9.0.

v6.2.1

Compare Source

Fixed
  • Use the default value for an option when undefined is passed to the rate
    limiter.

v6.2.0

Compare Source

Added
  • Export the MemoryStore, so it can now be imported as a named import
    (import { MemoryStore } from 'express-rate-limit').
Fixed
  • Deprecate the onLimitReached option (this was supposed to be deprecated in
    v6.0.0 itself); developers should use a custom handler function that checks if
    the rate limit has been exceeded instead.

v6.1.0

Compare Source

Added
  • Added a named export rateLimit in case the default import does not work.
Fixed
  • Added a named export default, so Typescript CommonJS developers can default-import the library (import rateLimit from 'express-rate-limit').

v6.0.5

Compare Source

Fixed
  • Use named imports for ExpressJS types so users do not need to enable the esModuleInterop flag in their Typescript compiler configuration.

v6.0.4

Compare Source

Fixed
  • Upload the built package as a .tgz to GitHub releases.
Changed
  • Add main and module fields to package.json. This helps tools such as ESLint that do not yet support the exports field.
  • Bumped the minimum node.js version in package-lock.json to match package.json

v6.0.3

Compare Source

Changed

v6.0.2

Compare Source

Fixed
  • Ensure CommonJS projects can import the module.
Added
  • Add additional tests that test:
    • importing the library in js-cjs, js-esm, ts-cjs, ts-esm environments.
    • usage of the library with external stores (redis, mongo, memcached, precise).
Changed
  • Use esbuild to generate ESM and CJS output. This reduces the size of the built package from 138 kb to 13kb and build time to 4 ms! 🚀
  • Use dts-bundle-generator to generate a single Typescript declaration file.

v6.0.1

Compare Source

Fixed
  • Ensure CommonJS projects can import the module.

v6.0.0

Compare Source

Added
  • express 4.x as a peer dependency.
  • Better Typescript support (the library was rewritten in Typescript).
  • Export the package as both ESM and CJS.
  • Publish the built package (.tgz file) on GitHub releases as well as the npm registry.
  • Issue and PR templates.
  • A contributing guide.
  • A changelog.
Changed
  • Rename the draft_polli_ratelimit_headers option to standardHeaders.
  • Rename the headers option to legacyHeaders.
  • Retry-After header is now sent if either legacyHeaders or standardHeaders is set.
  • Allow keyGenerator to be an async function/return a promise.
  • Change the way custom stores are defined.
    • Add the init method for stores to set themselves up using options passed to the middleware.
    • Rename the incr method to increment.
    • Allow the increment, decrement, resetKey and resetAll methods to return a promise.
    • Old stores will automatically be promisified and used.
  • The package can now only be used with NodeJS version 12.9.0 or greater.
  • The onLimitReached configuration option is now deprecated. Replace it with a custom handler that checks the number of hits.
Removed
  • Remove the deprecated limiter.resetIp method (use the limiter.resetKey method instead).
  • Remove the deprecated options delayMs, delayAfter (the delay functionality was moved to the express-slow-down package) and global (use a key generator that returns a constant value).

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@sourcery-ai Sourcery AI
Copy link

sourcery-ai bot commented Jan 24, 2025
edited
Loading

Reviewer's Guide by Sourcery

This pull request updates the express-rate-limit dependency from version 5 to version 7. This is a major version update, which includes breaking changes and new features.

Sequence diagram for express-rate-limit v7 request handling

sequenceDiagram
    participant Client
    participant Express
    participant RateLimiter
    participant Store

    Client->>Express: HTTP Request
    Express->>RateLimiter: middleware
    RateLimiter->>RateLimiter: Generate key
    RateLimiter->>Store: increment(key)
    Store-->>RateLimiter: {used, limit, resetTime}
    alt limit exceeded
        RateLimiter-->>Express: 429 Too Many Requests
        RateLimiter->>Client: RateLimit headers
        Express-->>Client: Error Response
    else limit not exceeded
        RateLimiter->>Client: RateLimit headers
        RateLimiter-->>Express: next()
        Express-->>Client: Normal Response
    end
Loading

Class diagram showing express-rate-limit v7 changes

classDiagram
    class RateLimiter {
        +number limit
        +boolean standardHeaders
        +boolean legacyHeaders
        +string identifier
        +Store store
        +Function keyGenerator
        +Function handler
        +Function skip
        +boolean validate
        +increment()
        +resetKey()
        +resetAll()
        +shutdown()
    }

    class Store {
        +init(options)
        +increment(key)
        +decrement(key)
        +resetKey(key)
        +resetAll()
        +shutdown()
    }

    class MemoryStore {
        +Map hits
        +init(options)
        +increment(key)
        +decrement(key)
        +resetKey(key)
        +resetAll()
        +shutdown()
    }

    RateLimiter --> Store
    Store <|-- MemoryStore

    note for RateLimiter "Changes in v7:
    - max renamed to limit
    - current renamed to used
    - max:0 now blocks all requests
    - Requires Node v16+"

    note for Store "Changes in v7:
    - incr renamed to increment
    - Added shutdown method"
Loading

File-Level Changes

Change Details Files
Updated the express-rate-limit dependency to v7.
  • Updated the dependency version in package.json.
  • Updated the dependency version in package-lock.json.
 package.json
package-lock.json
Tips and commands

Interacting with Sourcery

  • Trigger a new review: Comment @sourcery-ai review on the pull request.
  • Continue discussions: Reply directly to Sourcery's review comments.
  • Generate a GitHub issue from a review comment: Ask Sourcery to create an
    issue from a review comment by replying to it. You can also reply to a
    review comment with @sourcery-ai issue to create an issue from it.
  • Generate a pull request title: Write @sourcery-ai anywhere in the pull
    request title to generate a title at any time. You can also comment
    @sourcery-ai title on the pull request to (re-)generate the title at any time.
  • Generate a pull request summary: Write @sourcery-ai summary anywhere in
    the pull request body to generate a PR summary at any time exactly where you
    want it. You can also comment @sourcery-ai summary on the pull request to
    (re-)generate the summary at any time.
  • Generate reviewer's guide: Comment @sourcery-ai guide on the pull
    request to (re-)generate the reviewer's guide at any time.
  • Resolve all Sourcery comments: Comment @sourcery-ai resolve on the
    pull request to resolve all Sourcery comments. Useful if you've already
    addressed all the comments and don't want to see them anymore.
  • Dismiss all Sourcery reviews: Comment @sourcery-ai dismiss on the pull
    request to dismiss all existing Sourcery reviews. Especially useful if you
    want to start fresh with a new review - don't forget to comment
    @sourcery-ai review to trigger a new review!
  • Generate a plan of action for an issue: Comment @sourcery-ai plan on
    an issue to generate a plan of action for it.

Customizing Your Experience

Access your dashboard to:

  • Enable or disable review features such as the Sourcery-generated pull request
    summary, the reviewer's guide, and others.
  • Change the review language.
  • Add, remove or edit custom review instructions.
  • Adjust other review settings.

Getting Help

sourcery-ai[bot]
sourcery-ai bot reviewed Jan 24, 2025
View reviewed changes
Copy link

@sourcery-ai sourcery-ai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We have skipped reviewing this pull request. It seems to have been created by a bot (hey, renovate[bot]!). We assume it knows what it's doing!

@renovate renovate bot force-pushed the renovate/express-rate-limit-7.x branch from 45fbbdf to b4fe2ba Compare January 24, 2025 13:53
roderik pushed a commit that referenced this pull request Jan 24, 2025
@renovate
chore(deps): update dependency npm-run-all2 to v7 (#148)
40dd7f7 
This PR contains the following updates:

| Package | Type | Update | Change | OpenSSF |
|---|---|---|---|---|
| [npm-run-all2](https://redirect.github.com/bcomnes/npm-run-all2) |
dependencies | major | [`5.0.0` ->
`7.0.2`](https://renovatebot.com/diffs/npm/npm-run-all2/5.0.0/7.0.2) |
[![OpenSSF
Scorecard](https://api.securityscorecards.dev/projects/github.com/bcomnes/npm-run-all2/badge)](https://securityscorecards.dev/viewer/?uri=github.com/bcomnes/npm-run-all2)
|

---

### Release Notes

<details>
<summary>bcomnes/npm-run-all2 (npm-run-all2)</summary>

###
[`v7.0.2`](https://redirect.github.com/bcomnes/npm-run-all2/blob/HEAD/CHANGELOG.md#v702)

[Compare
Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/v7.0.1...v7.0.2)

##### Merged

- Upgrade: Bump neostandard from 0.11.9 to 0.12.0
[`#164`](https://redirect.github.com/bcomnes/npm-run-all2/pull/164)
- Upgrade: Bump codecov/codecov-action from 4 to 5
[`#161`](https://redirect.github.com/bcomnes/npm-run-all2/pull/161)

##### Commits

- Raise cross-spawn version floor to ^7.0.6
[`45a9e19`](https://redirect.github.com/bcomnes/npm-run-all2/commit/45a9e191b75e0b76433409808b6219d1f4dffe83)
- Merge pull request
[#&#8203;163](https://redirect.github.com/bcomnes/npm-run-all2/issues/163)
from bcomnes/dependabot/npm_and_yarn/mocha-11.0.1
[`285967a`](https://redirect.github.com/bcomnes/npm-run-all2/commit/285967a3fc5076d8c22ecb14823eb6fc274dd835)
- Upgrade: Bump mocha from 10.8.2 to 11.0.1
[`5d1aea5`](https://redirect.github.com/bcomnes/npm-run-all2/commit/5d1aea58f17abd201515f737c06bbe8044d05d21)

###
[`v7.0.1`](https://redirect.github.com/bcomnes/npm-run-all2/blob/HEAD/CHANGELOG.md#v701)

[Compare
Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/v7.0.0...v7.0.1)

##### Commits

- Revert engine range bump back to Node 18
[`b2e849b`](https://redirect.github.com/bcomnes/npm-run-all2/commit/b2e849bf8d31135751dd7458724344dd1bca120e)

###
[`v7.0.0`](https://redirect.github.com/bcomnes/npm-run-all2/blob/HEAD/CHANGELOG.md#v700---2024-10-21)

[Compare
Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/v6.2.6...v7.0.0)

##### Merged

- Prevent a throw when looking up undefined results
[`#158`](https://redirect.github.com/bcomnes/npm-run-all2/pull/158)

##### Commits

- **Breaking change:** Bump node engines ^18.17.0 || >=20.5.0
[`49b95f0`](https://redirect.github.com/bcomnes/npm-run-all2/commit/49b95f0c4905504a94d1a7ce87fbb7e77ab60df5)
- Merge pull request
[#&#8203;156](https://redirect.github.com/bcomnes/npm-run-all2/issues/156)
from bcomnes/rm-rf-rimraf
[`c661ffc`](https://redirect.github.com/bcomnes/npm-run-all2/commit/c661ffc942e09a68b1a553190d3a550dc0f6a39c)
- Remove rimraf
[`c77e085`](https://redirect.github.com/bcomnes/npm-run-all2/commit/c77e0856c65115b32788c3e9a1e441ba69fbd430)

###
[`v6.2.6`](https://redirect.github.com/bcomnes/npm-run-all2/blob/HEAD/CHANGELOG.md#v626---2024-10-21)

[Compare
Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/ee3bf122e700102b9ab27b1d172d98856765f4a4...v6.2.6)

##### Commits

- Prevent a throw when looking up undefined results
[`d928f9a`](https://redirect.github.com/bcomnes/npm-run-all2/commit/d928f9ad59c00a20797c90d35b62ef0aecf0c364)

###
[`v6.2.5`](https://redirect.github.com/bcomnes/npm-run-all2/compare/v6.2.4...ee3bf122e700102b9ab27b1d172d98856765f4a4)

[Compare
Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/v6.2.4...ee3bf122e700102b9ab27b1d172d98856765f4a4)

###
[`v6.2.4`](https://redirect.github.com/bcomnes/npm-run-all2/blob/HEAD/CHANGELOG.md#v624)

[Compare
Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/v6.2.3...v6.2.4)

##### Merged

- Switch to JS-based `which` command
[`#154`](https://redirect.github.com/bcomnes/npm-run-all2/pull/154)

##### Fixed

- Switch to JS-based `which` command
[`#153`](https://redirect.github.com/bcomnes/npm-run-all2/issues/153)

###
[`v6.2.3`](https://redirect.github.com/bcomnes/npm-run-all2/blob/HEAD/CHANGELOG.md#v623)

[Compare
Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/v6.2.2...v6.2.3)

##### Commits

- Merge pull request
[#&#8203;151](https://redirect.github.com/bcomnes/npm-run-all2/issues/151)
from bcomnes/fix-pnpm-agian
[`c43fa2b`](https://redirect.github.com/bcomnes/npm-run-all2/commit/c43fa2b677442c710a29654a333b15c8de4f00ab)
- Avoid passing config fields as flags for pnpm
[`dc2d7da`](https://redirect.github.com/bcomnes/npm-run-all2/commit/dc2d7da61cf0898d0bc2b25747e588325e06b9a9)

###
[`v6.2.2`](https://redirect.github.com/bcomnes/npm-run-all2/blob/HEAD/CHANGELOG.md#v622)

[Compare
Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/v6.2.1...v6.2.2)

##### Commits

- Revert "Compatibility: npm, yarn and pnpm run scripts"
[`fc35f0d`](https://redirect.github.com/bcomnes/npm-run-all2/commit/fc35f0dc4f78afc1c631fa94b6ac85ba0fb0e7b1)

###
[`v6.2.1`](https://redirect.github.com/bcomnes/npm-run-all2/blob/HEAD/CHANGELOG.md#v621)

[Compare
Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/v6.2.0...v6.2.1)

##### Merged

- Compatibility: npm, yarn and pnpm run scripts
[`#143`](https://redirect.github.com/bcomnes/npm-run-all2/pull/143)
- Use neostandard + add more static code analysis
[`#142`](https://redirect.github.com/bcomnes/npm-run-all2/pull/142)
- Upgrade: Bump c8 from 9.1.0 to 10.0.0
[`#141`](https://redirect.github.com/bcomnes/npm-run-all2/pull/141)
- Upgrade: Bump p-queue from 7.4.1 to 8.0.1
[`#138`](https://redirect.github.com/bcomnes/npm-run-all2/pull/138)

###
[`v6.2.0`](https://redirect.github.com/bcomnes/npm-run-all2/blob/HEAD/CHANGELOG.md#v620)

[Compare
Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/v6.1.2...v6.2.0)

##### Merged

- Placeholder that unfolds into multiple tasks
[`#134`](https://redirect.github.com/bcomnes/npm-run-all2/pull/134)
- 📝 add compatibility note for pnpm.
[`#136`](https://redirect.github.com/bcomnes/npm-run-all2/pull/136)
- Upgrade: Bump codecov/codecov-action from 3 to 4
[`#131`](https://redirect.github.com/bcomnes/npm-run-all2/pull/131)

###
[`v6.1.2`](https://redirect.github.com/bcomnes/npm-run-all2/blob/HEAD/CHANGELOG.md#v612)

[Compare
Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/v6.1.1...v6.1.2)

##### Merged

- feat: move to read-package-json-fast
[`#130`](https://redirect.github.com/bcomnes/npm-run-all2/pull/130)
- Upgrade: Bump c8 from 8.0.1 to 9.0.0
[`#127`](https://redirect.github.com/bcomnes/npm-run-all2/pull/127)
- Upgrade: Bump github/codeql-action from 2 to 3
[`#126`](https://redirect.github.com/bcomnes/npm-run-all2/pull/126)
- Upgrade: Bump actions/setup-node from 3 to 4
[`#123`](https://redirect.github.com/bcomnes/npm-run-all2/pull/123)

##### Commits

- Publish the whole project
[`3dde20c`](https://redirect.github.com/bcomnes/npm-run-all2/commit/3dde20c1c8fa973045773e03f4fc121360fdbed4)
- Utilize CJS require for 'read-package-json-fast'
[`605ca15`](https://redirect.github.com/bcomnes/npm-run-all2/commit/605ca15d9adee3ce14da6fcaa98cb14d9c03795c)
- Update FUNDING.yml
[`c838ee9`](https://redirect.github.com/bcomnes/npm-run-all2/commit/c838ee9eea06e545d1a7f25592f7beb8468f1afd)

###
[`v6.1.1`](https://redirect.github.com/bcomnes/npm-run-all2/blob/HEAD/CHANGELOG.md#v611)

[Compare
Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/v6.1.0...v6.1.1)

##### Commits

- Add an npm-run-all2 bin alias
[`e6dc017`](https://redirect.github.com/bcomnes/npm-run-all2/commit/e6dc0175006a9a703c1256949f8424922043a33a)
- Fix npx on node 16
[`cfbd974`](https://redirect.github.com/bcomnes/npm-run-all2/commit/cfbd974a5990e8d549ae8bf7bfb632424ff4990b)

###
[`v6.1.0`](https://redirect.github.com/bcomnes/npm-run-all2/blob/HEAD/CHANGELOG.md#v610---2023-10-04)

[Compare
Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/v6.0.6...v6.1.0)

##### Merged

- Upgrade: Bump actions/checkout from 3 to 4
[`#119`](https://redirect.github.com/bcomnes/npm-run-all2/pull/119)

##### Commits

- Lets avoid spawn.sync
[`a3ee6cd`](https://redirect.github.com/bcomnes/npm-run-all2/commit/a3ee6cd9e051471bfd7b1b4d153aa260fc9b6634)
- Add support for pnpm
([#&#8203;117](https://redirect.github.com/bcomnes/npm-run-all2/issues/117))
[`3df3708`](https://redirect.github.com/bcomnes/npm-run-all2/commit/3df37084ab1ae55f873fcbb449ad0d7df8bc328f)

###
[`v6.0.6`](https://redirect.github.com/bcomnes/npm-run-all2/blob/HEAD/CHANGELOG.md#v606---2023-07-04)

[Compare
Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/v6.0.5...v6.0.6)

##### Merged

- Update all esm only packages
[`#114`](https://redirect.github.com/bcomnes/npm-run-all2/pull/114)
- Upgrade: Bump c8 from 7.14.0 to 8.0.0
[`#111`](https://redirect.github.com/bcomnes/npm-run-all2/pull/111)
- Delete .nycrc
[`#109`](https://redirect.github.com/bcomnes/npm-run-all2/pull/109)
- Update CodeQL workflow
[`#110`](https://redirect.github.com/bcomnes/npm-run-all2/pull/110)

##### Commits

- Lint fix and a few hand fixes
[`2c81236`](https://redirect.github.com/bcomnes/npm-run-all2/commit/2c8123694b73084f37b68eb6719632024331d2e9)
- Fix tests
[`79e2c97`](https://redirect.github.com/bcomnes/npm-run-all2/commit/79e2c97c5b32c46d5cf64ce37b3b78cf4035498e)
- Update p-queue and ansi-styles
[`10b075c`](https://redirect.github.com/bcomnes/npm-run-all2/commit/10b075c849153822e9abc1447222d186a1cd6136)

###
[`v6.0.5`](https://redirect.github.com/bcomnes/npm-run-all2/blob/HEAD/CHANGELOG.md#v605---2023-04-03)

[Compare
Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/v6.0.4...v6.0.5)

##### Merged

- Upgrade: Bump bcomnes/npm-bump from 2.1.0 to 2.2.1
[`#104`](https://redirect.github.com/bcomnes/npm-run-all2/pull/104)
- Upgrade: Bump minimatch from 6.2.0 to 7.0.0
[`#103`](https://redirect.github.com/bcomnes/npm-run-all2/pull/103)
- Upgrade: Bump minimatch from 5.1.4 to 6.0.4
[`#102`](https://redirect.github.com/bcomnes/npm-run-all2/pull/102)
- Upgrade: Bump fs-extra from 10.1.0 to 11.1.0
[`#98`](https://redirect.github.com/bcomnes/npm-run-all2/pull/98)

##### Commits

- Merge pull request
[#&#8203;105](https://redirect.github.com/bcomnes/npm-run-all2/issues/105)
from bcomnes/dependabot/npm_and_yarn/minimatch-8.0.2
[`cbf78c8`](https://redirect.github.com/bcomnes/npm-run-all2/commit/cbf78c8155365db9ec06cb8054bc821e057d06e2)
- Upgrade: Bump minimatch from 7.4.4 to 8.0.2
[`c90d02b`](https://redirect.github.com/bcomnes/npm-run-all2/commit/c90d02b02df6dd33cbab01caac44b9729e012bb9)
- Merge pull request
[#&#8203;101](https://redirect.github.com/bcomnes/npm-run-all2/issues/101)
from bcomnes/dependabot/npm_and_yarn/rimraf-4.0.4
[`d0d46a2`](https://redirect.github.com/bcomnes/npm-run-all2/commit/d0d46a2b0aa87a3c0c79b78a013415e7902c8324)

###
[`v6.0.4`](https://redirect.github.com/bcomnes/npm-run-all2/blob/HEAD/CHANGELOG.md#v604---2022-11-09)

[Compare
Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/v6.0.3...v6.0.4)

##### Merged

- When running through npx, use the npm that should be next to it.
[`#96`](https://redirect.github.com/bcomnes/npm-run-all2/pull/96)

###
[`v6.0.3`](https://redirect.github.com/bcomnes/npm-run-all2/blob/HEAD/CHANGELOG.md#v603---2022-11-09)

[Compare
Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/v6.0.2...v6.0.3)

##### Merged

- Upgrade: Bump jsdoc from 3.6.11 to 4.0.0
[`#95`](https://redirect.github.com/bcomnes/npm-run-all2/pull/95)
- Upgrade: Bump bcomnes/npm-bump from 2.0.2 to 2.1.0
[`#92`](https://redirect.github.com/bcomnes/npm-run-all2/pull/92)
- docs: update minimum supported Node version
[`#90`](https://redirect.github.com/bcomnes/npm-run-all2/pull/90)

##### Commits

- Merge pull request
[#&#8203;94](https://redirect.github.com/bcomnes/npm-run-all2/issues/94)
from MarmadileManteater/runjs-being-called-instead-of-npm-run
[`da913f9`](https://redirect.github.com/bcomnes/npm-run-all2/commit/da913f9481543907457bd2298ad17192a4420874)
- Use NPM_CLI_JS over npm_execpath
[`0224167`](https://redirect.github.com/bcomnes/npm-run-all2/commit/022416740f0d9cf8eae2f2e4ca4de8d09a6b67d8)
- Add a proper check for yarn
[`bb41ef6`](https://redirect.github.com/bcomnes/npm-run-all2/commit/bb41ef6fd85a803a4a22e8382f67ea9e3e235b7d)

###
[`v6.0.2`](https://redirect.github.com/bcomnes/npm-run-all2/blob/HEAD/CHANGELOG.md#v602---2022-08-16)

[Compare
Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/v6.0.1...v6.0.2)

##### Merged

- Update package shell quote
[`#89`](https://redirect.github.com/bcomnes/npm-run-all2/pull/89)

###
[`v6.0.1`](https://redirect.github.com/bcomnes/npm-run-all2/blob/HEAD/CHANGELOG.md#v601---2022-06-14)

[Compare
Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/v6.0.0...v6.0.1)

##### Commits

- Lower bound node engine to ^14.18.0 || >=16.0.0
[`fc2957f`](https://redirect.github.com/bcomnes/npm-run-all2/commit/fc2957f4814848b55bc29b0a0a1def8bfadda18b)

###
[`v6.0.0`](https://redirect.github.com/bcomnes/npm-run-all2/blob/HEAD/CHANGELOG.md#v600---2022-06-11)

[Compare
Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/v5.0.2...v6.0.0)

##### Merged

- Move support to node 16 and npm 8
[`#85`](https://redirect.github.com/bcomnes/npm-run-all2/pull/85)
- Upgrade: Bump pidtree from 0.5.0 to 0.6.0
[`#84`](https://redirect.github.com/bcomnes/npm-run-all2/pull/84)
- Upgrade: Bump mocha from 9.2.2 to 10.0.0
[`#83`](https://redirect.github.com/bcomnes/npm-run-all2/pull/83)
- Upgrade: Bump github/codeql-action from 1 to 2
[`#82`](https://redirect.github.com/bcomnes/npm-run-all2/pull/82)
- Upgrade: Bump fastify/github-action-merge-dependabot from 3.0.2 to 3.1
[`#78`](https://redirect.github.com/bcomnes/npm-run-all2/pull/78)
- Upgrade: Bump codecov/codecov-action from 2 to 3
[`#77`](https://redirect.github.com/bcomnes/npm-run-all2/pull/77)
- Upgrade: Bump actions/setup-node from 2 to 3
[`#75`](https://redirect.github.com/bcomnes/npm-run-all2/pull/75)
- Upgrade: Bump actions/checkout from 2 to 3
[`#76`](https://redirect.github.com/bcomnes/npm-run-all2/pull/76)
- Upgrade: Bump minimatch from 4.2.1 to 5.0.0
[`#74`](https://redirect.github.com/bcomnes/npm-run-all2/pull/74)
- Upgrade: Bump minimatch from 3.1.1 to 4.1.1
[`#73`](https://redirect.github.com/bcomnes/npm-run-all2/pull/73)
- Upgrade: Bump fastify/github-action-merge-dependabot from 2.7.1 to
3.0.2 [`#72`](https://redirect.github.com/bcomnes/npm-run-all2/pull/72)
- Upgrade: Bump fastify/github-action-merge-dependabot from 2.7.0 to
2.7.1 [`#71`](https://redirect.github.com/bcomnes/npm-run-all2/pull/71)
- Upgrade: Bump fastify/github-action-merge-dependabot from 2.6.0 to
2.7.0 [`#70`](https://redirect.github.com/bcomnes/npm-run-all2/pull/70)
- Upgrade: Bump fastify/github-action-merge-dependabot from 2.5.0 to
2.6.0 [`#69`](https://redirect.github.com/bcomnes/npm-run-all2/pull/69)
- Simplify npm scripts
[`#64`](https://redirect.github.com/bcomnes/npm-run-all2/pull/64)
- Update CI config
[`#62`](https://redirect.github.com/bcomnes/npm-run-all2/pull/62)
- Add CodeQL workflow
[`#65`](https://redirect.github.com/bcomnes/npm-run-all2/pull/65)
- Switch to c8 for coverage
[`#66`](https://redirect.github.com/bcomnes/npm-run-all2/pull/66)
- tests: switch to assert's strict mode
[`#67`](https://redirect.github.com/bcomnes/npm-run-all2/pull/67)
- Enforce LF in the repo.
[`#61`](https://redirect.github.com/bcomnes/npm-run-all2/pull/61)
- Upgrade: Bump actions/setup-node from 2.4.0 to 2.4.1
[`#59`](https://redirect.github.com/bcomnes/npm-run-all2/pull/59)
- Upgrade: Bump fastify/github-action-merge-dependabot from 2.4.0 to
2.5.0 [`#58`](https://redirect.github.com/bcomnes/npm-run-all2/pull/58)
- Upgrade: Bump codecov/codecov-action from 2.0.2 to 2.1.0
[`#57`](https://redirect.github.com/bcomnes/npm-run-all2/pull/57)
- Upgrade: Bump fastify/github-action-merge-dependabot from 2.2.0 to
2.4.0 [`#54`](https://redirect.github.com/bcomnes/npm-run-all2/pull/54)
- Upgrade: Bump actions/setup-node from 2.3.2 to 2.4.0
[`#53`](https://redirect.github.com/bcomnes/npm-run-all2/pull/53)
- Upgrade: Bump actions/setup-node from 2.3.1 to 2.3.2
[`#52`](https://redirect.github.com/bcomnes/npm-run-all2/pull/52)
- Upgrade: Bump actions/setup-node from 2.3.0 to 2.3.1
[`#51`](https://redirect.github.com/bcomnes/npm-run-all2/pull/51)
- Upgrade: Bump codecov/codecov-action from 2.0.1 to 2.0.2
[`#50`](https://redirect.github.com/bcomnes/npm-run-all2/pull/50)
- Upgrade: Bump actions/setup-node from 2.2.0 to 2.3.0
[`#49`](https://redirect.github.com/bcomnes/npm-run-all2/pull/49)
- Upgrade: Bump codecov/codecov-action from 1.5.2 to 2.0.1
[`#48`](https://redirect.github.com/bcomnes/npm-run-all2/pull/48)
- Upgrade: Bump fastify/github-action-merge-dependabot from 2.1.1 to
2.2.0 [`#47`](https://redirect.github.com/bcomnes/npm-run-all2/pull/47)
- Upgrade: Bump actions/setup-node from 2.1.5 to 2.2.0
[`#46`](https://redirect.github.com/bcomnes/npm-run-all2/pull/46)
- Upgrade: Bump codecov/codecov-action from 1.5.0 to 1.5.2
[`#44`](https://redirect.github.com/bcomnes/npm-run-all2/pull/44)
- Upgrade: Bump mocha from 8.4.0 to 9.0.0
[`#43`](https://redirect.github.com/bcomnes/npm-run-all2/pull/43)
- Upgrade: Bump fastify/github-action-merge-dependabot from 2.1.0 to
2.1.1 [`#42`](https://redirect.github.com/bcomnes/npm-run-all2/pull/42)
- Upgrade: Bump fastify/github-action-merge-dependabot from 2.0.0 to
2.1.0 [`#41`](https://redirect.github.com/bcomnes/npm-run-all2/pull/41)
- Upgrade: Bump gh-release from 5.0.2 to 6.0.0
[`#40`](https://redirect.github.com/bcomnes/npm-run-all2/pull/40)
- Upgrade: Bump codecov/codecov-action from 1 to 1.5.0
[`#39`](https://redirect.github.com/bcomnes/npm-run-all2/pull/39)
- Upgrade: Bump fs-extra from 9.1.0 to 10.0.0
[`#38`](https://redirect.github.com/bcomnes/npm-run-all2/pull/38)
- Upgrade: Bump fastify/github-action-merge-dependabot from v1.2.1 to
v2.0.0 [`#33`](https://redirect.github.com/bcomnes/npm-run-all2/pull/33)
- Upgrade: Bump fastify/github-action-merge-dependabot
[`#32`](https://redirect.github.com/bcomnes/npm-run-all2/pull/32)
- Upgrade: Bump fastify/github-action-merge-dependabot from v1.1.1 to
v1.2.0 [`#31`](https://redirect.github.com/bcomnes/npm-run-all2/pull/31)
- Upgrade: Bump actions/setup-node from v2.1.4 to v2.1.5
[`#30`](https://redirect.github.com/bcomnes/npm-run-all2/pull/30)
- Upgrade: Bump gh-release from 4.0.4 to 5.0.0
[`#29`](https://redirect.github.com/bcomnes/npm-run-all2/pull/29)
- Upgrade: Bump actions/setup-node from v2.1.3 to v2.1.4
[`#28`](https://redirect.github.com/bcomnes/npm-run-all2/pull/28)
- Upgrade: Bump actions/setup-node from v2.1.2 to v2.1.3
[`#27`](https://redirect.github.com/bcomnes/npm-run-all2/pull/27)

##### Fixed

- Disable override tests on > npm 7
[`#79`](https://redirect.github.com/bcomnes/npm-run-all2/issues/79)

##### Commits

- **Breaking change:** Bump engines to node 16 and npm 8
[`7d19dd4`](https://redirect.github.com/bcomnes/npm-run-all2/commit/7d19dd47ee70286878f380934d18823310355471)
- Add auto merge
[`e598066`](https://redirect.github.com/bcomnes/npm-run-all2/commit/e598066fea7478e0fce14b4f09d64fdf37b0420f)
- Update test.yml
[`96260d6`](https://redirect.github.com/bcomnes/npm-run-all2/commit/96260d6c088ce0aa2bd367ff0736d653f5b0b1f1)

###
[`v5.0.2`](https://redirect.github.com/bcomnes/npm-run-all2/blob/HEAD/CHANGELOG.md#v502---2020-12-08)

[Compare
Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/v5.0.1...v5.0.2)

##### Merged

- Upgrade: Bump ansi-styles from 4.3.0 to 5.0.0
[`#26`](https://redirect.github.com/bcomnes/npm-run-all2/pull/26)
- Upgrade: Bump actions/checkout from v2.3.3 to v2.3.4
[`#25`](https://redirect.github.com/bcomnes/npm-run-all2/pull/25)

###
[`v5.0.1`](https://redirect.github.com/bcomnes/npm-run-all2/blob/HEAD/CHANGELOG.md#v501---2020-10-24)

[Compare
Source](https://redirect.github.com/bcomnes/npm-run-all2/compare/v5.0.0...v5.0.1)

##### Commits

- Fix repo field to a valid format
[`00b88f8`](https://redirect.github.com/bcomnes/npm-run-all2/commit/00b88f8a399d45cb104a33357cf56015ab92a1c0)
- Remove duplicate repo field
[`a2d11ff`](https://redirect.github.com/bcomnes/npm-run-all2/commit/a2d11ff3f234812ba660be32f3a9a0aa45a510f6)
- Update FUNDING.yml
[`648a541`](https://redirect.github.com/bcomnes/npm-run-all2/commit/648a5418725b4330571e08e9e1300756c98edd76)

</details>

---

### Configuration

📅 **Schedule**: Branch creation - At any time (no schedule defined),
Automerge - At any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you
are satisfied.

♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the
rebase/retry checkbox.

🔕 **Ignore**: Close this PR and you won't be reminded about this update
again.

---

- [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check
this box

---

This PR was generated by [Mend Renovate](https://mend.io/renovate/).
View the [repository job
log](https://developer.mend.io/github/settlemint/hyperledger-explorer).

<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS4xMjUuMSIsInVwZGF0ZWRJblZlciI6IjM5LjEyNS4xIiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJkZXBlbmRlbmNpZXMiXX0=-->

Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
@renovate
chore(deps): update dependency express-rate-limit to v7
56370c5 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
@renovate renovate bot force-pushed the renovate/express-rate-limit-7.x branch from b4fe2ba to 56370c5 Compare January 24, 2025 19:09
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@sourcery-ai sourcery-ai[bot] sourcery-ai[bot] left review comments

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants