Snyk has created this PR to upgrade mocha from 9.1.3 to 9.2.1.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version is 3 versions ahead of your current version.
The recommended version was released 22 days ago, on 2022-02-19.
Snyk has created this PR to upgrade mocha from 9.1.3 to 9.2.1.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version fixes:
SNYK-JS-NANOID-2332193
Why? Proof of Concept exploit, Has a fix available, CVSS 4
(*) Note that the real score may have changed since the PR was raised.
Release notes
Package name: mocha
9.2.1 / 2022-02-19
Please also note our announcements.
#4832: Loading of config files throws wrong error (@ juergba)
#4799: Reporter: configurable
maxDiffSize
reporter-option (@ norla)9.2.0 / 2022-01-24
Please also note our announcements.
9.1.4 / 2022-01-14
Please also note our announcements.
import
throws wrong error if loader is used (@ giltayar)9.1.3 / 2021-10-15
Please also note our announcements.
bdd
ES6 style import (@ juergba)EVENT_SUITE_ADD_*
events (@ beatfactor)Commit messages
Package name: mocha
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information:
🧐 View latest project report
🛠 Adjust upgrade PR settings
🔕 Ignore this dependency or unsubscribe from future upgrade PRs