[Snyk] Security upgrade express from 4.19.2 to 4.22.0

[Danilqa]

Snyk has created this PR to fix 1 vulnerabilities in the pnpm dependencies of this project.

Snyk changed the following file(s):

• examples/express/package.json
• examples/express/pnpm-lock.yaml

Vulnerabilities that will be fixed with an upgrade:

	Issue	Score
	Allocation of Resources Without Limits or Throttling SNYK-JS-QS-15268416	708

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• Max score is 1000. Note that the real score may have changed since the PR was raised.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Allocation of Resources Without Limits or Throttling

---

Note

Low Risk
Dependency-only upgrade confined to an example project; primary risk is minor behavioral/regression changes from updated Express transitive packages.

Overview
Updates the examples/express sample to use express 4.22.0 (from 4.19.2) and refreshes the pnpm-lock.yaml to the new resolved dependency tree.

The lockfile bump pulls in newer transitive versions (notably qs, body-parser, send, serve-static, cookie, encodeurl, finalhandler, and statuses) to address the reported qs vulnerability.

^{Written by Cursor Bugbot for commit bcd226b. This will update automatically on new commits. Configure here.}

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Actions	Updated (UTC)
node-file-router	Ready	Preview, Comment	Feb 16, 2026 2:03pm