Closed snyk-bot closed 1 year ago
New dependency changes detected. Learn more about Socket for GitHub ↗︎
👍 No new dependency issues detected in pull request
To ignore an alert, reply with a comment starting with @SocketSecurity ignore
followed by a space separated list of package-name@version
specifiers. e.g. @SocketSecurity ignore foo@1.0.0 bar@*
or ignore all packages with @SocketSecurity ignore-all
Issue | Status |
---|---|
Install scripts | ✅ 0 issues |
Native code | ✅ 0 issues |
Bin script shell injection | ✅ 0 issues |
Unresolved require | ✅ 0 issues |
Invalid package.json | ✅ 0 issues |
HTTP dependency | ✅ 0 issues |
Git dependency | ✅ 0 issues |
Potential typo squat | ✅ 0 issues |
Known Malware | ✅ 0 issues |
Telemetry | ✅ 0 issues |
Protestware/Troll package | ✅ 0 issues |
📊 Modified Dependency Overview:
⬆️ Updated Package | Version Diff | Added Capability Access | +/- Transitive Count |
Publisher |
---|---|---|---|---|
eslint@8.40.0 | 8.39.0...8.40.0 | None | +1/-1 |
eslintbot |
Snyk has created this PR to upgrade eslint from 8.39.0 to 8.40.0.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
Release notes
Package name: eslint
Features
5db7808
feat: improve flat config errors for invalid rule options and severities (#17140) (Josh Goldbergf5574dc
feat: Add findConfigFile() method to FlatESLint (#17142) (Nicholas C. Zakas)e52b98b
feat: addsourceCode
property to the rule context (#17107) (Nitin Kumar)1468f5b
feat: addphysicalFilename
property to the rule context (#17111) (Nitin Kumar)0df4d4f
feat: addcwd
to rule context (#17106) (Nitin Kumar)52018f2
feat: addfilename
property to the rule context (#17108) (Nitin Kumar)559ff4e
feat: add newomitLastInOneLineClassBody
option to thesemi
rule (#17105) (Nitin Kumar)Bug Fixes
f076e54
fix: Ensure FlatESLint#findConfigFile() doesn't throw. (#17151) (Nicholas C. Zakas)Documentation
e980bf3
docs: Update README (GitHub Actions Bot)e92a6fc
docs: Update README (GitHub Actions Bot)af5fe64
docs: Fix custom rule schema docs (#17115) (Adam Jones)4a352a9
docs: explain how to include predefined globals (#17114) (Marcus Wyatt)5ea15d9
docs: add mastodon link in readme (#17110) (唯然)Chores
4053004
chore: upgrade @ eslint/js@8.40.0 (#17156) (Milos Djermanovic)50fed1d
chore: package.json update for @ eslint/js release (ESLint Jenkins)4c7a170
chore: upgrade @ eslint/eslintrc@2.0.3 (#17155) (Milos Djermanovic)e80b7cc
chore: upgrade espree@9.5.2 (#17154) (Milos Djermanovic)ce3ac91
chore: upgrade eslint-visitor-keys@3.4.1 (#17153) (Milos Djermanovic)9094d79
chore: addlatest/
tometa.docs.url
in all core rules (#17136) (Milos Djermanovic)d85efad
perf: don't usegrapheme-splitter
on ASCII strings in key-spacing rule (#17122) (Milos Djermanovic)Features
3f7af9f
feat: ImplementSourceCode#markVariableAsUsed()
(#17086) (Nicholas C. Zakas)Documentation
6987dc5
docs: Fix formatting in Custom Rules docs (#17097) (Milos Djermanovic)4ee92e5
docs: Update README (GitHub Actions Bot)d8e9887
docs: Custom Rules cleanup/expansion (#16906) (Ben Perlmutter)1fea279
docs: Clarify how to add to tsc agenda (#17084) (Nicholas C. Zakas)970ef1c
docs: Update triage board location (Nicholas C. Zakas)6d8bffd
docs: Update README (GitHub Actions Bot)Chores
60a6f26
chore: upgrade @ eslint/js@8.39.0 (#17102) (Milos Djermanovic)d5ba5c0
chore: package.json update for @ eslint/js release (ESLint Jenkins)f57eff2
ci: run tests on Node.js v20 (#17093) (Nitin Kumar)9d1b8fc
perf: Binary search in token storeutils.search
(#17066) (Francesco Trotta)07a4435
chore: Add request for minimal repro to bug report (#17081) (Nicholas C. Zakas)eac4943
refactor: remove unnecessary use ofSourceCode#getAncestors
in rules (#17075) (Milos Djermanovic)0a7b60a
chore: update description ofSourceCode#getDeclaredVariables
(#17072) (Milos Djermanovic)6e2df71
chore: remove unnecessary references to the LICENSE file (#17071) (Milos Djermanovic)Commit messages
Package name: eslint
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information:
🧐 View latest project report
🛠 Adjust upgrade PR settings
🔕 Ignore this dependency or unsubscribe from future upgrade PRs