This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to upgrade chai-http from 4.3.0 to 4.4.0.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
- The recommended version is **1 version** ahead of your current version.
- The recommended version was released **a year ago**, on 2023-06-09.
The recommended version fixes:
Severity | Issue | PriorityScore (*) | Exploit Maturity |
:-------------------------:|:-------------------------|-------------------------|:-------------------------
| Regular Expression Denial of Service (ReDoS) [SNYK-JS-COOKIEJAR-3149984](https://snyk.io/vuln/SNYK-JS-COOKIEJAR-3149984) | **372/1000** **Why?** Proof of Concept exploit, CVSS 5.3 | Proof of Concept
(*) Note that the real score may have changed since the PR was raised.
Release notes Package name: chai-http
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to upgrade chai-http from 4.3.0 to 4.4.0.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.- The recommended version is **1 version** ahead of your current version. - The recommended version was released **a year ago**, on 2023-06-09. The recommended version fixes: Severity | Issue | PriorityScore (*) | Exploit Maturity | :-------------------------:|:-------------------------|-------------------------|:-------------------------
[SNYK-JS-COOKIEJAR-3149984](https://snyk.io/vuln/SNYK-JS-COOKIEJAR-3149984) | **372/1000**
**Why?** Proof of Concept exploit, CVSS 5.3 | Proof of Concept (*) Note that the real score may have changed since the PR was raised.
Release notes
Package name: chai-http
What's Changed
ifcondition for release by @ austince in #283event_nameproperty by @ austince in #284New Contributors
Full Changelog: 4.3.0...4.4.0
This feature release allows you to pass a Regular Expression to the
redirectTofunction.Community Contributions
Code Features & Fixes
Commit messages
Package name: chai-http
- a3715c4 4.4.0
- 83f4f9e build
- ce9866f Dependency updates to fix security vulnerabilities (#306)
- dbba17c ci: update npm token (#289)
- 0c2c350 docs: add badges to the README
- be1d005 ci: don't run publish-npm job unless push
- 0e78cee build(dev-deps): update semantic-release packages to latest versions
- ee4952e docs: update README examples to modern syntax
- 233118b feat: drop support for node < 10
- 04ebb3d ci: update release token (#287)
- edb5bca docs: add auth example with Bearer Token (#282)
- 56e15ff ci: install node deps before release (#285)
- 55c0e80 ci: use correct `event_name` property (#284)
- c34b299 ci: correctly template github event in `if` condition for release (#283)
- 4a196eb feat(deps): update superagent to ^6.1.0 (#281)
- 601854f Build: Use GitHub Actions for CI/CD (#255)
- 50d9db4 feat: add charset assertion (#253)
- 7f5f260 docs: add extended request method explanations (#256)
- 7f9a8a5 ci: build before release, commit assets, remove .npmrc (#252)
- 9a99ed4 Merge pull request #250 from chaijs/ci/fix-tokens
- cfd84e3 ci: add secure variables to release stage
- da01dba ci: add semantic-release, update ci (#248)
CompareNote: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information:
🧐 View latest project report
🛠 Adjust upgrade PR settings
🔕 Ignore this dependency or unsubscribe from future upgrade PRs