5 - Fix invalid `Content-Type` header when `send.mime.default_type` unset
10 * deps: parseurl@~1.3.1
11 - perf: enable strict mode
16 * deps: escape-html@~1.0.3
17 - perf: enable strict mode
18 - perf: optimize string replacement
19 - perf: use faster string coercion
22 - deps: destroy@~1.0.4
23 - deps: escape-html@~1.0.3
24 - deps: range-parser@~1.0.3
29 * Add `fallthrough` option
30 - Allows declaring this middleware is the final destination
31 - Provides better integration with Express patterns
32 * Fix reading options from options prototype
33 * Improve the default redirect response headers
34 * deps: escape-html@1.0.2
36 - Allow Node.js HTTP server to set `Date` response header
37 - Fix incorrectly removing `Content-Location` on 304 response
38 - Improve the default redirect response headers
39 - Send appropriate headers on default error response
40 - Use `http-errors` for standard emitted errors
41 - Use `statuses` instead of `http` module for status messages
42 - deps: escape-html@1.0.2
45 - deps: on-finished@~2.3.0
46 - perf: enable strict mode
47 - perf: remove unnecessary array allocations
48 * perf: enable strict mode
49 * perf: remove argument reassignment
59 - deps: on-finished@~2.2.1
65 - Throw errors early for invalid `extensions` or `index` options
72 - Fix regression sending zero-length files
78 - Always read the stat size from the file
79 - Fix mutating passed-in `options`
85 * Fix redirect loop in Node.js 0.11.14
87 - Fix root path disclosure
96 - deps: on-finished@~2.2.0
101 * Fix potential open redirect when mounted at root
107 - deps: on-finished@~2.1.1
120 * Fix potential open redirect when mounted at root
121 - Back-ported from v1.7.2
126 * Fix redirect loop when index file serving disabled
140 - deps: range-parser@~1.0.2
152 - Add `lastModified` option
153 - Use `etag` to generate `ETag` header
160 - Fix a path traversal issue when using `root`
161 - Fix malicious path detection for empty string path
172 - Work around `fd` leak in Node.js 0.10 for `fs.ReadStream`
177 * Fix parsing of weird `req.originalUrl` values
178 * deps: parseurl@~1.3.0
179 * deps: utils-merge@1.0.0
185 - Add `extensions` option
191 - Fix serving index files without root dir
197 - Fix incorrect 403 on Windows and Node.js 0.11
214 * deps: parseurl@~1.2.0
215 - Cache URLs based on original value
216 - Remove no-longer-needed URL mis-parse work-around
217 - Simplify the "fast-path" `RegExp`
219 - Add `dotfiles` option
227 - Cap `maxAge` value to 1 year
233 * deps: parseurl@~1.1.3
234 - faster parsing of href-only URLs
239 * Add `setHeaders` option
240 * Include HTML link in redirect response
242 - Accept string for `maxAge` (converted by `ms`)
248 - Do not throw un-catchable error on file open race condition
249 - Use `escape-html` for HTML escaping
251 - deps: finished@1.2.2
258 - fix "event emitter leak" warnings
260 - deps: finished@1.2.1
265 * use `escape-html` for escaping
267 - Send `max-age` in `Cache-Control` in correct format
273 - Calculate ETag with md5 for reduced collisions
274 - Fix wrong behavior when index file matches directory
275 - Ignore stream errors after request ends
276 - Skip directories in index file search
282 * Accept options directly to `send` module
288 * Resolve relative paths at middleware setup
289 * Use parseurl to parse the URL from request
294 * Do not rely on connect-like environments
304 * Add mime export for back-compat
309 * Genesis from `connect`