Validator Engagement Framework

Ctrlk

HISTORY

1.15.0 / 2022-03-24

deps: [email protected]
- Fix emitted 416 error missing headers property
- Limit the headers removed for 304 response
- deps: [email protected]
- deps: [email protected]
- deps: [email protected]
- deps: [email protected]
- deps: [email protected]

1.14.2 / 2021-12-15

deps: [email protected]
- deps: [email protected]
- deps: [email protected]
- pref: ignore empty http tokens

1.14.1 / 2019-05-10

Set stricter CSP header in redirect response
deps: [email protected]
- deps: range-parser@~1.2.1

1.14.0 / 2019-05-07

deps: parseurl@~1.3.3
deps: [email protected]
- deps: http-errors@~1.7.2
- deps: [email protected]
- deps: [email protected]
- deps: statuses@~1.5.0
- perf: remove redundant path.normalize call

1.13.2 / 2018-02-07

Fix incorrect end tag in redirects
deps: encodeurl@~1.0.2
- Fix encoding % as last character
deps: [email protected]
- deps: depd@~1.1.2
- deps: encodeurl@~1.0.2
- deps: statuses@~1.4.0

1.13.1 / 2017-09-29

Fix regression when root is incorrectly set to a file
deps: [email protected]

1.13.0 / 2017-09-27

deps: [email protected]
- Add 70 new types for file extensions
- Add immutable option
- Fix missing </html> in default error & redirects
- Set charset as "UTF-8" for .js and .json
- Use instance methods on steam to check for listeners
- deps: [email protected]
- perf: improve path validation speed

1.12.6 / 2017-09-22

deps: [email protected]
- deps: [email protected]
- perf: improve If-Match token parsing
perf: improve slash collapsing

1.12.5 / 2017-09-21

deps: parseurl@~1.3.2
- perf: reduce overhead for full URLs
- perf: unroll the "fast-path" RegExp
deps: [email protected]
- Fix handling of modified headers with invalid dates
- deps: etag@~1.8.1
- deps: [email protected]

1.12.4 / 2017-08-05

deps: [email protected]
- deps: [email protected]
- deps: depd@~1.1.1
- deps: http-errors@~1.6.2

1.12.3 / 2017-05-16

deps: [email protected]
- deps: [email protected]

1.12.2 / 2017-04-26

deps: [email protected]
- deps: [email protected]

1.12.1 / 2017-03-04

deps: [email protected]
- Fix issue when Date.parse does not return NaN on invalid date
- Fix strict violation in broken environments

1.12.0 / 2017-02-25

Send complete HTML document in redirect response
Set default CSP header in redirect response
deps: [email protected]
- Fix false detection of no-cache request directive
- Fix incorrect result when If-None-Match has both * and ETags
- Fix weak ETag matching to match spec
- Remove usage of res._headers private field
- Support If-Match and If-Unmodified-Since headers
- Use res.getHeaderNames() when available
- Use res.headersSent when available
- deps: [email protected]
- deps: etag@~1.8.0
- deps: [email protected]
- deps: http-errors@~1.6.1

1.11.2 / 2017-01-23

deps: [email protected]
- deps: http-errors@~1.5.1
- deps: [email protected]
- deps: statuses@~1.3.1

1.11.1 / 2016-06-10

Fix redirect error when req.url contains raw non-URL characters
deps: [email protected]

1.11.0 / 2016-06-07

Use status code 301 for redirects
deps: [email protected]
- Add acceptRanges option
- Add cacheControl option
- Attempt to combine multiple ranges into single range
- Correctly inherit from Stream class
- Fix Content-Range header in 416 responses when using start/end options
- Fix Content-Range header missing from default 416 responses
- Ignore non-byte Range headers
- deps: http-errors@~1.5.0
- deps: range-parser@~1.2.0
- deps: statuses@~1.3.0
- perf: remove argument reassignment

1.10.3 / 2016-05-30

deps: [email protected]
- Fix invalid Content-Type header when send.mime.default_type unset

1.10.2 / 2016-01-19

deps: parseurl@~1.3.1
- perf: enable strict mode

1.10.1 / 2016-01-16

deps: escape-html@~1.0.3
- perf: enable strict mode
- perf: optimize string replacement
- perf: use faster string coercion
deps: [email protected]
- deps: depd@~1.1.0
- deps: destroy@~1.0.4
- deps: escape-html@~1.0.3
- deps: range-parser@~1.0.3

1.10.0 / 2015-06-17

Add fallthrough option
- Allows declaring this middleware is the final destination
- Provides better integration with Express patterns
Fix reading options from options prototype
Improve the default redirect response headers
deps: [email protected]
deps: [email protected]
- Allow Node.js HTTP server to set Date response header
- Fix incorrectly removing Content-Location on 304 response
- Improve the default redirect response headers
- Send appropriate headers on default error response
- Use http-errors for standard emitted errors
- Use statuses instead of http module for status messages
- deps: [email protected]
- deps: etag@~1.7.0
- deps: [email protected]
- deps: on-finished@~2.3.0
- perf: enable strict mode
- perf: remove unnecessary array allocations
perf: enable strict mode
perf: remove argument reassignment

1.9.3 / 2015-05-14

deps: [email protected]
- deps: debug@~2.2.0
- deps: depd@~1.0.1
- deps: etag@~1.6.0
- deps: [email protected]
- deps: on-finished@~2.2.1

1.9.2 / 2015-03-14

deps: [email protected]
- Throw errors early for invalid extensions or index options
- deps: debug@~2.1.3

1.9.1 / 2015-02-17

deps: [email protected]
- Fix regression sending zero-length files

1.9.0 / 2015-02-16

deps: [email protected]
- Always read the stat size from the file
- Fix mutating passed-in options
- deps: [email protected]

1.8.1 / 2015-01-20

Fix redirect loop in Node.js 0.11.14
deps: [email protected]
- Fix root path disclosure

1.8.0 / 2015-01-05

deps: [email protected]
- deps: debug@~2.1.1
- deps: etag@~1.5.1
- deps: [email protected]
- deps: on-finished@~2.2.0

1.7.2 / 2015-01-02

Fix potential open redirect when mounted at root

1.7.1 / 2014-10-22

deps: [email protected]
- deps: on-finished@~2.1.1

1.7.0 / 2014-10-15

deps: [email protected]
- deps: debug@~2.1.0
- deps: depd@~1.0.0
- deps: etag@~1.5.0

1.6.5 / 2015-02-04

Fix potential open redirect when mounted at root
- Back-ported from v1.7.2

1.6.4 / 2014-10-08

Fix redirect loop when index file serving disabled

1.6.3 / 2014-09-24

deps: [email protected]
- deps: etag@~1.4.0

1.6.2 / 2014-09-15

deps: [email protected]
- deps: [email protected]
- deps: etag@~1.3.1
- deps: range-parser@~1.0.2

1.6.1 / 2014-09-07

deps: [email protected]
- deps: [email protected]

1.6.0 / 2014-09-07

deps: [email protected]
- Add lastModified option
- Use etag to generate ETag header
- deps: debug@~2.0.0

1.5.4 / 2014-09-04

deps: [email protected]
- Fix a path traversal issue when using root
- Fix malicious path detection for empty string path

1.5.3 / 2014-08-17

deps: [email protected]

1.5.2 / 2014-08-14

deps: [email protected]
- Work around fd leak in Node.js 0.10 for fs.ReadStream

1.5.1 / 2014-08-09

Fix parsing of weird req.originalUrl values
deps: parseurl@~1.3.0
deps: [email protected]

1.5.0 / 2014-08-05

deps: [email protected]
- Add extensions option

1.4.4 / 2014-08-04

deps: [email protected]
- Fix serving index files without root dir

1.4.3 / 2014-07-29

deps: [email protected]
- Fix incorrect 403 on Windows and Node.js 0.11

1.4.2 / 2014-07-27

deps: [email protected]
- deps: [email protected]

1.4.1 / 2014-07-26

deps: [email protected]
- deps: [email protected]

1.4.0 / 2014-07-21

deps: parseurl@~1.2.0
- Cache URLs based on original value
- Remove no-longer-needed URL mis-parse work-around
- Simplify the "fast-path" RegExp
deps: [email protected]
- Add dotfiles option
- deps: [email protected]
- deps: [email protected]

1.3.2 / 2014-07-11

deps: [email protected]
- Cap maxAge value to 1 year
- deps: [email protected]

1.3.1 / 2014-07-09

deps: parseurl@~1.1.3
- faster parsing of href-only URLs

1.3.0 / 2014-06-28

Add setHeaders option
Include HTML link in redirect response
deps: [email protected]
- Accept string for maxAge (converted by ms)

1.2.3 / 2014-06-11

deps: [email protected]
- Do not throw un-catchable error on file open race condition
- Use escape-html for HTML escaping
- deps: [email protected]
- deps: [email protected]
- deps: [email protected]

1.2.2 / 2014-06-09

deps: [email protected]
- fix "event emitter leak" warnings
- deps: [email protected]
- deps: [email protected]

1.2.1 / 2014-06-02

use escape-html for escaping
deps: [email protected]
- Send max-age in Cache-Control in correct format

1.2.0 / 2014-05-29

deps: [email protected]
- Calculate ETag with md5 for reduced collisions
- Fix wrong behavior when index file matches directory
- Ignore stream errors after request ends
- Skip directories in index file search
- deps: [email protected]

1.1.0 / 2014-04-24

Accept options directly to send module
deps: [email protected]

1.0.4 / 2014-04-07

Resolve relative paths at middleware setup
Use parseurl to parse the URL from request

1.0.3 / 2014-03-20

Do not rely on connect-like environments

1.0.2 / 2014-03-06

deps: [email protected]

1.0.1 / 2014-03-05

Add mime export for back-compat

1.0.0 / 2014-03-05

Genesis from connect

Previousserve-static NextPolyfill for Object.setPrototypeOf

Last updated 2 years ago

Was this helpful?