[Snyk] Upgrade chai from 4.3.7 to 4.3.10

[mmomtchev]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade chai from 4.3.7 to 4.3.10.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 3 versions ahead of your current version.
• The recommended version was released 21 days ago, on 2023-09-28.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Regular Expression Denial of Service (ReDoS) SNYK-JS-GETFUNCNAME-5923417	609/1000 Why? Proof of Concept exploit, Recently disclosed, CVSS 8.6	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: chai

• 4.3.10 - 2023-09-28
  

  This release simply bumps all dependencies to their latest non-breaking versions.

  What's Changed

  • upgrade all dependencies by @ keithamus in #1540

  Full Changelog: v4.3.9...v4.3.10

• 4.3.9 - 2023-09-27
  

  Upgrade dependencies.

  This release upgrades dependencies to address CVE-2023-43646 where a large function name can cause "catastrophic backtracking" (aka ReDOS attack) which can cause the test suite to hang.

  Full Changelog: v4.3.8...v4.3.9

• 4.3.8 - 2023-08-24
  

  What's Changed

  • 4.x.x: Fix link to commit logs on GitHub by @ bugwelle in #1487
  • build(deps): bump socket.io-parser from 4.0.4 to 4.0.5 by @ dependabot in #1488
  • Small typo in test.js by @ mavaddat in #1459
  • docs: specify return type of objDisplay by @ scarf005 in #1490
  • Update CONTRIBUTING.md by @ matheus-rodrigues00 in #1521
  • Fix: update exports.version to current version by @ peanutenthusiast in #1534

  New Contributors

  • @ bugwelle made their first contribution in #1487
  • @ mavaddat made their first contribution in #1459
  • @ scarf005 made their first contribution in #1490
  • @ matheus-rodrigues00 made their first contribution in #1521
  • @ peanutenthusiast made their first contribution in #1534

  Full Changelog: v4.3.7...v4.3.8

• 4.3.7 - 2022-11-07
  

  What's Changed

  • fix: deep-eql bump package to support symbols comparison by @ snewcomer in #1483

  Full Changelog: v4.3.6...v4.3.7

from chai GitHub release notes

Commit messages

Package name: chai

• 744a16e 4.3.10
• 0ccd823 upgrade all dependencies (#1540)
• 923d0a4 4.3.9
• 1a0f887 make
• a141e57 upgrade deps
• d9ff2c6 4.3.8
• 8d3205b build
• b351dc0 Fix: update exports.version to current version (#1534)
• 1a8247f Update CONTRIBUTING.md (#1521)
• 3a8c49a docs: specify return type of objDisplay (#1490)
• b455124 test: fix typo in test.js (#1459)
• 98f4233 build(deps): bump socket.io-parser from 4.0.4 to 4.0.5 (#1488)
• acd16e0 chore: 4.x.x: Fix link to commit logs on GitHub (#1487)

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[codecov]

Codecov Report

All modified lines are covered by tests ✅

Comparison is base (23367d0) 97.31% compared to head (4b5fbfb) 97.31%.

Additional details and impacted files

@@           Coverage Diff           @@
##             main      #11   +/-   ##
=======================================
  Coverage   97.31%   97.31%           
=======================================
  Files           5        5           
  Lines         372      372           
  Branches       38       38           
=======================================
  Hits          362      362           
  Misses          7        7           
  Partials        3        3           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.