Releases · expressjs/cookie-session · GitHub

17 Jul 17:37

ctcpip

v2.1.1 Latest

Latest

What's Changed

chore: add support for OSSF scorecard reporting by @inigomarquinez in #180
chore: upgrade scorecard workflow pinned action versions by @carpasse in #184
docs: Fix typo in README.md by @mkonikov in #187
fix: use ubuntu-latest as ci runner by @UlisesGascon in #185
ci: apply OSSF Scorecard security best practices by @UlisesGascon in #186
💚 fix CI by @ctcpip in #198
deps: [email protected] by @UlisesGascon in #201
Release: 2.1.1 by @UlisesGascon in #202

New Contributors

@inigomarquinez made their first contribution in #180
@carpasse made their first contribution in #184
@mkonikov made their first contribution in #187
@UlisesGascon made their first contribution in #185
@ctcpip made their first contribution in #198

Full Changelog: v2.1.0...v2.1.1

Contributors

carpasse, UlisesGascon, and 3 other contributors

Assets 2

24 Jan 02:34

dougwilson

2.1.0

Fix loading sessions with special keys
deps: [email protected]
- Add partitioned option for CHIPS support
- Add priority option for Priority cookie support
- Fix accidental cookie name/value truncation when given invalid chars
- Fix maxAge option to reject invalid values
- Remove quotes from returned quoted cookie value
- Use req.socket over deprecated req.connection
- pref: small lookup regexp optimization

Assets 2

16 Dec 17:27

dougwilson

2.0.0

Change default cookie name to session
Change .populated to .isPopulated
Create new session for all types of invalid sessions
Drop support for Node.js 0.8
Remove private req.session.save()
Remove the key option; use name instead
Remove undocumented req.session.length to free up key name
Remove undocumented req.sessionCookies and req.sessionKey
Save all enumerable properties on req.session
- Including _-prefixed properties
Use Object.defineProperty instead of deprecated __define*__
Use safe-buffer for improved Buffer API
deps: [email protected]
- Fix check for default secure option behavior
- Fix maxAge option preventing cookie deletion
- Support "none" in sameSite option
- deps: depd@~2.0.0
- deps: keygrip@~1.1.0
- perf: remove argument reassignment
deps: [email protected]
- Add DEBUG_HIDE_DATE
- Add 256 color mode support
- Enable / disable namespaces dynamically
- Make millisecond timer namespace-specific
- Remove DEBUG_FD support
- Use Date#toISOString() when output is not a TTY
deps: on-headers@~1.0.2
- Fix res.writeHead patch missing return value
deps: [email protected]
perf: reduce the scope of try-catch deopt
perf: remove internal reference to request from session object

Assets 2

24 Jan 04:52

dougwilson

2.0.0-rc.1 Pre-release

Pre-release

Remove private req.session.save()
Remove undocumented req.session.length to free up key name
Remove undocumented req.sessionCookies and req.sessionKey
deps: [email protected]
- Fix check for default secure option behavior
- Fix maxAge option preventing cookie deletion
- Support "none" in sameSite option
- deps: depd@~2.0.0
- deps: keygrip@~1.1.0
- perf: remove argument reassignment
deps: [email protected]
deps: on-headers@~1.0.2
- Fix res.writeHead patch missing return value
deps: [email protected]
perf: remove internal reference to request from session object

Assets 2

06 Jan 18:30

dougwilson

1.4.0

deps: [email protected]
- Fix check for default secure option behavior
- Fix maxAge option preventing cookie deletion
- Support "none" in sameSite option
- deps: depd@~2.0.0
- deps: keygrip@~1.1.0

Assets 2

28 Feb 19:48

dougwilson

1.3.3

deps: [email protected]
- deps: depd@~1.1.2
- deps: keygrip@~1.0.3
- perf: remove argument reassignment
deps: on-headers@~1.0.2
- Fix res.writeHead patch missing return value

Assets 2

13 Oct 13:57

dougwilson

2.0.0-beta.3 Pre-release

Pre-release

deps: [email protected]
- deps: depd@~1.1.1
- deps: keygrip@~1.0.2
deps: [email protected]
- Add DEBUG_HIDE_DATE
- Add 256 color mode support
- Enable / disable namespaces dynamically
- Make millisecond timer namespace-specific
- Remove DEBUG_FD support
- Use Date#toISOString() when output is not a TTY
deps: [email protected]

Assets 2

25 Sep 04:45

dougwilson

1.3.2

deps: [email protected]

Assets 2

27 Aug 22:22

dougwilson

1.3.1

deps: [email protected]
- deps: depd@~1.1.1
- deps: keygrip@~1.0.2

Assets 2

03 Aug 19:19

dougwilson

1.3.0

deps: [email protected]
- Add sameSite option for SameSite cookie support
- Throw on invalid values provided to Cookie constructor
- deps: keygrip@~1.0.1
- pref: enable strict mode
deps: [email protected]
- Allow colors in workers
- Deprecate DEBUG_FD environment variable set to 3 or higher
- Fix error when running under React Native
- Use same color for same namespace
- deps: [email protected]
deps: on-headers@~1.0.1
- perf: enable strict mode

Assets 2