Skip to content

Bump path-to-regexp from 8.3.0 to 8.4.2 in /auth-oidc/node#339

Merged
reggeenr merged 1 commit into
mainfrom
dependabot/npm_and_yarn/auth-oidc/node/path-to-regexp-8.4.1
Jun 12, 2026
Merged

Bump path-to-regexp from 8.3.0 to 8.4.2 in /auth-oidc/node#339
reggeenr merged 1 commit into
mainfrom
dependabot/npm_and_yarn/auth-oidc/node/path-to-regexp-8.4.1

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Mar 31, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

Bumps path-to-regexp from 8.3.0 to 8.4.2.

Release notes

Sourced from path-to-regexp's releases.

v8.4.2

Fixed

  • Error on trailing backslash (#434) 9a78879

Performance

  • Minimize array allocations (#437) 937c02d
  • Improve compile performance (#436) 57247e6
    • Should improve compilation performance by ~25%
  • Remove internal tokenization during parse (#435) 5844988
    • Should improve parse performance by ~20%

Bundle size to 1.93 kB, from 1.97 kB.

pillarjs/path-to-regexp@v8.4.1...v8.4.2

v8.4.1

Fixed

  • Remove trie deduplication (#431) 6bc8e84
    • Using a trie required non-greedy matching, which regressed wildcards in non-ending mode by matching them up until the first match. For example:
      • /*foo with /a/b = /a
      • /*foo.htmlwith /a/b.html/c.html = /a/b.html
  • Allow backtrack handling to match itself (#427) 5bcd30b
    • When backtracking was introduced, it rejected matching things like /:"a"_:"b" against /foo__. This makes intuitive sense because the second parameter is not going to backtrack on _ anymore, but it's somewhat unexpected since there's no reason it shouldn't match the second _.

pillarjs/path-to-regexp@v8.4.0...v8.4.1

v8.4.0

Important

Fixed

Changed

  • Dedupes regex prefixes (pillarjs/path-to-regexp#422)
    • This will result in shorter regular expressions for some cases using optional groups
  • Rejects large optional route combinations (pillarjs/path-to-regexp#424)
    • When using groups such as /users{/delete} it will restrict the number of generated combinations to < 256, equivalent to 8 top-level optional groups and unlikely to occur in a real world application, but avoids exploding the regex size for applications that accept user created routes
Commits

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Mar 31, 2026
@SaschaSchwarze0

SaschaSchwarze0 commented Apr 1, 2026

Copy link
Copy Markdown
Member

@dependabot rebase

@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/auth-oidc/node/path-to-regexp-8.4.1 branch from 2ab5328 to 707ba4f Compare April 1, 2026 06:26
@reggeenr

reggeenr commented Jun 12, 2026

Copy link
Copy Markdown
Collaborator

@dependabot rebase

@dependabot dependabot Bot changed the title Bump path-to-regexp from 8.3.0 to 8.4.1 in /auth-oidc/node Bump path-to-regexp from 8.3.0 to 8.4.2 in /auth-oidc/node Jun 12, 2026
@dependabot
Bump path-to-regexp from 8.3.0 to 8.4.2 in /auth-oidc/node
eada8d4 
Bumps [path-to-regexp](https://github.com/pillarjs/path-to-regexp) from 8.3.0 to 8.4.2.
- [Release notes](https://github.com/pillarjs/path-to-regexp/releases)
- [Changelog](https://github.com/pillarjs/path-to-regexp/blob/master/History.md)
- [Commits](pillarjs/path-to-regexp@v8.3.0...v8.4.2)

---
updated-dependencies:
- dependency-name: path-to-regexp
  dependency-version: 8.4.1
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/auth-oidc/node/path-to-regexp-8.4.1 branch from 707ba4f to eada8d4 Compare June 12, 2026 20:53
reggeenr
reggeenr approved these changes Jun 12, 2026
View reviewed changes

@reggeenr reggeenr left a comment

Copy link
Copy Markdown
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@reggeenr reggeenr merged commit 162ae76 into main Jun 12, 2026
3 checks passed
@reggeenr reggeenr deleted the dependabot/npm_and_yarn/auth-oidc/node/path-to-regexp-8.4.1 branch June 12, 2026 20:56
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@reggeenr reggeenr reggeenr approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@SaschaSchwarze0 @reggeenr