Bump hono from 4.5.9 to 4.6.8 #43

dependabot · 2024-10-29T14:38:41Z

Bumps hono from 4.5.9 to 4.6.8.

Release notes

v4.6.8

What's Changed

fix(bun/ws): fix invalid types by @nakasyou in honojs/hono#3562

fix(utils/cookie): partitioned typo in CookieOptions by @imcotton in honojs/hono#3566

fix(websocket): Fix typo in WSContextInit type by @Ariel-Moroshko in honojs/hono#3575

fix(websocket): prevent sending entire buffer when streaming Uint8Array chunks by @Ariel-Moroshko in honojs/hono#3570

fix(bun/ws): supoort --hot by @nakasyou in honojs/hono#3576

feat(header): suggest name of header and combine in one file by @EdamAme-x in honojs/hono#3577

fix(devcontainer): remove unknown flag on docker-compose by @EdamAme-x in honojs/hono#3582

fix(types): replace Hono with HonoBase to get better consistency of types by @m-shaka in honojs/hono#3580

New Contributors

@Ariel-Moroshko made their first contribution in honojs/hono#3575

Full Changelog: honojs/hono@v4.6.7...v4.6.8

v4.6.7

What's Changed

fix(vercel): remove requestContext by @yusukebe in honojs/hono#3549

feat(jwt): Support custom secret keys for signing JWTs by @kaandok in honojs/hono#3546

feat(ws): Make WebSocket adapter more changeable by @nakasyou in honojs/hono#3531

perf(router): improve performance of router by @EdamAme-x in honojs/hono#3526

New Contributors

@kaandok made their first contribution in honojs/hono#3546

Full Changelog: honojs/hono@v4.6.6...v4.6.7

v4.6.6

What's Changed

docs(powered-by): add JSDoc by @yusukebe in honojs/hono#3520

chore: podman support for devcontainer by @marcomuser in honojs/hono#3529

refactor(secure-headers): refine secureHeadersNonce init by @imcotton in honojs/hono#3535

fix(serve-static): silence NotFound warning on Deno by @pablo-abc in honojs/hono#3542

fix(client): return query params in $url by @alex-grover in honojs/hono#3541

New Contributors

@marcomuser made their first contribution in honojs/hono#3529

@imcotton made their first contribution in honojs/hono#3535

@pablo-abc made their first contribution in honojs/hono#3542

@alex-grover made their first contribution in honojs/hono#3541

Full Changelog: honojs/hono@v4.6.5...v4.6.6

v4.6.5

Security fix for CSRF Protection Middleware

This release includes a security fix for CSRF Protection Middleware. If you are using CSRF Protection Middleware, please upgrade this hono package immediately.

Before this release, a request without a Content-Type header can bypass the protection. This fix does not allow it. See: GHSA-2234-fmw7-43wr

... (truncated)

Commits

3af317f v4.6.8
964aa54 fix(types): replace Hono with HonoBase to get better consistency of types (#3...
0e0b473 fix(devcontainer): remove unknown flag on docker-compose (#3582)
e7732a5 feat(header): suggest name of header and combine in one file (#3577)
cb8244a fix(bun/ws): supoort --hot (#3576)
745c291 fix(websocket): prevent sending entire buffer when streaming Uint8Array chunk...
a90db7c fix(websocket): Fix typo in WSContextInit type (#3575)
3a59d86 fix(utils/cookie): partitioned typo in CookieOptions (#3566)
f55dc45 fix(bun/ws): fix invalid types (#3562)
7e11832 v4.6.7
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

vercel · 2024-10-29T14:38:44Z

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Updated (UTC)
lastio	❌ Failed (Inspect)		Nov 4, 2024 3:16am

Bumps [hono](https://github.com/honojs/hono) from 4.5.9 to 4.6.8. - [Release notes](https://github.com/honojs/hono/releases) - [Commits](honojs/hono@v4.5.9...v4.6.8) --- updated-dependencies: - dependency-name: hono dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot · 2024-11-04T13:20:57Z

Superseded by #49.

dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Oct 29, 2024

dependabot bot mentioned this pull request Oct 29, 2024

Bump hono from 4.5.9 to 4.6.7 #42

Closed

github-actions bot force-pushed the dependabot/npm_and_yarn/hono-4.6.8 branch from 2e4779c to 66fd1a7 Compare October 29, 2024 14:39

vercel bot deployed to Preview October 29, 2024 14:41 View deployment

dependabot bot force-pushed the dependabot/npm_and_yarn/hono-4.6.8 branch from 66fd1a7 to 2f7457c Compare November 4, 2024 02:19

github-actions bot force-pushed the dependabot/npm_and_yarn/hono-4.6.8 branch from 2f7457c to c85d7f5 Compare November 4, 2024 02:19

dependabot bot force-pushed the dependabot/npm_and_yarn/hono-4.6.8 branch from c85d7f5 to 33d348e Compare November 4, 2024 02:20

github-actions bot force-pushed the dependabot/npm_and_yarn/hono-4.6.8 branch from 33d348e to b6e28c5 Compare November 4, 2024 02:20

vercel bot deployed to Preview November 4, 2024 02:22 View deployment

dependabot bot force-pushed the dependabot/npm_and_yarn/hono-4.6.8 branch from b6e28c5 to a0e8b15 Compare November 4, 2024 03:08

github-actions bot force-pushed the dependabot/npm_and_yarn/hono-4.6.8 branch from a0e8b15 to 89bae70 Compare November 4, 2024 03:08

dependabot bot force-pushed the dependabot/npm_and_yarn/hono-4.6.8 branch from 89bae70 to 7b3aa51 Compare November 4, 2024 03:09

github-actions bot force-pushed the dependabot/npm_and_yarn/hono-4.6.8 branch from 7b3aa51 to 25073a0 Compare November 4, 2024 03:09

vercel bot had a problem deploying to Preview November 4, 2024 03:15 Failure

dependabot bot closed this Nov 4, 2024

dependabot bot deleted the dependabot/npm_and_yarn/hono-4.6.8 branch November 4, 2024 13:20

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump hono from 4.5.9 to 4.6.8 #43

Bump hono from 4.5.9 to 4.6.8 #43

dependabot bot commented on behalf of github Oct 29, 2024 •

edited

Loading

vercel bot commented Oct 29, 2024 •

edited

Loading

dependabot bot commented on behalf of github Nov 4, 2024

Bump hono from 4.5.9 to 4.6.8 #43

Bump hono from 4.5.9 to 4.6.8 #43

Conversation

dependabot bot commented on behalf of github Oct 29, 2024 • edited Loading

v4.6.8

What's Changed

New Contributors

v4.6.7

What's Changed

New Contributors

v4.6.6

What's Changed

New Contributors

v4.6.5

Security fix for CSRF Protection Middleware

vercel bot commented Oct 29, 2024 • edited Loading

dependabot bot commented on behalf of github Nov 4, 2024

dependabot bot commented on behalf of github Oct 29, 2024 •

edited

Loading

vercel bot commented Oct 29, 2024 •

edited

Loading