Bump dotenv from 17.4.1 to 17.4.2

Bumps [dotenv](https://github.com/motdotla/dotenv) from 17.4.1 to 17.4.2. - [Changelog](https://github.com/motdotla/dotenv/blob/master/CHANGELOG.md) - [Commits](https://github.com/motdotla/dotenv/compare/v17.4.1...v17.4.2) --- updated-dependencies: - dependency-name: dotenv dependency-version: 17.4.2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
Bump dotenv from 17.3.1 to 17.4.1
2026-04-17 08:27:23 +10:00 · 2026-04-07 22:02:29 +10:00 · 2026-04-03 08:47:09 +11:00 · 2026-04-03 08:45:06 +11:00 · 2026-03-01 09:50:49 +11:00 · 2026-03-01 09:47:09 +11:00
7 changed files with 874 additions and 705 deletions
@@ -0,0 +1,10 @@
+# https://docs.github.com/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file
+
+version: 2
+updates:
+  - package-ecosystem: "npm"
+    directory: "/"
+    schedule:
+      interval: "weekly"
+
+
@@ -5,19 +5,21 @@ on:
  push:
    tags:
      - v1.*
+  workflow_dispatch:
+
 jobs:
  push_to_registry:
    name: Push Docker Image to Docker Hub
    runs-on: ubuntu-latest
    steps:
-      - name: Check Out The Repo
-        uses: actions/checkout@v2
+      - name: Checkout
+        uses: actions/checkout@v5

-      - name: Set up QEMU
-        uses: docker/setup-qemu-action@v1
+      - name: Setup QEMU
+        uses: docker/setup-qemu-action@v3

      - name: Set up Docker Buildx
-        uses: docker/setup-buildx-action@v1
+        uses: docker/setup-buildx-action@v3

      - name: Get Smart Tag
        id: prepare
@@ -26,13 +28,13 @@ jobs:
          docker_image: krgamestudios/chat-server

      - name: Login to DockerHub
-        uses: docker/login-action@v1
+        uses: docker/login-action@v3
        with:
          username: ${{ secrets.DOCKER_USERNAME }}
          password: ${{ secrets.DOCKER_PASSWORD }}

      - name: Push to Docker Hub
-        uses: docker/build-push-action@v2
+        uses: docker/build-push-action@v6
        with:
          push: true
          tags: ${{ steps.prepare.outputs.tag }}
@@ -2,7 +2,7 @@
 FROM node:22-bookworm-slim
 WORKDIR "/app"
 COPY package*.json /app
-RUN npm install --production
+RUN npm install --omit=dev
 COPY . /app
 EXPOSE 3300
 USER node
@@ -142,7 +142,7 @@ networks:
 FROM node:22-bookworm-slim
 WORKDIR "/app"
 COPY package*.json ./
-RUN npm install --production
+RUN npm install --omit=dev
 COPY . /app
 EXPOSE ${appPort}
 USER node
@@ -1,6 +1,6 @@
 {
  "name": "chat-server",
-  "version": "1.5.1",
+  "version": "1.5.5",
  "description": "An API centric chat server. Uses Sequelize and mariaDB by default.",
  "main": "server/server.js",
  "scripts": {
@@ -19,15 +19,15 @@
  },
  "homepage": "https://github.com/krgamestudios/chat-server#readme",
  "dependencies": {
-    "cors": "^2.8.5",
-    "dotenv": "^16.4.5",
-    "express": "^4.19.2",
-    "jsonwebtoken": "^9.0.2",
-    "mariadb": "^3.3.0",
-    "sequelize": "^6.37.3",
-    "socket.io": "^4.7.5"
+    "cors": "^2.8.6",
+    "dotenv": "^17.4.2",
+    "express": "^5.2.1",
+    "jsonwebtoken": "^9.0.3",
+    "mariadb": "^3.5.2",
+    "sequelize": "^6.37.8",
+    "socket.io": "^4.8.3"
  },
  "devDependencies": {
-    "nodemon": "^3.1.0"
+    "nodemon": "^3.1.14"
  }
 }
@@ -31,7 +31,7 @@ app.use('/admin', require('./admin'));
 require('./chat')(io.of('/chat'));

 //error on access
-app.get('*', (req, res) => {
+app.get('/{*any}', (req, res) => {
 	res.redirect('https://github.com/krgamestudios/chat-server');
 });
Author	SHA1	Message	Date
dependabot[bot]	64efacaf39	Bump dotenv from 17.4.1 to 17.4.2 Bumps [dotenv](https://github.com/motdotla/dotenv) from 17.4.1 to 17.4.2. - [Changelog](https://github.com/motdotla/dotenv/blob/master/CHANGELOG.md) - [Commits](https://github.com/motdotla/dotenv/compare/v17.4.1...v17.4.2) --- updated-dependencies: - dependency-name: dotenv dependency-version: 17.4.2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2026-04-17 08:27:23 +10:00
dependabot[bot]	f124278452	Bump dotenv from 17.3.1 to 17.4.1 Bumps [dotenv](https://github.com/motdotla/dotenv) from 17.3.1 to 17.4.1. - [Changelog](https://github.com/motdotla/dotenv/blob/master/CHANGELOG.md) - [Commits](https://github.com/motdotla/dotenv/compare/v17.3.1...v17.4.1) --- updated-dependencies: - dependency-name: dotenv dependency-version: 17.4.1 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2026-04-07 22:02:29 +10:00
dependabot[bot]	ba1bfeb3a9	Bump sequelize from 6.37.7 to 6.37.8 Bumps [sequelize](https://github.com/sequelize/sequelize) from 6.37.7 to 6.37.8. - [Release notes](https://github.com/sequelize/sequelize/releases) - [Changelog](https://github.com/sequelize/sequelize/blob/main/CHANGELOG.md) - [Commits](https://github.com/sequelize/sequelize/compare/v6.37.7...v6.37.8) --- updated-dependencies: - dependency-name: sequelize dependency-version: 6.37.8 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2026-04-03 08:47:09 +11:00
dependabot[bot]	60224fa348	Bump mariadb from 3.5.1 to 3.5.2 Bumps [mariadb](https://github.com/mariadb-corporation/mariadb-connector-nodejs) from 3.5.1 to 3.5.2. - [Release notes](https://github.com/mariadb-corporation/mariadb-connector-nodejs/releases) - [Changelog](https://github.com/mariadb-corporation/mariadb-connector-nodejs/blob/main/CHANGELOG.md) - [Commits](https://github.com/mariadb-corporation/mariadb-connector-nodejs/compare/3.5.1...3.5.2) --- updated-dependencies: - dependency-name: mariadb dependency-version: 3.5.2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2026-04-03 08:45:06 +11:00
dependabot[bot]	38aaefbb3f	Bump mariadb from 3.4.5 to 3.5.1 Bumps [mariadb](https://github.com/mariadb-corporation/mariadb-connector-nodejs) from 3.4.5 to 3.5.1. - [Release notes](https://github.com/mariadb-corporation/mariadb-connector-nodejs/releases) - [Changelog](https://github.com/mariadb-corporation/mariadb-connector-nodejs/blob/main/CHANGELOG.md) - [Commits](https://github.com/mariadb-corporation/mariadb-connector-nodejs/compare/3.4.5...3.5.1) --- updated-dependencies: - dependency-name: mariadb dependency-version: 3.5.1 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2026-03-01 09:50:49 +11:00
dependabot[bot]	8a62e561e3	Bump nodemon from 3.1.11 to 3.1.14 Bumps [nodemon](https://github.com/remy/nodemon) from 3.1.11 to 3.1.14. - [Release notes](https://github.com/remy/nodemon/releases) - [Commits](https://github.com/remy/nodemon/compare/v3.1.11...v3.1.14) --- updated-dependencies: - dependency-name: nodemon dependency-version: 3.1.14 dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2026-03-01 09:47:09 +11:00
dependabot[bot]	55c5b53de4	Bump cors from 2.8.5 to 2.8.6 Bumps [cors](https://github.com/expressjs/cors) from 2.8.5 to 2.8.6. - [Release notes](https://github.com/expressjs/cors/releases) - [Changelog](https://github.com/expressjs/cors/blob/master/HISTORY.md) - [Commits](https://github.com/expressjs/cors/compare/v2.8.5...v2.8.6) --- updated-dependencies: - dependency-name: cors dependency-version: 2.8.6 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2026-02-20 09:15:50 +11:00
dependabot[bot]	37abf4e2b4	Bump dotenv from 17.2.3 to 17.3.1 Bumps [dotenv](https://github.com/motdotla/dotenv) from 17.2.3 to 17.3.1. - [Changelog](https://github.com/motdotla/dotenv/blob/master/CHANGELOG.md) - [Commits](https://github.com/motdotla/dotenv/compare/v17.2.3...v17.3.1) --- updated-dependencies: - dependency-name: dotenv dependency-version: 17.3.1 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2026-02-20 09:12:02 +11:00
dependabot[bot]	d2b1433846	Bump socket.io from 4.8.1 to 4.8.3 Bumps [socket.io](https://github.com/socketio/socket.io) from 4.8.1 to 4.8.3. - [Release notes](https://github.com/socketio/socket.io/releases) - [Changelog](https://github.com/socketio/socket.io/blob/main/CHANGELOG.md) - [Commits](https://github.com/socketio/socket.io/compare/socket.io@4.8.1...socket.io@4.8.3) --- updated-dependencies: - dependency-name: socket.io dependency-version: 4.8.3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2026-01-02 18:37:53 +11:00
Kayne Ruse	9935bc9c2f	Version bump	2025-12-10 11:58:44 +11:00
Kayne Ruse	e7b631c9c5	Updated syntax for docker and CI files	2025-12-10 10:19:41 +11:00
Kayne Ruse	b6bf405a71	Updated dependencies	2025-12-10 09:11:21 +11:00
dependabot[bot]	cf40c7a92c	Bump express from 5.1.0 to 5.2.0 Bumps [express](https://github.com/expressjs/express) from 5.1.0 to 5.2.0. - [Release notes](https://github.com/expressjs/express/releases) - [Changelog](https://github.com/expressjs/express/blob/master/History.md) - [Commits](https://github.com/expressjs/express/compare/v5.1.0...v5.2.0) --- updated-dependencies: - dependency-name: express dependency-version: 5.2.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2025-12-07 16:20:18 +11:00
dependabot[bot]	bddff784b7	Bump nodemon from 3.1.10 to 3.1.11 Bumps [nodemon](https://github.com/remy/nodemon) from 3.1.10 to 3.1.11. - [Release notes](https://github.com/remy/nodemon/releases) - [Commits](https://github.com/remy/nodemon/compare/v3.1.10...v3.1.11) --- updated-dependencies: - dependency-name: nodemon dependency-version: 3.1.11 dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2025-11-25 08:06:30 +11:00
dependabot[bot]	bcd09a58bc	Bump dotenv from 17.2.2 to 17.2.3 Bumps [dotenv](https://github.com/motdotla/dotenv) from 17.2.2 to 17.2.3. - [Changelog](https://github.com/motdotla/dotenv/blob/master/CHANGELOG.md) - [Commits](https://github.com/motdotla/dotenv/compare/v17.2.2...v17.2.3) --- updated-dependencies: - dependency-name: dotenv dependency-version: 17.2.3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2025-10-12 22:23:47 +11:00
Kayne Ruse	47de3e4330	Updated dependencies	2025-09-18 10:46:22 +10:00
Kayne Ruse	db66d61abe	Bump dependencies	2025-09-10 14:06:56 +10:00
dependabot[bot]	f5fceb5c4e	Bump dotenv from 17.2.1 to 17.2.2 Bumps [dotenv](https://github.com/motdotla/dotenv) from 17.2.1 to 17.2.2. - [Changelog](https://github.com/motdotla/dotenv/blob/master/CHANGELOG.md) - [Commits](https://github.com/motdotla/dotenv/compare/v17.2.1...v17.2.2) --- updated-dependencies: - dependency-name: dotenv dependency-version: 17.2.2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2025-09-10 13:04:24 +10:00
Kayne Ruse	b4b490dc6f	Experimenting with dependabot	2025-09-09 18:56:40 +10:00
Kayne Ruse	496048f62b	Updated dependencies	2025-07-26 03:56:40 +10:00