meu-portifolio icon indicating copy to clipboard operation
meu-portifolio copied to clipboard

Published 20 hours ago verified publisher icon Rafael-Yokoyama

[Snyk] Security upgrade @testing-library/jest-dom from 5.11.9 to 5.16.5

Open Rafael-Yokoyama opened this issue 6 months ago • 1 comments

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

  • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
    • package.json
    • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:
Severity Priority Score (*) Issue Breaking Change Exploit Maturity
high severity 696/1000
Why? Proof of Concept exploit, Has a fix available, CVSS 7.5		 Denial of Service (DoS)
SNYK-JS-DECODEURICOMPONENT-3149970		 No Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages
Package name: @testing-library/jest-dom The new version differs by 40 commits.
  • 948d90f fix: migrate ccs v3 to @ adobe/css-tools v4 (#470)
  • af18453 fix: Support unenclosed inner text for details elements in to be visible (#396)
  • 6988a67 fix: clarify toHaveFocus message when using `.not` (#447)
  • 4d0ceeb docs: add ashleyryan as a contributor for code, ideas (#434)
  • 1f389f8 docs: add astorije as a contributor for code, ideas (#433)
  • 8162115 fix: add custom element support to `toBeDisabled` (#368)
  • 3094eb1 docs: add cbroeren as a contributor for doc (#432)
  • 43a420a docs: Fix wrong toHaveValue example (#431)
  • a9beb47 fix: Improve `toHaveClass` error message format (#405)
  • 6f69437 docs: add IanVS as a contributor for code (#423)
  • de26c7a feat: Update aria-query to 5.0.0 (#414)
  • dfcefa2 fix: wrong deprecate error message (#422)
  • 4cb606c feat: import parse directly from css (#415)
  • 35ab97d docs: add yannbf as a contributor for code (#416)
  • 8876038 docs: add MatanBobi as a contributor for platform (#410)
  • d085039 chore: set protocol for npm to `https` (#409)
  • d24b6be docs: add tu4mo as a contributor for doc (#386)
  • 51ea536 chore: upgrade to Jest 27 (#384)
  • 60832f6 Fix typo (#385)
  • 0e34a35 docs: add icecream17 as a contributor for doc (#381)
  • eccbfcf fix grammar (#380)
  • fc9ce6d fix: Updates deprecated matchers info (#378)
  • 87ffd2a feat: toHaveAccessibleName and toHaveAccessibleDescription (#377)
  • 317e319 docs: Update the documentation of toBeDisabled (#375)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Denial of Service (DoS)

Rafael-Yokoyama avatar Dec 20 '23 17:12 Rafael-Yokoyama

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name Status Preview Comments Updated (UTC)
meu-portifolio ❌ Failed (Inspect) Dec 20, 2023 5:27pm

vercel[bot] avatar Dec 20 '23 17:12 vercel[bot]