Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Snyk] Upgrade eslint from 5.9.0 to 5.16.0 #1631

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Conversation

EitanGayor
Copy link
Owner

snyk-top-banner

Snyk has created this PR to upgrade eslint from 5.9.0 to 5.16.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.


  • The recommended version is 13 versions ahead of your current version.

  • The recommended version was released on 6 years ago.

Issues fixed by the recommended upgrade:

Issue Score Exploit Maturity
high severity Arbitrary Code Execution
SNYK-JS-JSYAML-174129
619 No Known Exploit
high severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-ACORN-559469
619 No Known Exploit
high severity Prototype Pollution
SNYK-JS-AJV-584908
619 No Known Exploit
high severity Code Injection
SNYK-JS-LODASH-1040724
619 Proof of Concept
high severity Prototype Pollution
SNYK-JS-LODASH-450202
619 Proof of Concept
high severity Prototype Pollution
SNYK-JS-LODASH-567746
619 Proof of Concept
high severity Prototype Pollution
SNYK-JS-LODASH-608086
619 Proof of Concept
high severity Prototype Pollution
SNYK-JS-LODASH-6139239
619 Proof of Concept
medium severity Denial of Service (DoS)
SNYK-JS-JSYAML-173999
619 No Known Exploit
medium severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-LODASH-1018905
619 Proof of Concept
Release notes
Package name: eslint
  • 5.16.0 - 2019-03-30
    • dfef227 Build: gensite passes rulesMeta to formatter rendering (#11567) (Kevin Partington)
    • c06d38c Fix: Allow HTML formatter to handle no meta data (#11566) (Ilya Volodin)
    • 87a5c03 Docs: func-style: clarify when allowArrowFunctions is used (#11548) (Oliver Joseph Ash)
    • bc3e427 Update: pass rule meta to formatters RFC 10 (#11551) (Chris Meyer)
    • b452f27 Chore: Update README to pull in reviewer data (#11506) (Nicholas C. Zakas)
    • afe3d25 Upgrade: Bump js-yaml dependency to fix Denial of Service vulnerability (#11550) (Vernon de Goede)
    • 4fe7eb7 Chore: use nyc instead of istanbul (#11532) (Toru Nagashima)
    • f16af43 Chore: fix formatters/table test (#11534) (Toru Nagashima)
    • 78358a8 Docs: fix duplicate punctuation in CLI docs (#11528) (Teddy Katz)
  • 5.15.3 - 2019-03-18
    • 71adc66 Fix: avoid moving comments in implicit-arrow-linebreak (fixes #11521) (#11522) (Teddy Katz)
    • 1f715a2 Chore: make test-case-property-ordering reasonable (#11511) (Toru Nagashima)
  • 5.15.2 - 2019-03-15
    • 29dbca7 Fix: implicit-arrow-linebreak adds extra characters (fixes #11268) (#11407) (Mark de Dios)
    • 5d2083f Upgrade: [email protected] (#11513) (Teddy Katz)
    • a5dae7c Fix: Empty glob pattern incorrectly expands to "/**" (#11476) (Ben Chauvette)
    • 448e8da Chore: improve crash reporting (fixes #11304) (#11463) (Alex Zherdev)
    • 0f56dc6 Chore: make config validator params more consistent (#11435) (薛定谔的猫)
    • d6c1122 Docs: Add working groups to maintainer guide (#11400) (Nicholas C. Zakas)
    • 5fdb4d3 Build: compile deps to ES5 when generating browser file (fixes #11504) (#11505) (Teddy Katz)
    • 06fa165 Build: update CI testing configuration (#11500) (Reece Dunham)
    • 956e883 Docs: Fix example in no-restricted-modules docs (#11454) (Paul O’Shannessy)
    • 2c7431d Docs: fix json schema example dead link (#11498) (kazuya kawaguchi)
    • e7266c2 Docs: Fix invalid JSON in "Specifying Parser Options" (#11492) (Mihira Jayasekera)
    • 6693161 Sponsors: Sync README with website (ESLint Jenkins)
    • 62fee4a Chore: eslint-config-eslint enable comma-dangle functions: "never" (#11434) (薛定谔的猫)
    • 34a5382 Build: copy bundled espree to website directory (#11478) (Pig Fang)
    • f078f9a Chore: use "file:" dependencies for internal rules/config (#11465) (Teddy Katz)
    • 0756128 Docs: Add visualstudio to formatter list (#11480) (Patrick Eriksson)
    • 44de9d7 Docs: Fix typo in func-name-matching rule docs (#11484) (Iulian Onofrei)
  • 5.15.1 - 2019-03-05
  • 5.15.0 - 2019-03-02
    • 4088c6c Build: Remove path.resolve in webpack build (#11462) (Kevin Partington)
    • ec59ec0 New: add rule "prefer-named-capture-group" (fixes #11381) (#11392) (Pig Fang)
    • a44f750 Upgrade: [email protected] (#11461) (Teddy Katz)
    • d3ce611 Sponsors: Sync README with website (ESLint Jenkins)
    • ee88475 Chore: add utils for rule tests (#11453) (薛定谔的猫)
    • d4824e4 Sponsors: Sync README with website (ESLint Jenkins)
    • 6489518 Fix: no-extra-parens crash when code is "((let))" (#11444) (Teddy Katz)
    • 9d20de2 Sponsors: Sync README with website (ESLint Jenkins)
    • 3f14de4 Sponsors: Sync README with website (ESLint Jenkins)
    • 3d6c770 Sponsors: Sync README with website (ESLint Jenkins)
    • de5cbc5 Update: remove invalid defaults from core rules (fixes #11415) (#11427) (Teddy Katz)
    • eb0650b Build: fix linting errors on master (#11428) (Teddy Katz)
    • 5018378 Chore: enable require-unicode-regexp on ESLint codebase (#11422) (Teddy Katz)
    • f6ba633 Chore: lint all files in the repo at the same time (#11425) (Teddy Katz)
    • 8f3d717 Docs: Add non-attending TSC member info (#11411) (Nicholas C. Zakas)
    • ce0777d Docs: use more common spelling (#11417) (薛定谔的猫)
    • b9aabe3 Chore: run fuzzer along with unit tests (#11404) (Teddy Katz)
    • db0c5e2 Build: switch from browserify to webpack (fixes #11366) (#11398) (Pig Fang)
  • 5.14.1 - 2019-02-18
    • 1d6e639 Fix: sort-keys throws Error at SpreadElement (fixes #11402) (#11403) (Krist Wongsuphasawat)
  • 5.14.0 - 2019-02-15
    • 85a04b3 Fix: adds conditional for separateRequires in one-var (fixes #10179) (#10980) (Scott Stern)
    • 0c02932 Upgrade: [email protected] (#11401) (Ilya Volodin)
    • 104ae88 Docs: Update governance doc with reviewers status (#11399) (Nicholas C. Zakas)
    • ab8ac6a Fix: Support boundary spread elements in sort-keys (#11158) (Jakub Rożek)
    • a23d197 New: add allowSingleLineBlocks opt. to padded-blocks rule (fixes #7145) (#11243) (richie3366)
    • e25e7aa Fix: comma-spacing ignore comma before closing paren (fixes #11295) (#11374) (Pig Fang)
    • a1f7c44 Docs: fix space-before-blocks correct code for "classes": "never" (#11391) (PoziWorld)
    • 14f58a2 Docs: fix grammar in object-curly-spacing docs (#11389) (PoziWorld)
    • d3e9a27 Docs: fix grammar in “those who says” (#11390) (PoziWorld)
    • ea8e804 Docs: Add note about support for object spread (fixes #11136) (#11395) (Steven Thomas)
    • 95aa3fd Docs: Update README team and sponsors (ESLint Jenkins)
    • 51c4972 Update: Behavior of --init (fixes #11105) (#11332) (Nicholas C. Zakas)
    • ad7a380 Docs: Update README team and sponsors (ESLint Jenkins)
    • 550de1e Update: use default keyword in JSON schema (fixes #9929) (#11288) (Pig Fang)
    • 983c520 Update: Use 'readonly' and 'writable' for globals (fixes #11359) (#11384) (Nicholas C. Zakas)
    • f1d3a7e Upgrade: some deps (fixes #11372) (#11373) (薛定谔的猫)
    • 3e0c417 Docs: Fix grammar in “there’s nothing prevent you” (#11385) (PoziWorld)
    • de988bc Docs: Fix grammar: Spacing improve -> Spacing improves (#11386) (PoziWorld)
    • 1309dfd Revert "Build: fix test failure on Node 11 (#11100)" (#11375) (薛定谔的猫)
    • 1e56897 Docs: “the function actually use”: use -> uses (#11380) (PoziWorld)
    • 5a71bc9 Docs: Update README team and sponsors (ESLint Jenkins)
    • 82a58ce Docs: Update README team and sponsors (ESLint Jenkins)
    • 546d355 Docs: Update README with latest sponsors/team data (#11378) (Nicholas C. Zakas)
    • c0df9fe Docs: ... is not an operator (#11232) (Felix Kling)
    • 7ecfdef Docs: update typescript parser (refs #11368) (#11369) (薛定谔的猫)
    • 3c90dd7 Update: remove prefer-spread autofix (fixes #11330) (#11365) (薛定谔的猫)
    • 5eb3121 Update: add fixer for prefer-destructuring (fixes #11151) (#11301) (golopot)
    • 173eb38 Docs: Clarify ecmaVersion doesn't imply globals (refs #9812) (#11364) (Keith Maxwell)
    • 84ce72f Fix: Remove extraneous linefeeds in one-var fixer (fixes #10741) (#10955) (st-sloth)
    • 389362a Docs: clarify motivation for no-prototype-builtins (#11356) (Teddy Katz)
    • 533d240 Update: no-shadow-restricted-names lets unassigned vars shadow undefined (#11341) (Teddy Katz)
    • d0e823a Update: Make --init run js config files through linter (fixes #9947) (#11337) (Brian Kurek)
    • 92fc2f4 Fix: CircularJSON dependency warning (fixes #11052) (#11314) (Terry)
    • 4dd19a3 Docs: mention 'prefer-spread' in docs of 'no-useless-call' (#11348) (Klaus Meinhardt)
    • 4fd83d5 Docs: fix a misleading example in one-var (#11350) (薛定谔的猫)
    • 9441ce7 Chore: update incorrect tests to fix build failing (#11354) (薛定谔的猫)
  • 5.13.0 - 2019-02-01
    • 91c8884 Chore: use local function to append "s" instead of a package (#11293) (Timo Tijhof)
    • b5143bf Update: for-direction detection false positives/negatives (#11254) (Ruben Bridgewater)
    • 9005e63 Chore: increase camelcase test coverage (#11299) (Redmond Tran)
    • 5b14ad1 Fix: false positive in no-constant-condition (fixes #11306) (#11308) (Pig Fang)
    • 6567c4f Fix: only remove arrow before body in object-shorthand (fixes #11305) (#11307) (Pig Fang)
    • fa2f370 Docs: update rule configuration values in examples (#11323) (Kai Cataldo)
    • 0a3c3ff New: Allow globals to be disabled/configured with strings (fixes #9940) (#11338) (Teddy Katz)
    • dccee63 Chore: avoid hard-coding the list of core rules in eslint:recommended (#11336) (Teddy Katz)
    • c1fd6f5 Chore: remove undocumented Linter#rules property (refs #9161) (#11335) (Teddy Katz)
    • 36e3356 Chore: remove dead code for loading rules (#11334) (Teddy Katz)
    • c464e27 Docs: Rename result -> foo (#11210) (Alexis Tyler)
  • 5.12.1 - 2019-01-18
    • eb5c401 Chore: use meta.messages in some rules (2/4) (refs #9870) (

Snyk has created this PR to upgrade eslint from 5.9.0 to 5.16.0.

See this package in npm:
eslint

See this project in Snyk:
https://app.snyk.io/org/eitan/project/c0eb44e3-25a2-410c-9d74-1e56268c2479?utm_source=github&utm_medium=referral&page=upgrade-pr
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants