Bump elysia from 1.3.8 to 1.4.27

[dependabot]

Bumps elysia from 1.3.8 to 1.4.27.

Release notes

Sourced from elysia's releases.

1.4.27

What's changed

Bug fix:

• getSchemaValidator: handle TypeBox as sub type
• handle cookie prototype pollution when parsing cookie

Improvement:

• conditional async on getSchemaValidator when schema is Standard Schema
• use Response.json on Bun
• export AnySchema, UnwrapSchema, ModelsToTypes from root

Full Changelog: elysiajs/elysia@1.4.26...1.4.27

1.4.26

What's changed

Bug fix:

• #1755 deduplicate local handler from global event
• #1752 system router with trailing path doesn't match with non-trailing
• url format redos
• #1747 parsing request from mount hang

Full Changelog: elysiajs/elysia@1.4.25...1.4.26

1.4.25

What's changed

Feature:

• export ElysiaStatus

Bug fix:

• macro with conflict literal value per status
• recursive macro with conflict value per status

Full Changelog: elysiajs/elysia@1.4.24...1.4.25

1.4.24

What's Changed

Feature:

• graceful unsigned cookie transition

Bug fix:

• #1733 preserve multiple set-cookie headers in mounted handlers by @​cipher416
• object cookie with secret doesn't deserialized after parsed

New Contributors

• @​cipher416 made their first contribution in elysiajs/elysia#1733

Full Changelog: elysiajs/elysia@1.4.23...1.4.24

... (truncated)

Changelog

Sourced from elysia's changelog.

1.4.27 - 1 Mar 2026

Bug fix:

• getSchemaValidator: handle TypeBox as sub type
• handle cookie prototype pollution when parsing cookie

Improvement:

• conditional async on getSchemaValidator when schema is Standard Schema
• use Response.json on Bun
• export AnySchema, UnwrapSchema, ModelsToTypes from root

1.4.26 - 25 Feb 2026

Bug fix:

• #1755 deduplicate local handler from global event
• #1752 system router with trailing path doesn't match with non-trailing
• url format redos
• #1747 parsing request from mount hang

1.4.25 - 12 Feb 2026

Feature:

• export ElysiaStatus

Bug fix:

• macro with conflict literal value per status
• recursive macro with conflict value per status

1.4.24 - 11 Feb 2026

Feature:

• graceful unsigned cookie transition

Bug fix:

• #1733 preserve multiple set-cookie headers in mounted handlers
• object cookie with secret doesn't deserialized after parsed

1.4.23 - 9 Feb 2026

Feature:

• #1719 add t.Union/t.Intersection handling in property enumerations/checks
• #1697 extend complex formdata support to StandardSchema
• #1656 serialize custom array-like custom class with array sub class

Bug fix:

• #1721 Promise with response schema
• #1700 distinct union object
• #1683 response validation returns 500 instead of 422 for nested schemas in dynamic mode
• #1679 preserve headers when throwing from AsyncGenerator
• #1595 stream reference should point to teed value
• fix can't modify immutable headers error

Change:

• update exact-mirror to 0.2.7

... (truncated)

Commits

• cc9159b 🎉 feat: 1.4.27
• e9d6b17 🎉 feat: 1.4.27
• 21dce4c 🎉 feat: use Response.json on Bun
• 6b44646 🔧 fix(getSchemaValidator): handle TypeBox as sub type
• bbaf6b7 🎉 feat: 1.4.26
• e596dab 🔧 fix: #1747 parsing request from mount hang
• 6561d61 🔧 fix: #1752 system router with trailing path doesn't match with non-t...
• 3c9dabc 🔧 fix: #1752 system router with trailing path doesn't match with non-t...
• d17a7aa 🔧 fix: #1755 deduplicate local handler from global event
• e5c9449 🔧 fix: recursive macro with conflict value per status
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for elysia since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.