search

brianlovin / security-checklist

A checklist for staying safe on the internet
https://brianlovin.com/security
MIT License
922 stars 76 forks source link

Bump cypress from 5.2.0 to 5.3.0 #620

Closed dependabot[bot] closed 3 years ago

dependabot[bot] commented 3 years ago

Bumps cypress from 5.2.0 to 5.3.0.

Release notes

Sourced from cypress's releases.

5.3.0

Released 9/28/2020

Features:

  • Firefox support is now out of beta! πŸŽ‰ Firefox 80 and newer are now officially stable when used with Cypress. Addresses #8241.
    • Versions of Firefox older than 80 can still be used, but will be subject to the firefoxGcInterval workaround. The desktop GUI will display a warning if such versions are used.

Bugfixes:

  • Fixed a bug where cy.route2 would not automatically JSONify an empty array handler. Addresses #8532.
  • Fixed a bug where objects yielded by using cy.wait on a cy.route2 alias would not always have a response property. Addresses #8536.
  • Fixed an issue where cy.route2 routes would not be able to intercept requests to HTTPS destinations on a different origin. Addresses #8487.
  • Fixed an issue where subjects became undefined after certain assertion failures. Addresses #5763.
  • Fixed an issue where a cy.task with no arguments passed would receive null as the first argument instead of undefined. Addresses #5913.
  • Fixed an issue preventing users from passing the config-file argument when starting cypress through the node module API. Addresses #8632.
  • Fixed an issue where cy.visit()s to a relative URL containing .. would not work. Addresses #5090.
  • Fixed an issue where Mocha hooks could still be triggered after the Test Runner was manually stopped. Addresses #8621.
  • Fixed an issue where cy.setCookie failed when given a cookie name with a __Host- prefix. Addresses #8261.
  • Fixed an issue where a misleading error was displayed when test code threw an exception with a non-Error object. Addresses #7870.

Misc:

  • The proxy now omits the Content-Security-Policy-Report-Only header the same way that it does for Content-Security-Policy. Addresses #7936.
  • Added a status property to CypressRunResult objects. Addresses #8580.
  • Updated types to no longer use deprecated Mocha interfaces. Addresses #5795.
  • Passing an empty string to CYPRESS_INSTALL_BINARY now takes precedence over npm config. Addresses #8488.
Commits
  • 57f5f9a release 5.3.0 [skip ci]
  • dbc50d5 Merge pull request #8668 from cypress-io/59ceab5e8-master-into-develop
  • 5fc220c Merge branch 'develop' into 59ceab5e8-master-into-develop
  • 644d75e fix(server): fix setCookie with __Host- prefix, __Secure- prefix (#8526)
  • b66bcd4 fix(driver): handle thrown string literals (#8569)
  • cba5c41 fix: afterEach running after test stopped in ui (#8622)
  • f4a6c80 fix(proxy): omit CSP report only header (#7936)
  • e9854c0 chore: update pre-release install comment (#8673)
  • 42950e4 fix: cy.visit() allows the URLs with double dots. (#8629)
  • 10b9a5b feat: take Firefox support out of beta (#8586)
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
vercel[bot] commented 3 years ago

This pull request is being automatically deployed with Vercel (learn more).
To see the status of your deployment, click below or on the icon next to each commit.

πŸ” Inspect: https://vercel.com/brianlovin/security-checklist/jr1nc0lvm
βœ… Preview: https://security-checklist-git-dependabot-npmandyarncypress-530.brianlovin.vercel.app

lighthouse-metrics[bot] commented 3 years ago

https://security-checklist-jr1nc0lvm.vercel.app/:

Lighthouse Scores for https://security-checklist-jr1nc0lvm.vercel.app/