search

nodeshift-archived / license-reporter

license-reporter is a tool that gathers licenses for project's dependencies and produces a output in XML, JSON, YAML and HTML format.
Apache License 2.0
13 stars 10 forks source link

[Snyk] Upgrade jest from 27.0.6 to 27.3.1 #404

Closed snyk-bot closed 2 years ago

snyk-bot commented 2 years ago

Snyk has created this PR to upgrade jest from 27.0.6 to 27.3.1.

merge advice :information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version fixes:

Severity Issue PriorityScore (*) Exploit Maturity
Regular Expression Denial of Service (ReDoS)
SNYK-JS-TMPL-1583443		 482/1000
Why? Proof of Concept exploit, CVSS 7.5		 Proof of Concept
Regular Expression Denial of Service (ReDoS)
SNYK-JS-PROMPTS-1729737		 482/1000
Why? Proof of Concept exploit, CVSS 7.5		 Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes
Package name: jest
  • 27.3.1 - 2021-10-19

    Fixes

    • [expect] Make expect extension properties configurable (#11978)
    • [expect] Fix .any() checks on primitive wrapper classes (#11976)

    Chore & Maintenance

    • [expect] BigInt global is always defined, don't check for its existence at runtime (#11979)
    • [jest-config, jest-util] Use ci-info instead of is-ci to detect CI environment (#11973)

    New Contributors

    Full Changelog: v27.3.0...v27.3.1

  • 27.3.0 - 2021-10-17

    Features

    • [jest-config] Add testEnvironmentOptions.html to apply to jsdom input (#11950)
    • [jest-resolver] Support default export (.) in exports field if main is missing (#11919)

    Fixes

    • [expect] Tweak and improve types (#11949)
    • [jest-runtime] Ensure absolute paths can be resolved within test modules (#11943)
    • [jest-runtime] Fix instanceof for ModernFakeTimers and LegacyFakeTimers methods (#11946)

    New Contributors

    Full Changelog: v27.2.5...v27.3.0

  • 27.2.5 - 2021-10-08

    Features

    • [jest-config] Warn when multiple Jest configs are located (#11922)

    Fixes

    • [expect] Pass matcher context to asymmetric matchers (#11926 & #11930)
    • [expect] Improve TypeScript types (#11931)
    • [expect] Improve typings of toThrow() and toThrowError() matchers (#11929)
    • [jest-cli] Improve --help printout by removing defunct --browser option (#11914)
    • [jest-haste-map] Use distinct cache paths for different values of computeDependencies (#11916)
    • [@ jest/reporters] Do not buffer console.logs when using verbose reporter (#11054)

    Chore & Maintenance

    • [expect] Export default matchers (#11932)
    • [@ jest/types] Mark deprecated configuration options as @ deprecated (#11913)

    New Contributors

    Full Changelog: v27.2.4...v27.2.5

  • 27.2.4 - 2021-09-29

    Features

    • [expect] Add equality checks for Array Buffers in expect.ToStrictEqual() (#11805)

    Fixes

    • [jest-snapshot] Correctly indent inline snapshots (#11560)
  • 27.2.3 - 2021-09-28

    Features

    • [@ jest/fake-timers] Update @ sinonjs/fake-timers to v8 (#11879)

    Fixes

    • [jest-config] Parse testEnvironmentOptions if received from CLI (#11902)
    • [jest-reporters] Call destroy on v8-to-istanbul converters to free memory (#11896)
  • 27.2.2 - 2021-09-25

    Fixes

    • [jest-runtime] Correct wrapperLength value for ESM modules. (#11893)
  • 27.2.1 - 2021-09-20

    Features

    • [jest-transform] Improve the unexpected token error message. (#11807)

    Fixes

    • [jest-runtime] Fix regression when using jest.isolateModules and mocks (#11882)
    • [jest-runtime] Include test name when importing modules after test has completed (#11885)
    • [jest-runtime] Error when ESM import is used after test is torn down (#11885)
  • 27.2.0 - 2021-09-13

    Features

    • [jest-resolver, jest-runtime] Pass conditions to custom resolvers to enable them to implement support for package.json exports field (#11859)
    • [jest-runtime] Allow custom envs to specify exportConditions which is passed together with Jest's own conditions to custom resolvers (#11863)

    Fixes

    • [@ jest/reporters] Use async transform if available to transform files with no coverage (#11852)
    • [jest-util] Return correct value from process.send stub (#11799)
  • 27.1.1 - 2021-09-08

    Features

    • [jest-runtime] Add experimental, limited (and undocumented) support for mocking ECMAScript Modules (#11818)

    Fixes

    • [jest-resolver] Support node: prefix when importing Node core modules with ESM (#11817)
    • [jest-types] Export the PrettyFormatOptions interface (#11801)
  • 27.1.0 - 2021-08-27

    Features

    • [jest-haste-map] Use watchman suffix-set option for faster file indexing. (#11784)
    • [jest-cli] Adds a new config options snapshotFormat which offers a way to override any of the formatting settings which come with pretty-format. (#11654)
    • [jest-reporters] Expose the getSummary util (#11695).
    • [jest-resolver] Support node: prefix when importing Node core modules (#11331)

    Fixes

    • [jest-each] Relaxed the validation to allow multibyte characters in headings (#11575)
    • [jest-environment-jsdom] Add support for userAgent option (#11773)
    • [jest-environment-node] Add Event and EventTarget to node global environment. (#11727)
    • [jest-mock] Fix spyOn to use Object.prototype.hasOwnProperty (#11721)
    • [jest-resolver] Add dependency on jest-haste-map (#11759)
    • [jest-types] Compat with @ types/node v16 (#11645)

    Chore & Maintenance

    • [docs] Correct expects.assertions documentation by adding async/await for asynchronous function.
  • 27.0.6 - 2021-06-28
from jest GitHub release notes
Commit messages
Package name: jest
  • 4f3328f v27.3.1
  • 75f5179 chore: update changelog for release
  • 9d286a6 chore: `BigInt` is always defined, do not conditionally check for it (#11979)
  • 7092dfb [expect] Fix `.any()` checks on primitive wrapper classes (#11976)
  • 2e2b17a fix: not to break on `expect` matcher extension overwrite (#11978)
  • a1829e9 docs: fix setTimeout example (#11974)
  • e7edb75 chore: remove `is-ci` in favor of `ci-info` (#11973)
  • 9d737d7 docs: make the text on `awesome-jest` bit more visible and focused (#11972)
  • 8c00cc1 chore: update lockfile after release
  • 14b0c2c v27.3.0
  • 3a29c79 chore: update changelog for release
  • 934a563 chore: do not delete files used in test
  • bc3c921 feat: support `.` in `exports` field (#11919)
  • b5aec03 chore(resolver): reuse cached lookup of package.json files (#11969)
  • 696c472 chore: add GH Action that autocloses question issues
  • 7ffa4f8 chore: apply correct labels for new issues
  • ed132a6 chore: remove unnecessary `empty.d.ts` (#11966)
  • 7f39f0a feat(environment-jsdom): allow passing html content to jsdom environment (#11950)
  • ae1f04b Add type tests for all `expect` matchers (#11949)
  • 46c9c13 fix: correct `instanceof` for `ModernFakeTimers` and `LegacyFakeTimers` methods (#11946)
  • 3674bbf chore: update resolve.exports
  • 7dd17d5 docs: Replace rimraf with fsPromises.rm in Puppeteer.md (#11957)
  • b439692 docs: Replce mkdirp with fsPromises.mkdir in Puppeteer.md (#11951)
  • 3a85065 chore: use `unknown` in catch variables where possible (#11948)
Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs