From c0d0fb36b4bd9f1b56231a4c0faad91d0e19a1d2 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 25 Feb 2026 11:06:35 +0000
Subject: [PATCH] Bump express from 5.1.0 to 5.2.0

Bumps [express](https://github.com/expressjs/express) from 5.1.0 to 5.2.0.
- [Release notes](https://github.com/expressjs/express/releases)
- [Changelog](https://github.com/expressjs/express/blob/master/History.md)
- [Commits](https://github.com/expressjs/express/compare/v5.1.0...v5.2.0)

---
updated-dependencies:
- dependency-name: express
  dependency-version: 5.2.0
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 package.json |  2 +-
 yarn.lock    | 40 ++++++++++++++++++++++++++++++++++++++--
 2 files changed, 39 insertions(+), 3 deletions(-)

diff --git a/package.json b/package.json
index cb03436a..168d22f7 100644
--- a/package.json
+++ b/package.json
@@ -79,7 +79,7 @@
     "clean-webpack-plugin": "^4.0.0",
     "copy-webpack-plugin": "^13.0.0",
     "dotenv": "^14.3.2",
-    "express": "^5.1.0",
+    "express": "^5.2.0",
     "file-loader": "^6.2.0",
     "file-saver": "^2.0.5",
     "fs": "^0.0.1-security",
diff --git a/yarn.lock b/yarn.lock
index 0fb9af0c..537f2a4b 100644
--- a/yarn.lock
+++ b/yarn.lock
@@ -6935,7 +6935,7 @@ __metadata:
     eslint-plugin-coriolis-web: "file:./src/utils/eslint-plugin-coriolis-web"
     eslint-plugin-prettier: ^5.2.6
     eslint-plugin-react: ^7.31.7
-    express: ^5.1.0
+    express: ^5.2.0
     file-loader: ^6.2.0
     file-saver: ^2.0.5
     fs: ^0.0.1-security
@@ -8820,7 +8820,7 @@ __metadata:
   languageName: node
   linkType: hard
 
-"express@npm:^5.0.1, express@npm:^5.1.0":
+"express@npm:^5.0.1":
   version: 5.1.0
   resolution: "express@npm:5.1.0"
   dependencies:
@@ -8855,6 +8855,42 @@ __metadata:
   languageName: node
   linkType: hard
 
+"express@npm:^5.2.0":
+  version: 5.2.1
+  resolution: "express@npm:5.2.1"
+  dependencies:
+    accepts: ^2.0.0
+    body-parser: ^2.2.1
+    content-disposition: ^1.0.0
+    content-type: ^1.0.5
+    cookie: ^0.7.1
+    cookie-signature: ^1.2.1
+    debug: ^4.4.0
+    depd: ^2.0.0
+    encodeurl: ^2.0.0
+    escape-html: ^1.0.3
+    etag: ^1.8.1
+    finalhandler: ^2.1.0
+    fresh: ^2.0.0
+    http-errors: ^2.0.0
+    merge-descriptors: ^2.0.0
+    mime-types: ^3.0.0
+    on-finished: ^2.4.1
+    once: ^1.4.0
+    parseurl: ^1.3.3
+    proxy-addr: ^2.0.7
+    qs: ^6.14.0
+    range-parser: ^1.2.1
+    router: ^2.2.0
+    send: ^1.1.0
+    serve-static: ^2.2.0
+    statuses: ^2.0.1
+    type-is: ^2.0.1
+    vary: ^1.1.2
+  checksum: e0bc9c11fcf4e6ed29c9b0551229e8cf35d959970eb5e10ef3e48763eb3a63487251950d9bf4ef38b93085f0f33bb1fc37ab07349b8fa98a0fa5f67236d4c054
+  languageName: node
+  linkType: hard
+
 "extend-shallow@npm:^2.0.1":
   version: 2.0.1
   resolution: "extend-shallow@npm:2.0.1"