turkdevops / electron

:electron: Build cross-platform desktop apps with JavaScript, HTML, and CSS
https://electronjs.org
MIT License
1 stars 0 forks source link

[spec] Update chai 4.3.4 → 4.5.0 (minor) #763

Open depfu[bot] opened 3 months ago

depfu[bot] commented 3 months ago

Here is everything you need to know about this update. Please take a good look at what changed and the test results before merging this pull request.

What changed?

✳️ chai (4.3.4 → 4.5.0) · Repo · Changelog

Release Notes

4.5.0

v4.4.1...v4.5.0

What's Changed

Full Changelog: v4.4.1...v4.5.0

4.4.1

What's Changed

Full Changelog: v4.4.0...v4.4.1

4.3.10

This release simply bumps all dependencies to their latest non-breaking versions.

What's Changed

Full Changelog: v4.3.9...v4.3.10

4.3.9

Upgrade dependencies.

This release upgrades dependencies to address CVE-2023-43646 where a large function name can cause "catastrophic backtracking" (aka ReDOS attack) which can cause the test suite to hang.

Full Changelog: v4.3.8...v4.3.9

4.3.8

What's Changed

New Contributors

Full Changelog: v4.3.7...v4.3.8

4.3.7

What's Changed

  • fix: deep-eql bump package to support symbols comparison by @snewcomer in #1483

Full Changelog: v4.3.6...v4.3.7

4.3.6

Update loupe to 2.3.1

4.3.5

v4.3.4...v4.3.5

Does any of this look wrong? Please let us know.

Commits

See the full diff on Github. The new version differs by 30 commits:


Depfu Status

Depfu will automatically keep this PR conflict-free, as long as you don't add any commits to this branch yourself. You can also trigger a rebase manually by commenting with @depfu rebase.

All Depfu comment commands
@​depfu rebase
Rebases against your default branch and redoes this update
@​depfu recreate
Recreates this PR, overwriting any edits that you've made to it
@​depfu merge
Merges this PR once your tests are passing and conflicts are resolved
@​depfu cancel merge
Cancels automatic merging of this PR
@​depfu close
Closes this PR and deletes the branch
@​depfu reopen
Restores the branch and reopens this PR (if it's closed)
@​depfu pause
Ignores all future updates for this dependency and closes this PR
@​depfu pause [minor|major]
Ignores all future minor/major updates for this dependency and closes this PR
@​depfu resume
Future versions of this dependency will create PRs again (leaves this PR as is)