[Snyk] Upgrade mocha from 7.1.2 to 7.2.0 #73

sachin-raja · 2023-09-20T14:24:21Z

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade mocha from 7.1.2 to 7.2.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 1 version ahead of your current version.
The recommended version was released 3 years ago, on 2020-05-23.

The recommended version fixes:

Issue	PriorityScore (*)	Exploit Maturity
Prototype Pollution SNYK-JS-LODASH-567746	731/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.2	Proof of Concept
Prototype Pollution SNYK-JS-LODASH-608086	731/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.2	Proof of Concept
Command Injection SNYK-JS-LODASH-1040724	731/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.2	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	731/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.2	Proof of Concept
Prototype Pollution SNYK-JS-FLAT-596927	731/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.2	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-GLOBPARENT-1016905	731/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.2	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASH-1018905	731/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.2	Proof of Concept
Prototype Pollution SNYK-JS-MINIMIST-2429795	731/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.2	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: mocha

7.2.0 - 2020-05-23
7.2.0 / 2020-05-22

🎉 Enhancements
- #4234: Add ability to run tests in a mocha instance multiple times (@ nicojs)
- #4219: Exposing filename in JSON, doc, and json-stream reporters (@ Daniel0113)
- #4244: Add Root Hook Plugins (@ boneskull)
🐛 Fixes
- #4258: Fix missing dot in name of configuration file (@ sonicdoe)
- #4194: Check if module.paths really exists (@ ematipico)
- #4256: --forbid-only does not recognize it.only when before crashes (@ arvidOtt)
- #4152: Bug with multiple async done() calls (@ boneskull)
- #4275: Improper warnings for invalid reporters (@ boneskull)
- #4288: Broken hook.spec.js test for IE11 (@ boneskull)
📖 Documentation
- #4081: Insufficient white space for API docs in view on mobile (@ HyunSangHan)
- #4255: Update mocha-docdash for UI fixes on API docs (@ craigtaub)
- #4235: Enable emoji on website; enable normal ul elements (@ boneskull)
- #4272: Fetch sponsors at build time, show ALL non-skeevy sponsors (@ boneskull)
🔩 Other
- #4249: Refactoring improving encapsulation (@ arvidOtt)
- #4242: CI add job names, add Node.js v14 to matrix (@ boneskull)
- #4237: Refactor validatePlugins to throw coded errors (@ boneskull)
- #4236: Better debug output (@ boneskull)
7.1.2 - 2020-04-26
7.1.2 / 2020-04-26

🔩 Other
- #4251: Prevent karma-mocha from stalling (@ juergba)
- #4222: Update dependency mkdirp to v0.5.5 (@ outsideris)
📖 Documentation
- #4208: Add Wallaby logo to site (@ boneskull)

from mocha GitHub release notes

Commit messages

Package name: mocha

2aab607 Release v7.2.0
d525345 update CHANGELOG for v7.2.0 [ci skip]
c6b7b61 Downgrade fs-extra for v7.x release branch
c967789 fetch sponsors at build time, show ALL non-skeevy sponsors; closes #4271 (#4272)
19f1841 Bump linters ecma version
08c3124 Test spec fixes
1edfb70 Fix for runnable.spec.js
792292a multiple async done() calls result in failure; closes #4151 (#4152)
5fd44cc add Root Hook Plugins
e07cf0f do not commit generated content to VCS; closes #3713 (#4289)
137ba18 smart quotes and such on website; closes #3716
23c28e0 add javascript in docs to eslint
ab59bfa fix improper warnings for invalid reporters (#4275)
80c1a1a fix test/unit/hook.spec.js (#4288)
d4fd2a6 --forbid-only doesn't recognize `it.only` when `before` crashes (#4256); closes #3840
39f4210 Add ability to run tests in a mocha instance multiple times (#4234); closes #2783
8605a28 fix: check if module.paths really exists (#4194); closes #2505
5a1f836 rename fixtures to have .fixture.js extension
4b17207 test helper improvements (#4241)
8b9ce08 assorted test fixes & refactors (#4240)
032f586 Exposing filename in JSON, doc, and json-stream reporters (#4219)
75241bd adds a bunch of keywords
42b78eb Fix missing dot in name of configuration file
73c1a3e refactor validatePlugins to throw coded errors

Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Snyk has created this PR to upgrade mocha from 7.1.2 to 7.2.0. See this package in npm: https://www.npmjs.com/package/mocha See this project in Snyk: https://app.snyk.io/org/sraja5/project/0fd4190a-e46c-4b7d-a705-5745b75cb1ea?utm_source=github&utm_medium=referral&page=upgrade-pr

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Snyk] Upgrade mocha from 7.1.2 to 7.2.0 #73

[Snyk] Upgrade mocha from 7.1.2 to 7.2.0 #73

sachin-raja commented Sep 20, 2023

7.2.0 / 2020-05-22

🎉 Enhancements

🐛 Fixes

📖 Documentation

🔩 Other

7.1.2 / 2020-04-26

🔩 Other

📖 Documentation

[Snyk] Upgrade mocha from 7.1.2 to 7.2.0 #73

Are you sure you want to change the base?

[Snyk] Upgrade mocha from 7.1.2 to 7.2.0 #73

Conversation

sachin-raja commented Sep 20, 2023

Snyk has created this PR to upgrade mocha from 7.1.2 to 7.2.0.

7.2.0 / 2020-05-22

🎉 Enhancements

🐛 Fixes

📖 Documentation

🔩 Other

7.1.2 / 2020-04-26

🔩 Other

📖 Documentation