Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Snyk] Upgrade jest from 29.5.0 to 29.7.0 #5

Open
wants to merge 1 commit into
base: main
Choose a base branch
from

Conversation

delhage
Copy link

@delhage delhage commented Dec 19, 2023

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to upgrade jest from 29.5.0 to 29.7.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.


  • The recommended version is 6 versions ahead of your current version.
  • The recommended version was released 3 months ago, on 2023-09-12.

The recommended version fixes:

Severity Issue PriorityScore (*) Exploit Maturity
Incomplete List of Disallowed Inputs
SNYK-JS-BABELTRAVERSE-5962462
572/1000
Why? Proof of Concept exploit, CVSS 9.3
Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes
Package name: jest
  • 29.7.0 - 2023-09-12

    Features

    • [create-jest] Add npm init / yarn create initialiser for Jest projects (#14465)
    • [jest-validate] Allow deprecation warnings for unknown options (#14499)

    Fixes

    • [jest-resolver] Replace unmatched capture groups in moduleNameMapper with empty string instead of undefined (#14507)
    • [jest-snapshot] Allow for strings as well as template literals in inline snapshots (#14465)
    • [@ jest/test-sequencer] Calculate test runtime if perStats.duration is missing (#14473)

    Performance

    • [@ jest/create-cache-key-function] Cache access of NODE_ENV and BABEL_ENV (#14455)

    Chore & Maintenance

    • [jest-cli] Move internal config initialisation logic to the create-jest package (#14465)

    New Contributors

    Full Changelog: v29.6.4...v29.7.0

  • 29.6.4 - 2023-08-24

    Fixes

    • [jest-core] Fix typo in scheduleAndRun performance marker (#14434)
    • [jest-environment-node] Make sure atob and btoa are writeable in Node 20 (#14446)
    • [jest-worker] Additional error wrapper for parentPort.postMessage to fix unhandled DataCloneError. (#14437)

    New Contributors

    Full Changelog: v29.6.3...v29.6.4

  • 29.6.3 - 2023-08-21

    Fixes

    • [expect, @ jest/expect-utils] ObjectContaining support symbol as key (#14414)
    • [expect] Remove @ types/node from dependencies (#14385)
    • [jest-core] Use workers in watch mode by default to avoid crashes (#14059 & #14085).
    • [jest-reporters] Update istanbul-lib-instrument dependency to v6. (#14401)
    • [jest-mock] Revert #13692 as it was a breaking change (#14429)
    • [jest-mock] Revert #13866 as it was a breaking change (#14429)
    • [jest-mock] Revert #13867 as it was a breaking change (#14429)
    • [@ jest/reporters] Marks Reporter's hooks as optional (#14433)
    • [jest-runtime] Fix dynamic ESM import module bug when loaded module through jest.isolateModulesAsync (#14397)

    Chore & Maintenance

    • [jest-changed-files, jest-circus, jest-console, @ jest/core, @ jest/runtime, @ jest/transform] Use invariant and notEmpty from jest-util rather than own internal (#14366)

    New Contributors

    Full Changelog: v29.6.2...v29.6.3

  • 29.6.2 - 2023-07-27

    Fixes

    • [jest-circus] Fix snapshot matchers in concurrent tests when nr of tests exceeds maxConcurrency (#14335)
    • [@ jest/core] When running global setup and teardown, do not try to change the message property of the thrown error object when the message property is unwritable (#14113)
    • [jest-snapshot] Move @ types/prettier from dependencies to devDependencies (#14328)
    • [jest-snapshot] Throw an explicit error if Prettier v3 is used (#14367)
    • [jest-reporters] Add "skipped" and "todo" symbols to Github Actions Reporter (#14309)

    Chore & Maintenance

    • [@ jest/core] Use pluralize from jest-util rather than own internal (#14322)

    New Contributors

    Full Changelog: v29.6.1...v29.6.2

  • 29.6.1 - 2023-07-06

    Fixes

    • [jest-circus] Revert #14110 as it was a breaking change (#14304)

    Full Changelog: v29.6.0...v29.6.1

  • 29.6.0 - 2023-07-04
    Read more
  • 29.5.0 - 2023-03-06
    Read more
from jest GitHub release notes
Commit messages
Package name: jest
  • 4e56991 v29.7.0
  • 04f8272 chore: update changelog for release
  • f0cfd50 feat(jest-validate): Allow deprecation warnings for unknown options (#14499)
  • 176b229 chore: use glob@10 in build scripts (#14512)
  • 56793ab fix(@ jest/resolve): replace unmatched capture group with empty string instead of "undefined" (#14507)
  • b7828e9 chore: remove a couple filters and move to reduce (#14506)
  • 4feb4ba changed-files: simplify Array.from (#14505)
  • 55d6a22 chore: disable automerge of renovate PR
  • ab1074c Revert "chore(deps): lock file maintenance"
  • da878b9 chore(deps): lock file maintenance
  • e821b83 chore: patch psl to avoid deprecation warning (#14502)
  • a0e067a changed-files: simplify find repos (#14503)
  • 856d6ab docblock: use flatMap instead of map+reduce (#14504)
  • 3738e3f pretty-format: remove needless map (#14494)
  • 9171085 Upgrade Jest website to Docusaurus v3 (#14463)
  • 70138b8 docs: use `caution` over `danger` admonition (#14493)
  • d724d2b Prepare website docs content for MDX v2 and Docusaurus v3 (#14492)
  • febaa2f chore: upgrade `github-actions-cpu-cores` (#14491)
  • 0b0cf73 feat(create-jest): Add `npm init` / `yarn create` initialiser (#14453)
  • 008caa9 chore: group tsd dep updates
  • 9183d01 chore: upgrade TypeScript (#14477)
  • b303ca1 chore(deps): update dependency eslint-config-prettier to v9 (#14419)
  • 9592877 chore(deps): update actions/checkout action to v4 (#14475)
  • f3ab93a chore(deps): update yarn to v3.6.3 (#14474)

Compare


Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants