[Snyk] Upgrade core-js from 3.23.4 to 3.26.0

[snyk-bot]

Snyk has created this PR to upgrade core-js from 3.23.4 to 3.26.0.

:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 10 versions ahead of your current version.
• The recommended version was released a month ago, on 2022-10-23.

Release notes

Package name: core-js

• 3.26.0 - 2022-10-23
  
  • Array.fromAsync proposal:
    • Moved to Stage 3, September TC39 meeting
    • Avoid observable side effects of %Array.prototype.values% usage in array-like branch, proposal-array-from-async/30
  • Added well-formed unicode strings stage 2 proposal:
    • String.prototype.isWellFormed
    • String.prototype.toWellFormed
  • Recent updates of the iterator helpers proposal:
    • Added a counter parameter to helpers, proposal-iterator-helpers/211
    • Don't await non-objects returned from functions passed to AsyncIterator helpers, proposal-iterator-helpers/239
    • { Iterator, AsyncIterator }.prototype.flatMap supports returning both - iterables and iterators, proposal-iterator-helpers/233
    • Early exit on broken .next in missed cases of { Iterator, AsyncIterator }.from, proposal-iterator-helpers/232
  • Added self polyfill as a part of The Minimum Common Web Platform API, specification, #1118
  • Added inverse option to core-js-compat, #1119
  • Added format option to core-js-builder, #1120
  • Added NodeJS 19.0 compat data
  • Added Deno 1.26 and 1.27 compat data
  • Added Opera Android 72 compat data mapping
  • Updated Electron 22 compat data mapping
• 3.25.5 - 2022-10-03
  
  • Fixed regression with an error on reuse of some built-in methods from another realm, #1133
• 3.25.4 - 2022-10-02
  
  • Added a workaround of a Nashorn bug with Function.prototype.{ call, apply, bind } on string methods, #1128
  • Updated lists of [Serializable] and [Transferable] objects in the structuredClone polyfill. Mainly, for better error messages if polyfilling of cloning such types is impossible
  • Array.prototype.{ group, groupToMap } marked as supported from V8 ~ Chromium 108
  • Added Electron 22 compat data mapping
• 3.25.3 - 2022-09-25
  
  • Forced polyfilling of Array.prototype.groupToMap in the pure version for returning wrapped Map instances
  • Fixed existence of Array.prototype.{ findLast, findLastIndex } in /stage/4 entry
  • Added Opera Android 71 compat data mapping
  • Some stylistic changes
• 3.25.2 - 2022-09-18
  
  • Considering document.all as a callable in some missed cases
  • Added Safari 16.0 compat data
  • Added iOS Safari 16.0 compat data mapping
  • Fixed some ancient iOS Safari versions compat data mapping
• 3.25.1 - 2022-09-07
  
  • Added some fixes and workarounds of FF30- typed arrays bug that does not properly convert objects to numbers
  • Added sideEffects field to core-js-pure package.json for better tree shaking, #1117
  • Dropped semver dependency from core-js-compat
    • semver package (ironically) added a breaking change and dropped NodeJS 8 support in the minor 7.1 version, after that semver in core-js-compat was pinned to 7.0 since for avoiding breaking changes it should support NodeJS 8. However, since core-js-compat is usually used with other packages that use semver dependency, it causes multiple duplications of semver in dependencies. So I decided to remove semver dependency and replace it with a couple of simple helpers.
  • Added Bun 0.1.6-0.1.11 compat data
  • Added Deno 1.25 compat data mapping
  • Updated Electron 21 compat data mapping
  • Some stylistic changes, minor fixes, and improvements
• 3.25.0 - 2022-08-24
  
  • Added Object.prototype.__proto__ polyfill
    • It's optional, legacy, and in some cases (mainly because of developers' mistakes) can cause problems, but some libraries depend on it, and most code can't work without the proper libraries' ecosystem
    • Only for modern engines where this feature is missed (like Deno), it's not installed in IE10- since here we have no proper way setting of the prototype
    • Without fixes of early implementations where it's not an accessor since those fixes are impossible
    • Only for the global version
  • Considering document.all as an object in some missed cases, see ECMAScript Annex B 3.6
  • Avoiding unnecessary promise creation and validation result in %WrapForValid(Async)IteratorPrototype%.return, proposal-iterator-helpers/215
  • Fixed omitting the result of proxing .return in %IteratorHelperPrototype%.return, #1116
  • Fixed the order creation of properties of iteration result object of some iterators (value should be created before done)
  • Fixed some cases of Safari < 13 bug - silent on non-writable array .length setting
  • Fixed ArrayBuffer.length in V8 ~ Chrome 27-
  • Relaxed condition of re-usage native WeakMap for internal states with multiple core-js copies
  • Availability cloning of FileList in the structuredClone polyfill extended to some more old engines versions
  • Some stylistic changes and minor fixes
  • Throwing a TypeError in core-js-compat / core-js-builder in case of passing invalid module names / filters for avoiding unexpected result, related to #1115
  • Added missed NodeJS 13.2 to esmodules core-js-compat / core-js-builder target
  • Added Electron 21 compat data mapping
  • Added Oculus Browser 23.0 compat data mapping
• 3.24.1 - 2022-07-29
  
  • NodeJS is ignored in IS_BROWSER detection to avoid a false positive with jsdom, #1110
  • Fixed detection of @@ species support in Promise in some old engines
  • { Array, %TypedArray% }.prototype.{ findLast, findLastIndex } marked as shipped in FF104
  • Added iOS Safari 15.6 compat data mapping
  • Fixed Opera 15 compat data mapping
• 3.24.0 - 2022-07-25
  
  • Recent updates of the iterator helpers proposal, #1101:
    • .asIndexedPairs renamed to .indexed, proposal-iterator-helpers/183:
      • Iterator.prototype.asIndexedPairs -> Iterator.prototype.indexed
      • AsyncIterator.prototype.asIndexedPairs -> AsyncIterator.prototype.indexed
    • Avoid exposing spec fiction %AsyncFromSyncIteratorPrototype% in AsyncIterator.from and Iterator.prototype.toAsync, proposal-iterator-helpers/182, proposal-iterator-helpers/202
    • Avoid unnecessary promise creation in %WrapForValidAsyncIteratorPrototype%.next, proposal-iterator-helpers/197
    • Do not validate value in %WrapForValid(Async)IteratorPrototype%.next, proposal-iterator-helpers/197 and proposal-iterator-helpers/205
    • Do not forward the parameter of .next / .return to an underlying iterator by the extended iterator protocol, a part of proposal-iterator-helpers/194
    • .throw methods removed from all wrappers / helpers prototypes, a part of proposal-iterator-helpers/194
    • Close inner iterators of { Iterator, AsyncIterator }.prototype.flatMap proxy iterators on .return, proposal-iterator-helpers/195
    • Throw RangeError on NaN in { Iterator, AsyncIterator }.prototype.{ drop, take }, proposal-iterator-helpers/181
    • Many other updates and fixes of this proposal
  • %TypedArray%.prototype.toSpliced method removed from the change array by copy proposal and marked as obsolete in core-js, proposal-change-array-by-copy/88
  • Polyfill Promise with unhandledrejection event support (browser style) in Deno < 1.24
  • Available new targets in core-js-compat / core-js-builder and added compat data for them:
    • Bun (bun), compat data for 0.1.1-0.1.5, #1103
    • Hermes (hermes), compat data for 0.1-0.11, #1099
    • Oculus Browser (oculus), compat data mapping for 3.0-22.0, #1098
  • Added Samsung Internet 18.0 compat data mapping
• 3.23.5 - 2022-07-17
  
  • Fixed a typo in the structuredClone feature detection, #1106
  • Added Opera Android 70 compat data mapping
• 3.23.4 - 2022-07-09

from core-js GitHub release notes

Commit messages

Package name: core-js

• 3b13f58 3.26.0
• 451645d Merge pull request #1118 from zloirock/self
• fc27265 update docs
• 7e85def update the changelog
• 036575a add `self`
• 4604f5b stylistic change
• e583927 update dependencies
• aa9b0c2 update `SECURITY.md`
• 503109a add Opera Android 72 compat data mapping
• 35806ac add Deno 1.26 and 1.27 compat data mapping
• 7d17fcc update signatures
• 08fd215 simplify args passing
• f5f7df5 `{ Iterator, AsyncIterator }.prototype.flatMap` supports returning both - iterables and iterators
• 43cfb4e update dependencies
• 8e58a6d don't await non-objects returned from functions passed to `AsyncIterator` helpers
• 98edc05 update the changelog
• 6ff2637 update docs
• f17389a add counter argument to async iterator helpers
• c8d22f6 add counter argument to iterator helpers
• 3e18cd0 use NodeJS 19 in `lint` and `karma` CI jobs
• edb6b05 update dependencies
• 8faf133 add NodeJS 19 to CI
• 84a113c update dependencies
• e29fa7c change the order of imports

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs