[Snyk] Upgrade karma from 0.12.37 to 0.13.22

[snyk-bot]

Snyk has created this PR to upgrade karma from 0.12.37 to 0.13.22.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 33 versions ahead of your current version.
• The recommended version was released 4 years ago, on 2016-03-08.

The recommended version fixes:

Severity	Issue	Exploit Maturity
	Denial of Service (DoS) npm:ws:20171108	Mature
	Denial of Service (DoS) npm:ws:20160624	No Known Exploit
	Regular Expression Denial of Service (DoS) npm:negotiator:20160616	No Known Exploit
	Regular Expression Denial of Service (ReDoS) npm:fresh:20170908	No Known Exploit
	Uninitialized Memory Exposure npm:base64-url:20180512	Mature
	Insecure Randomness npm:ws:20160920	No Known Exploit
	Remote Memory Exposure npm:ws:20160104	No Known Exploit
	Regular Expression Denial of Service (DoS) npm:uglify-js:20151024	No Known Exploit
	Arbitrary Code Injection SNYK-JS-MORGAN-72579	Proof of Concept
	Uninitialized Memory Exposure npm:utile:20180614	No Known Exploit

Release notes

Package name: karma

• 0.13.22 - 2016-03-08
  

  There are no code changes, just removed a large temp file from the npm package. Thanks to @kasajian for the report.

• 0.13.21 - 2016-02-12
  

  Reverts

  • "Merge pull request #1791 from budde377/feature-adding-no-colors-to-run-command" (96ebdc4), closes #1894 #1895
• 0.13.20 - 2016-02-12
  

  Bug Fixes

  • runner: Remove null characters from terminal output (3481500), closes #1343
  • invalid characters in the headers on Node 5.6.0 (152337d)
  • Switch all requires from fs to graceful-fs (1e21aaa)
  • Upgrade socket.io to 1.4.5 (2f51a9f)

  Features

  • Allow custom browser names (60ba85f)
  • Do not fail on empty test suite (8004763), closes #926
  • config: Add forceJSONP option (8627d67)
  • launcher: Enable specification of retry-limit (cc5547c), closes #1126
  • logging: Add colors and log-level options to run-command (2d29165)
  • logging: Send color option to server (486c4f3)
  • web-server: Use isbinaryfile for binary file detection (f938a8e), closes #1070
• 0.13.19 - 2016-01-06
  

  Bug Fixes

  • server: Handle new socket.io internal format. (3ab78d6), closes #1782
• 0.13.18 - 2016-01-05
  

  Bug Fixes

  • preprocessor: Improve handling of failed preprocessors (e726d1c), closes #1521

  Features

  • cli: Add .config/karma.conf.js to the default lookup path (49bf1aa), closes #1387
  • config: Add a clearContext config to prevent clearing of context. (5fc8ee7)
  • config: mime config option support (d562383), closes #1735
• 0.13.17 - 2016-01-04
  No content.
• 0.13.16 - 2015-12-24
  

  Bug Fixes

  • config: corrects spelling in example config template (9fafc60)
  • middleware: Correct spelling of middleware logger name (9e9e7e6)
  • preprocessor: Directory names with dots (4b5e094)
  • test: locale in Expire header (db04cf0), closes #1741

  Features

  • proxy: Allow proxies configuration to be an object (ad94356)
  • proxy: Allow to configure changeOrigin option of http-proxy (ae05ea4), closes #1729
• 0.13.15 - 2015-11-03
  

  Bug Fixes

  • eslint: Fix formatting for the new ESLint 1.8.0 (dc1bbab)
• 0.13.14 - 2015-10-22
  

  Bug Fixes

  • client: Revert back to old reloading detection (f1c22d6)
  • client: Wait for childwindow to load (c1bb15a)
• 0.13.13 - 2015-10-22
  

  Bug Fixes

  • client: Wait for iframe to be loaded (1631474), closes #1652
• 0.13.12 - 2015-10-22
• 0.13.11 - 2015-10-14
• 0.13.10 - 2015-09-21
• 0.13.9 - 2015-08-11
• 0.13.8 - 2015-08-06
• 0.13.7 - 2015-08-05
• 0.13.6 - 2015-08-05
• 0.13.5 - 2015-08-04
• 0.13.4 - 2015-08-04
• 0.13.3 - 2015-07-22
• 0.13.2 - 2015-07-17
• 0.13.1 - 2015-07-16
• 0.13.0 - 2015-07-15
• 0.13.0-rc.9 - 2015-07-13
• 0.13.0-rc.8 - 2015-07-09
• 0.13.0-rc.7 - 2015-07-08
• 0.13.0-rc.6 - 2015-06-25
• 0.13.0-rc.5 - 2015-06-23
• 0.13.0-rc.4 - 2015-06-04
• 0.13.0-rc.3 - 2015-05-29
• 0.13.0-rc.2 - 2015-05-29
• 0.13.0-rc.1 - 2015-05-27
• 0.13.0-rc.0 - 2015-05-26
• 0.12.37 - 2015-06-23

from karma GitHub release notes

Commit messages

Package name: karma

• fe8d4e2 chore: release v0.13.22
• a756242 chore: release v0.13.21
• 823cc48 Merge pull request #1897 from dignifiedquire/fix-reporters
• 96ebdc4 revert: "Merge pull request #1791 from budde377/feature-adding-no-colors-to-run-command"
• c6076bd docs(readme): Remove unused badge
• 99fb861 chore: release v0.13.20
• 609917d chore: update contributors
• 26ae115 Merge pull request #1818 from karma-runner/ie
• dfedc97 test(client): Browserstack tests & more browsers
• 574271c test(client): Move to assert and add shims
• 8627d67 feat(config): Add `forceJSONP` option
• 932b1cc chore(devDeps): Upgrade
• 159015c Merge pull request #1886 from karma-runner/greenkeeper-glob-7.0.0
• e697a2a Merge pull request #1883 from karma-runner/greenkeeper-core-js-2.1.0
• 281d6ff chore(package): update glob to version 7.0.0
• 6ea456e Merge pull request #1884 from thorn0/node-5-6-fix-dates
• 152337d fix: invalid characters in the headers on Node 5.6.0
• f7967f7 chore(package): update core-js to version 2.1.0
• 9f13b55 Merge pull request #1881 from kentcdodds/pr/prs-welcome
• 1ffb9a1 chore(docs): Add links to help first-time contributors
• 19dd824 Merge pull request #1871 from karma-runner/greenkeeper-validate-commit-msg-1.3.0
• 304eac5 chore(package): update validate-commit-msg to version 1.3.0
• 17732d5 Merge pull request #1860 from karma-runner/greenkeeper-qunitjs-1.21.0
• fce10b5 Merge pull request #1862 from karma-runner/greenkeeper-log4js-0.6.31

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[//]: # (snyk:metadata:{"dependencies":[{"name":"karma","from":"0.12.37","to":"0.13.22"}],"packageManager":"npm","type":"auto","projectUrl":"https://app.snyk.io/org/saurabharch/project/e1e81c74-a02c-45f7-95d4-9912eb2be8da?utm_source=github&utm_medium=upgrade-pr","projectPublicId":"e1e81c74-a02c-45f7-95d4-9912eb2be8da","env":"prod","prType":"upgrade","vulns":["npm:ws:20171108","npm:ws:20160624","npm:negotiator:20160616","npm:fresh:20170908","npm:base64-url:20180512","npm:ws:20160920","npm:ws:20160104","npm:uglify-js:20151024","SNYK-JS-MORGAN-72579","npm:utile:20180614"],"issuesToFix":[{"issueId":"npm:ws:20171108","severity":"high","title":"Denial of Service (DoS)","exploitMaturity":"mature"},{"issueId":"npm:ws:20160624","severity":"high","title":"Denial of Service (DoS)","exploitMaturity":"no-known-exploit"},{"issueId":"npm:negotiator:20160616","severity":"high","title":"Regular Expression Denial of Service (DoS)","exploitMaturity":"no-known-exploit"},{"issueId":"npm:fresh:20170908","severity":"high","title":"Regular Expression Denial of Service (ReDoS)","exploitMaturity":"no-known-exploit"},{"issueId":"npm:base64-url:20180512","severity":"high","title":"Uninitialized Memory Exposure","exploitMaturity":"mature"},{"issueId":"npm:ws:20160920","severity":"medium","title":"Insecure Randomness","exploitMaturity":"no-known-exploit"},{"issueId":"npm:ws:20160104","severity":"medium","title":"Remote Memory Exposure","exploitMaturity":"no-known-exploit"},{"issueId":"npm:uglify-js:20151024","severity":"medium","title":"Regular Expression Denial of Service (DoS)","exploitMaturity":"no-known-exploit"},{"issueId":"SNYK-JS-MORGAN-72579","severity":"medium","title":"Arbitrary Code Injection","exploitMaturity":"proof-of-concept"},{"issueId":"npm:utile:20180614","severity":"low","title":"Uninitialized Memory Exposure","exploitMaturity":"no-known-exploit"}],"upgrade":["npm:ws:20171108","npm:ws:20160624","npm:negotiator:20160616","npm:fresh:20170908","npm:base64-url:20180512","npm:ws:20160920","npm:ws:20160104","npm:uglify-js:20151024","SNYK-JS-MORGAN-72579","npm:utile:20180614"],"upgradeInfo":{"versionsDiff":33,"publishedDate":"2016-03-08T21:52:22.980Z"},"templateVariants":[],"hasFixes":true,"isMajorUpgrade":false,"isBreakingChange":false})