Skip to content

build(deps): bump path-to-regexp from 8.3.0 to 8.4.2 in the npm_and_yarn group across 1 directory#1601

Merged
kdinev merged 1 commit intomasterfrom
dependabot/npm_and_yarn/npm_and_yarn-6d396ef2de
Apr 2, 2026
Merged

build(deps): bump path-to-regexp from 8.3.0 to 8.4.2 in the npm_and_yarn group across 1 directory#1601
kdinev merged 1 commit intomasterfrom
dependabot/npm_and_yarn/npm_and_yarn-6d396ef2de

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Apr 2, 2026
edited
Loading

Bumps the npm_and_yarn group with 1 update in the / directory: path-to-regexp.

Updates path-to-regexp from 8.3.0 to 8.4.2

Release notes

Sourced from path-to-regexp's releases.

v8.4.2

Fixed

  • Error on trailing backslash (#434) 9a78879

Performance

  • Minimize array allocations (#437) 937c02d
  • Improve compile performance (#436) 57247e6
    • Should improve compilation performance by ~25%
  • Remove internal tokenization during parse (#435) 5844988
    • Should improve parse performance by ~20%

Bundle size to 1.93 kB, from 1.97 kB.

pillarjs/path-to-regexp@v8.4.1...v8.4.2

v8.4.1

Fixed

  • Remove trie deduplication (#431) 6bc8e84
    • Using a trie required non-greedy matching, which regressed wildcards in non-ending mode by matching them up until the first match. For example:
      • /*foo with /a/b = /a
      • /*foo.htmlwith /a/b.html/c.html = /a/b.html
  • Allow backtrack handling to match itself (#427) 5bcd30b
    • When backtracking was introduced, it rejected matching things like /:"a"_:"b" against /foo__. This makes intuitive sense because the second parameter is not going to backtrack on anymore, but it's somewhat unexpected since there's no reason it shouldn't match the second`.

pillarjs/path-to-regexp@v8.4.0...v8.4.1

v8.4.0

Important

Fixed

Changed

  • Dedupes regex prefixes (pillarjs/path-to-regexp#422)
    • This will result in shorter regular expressions for some cases using optional groups
  • Rejects large optional route combinations (pillarjs/path-to-regexp#424)
    • When using groups such as /users{/delete} it will restrict the number of generated combinations to < 256, equivalent to 8 top-level optional groups and unlikely to occur in a real world application, but avoids exploding the regex size for applications that accept user created routes
Commits

@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Apr 2, 2026
@coveralls
Copy link
Copy Markdown

coveralls commented Apr 2, 2026
edited
Loading

Coverage Status

coverage: 86.103%. remained the same
when pulling 2fb0a24 on dependabot/npm_and_yarn/npm_and_yarn-6d396ef2de
into 8a333b3 on master.

@kdinev
Copy link
Copy Markdown
Member

kdinev commented Apr 2, 2026

@dependabot rebase

1 similar comment
@kdinev
Copy link
Copy Markdown
Member

kdinev commented Apr 2, 2026

@dependabot rebase

@dependabot
build(deps): bump path-to-regexp
2fb0a24 
Bumps the npm_and_yarn group with 1 update in the / directory: [path-to-regexp](https://github.com/pillarjs/path-to-regexp).


Updates `path-to-regexp` from 8.3.0 to 8.4.2
- [Release notes](https://github.com/pillarjs/path-to-regexp/releases)
- [Changelog](https://github.com/pillarjs/path-to-regexp/blob/master/History.md)
- [Commits](pillarjs/path-to-regexp@v8.3.0...v8.4.2)

---
updated-dependencies:
- dependency-name: path-to-regexp
  dependency-version: 8.4.2
  dependency-type: indirect
  dependency-group: npm_and_yarn
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/npm_and_yarn-6d396ef2de branch from 827f321 to 2fb0a24 Compare April 2, 2026 15:16
@kdinev kdinev merged commit d25714b into master Apr 2, 2026
3 checks passed
@kdinev kdinev deleted the dependabot/npm_and_yarn/npm_and_yarn-6d396ef2de branch April 2, 2026 15:19
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@kdinev kdinev kdinev approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@coveralls @kdinev