Skip to content

Commit

Permalink
Update handlebars and remove cookie-parser
Browse files Browse the repository at this point in the history 
Old handlebars version had a CVE, GitHub was loud. Removing
cookie-parser because we don't use cookies.
  • Loading branch information
@patins
patins committed Dec 31, 2017
1 parent 83c10c1 commit c8b44df
Show file tree
Hide file tree
Showing 2 changed files with 1 addition and 4 deletions.
2 changes: 0 additions & 2 deletions app.js
View file
Original file line number Diff line number Diff line change
Expand Up @@ -7,7 +7,6 @@ var express = require('express');
var bodyParser = require('body-parser');
var methodOverride = require('method-override');
var morgan = require('morgan');
var cookieParser = require('cookie-parser');

var mongoose = require('mongoose');
var port = process.env.PORT || 3000;
Expand All @@ -22,7 +21,6 @@ var app = express();
mongoose.connect(database);

app.use(morgan('dev'));
app.use(cookieParser());

app.use(bodyParser.urlencoded({
extended: true
Expand Down
3 changes: 1 addition & 2 deletions package.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -8,7 +8,6 @@
"bcrypt-nodejs": "0.0.3",
"body-parser": "^1.8.4",
"bower": "^1.8.0",
"cookie-parser": "~1.3.2",
"dotenv": "^1.2.0",
"email-templates": "^2.0.1",
"express": "^4.9.8",
Expand All @@ -20,7 +19,7 @@
"gulp-sass": "^2.3.2",
"gulp-sourcemaps": "^1.12.0",
"gulp-uglify": "^1.5.4",
"handlebars": "^3.0.3",
"handlebars": "^4.0.11",
"jsonwebtoken": "5.0.4",
"method-override": "^2.3.5",
"moment": "^2.10.3",
Expand Down

0 comments on commit c8b44df

Please sign in to comment.