Bumps the major group with 3 updates in the /@shared/api directory: prettier, typescript and @lavamoat/allow-scripts.
Bumps the major group with 1 update in the /@shared/helpers directory: typescript.
Bumps the major group with 1 update in the /@stellar/freighter-api directory: @lavamoat/allow-scripts.
Bumps the major group with 23 updates in the /extension directory:
Added: [unicorn/template-indent], (as a [special rule][unicorn/template-indent-special]). Thanks to Gürgün Dayıoğlu (@gurgunday)!
Changed: All the [formatting rules that were deprecated in ESLint 8.53.0][deprecated-8.53.0] are now excluded if you set the ESLINT_CONFIG_PRETTIER_NO_DEPRECATED environment variable.
Version 9.0.0 (2023-08-05)
Added: The CLI helper tool now works with eslint.config.js (flat config). Just like ESLint itself, the CLI tool automatically first tries eslint.config.js and then eslintrc, and you can force which one to use by setting the [ESLINT_USE_FLAT_CONFIG] environment variable. Note that the config of eslint-config-prettier has always been compatible with eslint.config.js (flat config) – it was just the CLI tool that needed updating. On top of that, the docs have been updated to mention how to use both eslint.config.js (flat config) and eslintrc, and the tests now test both config systems.
Changed: [unicode-bom] is no longer turned off. Prettier preserves the BOM if you have one, and does not add one if missing. It was wrong of eslint-config-prettier to disable that rule. If you get ESLint errors after upgrading, either add "unicode-bom": "off" to your config to disable it again, or run ESLint with --fix to fix all files according to the rule (add or remove BOM). Thanks to Nicolas Stepien (@nstepien)!
Version 8.10.0 (2023-08-03)
Added: [max-statements-per-line]. Thanks to @Zamiell!
Version 8.9.0 (2023-07-27)
Added: [vue/array-element-newline]. Thanks to @xcatliu!
Version 8.8.0 (2023-03-20)
Added: [@typescript-eslint/lines-around-comment]. Thanks to @ttionya!
Version 8.7.0 (2023-03-06)
Added: [@typescript-eslint/block-spacing]. Thanks to @ttionya!
Added: [@typescript-eslint/key-spacing]. Thanks to @ttionya!
Version 8.6.0 (2023-01-02)
Added: [vue/multiline-ternary]. Thanks to @xcatliu!
Version 8.5.0 (2022-03-02)
Added: [@typescript-eslint/space-before-blocks]. Thanks to Masafumi Koba (@ybiquitous)!
The maintainer of the package marked it as deprecated. This could indicate that a single version should not be used, or that the package is no longer maintained and any new vulnerabilities will not be fixed.
Research the state of the package and determine if there are non-deprecated versions that can be used, or if it should be replaced with a new, supported solution.
Take a deeper look at the dependency
Take a moment to review the security alert above. Review the linked
package source code to understand the potential risk. Ensure the package
is not malicious before proceeding. If you're unsure how to proceed, reach
out to your security team or ask the Socket team for help at support [AT]
socket [DOT] dev.
Remove the package
If you happen to install a dependency that Socket reports as Known Malware you should immediately remove it and select a different dependency. For other alert types, you may may wish to investigate alternative packages or consider if there are other ways to mitigate the specific risk posed by the dependency.
Mark a package as acceptable risk
To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of ecosystem/package-name@version specifiers. e.g. @SocketSecurity ignore npm/foo@1.0.0 or ignore all packages with @SocketSecurity ignore-all
Bumps the major group with 47 updates in the / directory:
7.31.210.4.04.2.46.6.35.14.96.0.05.62.08.12.25.62.08.12.28.57.09.14.06.15.09.1.02.7.13.6.34.7.08.0.34.6.25.0.09.3.511.0.011.8.514.4.38.0.39.1.63.1.04.0.228.1.329.7.024.9.129.5.1416.7.025.0.110.5.415.2.102.8.83.3.32.0.24.0.03.7.75.6.35.10.06.0.12.5.13.3.01.0.32.1.048.11.050.4.31.2.12.1.116.13.118.3.15.3.116.1.131.6.02.3.014.3.116.0.17.2.114.5.216.2.1521.1.712.20.5522.8.64.3.05.0.75.3.09.0.14.10.15.3.04.7.115.0.021.10.023.16.46.1.88.0.028.1.329.7.01.0.14.1.011.18.615.1.07.2.99.1.25.3.46.27.04.2.15.0.114.2.116.0.30.18.81.9.1Bumps the major group with 3 updates in the /@shared/api directory: prettier, typescript and @lavamoat/allow-scripts. Bumps the major group with 1 update in the /@shared/helpers directory: typescript. Bumps the major group with 1 update in the /@stellar/freighter-api directory: @lavamoat/allow-scripts. Bumps the major group with 23 updates in the /extension directory:
2.8.83.3.32.0.24.0.02.5.13.3.01.6.02.3.014.3.116.0.17.2.114.5.24.7.115.0.016.2.1521.1.712.20.5522.8.64.3.05.0.75.14.96.0.05.3.09.0.14.10.15.3.021.10.023.16.46.1.88.0.028.1.329.7.01.0.14.1.011.18.615.1.07.2.99.1.25.3.46.27.04.2.15.0.114.2.116.0.30.18.81.9.1Updates
@testing-library/domfrom 7.31.2 to 10.4.0Release notes
Sourced from
@testing-library/dom's releases.... (truncated)
Commits
a86c54cfeat: Reduce caught exceptions in prettyDom (reland) (#1323)33555a3Test highlighting ofprettyDOMexplicitly (#1324)20d9894docs: add sieem as a contributor for code (#1330)306526bfix: safer read of DEBUG_PRINT_LIMIT (#1329)fdc12ecfix: Revert "feat: Reduce caught exceptions inprettyDom(#1321)" (#1325)76cb73dfeat: Reduce caught exceptions inprettyDom(#1321)0a8ad65feat: Support anonymous custom elements when pretty printing DOM (#1319)77448badocs: update Greg Bergé's bio link (#1318)56543d5feat: Add window events "pagehide" / "pageshow" (#1308)47fe879chore: correct some typos and spelling errors (#1309)Updates
@testing-library/jest-domfrom 4.2.4 to 6.6.3Release notes
Sourced from
@testing-library/jest-dom's releases.... (truncated)
Commits
5ba0156fix: add vitest import when extending vitest matchers (#646)4468378fix: remove recursive type reference in vitest types (#636)abba961docs: add billyjanitsch as a contributor for bug (#644)9490615docs: add G-Rath as a contributor for code (#643)ced792efix: fix lodash import in to-have-selection.js (#642)9b14804feat: implement toHaveSelection (#637)f5b0e94docs: add diegohaz as a contributor for ideas (#640)68e927edocs: add pwolaq as a contributor for code, and test (#639)04005dbdocs: add silviuaavram as a contributor for code, and test (#638)4723de3docs: add mibcadet as a contributor for doc (#628)Updates
@types/testing-library__jest-domfrom 5.14.9 to 6.0.0Commits
Updates
@typescript-eslint/eslint-pluginfrom 5.62.0 to 8.12.2Release notes
Sourced from
@typescript-eslint/eslint-plugin's releases.... (truncated)
Changelog
Sourced from
@typescript-eslint/eslint-plugin's changelog.... (truncated)
Commits
4af866achore(release): publish 8.12.2cc7177cfix(eslint-plugin): [switch-exhaustiveness-check] invert `considerDefaultExha...1edec1dchore(release): publish 8.12.13413a2dchore(release): publish 8.12.0ac18749feat(eslint-plugin): [no-base-to-string] handle String() (#10005)3c8978dfeat(eslint-plugin): [switch-exhaustiveness-check] add allowDefaultCaseMatchU...af4743ftest(eslint-plugin): fix a typo in a test, causing it to test theerrortyp...9c956eefeat(eslint-plugin): [consistent-indexed-object-style] report mapped types (#...e765033feat(eslint-plugin): [prefer-nullish-coalescing] add support for assignment e...79c27a8chore(release): publish 8.11.0Updates
@typescript-eslint/parserfrom 5.62.0 to 8.12.2Release notes
Sourced from
@typescript-eslint/parser's releases.... (truncated)
Changelog
Sourced from
@typescript-eslint/parser's changelog.... (truncated)
Commits
4af866achore(release): publish 8.12.21edec1dchore(release): publish 8.12.13413a2dchore(release): publish 8.12.079c27a8chore(release): publish 8.11.08d35958chore: enable eslint-plugin-perfectionist on typescript-estree package (#9852)7effdeachore(release): publish 8.10.0f9c49e3feat: support TypeScript 5.6 (#9972)4666ed4chore(release): publish 8.9.0f898248chore(release): publish 8.8.12055cfbchore(release): publish 8.8.0Updates
eslintfrom 8.57.0 to 9.14.0Release notes
Sourced from eslint's releases.
... (truncated)
Changelog
Sourced from eslint's changelog.
... (truncated)
Commits
db0b8449.14.020b0da1Build: changelog update for 9.14.0f36cb16chore: upgrade@eslint/js@9.14.0 (#19086)28be447chore: package.json update for@eslint/jsrelease24d0172fix: enable retry concurrency limit for readFile() (#19077)3fa009ffeat: add support for Import Attributes and RegExp Modifiers (#19076)b0faee3feat: add types for the@eslint/jspackage (#19010)151c965docs: updatecontext.languageOptions.parserdescription (#19084)dc34f94docs: Update READMEf48a2a0test: addno-invalid-regexptests with RegExp Modifiers (#19075)Updates
eslint-config-prettierfrom 6.15.0 to 9.1.0Changelog
Sourced from eslint-config-prettier's changelog.
... (truncated)
Commits
Report too large to display inline
View full report↗︎
🚨 Potential security issues detected. Learn more about Socket for GitHub ↗︎
To accept the risk, merge this PR and you will not be notified again.
extension/package.jsonextension/package.jsonView full report↗︎
Next steps
What is a deprecated package?
The maintainer of the package marked it as deprecated. This could indicate that a single version should not be used, or that the package is no longer maintained and any new vulnerabilities will not be fixed.
Research the state of the package and determine if there are non-deprecated versions that can be used, or if it should be replaced with a new, supported solution.
Take a deeper look at the dependency
Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support [AT] socket [DOT] dev.
Remove the package
If you happen to install a dependency that Socket reports as Known Malware you should immediately remove it and select a different dependency. For other alert types, you may may wish to investigate alternative packages or consider if there are other ways to mitigate the specific risk posed by the dependency.
Mark a package as acceptable risk
To ignore an alert, reply with a comment starting with
@SocketSecurity ignorefollowed by a space separated list ofecosystem/package-name@versionspecifiers. e.g.@SocketSecurity ignore npm/foo@1.0.0or ignore all packages with@SocketSecurity ignore-all@SocketSecurity ignore npm/@types/history@5.0.0@SocketSecurity ignore npm/@types/testing-library__jest-dom@6.0.0Looks like these dependencies are no longer updatable, so this is no longer needed.