2.1.0

• Fix loading sessions with special keys
• deps: cookies@0.9.1
  • Add partitioned option for CHIPS support
  • Add priority option for Priority cookie support
  • Fix accidental cookie name/value truncation when given invalid chars
  • Fix maxAge option to reject invalid values
  • Remove quotes from returned quoted cookie value
  • Use req.socket over deprecated req.connection
  • pref: small lookup regexp optimization

2.0.0

• Change default cookie name to session
• Change .populated to .isPopulated
• Create new session for all types of invalid sessions
• Drop support for Node.js 0.8
• Remove private req.session.save()
• Remove the key option; use name instead
• Remove undocumented req.session.length to free up key name
• Remove undocumented req.sessionCookies and req.sessionKey
• Save all enumerable properties on req.session
  • Including _-prefixed properties
• Use Object.defineProperty instead of deprecated __define*__
• Use safe-buffer for improved Buffer API
• deps: cookies@0.8.0
  • Fix check for default secure option behavior
  • Fix maxAge option preventing cookie deletion
  • Support "none" in sameSite option
  • deps: depd@~2.0.0
  • deps: keygrip@~1.1.0
  • perf: remove argument reassignment
• deps: debug@3.2.7
  • Add DEBUG_HIDE_DATE
  • Add 256 color mode support
  • Enable / disable namespaces dynamically
  • Make millisecond timer namespace-specific
  • Remove DEBUG_FD support
  • Use Date#toISOString() when output is not a TTY
• deps: on-headers@~1.0.2
  • Fix res.writeHead patch missing return value
• deps: safe-buffer@5.2.1
• perf: reduce the scope of try-catch deopt
• perf: remove internal reference to request from session object

2.0.0-rc.1

• Remove private req.session.save()
• Remove undocumented req.session.length to free up key name
• Remove undocumented req.sessionCookies and req.sessionKey
• deps: cookies@0.8.0
  • Fix check for default secure option behavior
  • Fix maxAge option preventing cookie deletion
  • Support "none" in sameSite option
  • deps: depd@~2.0.0
  • deps: keygrip@~1.1.0
  • perf: remove argument reassignment
• deps: debug@3.2.6
• deps: on-headers@~1.0.2
  • Fix res.writeHead patch missing return value
• deps: safe-buffer@5.2.0
• perf: remove internal reference to request from session object

1.4.0

• deps: cookies@0.8.0
  • Fix check for default secure option behavior
  • Fix maxAge option preventing cookie deletion
  • Support "none" in sameSite option
  • deps: depd@~2.0.0
  • deps: keygrip@~1.1.0

1.3.3

• deps: cookies@0.7.3
  • deps: depd@~1.1.2
  • deps: keygrip@~1.0.3
  • perf: remove argument reassignment
• deps: on-headers@~1.0.2
  • Fix res.writeHead patch missing return value

2.0.0-beta.3

• deps: cookies@0.7.1
  • deps: depd@~1.1.1
  • deps: keygrip@~1.0.2
• deps: debug@3.1.0
  • Add DEBUG_HIDE_DATE
  • Add 256 color mode support
  • Enable / disable namespaces dynamically
  • Make millisecond timer namespace-specific
  • Remove DEBUG_FD support
  • Use Date#toISOString() when output is not a TTY
• deps: safe-buffer@5.1.1

1.3.2

• deps: debug@2.6.9

1.3.1

• deps: cookies@0.7.1
  • deps: depd@~1.1.1
  • deps: keygrip@~1.0.2

1.3.0

• deps: cookies@0.7.0
  • Add sameSite option for SameSite cookie support
  • Throw on invalid values provided to Cookie constructor
  • deps: keygrip@~1.0.1
  • pref: enable strict mode
• deps: debug@2.6.8
  • Allow colors in workers
  • Deprecate DEBUG_FD environment variable set to 3 or higher
  • Fix error when running under React Native
  • Use same color for same namespace
  • deps: ms@2.0.0
• deps: on-headers@~1.0.1
  • perf: enable strict mode

2.0.0-beta.2

• Create new session for all types of invalid sessions
• Use safe-buffer for improved Buffer API
• deps: debug@2.6.8
  • Fix DEBUG_MAX_ARRAY_LENGTH
  • deps: ms@2.0.0