socket-security[bot]
commented
1 year ago New dependency changes detected. Learn more about Socket for GitHub ↗︎
👍 No new dependency issues detected in pull request
Bot Commands
To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of package-name@version specifiers. e.g. @SocketSecurity ignore foo@1.0.0 bar@* or ignore all packages with @SocketSecurity ignore-all
Pull request alert summary
| Issue | Status |
|---|---|
| Install scripts | ✅ 0 issues |
| Native code | ✅ 0 issues |
| Bin script shell injection | ✅ 0 issues |
| Unresolved require | ✅ 0 issues |
| Invalid package.json | ✅ 0 issues |
| HTTP dependency | ✅ 0 issues |
| Git dependency | ✅ 0 issues |
| Potential typo squat | ✅ 0 issues |
| Known Malware | ✅ 0 issues |
| Telemetry | ✅ 0 issues |
| Protestware/Troll package | ✅ 0 issues |
📊 Modified Dependency Overview:
| ⬆️ Updated Package | Version Diff | Added Capability Access | +/- Transitive Count |
Publisher |
|---|---|---|---|---|
| jasmine@5.0.0 | 4.6.0...5.0.0 | None | +19/-1 |
sgravrock |
DerekNonGeneric
Snyk has created this PR to upgrade jasmine from 4.6.0 to 5.0.0.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
Warning: This is a major version upgrade, and may be a breaking change.
Release notes
Package name: jasmine
-
5.0.0 - 2023-05-13
-
5.0.0-beta.0 - 2023-04-29
-
5.0.0-alpha.1 - 2023-04-08
-
5.0.0-alpha.0 - 2023-03-18
-
4.6.0 - 2023-03-16
from jasmine GitHub release notesPlease see the release notes.
Please see the release notes.
Please see the release notes.
Please see the release notes.
Please see the release notes.
Commit messages
Package name: jasmine
- 51b60d2 Bump version to 5.0.0
- 04c4bfe Fixed handling of special Glob syntax in project base dirs
- e7f5fbd Bump version to 5.0.0-beta.0
- 9118835 Parallel: Removed redundant cluster disconnect
- 447408e Parallel: Report unhandled exceptions/rejections between spec files
- fd6381a Updated to Glob 10
- 0fc3a2d Parallel: take care of pending specs
- 2d8ff6c --parallel=auto option
- 81462c5 Merge branch 'main' into 5.0
- 0aeb009 Dropped support for Node 16
- 4fae3bd Parallel: Support use without globals
- f00c76a Added Node 20 to supported environments
- cd50d8d Bump version to 5.0.0-alpha.1
- fd31a42 Parallel: handle reporter errors
- 5592089 Revert "Revert "Include the underlying exception in ESM import exceptions""
- 3f36187 Merge branch 'main' into 5.0
- 5d542df Revert "Include the underlying exception in ESM import exceptions"
- 2dcd739 Include the underlying exception in ESM import exceptions
- ef8d05f Breaking: Treat unknown args of the form --foo=bar as errors, not env vars
- 9ef7f0d Breaking: Treat --parallel=1 as an error rather than running in sequential mode
- e53c593 Update to Glob 9
- 1171314 Updated dev dependencies
- ff30975 Bump version to 5.0.0-alpha.0
- e0c8cd8 Cleaned up redundant jsdocs
CompareNote: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information:
🧐 View latest project report
🛠 Adjust upgrade PR settings
🔕 Ignore this dependency or unsubscribe from future upgrade PRs