[Snyk] Upgrade express-validator from 6.15.0 to 7.0.1

[rpt-uk-github]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade express-validator from 6.15.0 to 7.0.1.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

Warning: This is a major version upgrade, and may be a breaking change.

• The recommended version is 2 versions ahead of your current version.
• The recommended version was released 8 months ago, on 2023-04-16.

Release notes

Package name: express-validator

• 7.0.1 - 2023-04-16
  
  • Fixed checkSchema() warning that known validators are unknown when its value is false - #1223
• 7.0.0 - 2023-04-15
  

  🚀 🙌 First major version in almost 4 years! 🚀 🤯
  Thanks everybody for having the patience. Hopefully this version brings many improvements to your developer experience!

  Breaking changes 💥

  • Minimum supported Node.js version is now 14+
  • Removed deprecated APIs - #993
    • Import paths express-validator/check and express-validator/filter
    • Sanitization-only middlewares (e.g. sanitize(), sanitizeBody(), etc)
    • Deprecated TypeScript types (ValidationParamSchema and ValidationSchema)
  • isObject() validator now assumes options.strict = true by default
  • Validation errors changed shape
    • Field validation errors param property has been renamed to path
    • oneOf() validation errors no longer have a param: '_error' property
  • (TypeScript only) The ValidationError type is now a discriminated union, it might be necessary to use switch or if statements to check that you're dealing with the type that you want to debug/format
  • oneOf() signature changed: from oneOf(chains, message) to oneOf(chains, options: { message, errorType })
  • oneOf() default error structure now groups errors by their... validation group!, instead of in a flat list

  Checkout the migration guide for examples on how to work around some of these:
  https://express-validator.github.io/docs/migration-v6-to-v7

  New features ✨

  • Added validation for no unknown fields - #558, #578, #612, #1148, #809, #927, #1204
  • Added globstars (deep wildcard) support - #790, #1137, #1216
  • Added support for multiple custom validators/sanitizers in checkSchema() - #552, #1180
  • Added request-level bail - #1100, #1214
  • Added a ExpressValidator class which allows adding "persistent" custom validators, sanitizers, and options - #1077, #1079, #1209
  • Added oneOf() support to .if() - #1170
  • Added new error types to oneOf() - #956, #1022

  Bug fixes 🐛

  • Validating/sanitizing arrays no longer drops all but the first value - #791, #755, #704, #1002
  • Added missing ko-KR to MobilePhoneLocale - #1218, #1219
  • Don't silently fail when setting withMessage and not in schemas - #664

  New Contributors

  • @ Yoowatney made their first contribution in #1219

  Full Changelog: v6.15.0...v7.0.0

• 6.15.0 - 2023-02-16
  

  What's Changed

  • chore(deps): bump ua-parser-js from 0.7.32 to 0.7.33 by @ dependabot in #1208
  • chore(deps): bump eta from 1.12.3 to 2.0.0 by @ dependabot in #1211
  • chore(deps): bump http-cache-semantics from 4.1.0 to 4.1.1 by @ dependabot in #1210
  • feat: update to support validator 13.9.0 by @ fedeci in #1212

  Full Changelog: v6.14.3...v6.15.0

from express-validator GitHub release notes

Commit messages

Package name: express-validator

• 924cbb6 7.0.1
• cf7687f Schema: don't warn when schema entry is falsy
• a7d76ad docs: add missing list of links at end of Getting Started guide
• caf9555 docs: fix broken links
• c75d364 7.0.0
• 16fb680 docs: cut new version
• b873319 fix AlternativeMessageFactory test
• ecb37e4 exists: add `values` option + missing docs
• d43834e Update build badge on readme
• 5d5da09 checkSchema: don't silently fail when using not/withMessage
• c858901 docs: add perf warning to request-level bail
• 3441ae2 Add _hopefully_ clearer options for `optional`
• b255c16 add "ko-KR" in MobilePhoneLocale type (Book a valuation API #1219)
• 1040ea9 deps: upgrade prettier and docusaurus
• b369184 docs: remove a bunch of outdated pages
• d80d38e docs: add v6 to v7 migration guide
• b4389ab docs: don't squeeze non-last table columns
• 147512c docs: update v5 to v6 migration guide
• 159e9bd docs: add page for manually running via ContextRunner
• 5867cbf docs: add schema validation guide
• 6387ba0 docs: fix up API links for pre/post v7
• b5e60fe docs: update Getting Started guide to mention matchedData
• a8b7a34 docs: add API page for matchedData()
• 8f7da4a docs: add customizing guide + ExpressValidator docs

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[sonarqubecloud]

Quality Gate passed

Kudos, no new issues were introduced!

0 New issues
0 Security Hotspots
No data about Coverage
0.0% Duplication on New Code

See analysis details on SonarCloud