[Snyk] Upgrade core-js from 3.23.4 to 3.25.1

[blacklight]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade core-js from 3.23.4 to 3.25.1.

 :information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

- The recommended version is **5 versions** ahead of your current version. - The recommended version was released **21 days ago**, on 2022-09-07.

Release notes

Package name: core-js

• 3.25.1 - 2022-09-07
  
  • Added some fixes and workarounds of FF30- typed arrays bug that does not properly convert objects to numbers
  • Added sideEffects field to core-js-pure package.json for better tree shaking, #1117
  • Dropped semver dependency from core-js-compat
    • semver package (ironically) added a breaking change and dropped NodeJS 8 support in the minor 7.1 version, after that semver in core-js-compat was pinned to 7.0 since for avoiding breaking changes it should support NodeJS 8. However, since core-js-compat is usually used with other packages that use semver dependency, it causes multiple duplications of semver in dependencies. So I decided to remove semver dependency and replace it with a couple of simple helpers.
  • Added Bun 0.1.6-0.1.11 compat data
  • Added Deno 1.25 compat data mapping
  • Updated Electron 21 compat data mapping
  • Some stylistic changes, minor fixes, and improvements
• 3.25.0 - 2022-08-24
  
  • Added Object.prototype.__proto__ polyfill
    • It's optional, legacy, and in some cases (mainly because of developers' mistakes) can cause problems, but some libraries depend on it, and most code can't work without the proper libraries' ecosystem
    • Only for modern engines where this feature is missed (like Deno), it's not installed in IE10- since here we have no proper way setting of the prototype
    • Without fixes of early implementations where it's not an accessor since those fixes are impossible
    • Only for the global version
  • Considering document.all as an object in some missed cases, see ECMAScript Annex B 3.6
  • Avoiding unnecessary promise creation and validation result in %WrapForValid(Async)IteratorPrototype%.return, proposal-iterator-helpers/215
  • Fixed omitting the result of proxing .return in %IteratorHelperPrototype%.return, #1116
  • Fixed the order creation of properties of iteration result object of some iterators (value should be created before done)
  • Fixed some cases of Safari < 13 bug - silent on non-writable array .length setting
  • Fixed ArrayBuffer.length in V8 ~ Chrome 27-
  • Relaxed condition of re-usage native WeakMap for internal states with multiple core-js copies
  • Availability cloning of FileList in the structuredClone polyfill extended to some more old engines versions
  • Some stylistic changes and minor fixes
  • Throwing a TypeError in core-js-compat / core-js-builder in case of passing invalid module names / filters for avoiding unexpected result, related to #1115
  • Added missed NodeJS 13.2 to esmodules core-js-compat / core-js-builder target
  • Added Electron 21 compat data mapping
  • Added Oculus Browser 23.0 compat data mapping
• 3.24.1 - 2022-07-29
  
  • NodeJS is ignored in IS_BROWSER detection to avoid a false positive with jsdom, #1110
  • Fixed detection of @@ species support in Promise in some old engines
  • { Array, %TypedArray% }.prototype.{ findLast, findLastIndex } marked as shipped in FF104
  • Added iOS Safari 15.6 compat data mapping
  • Fixed Opera 15 compat data mapping
• 3.24.0 - 2022-07-25
  
  • Recent updates of the iterator helpers proposal, #1101:
    • .asIndexedPairs renamed to .indexed, proposal-iterator-helpers/183:
      • Iterator.prototype.asIndexedPairs -> Iterator.prototype.indexed
      • AsyncIterator.prototype.asIndexedPairs -> AsyncIterator.prototype.indexed
    • Avoid exposing spec fiction %AsyncFromSyncIteratorPrototype% in AsyncIterator.from and Iterator.prototype.toAsync, proposal-iterator-helpers/182, proposal-iterator-helpers/202
    • Avoid unnecessary promise creation in %WrapForValidAsyncIteratorPrototype%.next, proposal-iterator-helpers/197
    • Do not validate value in %WrapForValid(Async)IteratorPrototype%.next, proposal-iterator-helpers/197 and proposal-iterator-helpers/205
    • Do not forward the parameter of .next / .return to an underlying iterator by the extended iterator protocol, a part of proposal-iterator-helpers/194
    • .throw methods removed from all wrappers / helpers prototypes, a part of proposal-iterator-helpers/194
    • Close inner iterators of { Iterator, AsyncIterator }.prototype.flatMap proxy iterators on .return, proposal-iterator-helpers/195
    • Throw RangeError on NaN in { Iterator, AsyncIterator }.prototype.{ drop, take }, proposal-iterator-helpers/181
    • Many other updates and fixes of this proposal
  • %TypedArray%.prototype.toSpliced method removed from the change array by copy proposal and marked as obsolete in core-js, proposal-change-array-by-copy/88
  • Polyfill Promise with unhandledrejection event support (browser style) in Deno < 1.24
  • Available new targets in core-js-compat / core-js-builder and added compat data for them:
    • Bun (bun), compat data for 0.1.1-0.1.5, #1103
    • Hermes (hermes), compat data for 0.1-0.11, #1099
    • Oculus Browser (oculus), compat data mapping for 3.0-22.0, #1098
  • Added Samsung Internet 18.0 compat data mapping
• 3.23.5 - 2022-07-17
  
  • Fixed a typo in the structuredClone feature detection, #1106
  • Added Opera Android 70 compat data mapping
• 3.23.4 - 2022-07-09
  
  • Added a workaround of the Bun ~ 0.1.1 bug that define some globals with incorrect property descriptors and that causes a crash of core-js
  • Added a fix of the FF103+ structuredClone bugs (1774866 (fixed in FF104) and 1777321 (still not fixed)) that now can clone errors, but .stack of the clone is an empty string
  • Fixed { Map, WeakMap }.prototype.emplace logic, #1102
  • Fixed order of errors throwing on iterator helpers

from core-js GitHub release notes

Commit messages

Package name: core-js

• 3c2e601 3.25.1
• 60519bc update the changelog
• bb1de0f update dependencies
• 2c1e73e update dependencies
• ce987cb improve some tests
• 6ca3e61 fix some blocks
• eb8ed33 fix a typo
• bacfb3f add "PRs welcome" badge with a link to `CONTRIBUTING.md`
• b534518 just in case detect correctness of `globalThis`
• 79ababc add some tests
• 6e81045 add some fixes and workarounds of FF30- typed arrays bug that does not properly convert objects to numbers
• e2e9036 update dependencies
• 8c71339 update dependencies
• 1bc6dab add `sideEffects: false` to `core-js-(builder|compat)`
• 6ae7c28 add `sideEffects` field to `core-js-pure` `package.json` for better tree shaking, close #1117
• 0d3dc64 oops, remove some mistakenly uploaded changes
• c191a76 adapt some tests to a FF < 23 bug
• 9d19148 update dependencies and linting settings
• 5133a07 update Electron 21 compat data mapping
• b1039c4 update dependencies
• b7f7862 extract `CreateIterResultObject` abstraction for avoiding inconsistency in the future
• 10519a1 just in case of future reusage, add `semver.prototype.toString`
• 8a7d9e7 use `Object.hasOwn` if it's available in `core-js-compat` helpers
• 04e3566 drop `semver` from the ignore of updating

Compare

---

**Note:** *You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.* For more information: 🧐 [View latest project report](https://app.snyk.io/org/blacklight/project/96bfd125-5816-4d9e-83c6-94d1569ab0f1?utm_source=github&utm_medium=referral&page=upgrade-pr) 🛠 [Adjust upgrade PR settings](https://app.snyk.io/org/blacklight/project/96bfd125-5816-4d9e-83c6-94d1569ab0f1/settings/integration?utm_source=github&utm_medium=referral&page=upgrade-pr) 🔕 [Ignore this dependency or unsubscribe from future upgrade PRs](https://app.snyk.io/org/blacklight/project/96bfd125-5816-4d9e-83c6-94d1569ab0f1/settings/integration?pkg=core-js&utm_source=github&utm_medium=referral&page=upgrade-pr#auto-dep-upgrades)