Express v3.14.0 Release Notes
Release Date: 2014-07-11 // almost 10 years ago-
- add explicit "Rosetta Flash JSONP abuse" protection
- previous versions are not vulnerable; this is just explicit protection
- deprecate
res.redirect(url, status)
-- useres.redirect(status, url)
instead - fix
res.send(status, num)
to sendnum
as json (not error) - remove unnecessary escaping when
res.jsonp
returns JSON response - deps: [email protected]
- support empty password
- support empty username
- deps: [email protected]
- deps: [email protected]
- deps: express-session@~1.6.4
- deps: method-override@~2.1.0
- deps: parseurl@~1.1.3
- deps: serve-static@~1.3.1
- deps: [email protected]
- Add support for multiple wildcards in namespaces
- deps: [email protected]
- add
CONNECT
- deps: parseurl@~1.1.3
- faster parsing of href-only URLs
- add explicit "Rosetta Flash JSONP abuse" protection