search

brianlovin / security-checklist

A checklist for staying safe on the internet
https://brianlovin.com/security
MIT License
922 stars 76 forks source link

Bump cypress from 5.5.0 to 5.6.0 #659

Closed dependabot[bot] closed 3 years ago

dependabot[bot] commented 3 years ago

Bumps cypress from 5.5.0 to 5.6.0.

Release notes

Sourced from cypress's releases.

5.6.0

Released 11/09/2020

Features:

  • You can now dynamically add aliases for requests intercepted via cy.route2(). See an example. Addresses #387.
  • You can now run all integration specs or all component specs separately (or a filtered list of specs) by clicking the appropriate button in the Test Runner in the Tests tab. Addresses #8203.
  • Added a new modifier syntax to cy.type(). You can now type shortcuts like {ctrl+z}. Addressed in #5694.
  • We now show a modal with release notes when available when there is a new version of Cypress. Addressed in #9006.
  • In the Test Runner's Settings and Runs tab you can now quickly copy the project id configuration and record key using a copy to clipboard icon. Addresses #9002.

Bugfixes:

  • Fixed a regression introduced in 4.12.0 where snapshotting caused images to load too many times. Fixes #8679.
  • Using cy.visit() on sites with content-type of text-html followed by parameters (like text/html;charset=utf-8) will no longer throw an error about visiting a site with an invalid content-type. Fixes #8506
  • The Cannot access 'continueSent' before initialization error will no longer throw when using cy.route2(). Fixes #8926.
  • Awaiting a request body when providing a static response stub in cy.route2() should now work properly. Addressed in #9059.
  • The way that intercepted cy.route2() requests are displayed in the Command Log has been improved, including showing the progress bar correctly. Addresses #9053.
  • The Cannot read property 'replace' of undefined error will no longer throw when attempting to generate the stack trace from an error thrown in the application. Fixes #7915.
  • Stack traces in the Command Log originating from application errors where the location is unavailable will no longer show as a clickable link to open in IDE. Fixes #9106.
  • When using the fixture: prefix as a stubbed response to cy.route(), JSON fixtures containing only a number or boolean will no longer throw an error. Fixes #4899.
  • Fixed an issue causing failed subresource integrity checks for external scripts. Fixes #8983, #9049, and #8992.

Misc:

  • Typings for .invoke() and .its() now allow for a timeout option. Addresses #9079.
  • Typings for cy.task() now allow for parameterizing the task return type. Addresses #7136.
  • A clearer error is printed during cypress cache list when no cached versions are found. Addresses #6303.

Dependency Updates:

  • Upgraded commander from ^4.1.1 to ^5.1.0. Addressed in #8979.
  • Upgraded semver from 6.3.0 to 7.3.2. Addressed in #9068.
  • Upgraded systeminformation from 4.26.9 to 4.27.11. Addressed in #8979.
  • Removed node-webkit-updater. This should remove some security warnings that were shown during install. Addresses #8314.
Commits
  • 36a4289 release 5.6.0 [skip ci]
  • 659a664 chore: Bump circle macos xcode to 11.3.1 with node 13.6.0 (#9139)
  • 1a43f3a chore: Create webpack5 release channel for webpack prepocessor (#9133)
  • 849f382 feat: Support shortcut syntax in cy.type() (#8499)
  • 82d2968 fix: Handle non-error empty objects from release notes service (#9134)
  • 5198a86 fix: only modify js on AUT domain in proxy (#9018)
  • dae76a8 fix: XHR stub error if response json has number/boolean (#9107)
  • db85c3a Mention discussions in our issue templates [skip ci]
  • 1c2a175 fix: do not assume valid file info in error stack line (#9081)
  • e58f132 Add more percy snapshots throughout Desktop GUI tests (#9087)
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
vercel[bot] commented 3 years ago

This pull request is being automatically deployed with Vercel (learn more).
To see the status of your deployment, click below or on the icon next to each commit.

🔍 Inspect: https://vercel.com/brianlovin/security-checklist/o3up0vifw
✅ Preview: https://security-checklist-git-dependabot-npmandyarncypress-560.brianlovin.vercel.app