expressjs/morgan 1.11.0
on GitHub

6 hours ago

What's Changed

feat: add :pid token by @ganesh3367 in #329

Security Fix:

Escape control characters in :remote-user token to prevent log injection
- Fixes CVE-2026-5078 GHSA-4vj7-5mj6-jm8m

New Contributors

@inigomarquinez made their first contribution in #291
@jonchurch made their first contribution in #299
@bjohansebas made their first contribution in #301
@UlisesGascon made their first contribution in #300
@ctcpip made their first contribution in #319
@ganesh3367 made their first contribution in #329

Full Changelog: 1.10.0...1.11.0

Check out latest releases or
releases around expressjs/morgan 1.11.0

Don't miss a new morgan release

NewReleases is sending notifications on new releases.

Get notifications