[Snyk] Upgrade cookie from 0.4.1 to 0.7.2

[X-oss-byte]

Snyk has created this PR to upgrade cookie from 0.4.1 to 0.7.2.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 6 versions ahead of your current version.

• The recommended version was released a year ago.

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Cross-site Scripting (XSS) SNYK-JS-COOKIE-8163060	529	No Known Exploit

Release notes

Package name: cookie

• 0.7.2 - 2024-10-07
  

  Fixed

  • Fix object assignment of hasOwnProperty (#177) bc38ffd

  v0.7.1...v0.7.2

• 0.7.1 - 2024-10-03
  

  Fixed

  • Allow leading dot for domain (#174)
    • Although not permitted in the spec, some users expect this to work and user agents ignore the leading dot according to spec
  • Add fast path for serialize without options, use obj.hasOwnProperty when parsing (#172)

  v0.7.0...v0.7.1

• 0.7.0 - 2024-10-02
  
  • perf: parse cookies ~10% faster (#144 by @ kurtextrem and #170)
  • fix: narrow the validation of cookies to match RFC6265 (#167 by @ bewinsnw)
  • fix: add main to package.json for rspack (#166 by @ proudparrot2)

  v0.6.0...v0.7.0

• 0.6.0 - 2023-11-07
  
  • Add partitioned option
• 0.5.0 - 2022-04-11
  
  • Add priority option
  • Fix expires option to reject invalid dates
  • pref: improve default decode speed
  • pref: remove slow string split in parse
• 0.4.2 - 2022-02-02
  
  • pref: read value only when assigning in parse
  • pref: remove unnecessary regexp in parse
• 0.4.1 - 2020-04-22
  
  • Fix maxAge option to reject invalid values

from cookie GitHub release notes

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.
• Max score is 1000. Note that the real score may have changed since the PR was raised.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Actions	Updated (UTC)
next-js-next-plugin-storybook	Error		Feb 12, 2026 3:17am
next-js-next-plugin-storybook-g5dx	Error		Feb 12, 2026 3:17am
next-js-next-plugin-storybook-y5ka	Error		Feb 12, 2026 3:17am
next-x-storybook	Error		Feb 12, 2026 3:17am

[vercel]

Deployment failed with the following error:

Invalid vercel.json file provided

[bolt-new-by-stackblitz]

Run & review this pull request in StackBlitz Codeflow.

[changeset-bot]

⚠️ No Changeset found

Latest commit: 164ee8a

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR