This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to upgrade @babel/eslint-parser from 7.21.8 to 7.24.1.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
- The recommended version is **11 versions** ahead of your current version.
- The recommended version was released **a month ago**, on 2024-03-19.
The recommended version fixes:
Severity | Issue | PriorityScore (*) | Exploit Maturity |
:-------------------------:|:-------------------------|-------------------------|:-------------------------
| Regular Expression Denial of Service (ReDoS) [SNYK-JS-SEMVER-3247795](https://snyk.io/vuln/SNYK-JS-SEMVER-3247795) | **482/1000** **Why?** Proof of Concept exploit, CVSS 7.5 | Proof of Concept
(*) Note that the real score may have changed since the PR was raised.
Release notes Package name: @babel/eslint-parser
from @babel/eslint-parser GitHub release notes
**Note:** *You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.*
For more information:
🧐 [View latest project report](https://app.snyk.io/org/acinader/project/21343059-02d9-4182-87d7-718a44b181ef?utm_source=github&utm_medium=referral&page=upgrade-pr)
🛠 [Adjust upgrade PR settings](https://app.snyk.io/org/acinader/project/21343059-02d9-4182-87d7-718a44b181ef/settings/integration?utm_source=github&utm_medium=referral&page=upgrade-pr)
🔕 [Ignore this dependency or unsubscribe from future upgrade PRs](https://app.snyk.io/org/acinader/project/21343059-02d9-4182-87d7-718a44b181ef/settings/integration?pkg=@babel/eslint-parser&utm_source=github&utm_medium=referral&page=upgrade-pr#auto-dep-upgrades)
❌ Please link an issue that describes the reason for this pull request, otherwise your pull request will be closed. Make sure to write it as Closes: #123 in the PR description, so I can recognize it.
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to upgrade @babel/eslint-parser from 7.21.8 to 7.24.1.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.- The recommended version is **11 versions** ahead of your current version. - The recommended version was released **a month ago**, on 2024-03-19. The recommended version fixes: Severity | Issue | PriorityScore (*) | Exploit Maturity | :-------------------------:|:-------------------------|-------------------------|:------------------------- | Regular Expression Denial of Service (ReDoS)
[SNYK-JS-SEMVER-3247795](https://snyk.io/vuln/SNYK-JS-SEMVER-3247795) | **482/1000**
**Why?** Proof of Concept exploit, CVSS 7.5 | Proof of Concept (*) Note that the real score may have changed since the PR was raised.
Release notes
Package name: @babel/eslint-parser
v7.24.1 (2024-03-19)
🐛 Bug Fix
babel-helper-create-class-features-plugin
,babel-plugin-proposal-decorators
babel-plugin-proposal-decorators
,babel-plugin-proposal-json-modules
,babel-plugin-transform-async-generator-functions
,babel-plugin-transform-regenerator
,babel-plugin-transform-runtime
,babel-preset-env
moduleName
for@ babel/runtime/regenerator
imports (@ nicolo-ribaudo)babel-helper-create-class-features-plugin
,babel-plugin-proposal-decorators
,babel-plugin-proposal-pipeline-operator
,babel-plugin-transform-class-properties
babel-helper-create-class-features-plugin
,babel-helper-replace-supers
,babel-plugin-proposal-decorators
,babel-plugin-transform-class-properties
📝 Documentation
🏠 Internal
babel-code-frame
,babel-highlight
chalk
withpicocolors
(@ nicolo-ribaudo)babel-helper-fixtures
,babel-helpers
,babel-plugin-bugfix-safari-id-destructuring-collision-in-function-expression
,babel-plugin-proposal-pipeline-operator
,babel-plugin-transform-unicode-sets-regex
,babel-preset-env
,babel-preset-flow
babel-helper-module-imports
,babel-plugin-proposal-import-wasm-source
,babel-plugin-proposal-json-modules
,babel-plugin-proposal-record-and-tuple
,babel-plugin-transform-react-jsx-development
,babel-plugin-transform-react-jsx
🔬 Output optimization
babel-helper-replace-supers
,babel-plugin-transform-class-properties
,babel-plugin-transform-classes
,babel-plugin-transform-parameters
,babel-plugin-transform-runtime
assertThisInitialized
aftersuper()
(@ liuxingbaoyu)babel-plugin-transform-class-properties
,babel-plugin-transform-classes
assertThisInitialized
more often (@ liuxingbaoyu)babel-plugin-proposal-decorators
,babel-plugin-transform-class-properties
,babel-plugin-transform-object-rest-spread
,babel-traverse
babel-core
,babel-plugin-external-helpers
,babel-plugin-proposal-decorators
,babel-plugin-proposal-function-bind
,babel-plugin-transform-class-properties
,babel-plugin-transform-classes
,babel-plugin-transform-flow-comments
,babel-plugin-transform-flow-strip-types
,babel-plugin-transform-function-name
,babel-plugin-transform-modules-systemjs
,babel-plugin-transform-parameters
,babel-plugin-transform-private-property-in-object
,babel-plugin-transform-react-jsx
,babel-plugin-transform-runtime
,babel-plugin-transform-spread
,babel-plugin-transform-typescript
,babel-preset-env
Committers: 4
v7.23.10 (2024-01-31)
🐛 Bug Fix
babel-helper-create-class-features-plugin
,babel-plugin-proposal-decorators
protoInit
call injection timing (@ JLHwung)Committers: 3
v7.23.9 (2024-01-25)
🐛 Bug Fix
babel-helper-transform-fixture-test-runner
,babel-plugin-transform-function-name
,babel-plugin-transform-modules-systemjs
,babel-preset-env
systemjs
re-traverses helpers (@ liuxingbaoyu)babel-helper-create-class-features-plugin
,babel-plugin-proposal-decorators
babel-plugin-proposal-decorators
,babel-plugin-transform-async-generator-functions
,babel-plugin-transform-runtime
,babel-preset-env
core-js@3
imports (@ nicolo-ribaudo)babel-traverse
getTypeAnnotation
when using TS+inference (@ liuxingbaoyu)no-use-before-define
for class ref in fields (@ nicolo-ribaudo)🏠 Internal
babel-core
,babel-parser
,babel-template
eslint-parser
to cts (@ liuxingbaoyu)babel-types
@ babel/types
props that are not produced by the parser (@ liuxingbaoyu)🏃♀️ Performance
babel-parser
🔬 Output optimization
babel-helper-create-class-features-plugin
,babel-plugin-proposal-decorators
,babel-plugin-proposal-destructuring-private
,babel-plugin-proposal-pipeline-operator
,babel-plugin-transform-class-properties
,babel-plugin-transform-class-static-block
,babel-plugin-transform-new-target
,babel-plugin-transform-parameters
,babel-plugin-transform-private-methods
,babel-preset-env
babel-helpers
,babel-plugin-proposal-explicit-resource-management
,babel-runtime-corejs2
,babel-runtime-corejs3
,babel-runtime
using
(@ liuxingbaoyu)Committers: 4
**Note:** *You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.* For more information: 🧐 [View latest project report](https://app.snyk.io/org/acinader/project/21343059-02d9-4182-87d7-718a44b181ef?utm_source=github&utm_medium=referral&page=upgrade-pr) 🛠 [Adjust upgrade PR settings](https://app.snyk.io/org/acinader/project/21343059-02d9-4182-87d7-718a44b181ef/settings/integration?utm_source=github&utm_medium=referral&page=upgrade-pr) 🔕 [Ignore this dependency or unsubscribe from future upgrade PRs](https://app.snyk.io/org/acinader/project/21343059-02d9-4182-87d7-718a44b181ef/settings/integration?pkg=@babel/eslint-parser&utm_source=github&utm_medium=referral&page=upgrade-pr#auto-dep-upgrades)