Skip to content

Bump http-proxy-middleware from 2.0.10 to 4.1.1#5860

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/http-proxy-middleware-4.1.1
Open

Bump http-proxy-middleware from 2.0.10 to 4.1.1#5860
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/http-proxy-middleware-4.1.1

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 20, 2026

Copy link
Copy Markdown
Contributor

Bumps http-proxy-middleware from 2.0.10 to 4.1.1.

Release notes

Sourced from http-proxy-middleware's releases.

v4.1.1

What's Changed

Full Changelog: chimurai/http-proxy-middleware@v4.1.0...v4.1.1

v4.1.0

What's Changed

New Contributors

Full Changelog: chimurai/http-proxy-middleware@v4.0.0...v4.1.0

v4.1.0-beta.2

What's Changed

... (truncated)

Changelog

Sourced from http-proxy-middleware's changelog.

v4.1.1

  • fix(fixRequestBody): harden form-data stringification

v4.1.0

  • feat(definePlugin): helper function to create plugins
  • chore(package.json): update to httpxy@0.5.3
  • fix(ipv6): preserve credentials when normalizing bracketed IPv6 target string
  • fix(ipv6): unspecified IPv6 target hostname (::)
  • fix(response-interceptor): reduce responseInterceptor buffer churn
  • fix(ws): handle multi-server upgrade subscription and safe proxy shutdown
  • feat(router): add 'res' and 'options' to router function
  • feat(pathRewrite): add 'res' and 'options' to custom pathRewrite function
  • fix(responseInterceptor): prevent trailer/content-length conflict
  • feat(zstd): support zstd compression in responseInterceptor and fixRequestBody
  • fix(responseInterceptor): handle bodyless responses (HEAD/1xx/204/304) with content-encoding
  • fix(router): harden proxy-table matching

v4.0.0

  • fix(types): fix Logger type
  • fix(error-response-plugin): sanitize input
  • feat: drop node v14/v16/v18 [BREAKING CHANGE]
  • refactor: replace http-proxy w/ httpxy
  • chore: remove legacyCreateProxyMiddleware() [BREAKING CHANGE]
  • ci: migrate from jest to vitest
  • chore(package.json): esm only [BREAKING CHANGE]
  • chore(package.json): bump to httpxy 0.5.0 (#1183)
  • chore(package.json): drop node20 [BREAKING CHANGE] (#1179)
  • refactor: remove deprecated url.parse() (#1176)
  • fix(fixRequestBody): support content-encoding on request body (#1142)
  • fix: prevent TypeError when ws enabled but server is undefined (#1163)
  • fix: applyPathRewrite logs old req.url instead of rewritten path (#1157)
  • feat(hono): support for hono with createHonoProxyMiddleware
  • feat(ipv6): support literal IPv6 addresses in target and forward options (ie. "http://[::1]:8000")
  • chore(package.json): bump httpxy to ^0.5.1
  • fix(logger-plugin): support ipv6 host and handle undefined protocol/host
  • ci(publish.yml): pin github.triggering_actor
  • chore(package.json): node ^22.15.0 (#1218)
  • refactor(package): subpath 'http-proxy-middleware/hono' (#1220)
  • chore: node 26 support

v3.0.5

  • fix(fixRequestBody): check readableLength (#1096)

v3.0.4

  • fix(fixRequestBody): handle invalid request (#1092)

... (truncated)

Commits
  • b3b98d2 chore(package.json): v4.1.1 (#1262)
  • a1ac315 fix(fixRequestBody): harden form-data stringification (#1260)
  • 013dd9b chore(package.json): v4.1.0 (#1257)
  • 1f15982 fix(router): harden proxy-table matching (#1255)
  • 6e52f72 chore(package.json): bump dev deps (#1253)
  • f26184a chore(package.json): v4.1.0-beta.2 (#1252)
  • c65741c fix(responseInterceptor): handle bodyless responses (HEAD/1xx/204/304) with c...
  • fec8e1d feat(zstd): support zstd compression in responseInterceptor and fixRequestBod...
  • 6c41eae fix(responseInterceptor): prevent trailer/content-length conflict (#1249)
  • 5a78782 docs: fix documentation drift (#1248)
  • Additional commits viewable in compare view
Install script changes

This version modifies prepare script that runs during installation. Review the package contents before updating.


Most Recent Ignore Conditions Applied to This Pull Request
Dependency Name Ignore Conditions
http-proxy-middleware [>= 3.a, < 4]

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jun 20, 2026
@tdonohue tdonohue added port to dspace-9_x This PR needs to be ported to `dspace-9_x` branch for next bug-fix release port to dspace-10_x This PR needs to be ported to `dspace-10_x` branch for next bug-fix release labels Jul 10, 2026
@tdonohue tdonohue self-assigned this Jul 10, 2026

@tdonohue tdonohue left a comment

Copy link
Copy Markdown
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Tested locally, and this doesn't appear to be working properly for redirecting Sitemaps and Signposting links.

For example http://localhost:4000/sitemap_index.html returns a 404 instead of redirecting to the Sitemap file on the backend.

My guess is there's some change in the latest http-proxy-middleware that is not fully backwards compatible. So, this upgrade may need to be done manually in some manner.

@github-actions

Copy link
Copy Markdown

Hi @dependabot,
Conflicts have been detected against the base branch.
Please resolve these conflicts as soon as you can. Thanks!

@dependabot dependabot Bot changed the title Bump http-proxy-middleware from 2.0.9 to 4.1.1 Bump http-proxy-middleware from 2.0.10 to 4.1.1 Jul 10, 2026
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/http-proxy-middleware-4.1.1 branch from 3b38b0c to 2215e8e Compare July 10, 2026 17:42
@github-actions

Copy link
Copy Markdown

Hi @dependabot,
Conflicts have been detected against the base branch.
Please resolve these conflicts as soon as you can. Thanks!

Bumps [http-proxy-middleware](https://github.com/chimurai/http-proxy-middleware) from 2.0.10 to 4.1.1.
- [Release notes](https://github.com/chimurai/http-proxy-middleware/releases)
- [Changelog](https://github.com/chimurai/http-proxy-middleware/blob/master/CHANGELOG.md)
- [Commits](chimurai/http-proxy-middleware@v2.0.10...v4.1.1)

---
updated-dependencies:
- dependency-name: http-proxy-middleware
  dependency-version: 4.1.1
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/http-proxy-middleware-4.1.1 branch from 2215e8e to ceb537a Compare July 10, 2026 19:12
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code port to dspace-9_x This PR needs to be ported to `dspace-9_x` branch for next bug-fix release port to dspace-10_x This PR needs to be ported to `dspace-10_x` branch for next bug-fix release

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant