[Snyk] Upgrade express-rate-limit from 7.4.1 to 7.5.0

[DaveLuhman]

Snyk has created this PR to upgrade express-rate-limit from 7.4.1 to 7.5.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 1 version ahead of your current version.

• The recommended version was released a month ago.

Release notes

Package name: express-rate-limit

• 7.5.0 - 2024-12-15
  

  Added

  • Implemented the combined RateLimit header according to the eighth draft of the IETF RateLimit header specificiation. Enable by setting standardHeaders: 'draft-8'.
  • Added a new identifier option, used as the name for the quota policy in the draft-8 headers.
  • Added a new headersDraftVersion validation check to identifies cases where an unsupported version string is passed to the standardHeaders option.

  ---

  You can view the full changelog here.

• 7.4.1 - 2024-10-04
  

  Fixed

  • Made the passOnStoreError return after calling next() rather than continuing execution.

  ---

  You can view the full changelog here.

from express-rate-limit GitHub release notes

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Summary by Sourcery

Enhancements:

• Update the express-rate-limit dependency to support the combined RateLimit header according to the IETF draft-8 specification.

---

This change is 

[sourcery-ai]

Reviewer's Guide by Sourcery

This pull request upgrades the express-rate-limit npm package from version 7.4.1 to 7.5.0. This upgrade introduces support for the IETF RateLimit header specification (draft-8), adds an identifier option for quota policy naming, and includes a validation check for the standardHeaders option.

Sequence diagram for Rate Limit Header Implementation

sequenceDiagram
    participant C as Client
    participant S as Server
    participant RL as RateLimit Middleware

    C->>S: HTTP Request
    S->>RL: Process Request
    Note over RL: Check rate limits
    RL-->>S: Add RateLimit Headers (draft-8)
    Note over RL: New combined header format
    S-->>C: HTTP Response with Headers:
    Note over C: RateLimit header includes:
    Note over C: - Policy identifier
    Note over C: - Quota limits
    Note over C: - Usage status

Loading

Class diagram for Rate Limit Configuration Changes

classDiagram
    class RateLimitOptions {
        +string standardHeaders
        +string identifier
        +validate()
    }

    class RateLimitMiddleware {
        +configure(options)
        +validateHeadersDraftVersion()
    }

    RateLimitMiddleware --> RateLimitOptions

    note for RateLimitOptions "New 'draft-8' option for standardHeaders"
    note for RateLimitOptions "New 'identifier' field for quota policy naming"

Loading

File-Level Changes

Change	Details	Files
Upgraded express-rate-limit package.	Updated the express-rate-limit version in package.json. Updated the dependency tree and lockfile version in package-lock.json.	package.json package-lock.json

---

Tips and commands

Interacting with Sourcery

• Trigger a new review: Comment @sourcery-ai review on the pull request.
• Continue discussions: Reply directly to Sourcery's review comments.
• Generate a GitHub issue from a review comment: Ask Sourcery to create an
  issue from a review comment by replying to it.
• Generate a pull request title: Write @sourcery-ai anywhere in the pull
  request title to generate a title at any time.
• Generate a pull request summary: Write @sourcery-ai summary anywhere in
  the pull request body to generate a PR summary at any time. You can also use
  this command to specify where the summary should be inserted.

Customizing Your Experience

Access your dashboard to:

• Enable or disable review features such as the Sourcery-generated pull request
  summary, the reviewer's guide, and others.
• Change the review language.
• Add, remove or edit custom review instructions.
• Adjust other review settings.

Getting Help

• Contact our support team for questions or feedback.
• Visit our documentation for detailed guides and information.
• Keep in touch with the Sourcery team by following us on X/Twitter, LinkedIn or GitHub.

[sourcery-ai]

We have skipped reviewing this pull request. It seems to have been created by a bot ('[Snyk]' found in title). We assume it knows what it's doing!