chore(deps): bump qs and body-parser in /booklore-ui #2088
Merged
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Contributor
Author
LabelsThe following labels could not be found: Please fix the above issues or remove invalid values from |
dependabot
bot
added
dependencies
Backend Test Results 148 files ±0 148 suites ±0 19s ⏱️ ±0s Results for commit 06ba136. ± Comparison against base commit cee7e96. This pull request removes 5 and adds 4 tests. Note that renamed tests count towards both.♻️ This comment has been updated with latest results. |
dependabot
bot
force-pushed
the
dependabot/npm_and_yarn/booklore-ui/multi-a0817b5bb4
branch
2 times, most recently
from
d3b3045 to
ca508b5
Compare
Bumps [qs](https://github.com/ljharb/qs) and [body-parser](https://github.com/expressjs/body-parser). These dependencies needed to be updated together. Updates `qs` from 6.14.0 to 6.14.1 - [Changelog](https://github.com/ljharb/qs/blob/main/CHANGELOG.md) - [Commits](ljharb/qs@v6.14.0...v6.14.1) Updates `body-parser` from 1.20.3 to 1.20.4 - [Release notes](https://github.com/expressjs/body-parser/releases) - [Changelog](https://github.com/expressjs/body-parser/blob/master/HISTORY.md) - [Commits](expressjs/body-parser@1.20.3...1.20.4) --- updated-dependencies: - dependency-name: qs dependency-version: 6.14.1 dependency-type: indirect - dependency-name: body-parser dependency-version: 1.20.4 dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]>
dependabot
bot
force-pushed
the
dependabot/npm_and_yarn/booklore-ui/multi-a0817b5bb4
branch
from
ca508b5 to
06ba136
Compare
alexlebens
pushed a commit
to alexlebens/infrastructure
that referenced
this pull request
Jan 10, 2026
This PR contains the following updates: | Package | Update | Change | |---|---|---| | [ghcr.io/booklore-app/booklore](https://github.com/booklore-app/booklore) | minor | `v1.16.5` → `v1.17.0` | --- ### Release Notes <details> <summary>booklore-app/booklore (ghcr.io/booklore-app/booklore)</summary> ### [`v1.17.0`](https://github.com/booklore-app/booklore/releases/tag/v1.17.0) [Compare Source](booklore-app/booklore@v1.16.5...v1.17.0) #### 🌟 What's New in v1.17.0 ##### This release brings some exciting new features! Highlights include: - **Custom Fonts in the EPUB Reader**: Users can now upload and use up to 10 of their favorite fonts for a personalized reading experience. - **Reading Progress Sync**: Progress (in percent) now syncs to hardcover books and is tracked per user. - **Revamped Metadata Search**: The search UI has been redesigned to provide live, real-time results for a smoother and faster experience. Plus, numerous performance improvements and bug fixes across the app. Enjoy! #### 🚀 New Features - feat: Add custom font support for EPUB reader ([#​2120](booklore-app/booklore#2120)) by [@​darkraise](https://github.com/darkraise) - Revamp metadata search UI to display live results ([#​2195](booklore-app/booklore#2195)) by [@​acx10](https://github.com/acx10) - Feature/koreader hardcover sync ([#​2204](booklore-app/booklore#2204)) by [@​boludo00](https://github.com/boludo00) #### ✨ Enhancements - feat(series-page): implement multi-select functionality for book selection and add footer actions ([#​2167](booklore-app/booklore#2167)) by [@​balazs-szucs](https://github.com/balazs-szucs) - Add per-user font management permission ([#​2210](booklore-app/booklore#2210)) by [@​acx10](https://github.com/acx10) - Support individual “write to file” settings per book type, with configurable file size limits ([#​2206](booklore-app/booklore#2206)) by [@​acx10](https://github.com/acx10) - feat(ComicVine): use structured search for ComicVine metadata fetching instead of generic /search ([#​2193](booklore-app/booklore#2193)) by [@​balazs-szucs](https://github.com/balazs-szucs) - refactor(images): migrate to TwelveMonkeys ImageIO with graceful unsupported format handling ([#​2188](booklore-app/booklore#2188)) by [@​balazs-szucs](https://github.com/balazs-szucs) - Show a persistent loader while a large library is being created ([#​2200](booklore-app/booklore#2200)) by [@​acx10](https://github.com/acx10) - feat(magic-shelf): add ISBN-10 and ISBN-13 metadata fields to book rules ([#​2196](booklore-app/booklore#2196)) by [@​balazs-szucs](https://github.com/balazs-szucs) - Implement memoization in the book card to reduce CPU usage during scrolling ([#​2198](booklore-app/booklore#2198)) by [@​acx10](https://github.com/acx10) - feat(metadata): enhance XML parsing with secure processing and improved error handling ([#​2163](booklore-app/booklore#2163)) by [@​balazs-szucs](https://github.com/balazs-szucs) - feat(magic-shelf): add genre filter support and improve category labeling in rule fields ([#​2075](booklore-app/booklore#2075)) by [@​balazs-szucs](https://github.com/balazs-szucs) - feat(cover-generator): enhance cover resolution and redesign layout for improved aesthetics ([#​2125](booklore-app/booklore#2125)) by [@​balazs-szucs](https://github.com/balazs-szucs) #### 🐛 Bug Fixes - fix(ui): use view preference override for magic shelves ([#​2215](booklore-app/booklore#2215)) by [@​xcashy](https://github.com/xcashy) - fix(kobo-sync): fix Kobo series handling for empty names and series number formatting ([#​2185](booklore-app/booklore#2185)) by [@​xcashy](https://github.com/xcashy) - fix(cbx): "Archive too large" error for invalid/corrupt CBX files ([#​2205](booklore-app/booklore#2205)) by [@​balazs-szucs](https://github.com/balazs-szucs) - Fix: correctly update book cover hash on metadata refresh ([#​2149](booklore-app/booklore#2149)) by [@​acx10](https://github.com/acx10) #### 🛠️ Refactoring & Maintenance - fix: Ignore access denied when doing library scan instead of failing (fixes [#​1342](booklore-app/booklore#1342), [#​2122](booklore-app/booklore#2122)) ([#​2132](booklore-app/booklore#2132)) by [@​halkeye](https://github.com/halkeye) - feat(ui): add series number overlay for More in Series ([#​2208](booklore-app/booklore#2208)) by [@​xcashy](https://github.com/xcashy) - refactor(frontend): resolve linting errors, and EPUB reader lifecycle errors ([#​2127](booklore-app/booklore#2127)) by [@​balazs-szucs](https://github.com/balazs-szucs) - Test ([#​2201](booklore-app/booklore#2201)) by [@​acx10](https://github.com/acx10) - fix(parser): handle missing results table in GoodReads search and log a warning (instead of erroring) ([#​2187](booklore-app/booklore#2187)) by [@​balazs-szucs](https://github.com/balazs-szucs) - fix(lubimyczytac): Fix Lubimyczytac metadata lock persistence ([#​2194](booklore-app/booklore#2194)) by [@​balazs-szucs](https://github.com/balazs-szucs) - Move custom fonts management to Reader tab ([#​2161](booklore-app/booklore#2161)) by [@​acx10](https://github.com/acx10) - fix(api): kobo proxy server unit tests ([#​2136](booklore-app/booklore#2136)) by [@​CounterClops](https://github.com/CounterClops) - fix(docs): update issue report links to use specific templates ([#​2156](booklore-app/booklore#2156)) by [@​balazs-szucs](https://github.com/balazs-szucs) - Add Vitest frontend tests to CI with JUnit reporting and coverage ([#​2151](booklore-app/booklore#2151)) by [@​acx10](https://github.com/acx10) - Introduce Vitest as the frontend Angular testing framework for Booklore ([#​2150](booklore-app/booklore#2150)) by [@​acx10](https://github.com/acx10) #### 📦 Dependencies - chore(deps): bump qs and body-parser in /booklore-ui ([#​2088](booklore-app/booklore#2088)) by @​[dependabot\[bot\]](https://github.com/apps/dependabot) #### 🐳 Docker Images - **Docker Hub:** `booklore/booklore:v1.17.0` - **GitHub Container Registry:** `ghcr.io/booklore-app/booklore:v1.17.0` **Full Changelog**: <booklore-app/booklore@v1.16.5...v1.17.0> #### 📸 Screenshots: <img width="750" height="452" alt="Screenshot 2026-01-09 at 3 39 40 PM" src="https://github.com/user-attachments/assets/40e13036-0f51-4b39-99fb-9239f6dc6067" /> <img width="750" height="452" alt="Screenshot 2026-01-09 at 3 39 57 PM" src="https://github.com/user-attachments/assets/338d00bf-795f-4613-aa2c-f80dee546cc4" /> <img width="750" height="452" alt="Screenshot 2026-01-09 at 3 42 06 PM" src="https://github.com/user-attachments/assets/5e420e89-c186-4d96-8520-601ce6c0342c" /> <img width="750" height="452" alt="Screenshot 2026-01-09 at 3 40 29 PM" src="https://github.com/user-attachments/assets/13a6cfcc-f691-4613-9dfb-1e761cc67450" /> <img width="750" height="452" alt="Screenshot 2026-01-09 at 3 41 15 PM" src="https://github.com/user-attachments/assets/2efdaefb-8a94-4e05-a3b8-03bc4a37d22f" /> </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0Mi42OS4yIiwidXBkYXRlZEluVmVyIjoiNDIuNjkuMiIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOlsiaW1hZ2UiXX0=--> Reviewed-on: https://gitea.alexlebens.dev/alexlebens/infrastructure/pulls/3146 Co-authored-by: Renovate Bot <[email protected]> Co-committed-by: Renovate Bot <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Bumps qs and body-parser. These dependencies needed to be updated together.
Updates
qsfrom 6.14.0 to 6.14.1Changelog
Sourced from qs's changelog.
Commits
3fa11a5v6.14.1a626704[Dev Deps] updatenpmignore3086902[Fix] ensure arrayLength applies to[]notation as wellfc7930e[Dev Deps] updateeslint,@ljharb/eslint-config0b06aac[Dev Deps] update@ljharb/eslint-config64951f6[Refactor]parse: extract key segment splitting helpere1bd259[Dev Deps] update@ljharb/eslint-configf4b3d39[eslint] add eslint 9 optional peer dep6e94d95[Dev Deps] updateeslint,@ljharb/eslint-config,npmignore973dc3c[actions] add workflow permissionsUpdates
body-parserfrom 1.20.3 to 1.20.4Release notes
Sourced from body-parser's releases.
Changelog
Sourced from body-parser's changelog.
Commits
7db202c1.20.4 (#672)d8f8adbci: add CodeQL (SAST) (#670)6d133c1chore: remove SECURITY.md (#669)fcd1535deps: use tilde notation and update certain dependencies (#668)ec5fa29deps: qs@~6.14.0 (#664)ffb95c1ci: restore CI for 1.x branch (#665)48a5f07ci: add support for Node.js v23 (#553)f20f6adRemove redundant depth check (#538)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)You can disable automated security fix PRs for this repo from the Security Alerts page.