wheelmap-frontend icon indicating copy to clipboard operation
wheelmap-frontend copied to clipboard

Published 20 hours ago verified publisher icon sozialhelden

[Snyk] Security upgrade @wdio/mocha-framework from 7.7.4 to 7.19.7

Open snyk-bot opened this issue 2 years ago • 0 comments

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

  • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
    • package.json
    • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:
Severity Issue Breaking Change Exploit Maturity
high severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-MOCHA-2863123		 No No Known Exploit
Commit messages
Package name: @wdio/mocha-framework The new version differs by 250 commits.
  • ed5b727 v7.19.7
  • 846f025 fix Jasmine tests (#8300)
  • 4aebe98 Bump devtools-protocol from 0.0.995510 to 0.0.998712 (#8294)
  • c14361b Bump aws-sdk from 2.1125.0 to 2.1126.0 (#8295)
  • 7a4803f Bump @ typescript-eslint/utils from 5.21.0 to 5.22.0 (#8296)
  • 353a22a Bump devtools-protocol from 0.0.995510 to 0.0.998277 (#8287)
  • 85fd518 Bump mocha from 9.2.2 to 10.0.0 (#8288)
  • b999152 Bump @ types/node from 17.0.27 to 17.0.31 (#8289)
  • 7ac7b67 Bump typescript from 4.6.3 to 4.6.4 (#8290)
  • 4e54b40 Bump inquirer from 8.2.2 to 8.2.4 (#8291)
  • da5ca89 Bump jest-circus from 28.0.0 to 28.0.3 (#8292)
  • 2334169 Bump aws-sdk from 2.1120.0 to 2.1125.0 (#8293)
  • bb4e272 Add request.performance event (#8267)
  • 665f3d0 Fix #8007 Cucumber skipped steps not appearing in report (#8262)
  • 299c2cc Bump jest-circus from 27.5.1 to 28.0.0 (#8273)
  • dcac010 Bump @ typescript-eslint/parser from 5.20.0 to 5.21.0
  • 23abd60 Bump @ typescript-eslint/eslint-plugin from 5.20.0 to 5.21.0
  • 3bb29c6 Bump @ typescript-eslint/utils from 5.20.0 to 5.21.0
  • d2feb85 Bump @ types/node from 17.0.26 to 17.0.27
  • 65d23f1 Bump eslint from 8.13.0 to 8.14.0 (#8268)
  • 2db277b Bump @ types/node from 17.0.25 to 17.0.26 (#8271)
  • 4165383 Bump aws-sdk from 2.1117.0 to 2.1120.0
  • 7043574 Bump devtools-protocol from 0.0.982423 to 0.0.995510
  • 3b7d7f4 Bump @ cucumber/cucumber from 8.0.0 to 8.1.2

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS)

snyk-bot avatar Nov 07 '22 13:11 snyk-bot