[Snyk] Upgrade body-parser from 2.2.1 to 2.2.2

[alokshukla2012]

Snyk has created this PR to upgrade body-parser from 2.2.1 to 2.2.2.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 1 version ahead of your current version.

• The recommended version was released 22 days ago.

Release notes

Package name: body-parser

• 2.2.2 - 2026-01-07
  

  What's Changed

  • docs: update README links by @ efekrskl in #673
  • docs: release notes for the v1.20.4 release by @ Phillip9587 in #674
  • docs: update URL-encoded parser description to include ISO-8859-1 encoding support by @ Phillip9587 in #679
  • docs: use standard jsdoc tags everywhere by @ Phillip9587 in #677
  • deps: qs@^6.14.1 by @ UlisesGascon in #689
  • refactor(json): simplify strict mode error string construction by @ jonchurch in #693
  • Release: 2.2.2 by @ UlisesGascon in #691

  New Contributors

  • @ efekrskl made their first contribution in #673

  Full Changelog: v2.2.1...v2.2.2

• 2.2.1 - 2025-11-24
  

  Important: Security

  • Security fix for CVE-2025-13466 (GHSA-wqch-xfxh-vrr4)

  What's Changed

  • ci: add dependabot by @ Phillip9587 in #593
  • ci: use full SHAs for github action versions by @ Phillip9587 in #594
  • deps: type-is@^2.0.1 by @ Phillip9587 in #599
  • build(deps): bump actions/setup-node from 4.3.0 to 4.4.0 by @ dependabot[bot] in #609
  • build(deps): bump github/codeql-action from 3.28.13 to 3.28.15 by @ dependabot[bot] in #610
  • build(deps-dev): bump eslint-plugin-promise from 6.1.1 to 6.6.0 by @ dependabot[bot] in #611
  • build(deps-dev): bump eslint-plugin-import from 2.27.5 to 2.31.0 by @ dependabot[bot] in #613
  • build(deps-dev): bump eslint-plugin-markdown from 3.0.0 to 3.0.1 by @ dependabot[bot] in #612
  • ci: add codeql github workflows scanning by @ Phillip9587 in #614
  • ci: update CodeQL config to ignore the test directory by @ Phillip9587 in #615
  • build(deps): bump actions/download-artifact from 4.2.1 to 4.3.0 by @ dependabot[bot] in #620
  • build(deps): bump github/codeql-action from 3.28.15 to 3.28.16 by @ dependabot[bot] in #619
  • chore(deps): unpin devDependencies by @ Phillip9587 in #616
  • ci: add node.js 24 to test matrix by @ Phillip9587 in #621
  • build(deps): bump github/codeql-action from 3.28.16 to 3.28.18 by @ dependabot[bot] in #623
  • build(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by @ dependabot[bot] in #624
  • chore: add funding to package.json by @ Phillip9587 in #617
  • build(deps): bump github/codeql-action from 3.28.18 to 3.29.2 by @ dependabot[bot] in #625
  • build(deps): bump github/codeql-action from 3.29.2 to 3.29.5 by @ dependabot[bot] in #630
  • refactor: move common request validation to read function by @ Phillip9587 in #600
  • deps: bump iconv-lite by @ bjohansebas in #631
  • doc: pull beta changelog forward into 2.0.0 by @ jonchurch in #629
  • refactor: optimize raw and text parsers with shared passthrough function by @ Phillip9587 in #634
  • build(deps): bump actions/checkout from 4.2.2 to 5.0.0 by @ dependabot[bot] in #640
  • build(deps): bump ossf/scorecard-action from 2.4.2 to 2.4.3 by @ dependabot[bot] in #639
  • build(deps): bump actions/setup-node from 4.4.0 to 5.0.0 by @ dependabot[bot] in #636
  • build(deps): bump actions/download-artifact from 4.3.0 to 5.0.0 by @ dependabot[bot] in #637
  • build(deps): bump github/codeql-action from 3.29.7 to 3.30.5 by @ dependabot[bot] in #638
  • deps: raw-body@^3.0.1 by @ Phillip9587 in #641
  • deps: debug@^4.4.3 by @ Phillip9587 in #642
  • docs: add iconv-lite 0.7.0 changes to history entry by @ Phillip9587 in #645
  • ci: add node.js 25 to test matrix by @ Phillip9587 in #650
  • perf: move read options outside parser middlewares by @ Phillip9587 in #648
  • test(json): add RFC 7159 whitespace edge cases by @ Ayoub-Mabrouk in #653
  • test: add test for urlencoded invalid defaultCharset by @ Phillip9587 in #643
  • build(deps): bump actions/download-artifact from 5.0.0 to 6.0.0 by @ dependabot[bot] in #657
  • build(deps): bump github/codeql-action from 3.30.5 to 4.31.2 by @ dependabot[bot] in #656
  • build(deps): bump actions/upload-artifact from 4.6.2 to 5.0.0 by @ dependabot[bot] in #655
  • build(deps): bump actions/setup-node from 5.0.0 to 6.0.0 by @ dependabot[bot] in #654
  • ci: also test on first supported node.js version by @ Phillip9587 in #646
  • chore: switch badges from badgen.net to shields.io by @ Phillip9587 in #661
  • Remove history.md from being packaged on publish by @ bjohansebas in #660
  • Release: 2.2.1 by @ UlisesGascon in #659

  New Contributors

  • @ dependabot[bot] made their first contribution in #609
  • @ jonchurch made their first contribution in #629
  • @ Ayoub-Mabrouk made their first contribution in #653

  Full Changelog: v2.2.0...v2.2.1

from body-parser GitHub release notes

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs