[Snyk] Upgrade eslint from 8.42.0 to 9.32.0

[nerdy-tech-com-gitub]

Snyk has created this PR to upgrade eslint from 8.42.0 to 9.32.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

⚠️ Warning: This PR contains major version upgrade(s), and may be a breaking change.

• The recommended version is 62 versions ahead of your current version.

• The recommended version was released a month ago.

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	57	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	57	Proof of Concept
	Path Traversal SNYK-JS-WEBPACKDEVMIDDLEWARE-6476555	57	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-ADOBECSSTOOLS-6096077	57	No Known Exploit
	Cross-site Request Forgery (CSRF) SNYK-JS-AXIOS-6032459	57	Proof of Concept
	Prototype Pollution SNYK-JS-AXIOS-6144788	57	No Known Exploit
	Denial of Service (DoS) SNYK-JS-WS-7266574	57	Proof of Concept
	Denial of Service (DoS) SNYK-JS-WS-7266574	57	Proof of Concept
	Server-side Request Forgery (SSRF) SNYK-JS-AXIOS-7361793	57	Proof of Concept
	Denial of Service (DoS) SNYK-JS-WS-7266574	57	Proof of Concept
	Asymmetric Resource Consumption (Amplification) SNYK-JS-BODYPARSER-7926860	57	No Known Exploit
	Excessive Platform Resource Consumption within a Loop SNYK-JS-BRACES-6838727	57	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-CROSSSPAWN-8303230	57	Proof of Concept
	Improper Handling of Extra Parameters SNYK-JS-FOLLOWREDIRECTS-6141137	57	Proof of Concept
	Denial of Service (DoS) SNYK-JS-HTTPPROXYMIDDLEWARE-8229906	57	Proof of Concept
	Improper Handling of Unexpected Data Type SNYK-JS-ONHEADERS-10773729	57	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHTOREGEXP-7925106	57	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHTOREGEXP-8482416	57	Proof of Concept
	Cross-site Scripting (XSS) SNYK-JS-ROLLUP-8073097	57	Proof of Concept
	Uncontrolled Resource Consumption ('Resource Exhaustion') SNYK-JS-TAR-6476909	57	Proof of Concept
	Cross-site Scripting (XSS) SNYK-JS-WEBPACK-7840298	57	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-ADOBECSSTOOLS-5871286	57	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-AXIOS-6124857	57	Proof of Concept
	Server-side Request Forgery (SSRF) SNYK-JS-AXIOS-9292519	57	Proof of Concept
	Server-side Request Forgery (SSRF) SNYK-JS-AXIOS-9403194	57	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-BABELHELPERS-9397697	57	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-BABELRUNTIME-10044504	57	Proof of Concept
	Cross-site Scripting (XSS) SNYK-JS-COOKIE-8163060	57	No Known Exploit
	Improper Control of Dynamically-Managed Code Resources SNYK-JS-EJS-6689533	57	Proof of Concept
	Open Redirect SNYK-JS-EXPRESS-6474509	57	No Known Exploit
	Cross-site Scripting SNYK-JS-EXPRESS-7926867	57	No Known Exploit
	Information Exposure SNYK-JS-FOLLOWREDIRECTS-6444610	57	Proof of Concept
	Improper Check for Unusual or Exceptional Conditions SNYK-JS-HTTPPROXYMIDDLEWARE-9691389	57	No Known Exploit
	Inefficient Regular Expression Complexity SNYK-JS-MICROMATCH-6838728	57	No Known Exploit
	Improper Input Validation SNYK-JS-NANOID-8492085	57	No Known Exploit
	Arbitrary Code Injection SNYK-JS-PRISMJS-9055448	57	Proof of Concept
	Cross-site Scripting SNYK-JS-SEND-7926862	57	No Known Exploit
	Cross-site Scripting SNYK-JS-SERVESTATIC-7926865	57	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-WORDWRAP-3149973	57	Proof of Concept
	Incomplete List of Disallowed Inputs SNYK-JS-BABELTRAVERSE-5962462	57	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-BRACEEXPANSION-9789073	57	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-BRACEEXPANSION-9789073	57	Proof of Concept
	Predictable Value Range from Previous Values SNYK-JS-FORMDATA-10841150	57	Proof of Concept
	Predictable Value Range from Previous Values SNYK-JS-FORMDATA-10841150	57	Proof of Concept
	Always-Incorrect Control Flow Implementation SNYK-JS-HTTPPROXYMIDDLEWARE-9691387	57	No Known Exploit

Release notes

Package name: eslint

• 9.32.0 - 2025-07-25
  

  Features

  • 1245000 feat: support explicit resource management in core rules (#19828) (fnx)
  • 0e957a7 feat: support typescript types in accessor rules (#19882) (fnx)

  Bug Fixes

  • 960fd40 fix: Upgrade @ eslint/js (#19971) (Nicholas C. Zakas)
  • bbf23fa fix: Refactor reporting into FileReport (#19877) (Nicholas C. Zakas)
  • d498887 fix: bump @ eslint/plugin-kit to 0.3.4 to resolve vulnerability (#19965) (Milos Djermanovic)
  • f46fc6c fix: report only global references in no-implied-eval (#19932) (Nitin Kumar)
  • 7863d26 fix: remove outdated types in ParserOptions.ecmaFeatures (#19944) (ntnyq)
  • 3173305 fix: update execScript message in no-implied-eval rule (#19937) (TKDev7)

  Documentation

  • 86e7426 docs: Update README (GitHub Actions Bot)

  Chores

  • 50de1ce chore: package.json update for @ eslint/js release (Jenkins)
  • 74f01a3 ci: unpin jiti to version ^2.5.1 (#19970) (루밀LuMir)
  • 2ab1381 ci: pin jiti to version 2.4.2 (#19964) (Francesco Trotta)
  • b7f7545 test: switch to flat config mode in SourceCode tests (#19953) (Milos Djermanovic)
  • f5a35e3 test: switch to flat config mode in eslint-fuzzer (#19960) (Milos Djermanovic)
  • e22af8c refactor: use CustomRuleDefinitionType in JSRuleDefinition (#19949) (Francesco Trotta)
  • e855717 chore: switch performance tests to hyperfine (#19919) (Francesco Trotta)
  • 2f73a23 test: switch to flat config mode in ast-utils tests (#19948) (Milos Djermanovic)
  • c565a53 chore: exclude further_reading_links.json from Prettier formatting (#19943) (Milos Djermanovic)
• 9.31.0 - 2025-07-11
  

  Features

  • 35cf44c feat: output full actual location in rule tester if different (#19904) (ST-DDT)
  • a6a6325 feat: support explicit resource management in no-loop-func (#19895) (Milos Djermanovic)
  • 4682cdc feat: support explicit resource management in no-undef-init (#19894) (Milos Djermanovic)
  • 5848216 feat: support explicit resource management in init-declarations (#19893) (Milos Djermanovic)
  • bb370b8 feat: support explicit resource management in no-const-assign (#19892) (Milos Djermanovic)

  Bug Fixes

  • 07fac6c fix: retry on EMFILE when writing autofix results (#19926) (TKDev7)
  • 28cc7ab fix: Remove incorrect RuleContext types (#19910) (Nicholas C. Zakas)

  Documentation

  • 664cb44 docs: Update README (GitHub Actions Bot)
  • 40dbe2a docs: fix mismatch between globalIgnores() code and text (#19914) (MaoShizhong)
  • 5a0069d docs: Update README (GitHub Actions Bot)
  • fef04b5 docs: Update working on issues info (#19902) (Nicholas C. Zakas)

  Chores

  • 3ddd454 chore: upgrade to @ eslint/js@9.31.0 (#19935) (Francesco Trotta)
  • d5054e5 chore: package.json update for @ eslint/js release (Jenkins)
  • 0f4a378 chore: update eslint (#19933) (renovate[bot])
  • 76c2340 chore: bump mocha to v11 (#19917) (루밀LuMir)
• 9.30.1 - 2025-07-01
  

  Bug Fixes

  • e91bb87 fix: allow separate default and named type imports (#19899) (xbinaryx)

  Documentation

  • ab7c625 docs: Update README (GitHub Actions Bot)
  • dae1e5b docs: update jsdoc's link (#19896) (JamesVanWaza)

  Chores

  • b035f74 chore: upgrade to @ eslint/js@9.30.1 (#19906) (Francesco Trotta)
  • b3dbc16 chore: package.json update for @ eslint/js release (Jenkins)
• 9.30.0 - 2025-06-27
  

  Features

  • 52a5fca feat: Support basePath property in config objects (#19879) (Milos Djermanovic)
  • 4ab4482 feat: add allowSeparateTypeImports option to no-duplicate-imports (#19872) (sethamus)
  • b8a7e7a feat: throw error when column is negative in getIndexFromLoc (#19831) (루밀LuMir)

  Bug Fixes

  • 6a0f164 fix: handle null type loc in getIndexFromLoc method (#19862) (루밀LuMir)
  • 3fbcd70 fix: update error message for no-restricted-properties (#19855) (Tanuj Kanti)
  • 7ef4cf7 fix: remove unnecessary semicolon from fixes (#19857) (Francesco Trotta)
  • 7dabc38 fix: use process.version in --env-info (#19865) (TKDev7)

  Documentation

  • 8662ed1 docs: adopt eslint-stylistic sub packages related changes (#19887) (ntnyq)
  • 20158b0 docs: typo in comment for unused variables handling (#19870) (leopardracer)
  • ebfb5b4 docs: Fixed Typo in configuration-files.md (#19873) (0-20)
  • 4112fd0 docs: clarify that boolean is still allowed for rule meta.deprecated (#19866) (Bryan Mishkin)

  Chores

  • 2b6491c chore: upgrade to @ eslint/js@9.30.0 (#19889) (Francesco Trotta)
  • 5a5d526 chore: package.json update for @ eslint/js release (Jenkins)
  • eaf8a41 chore: Correct typos in linter tests (#19878) (kilavvy)
• 9.29.0 - 2025-06-13
  

  Features

  • f686fcb feat: add ecmaVersion: 2026, parsing using and await using (#19832) (Milos Djermanovic)
  • 19cdd22 feat: prune suppressions for non-existent files (#19825) (TKDev7)
  • b3d720f feat: add ES2025 globals (#19835) (fisker Cheung)
  • 677a283 feat: add auto-accessor fields support to class-methods-use-this (#19789) (sethamus)
  • dbba058 feat: allow global type declaration in no-var (#19714) (Remco Haszing)
  • 342bd29 feat: ignore type annotations in no-restricted-globals (#19781) (sethamus)
  • 786bcd1 feat: add allowProperties option to no-restricted-properties (#19772) (sethamus)
  • 05b66d0 feat: add sourceCode.isGlobalReference(node) method (#19695) (Nitin Kumar)

  Bug Fixes

  • 85c082c fix: explicit matching behavior with negated patterns and arrays (#19845) (Milos Djermanovic)
  • 9bda4a9 fix: fix LintOptions.filterCodeBlock types (#19837) (ntnyq)
  • 7ab77a2 fix: correct breaking deprecation of FlatConfig type (#19826) (Logicer)
  • 1ba3318 fix: add language and dialects to no-use-before-define (#19808) (Francesco Trotta)

  Documentation

  • 00e3e6a docs: add support for custom name parameter to includeIgnoreFile (#19795) (루밀LuMir)
  • 3aed075 docs: Update README (GitHub Actions Bot)
  • a2f888d docs: enhance documentation with links and fix typos (#19761) (루밀LuMir)
  • 53c3235 docs: update to clarify prompt usage (#19748) (Jennifer Davis)

  Chores

  • 5c114c9 chore: upgrade @ eslint/js@9.29.0 (#19851) (Milos Djermanovic)
  • acf2201 chore: package.json update for @ eslint/js release (Jenkins)
  • a806994 refactor: Remove eslintrc from flat config functionality (#19833) (Nicholas C. Zakas)
  • 152ed51 test: switch to flat config mode in code path analysis tests (#19824) (Milos Djermanovic)
  • b647239 chore: Update first-party dependencies faster with Renovate (#19822) (Nicholas C. Zakas)
  • 7abe42e refactor: SafeEmitter -> SourceCodeVisitor (#19708) (Nicholas C. Zakas)
  • e392895 perf: improve time complexity of getLocFromIndex (#19782) (루밀LuMir)
  • 0ed289c chore: remove accidentally committed file (#19807) (Francesco Trotta)
• 9.28.0 - 2025-05-30
  

  Features

  • b0674be feat: Customization of serialization for languageOptions (#19760) (Nicholas C. Zakas)
  • a95721f feat: Add --pass-on-unpruned-suppressions CLI option (#19773) (Milos Djermanovic)
  • bfd0e7a feat: support TypeScript syntax in no-use-before-define (#19566) (Tanuj Kanti)
  • 68c61c0 feat: support TS syntax in no-shadow (#19565) (Nitin Kumar)
  • 0f773ef feat: support TS syntax in no-magic-numbers (#19561) (Nitin Kumar)
  • c4a6b60 feat: add allowTypeAnnotation to func-style (#19754) (sethamus)
  • b03ad17 feat: add TypeScript support to prefer-arrow-callback (#19678) (Tanuj Kanti)
  • bc3c331 feat: ignore overloaded function declarations in func-style rule (#19755) (sethamus)

  Bug Fixes

  • eea3e7e fix: Remove configured global variables from GlobalScope#implicit (#19779) (Milos Djermanovic)
  • a467de3 fix: update context.report types (#19751) (Nitin Kumar)
  • fd467bb fix: remove interopDefault to use jiti's default (#19697) (sethamus)
  • 72d16e3 fix: avoid false positive in no-unassigned-vars for declare module (#19746) (Azat S.)
  • 81c3c93 fix: curly types (#19750) (Eli)

  Documentation

  • 3ec2082 docs: Nested arrays in files config entry (#19799) (Nicholas C. Zakas)
  • 89a65b0 docs: clarify how config arrays can apply to subsets of files (#19788) (Shais Ch)
  • 2ba8a0d docs: Add description of meta.namespace to plugin docs (#19798) (Nicholas C. Zakas)
  • 59dd7e6 docs: update func-style with examples (#19793) (Tanuj Kanti)
  • e9129e0 docs: add global scope's implicit field to Scope Manager docs (#19770) (Milos Djermanovic)
  • 52f5b7a docs: fix minor typos and add links (#19743) (루밀LuMir)
  • 00716a3 docs: upfront recommend against using the no-return-await rule (