[Snyk] Upgrade eslint-plugin-import from 2.25.4 to 2.28.0

[lholmquist]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade eslint-plugin-import from 2.25.4 to 2.28.0.

:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

- The recommended version is **8 versions** ahead of your current version. - The recommended version was released **24 days ago**, on 2023-07-28. The recommended version fixes: Severity | Issue | PriorityScore (*) | Exploit Maturity | :-------------------------:|:-------------------------|-------------------------|:------------------------- | Regular Expression Denial of Service (ReDoS)
[SNYK-JS-MINIMATCH-3050818](https://snyk.io/vuln/SNYK-JS-MINIMATCH-3050818) | **265/1000**
**Why?** CVSS 5.3 | No Known Exploit | Prototype Pollution
[SNYK-JS-MINIMIST-2429795](https://snyk.io/vuln/SNYK-JS-MINIMIST-2429795) | **265/1000**
**Why?** CVSS 5.3 | Proof of Concept (*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: eslint-plugin-import

• 2.28.0 - 2023-07-28
  

  v2.28.0

    </li>
    <li>
      <b>2.27.5</b> - <a href="https://snyk.io/redirect/github/import-js/eslint-plugin-import/releases/tag/v2.27.5">2023-01-16</a></br><p>v2.27.5</p>
    </li>
    <li>
      <b>2.27.4</b> - <a href="https://snyk.io/redirect/github/import-js/eslint-plugin-import/releases/tag/v2.27.4">2023-01-12</a></br><p>v2.27.4</p>
    </li>
    <li>
      <b>2.27.3</b> - 2023-01-12
    </li>
    <li>
      <b>2.27.2</b> - 2023-01-12
    </li>
    <li>
      <b>2.27.1</b> - 2023-01-12
    </li>
    <li>
      <b>2.27.0</b> - 2023-01-11
    </li>
    <li>
      <b>2.26.0</b> - 2022-04-05
    </li>
    <li>
      <b>2.25.4</b> - 2022-01-02
    </li>
  </ul>
  from <a href="https://snyk.io/redirect/github/import-js/eslint-plugin-import/releases">eslint-plugin-import GitHub release notes</a>

Commit messages

Package name: eslint-plugin-import

• a257df9 Bump to 2.28.0
• 600fcc1 [Refactor] `order`: use `object.groupby`
• be928ae [Refactor] `no-internal-modules`: simplify a reduce
• e7c2486 [Refactor] `no-useless-path-segments`: use `.filter` instead of `.reduce`
• 89f5d0d [Refactor] `no-anonymous-default-export`: use `fromEntries` instead of `reduce`
• 703e9f9 [Refactor] `no-duplicates`, `no-unused-modules`: use `flatMap` instead of `map` + `filter`
• 70f24f1 [Tests] allow WSL builds to fail, for now
• 90e2dfa [Fix] `no-unused-modules`: report error on binding instead of parent export
• d3aa478 [Tests] `no-unused-modules`: document error reported on entire `export` statement
• 3e1dd0b [Fix] `no-unused-modules`: improve schema
• a6de522 [Tests] `no-unused-modules`: properly skip in mocha 3
• 68bf510 [eslint] enable `array-bracket-spacing`
• d8002be [Fix] `extensions`: handle `.` and `..` properly
• f302f7d [Fix] `no-duplicates`: Prefer combined type and regular imports when using `prefer-inline`
• e2cf99c [Deps] update `semver`
• ee00a1c [Fix] guard against empty parent
• 3a5ad34 [Refactor] `no-unused-modules`: use `array.prototype.flatmap`
• 2c196b0 [Refactor] `no-anonymous-default-export`: use `object.fromentries`
• 66e755f [Refactor] `exports-last`: use `array.prototype.findlastindex`
• a24a03b [meta] Add "eslint-plugin" to the list of keywords in package.json
• 88dd815 [Deps] update `is-core-module`
• 328064a Fix invalid YAML in import/parsers example
• afaefbb [Refactor] `ExportMap`: rename `tsConfig` to `tsconfig`
• eaa1591 [Tests] switch some files to unix line endings

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs