Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Snyk] Upgrade eslint from 4.4.1 to 4.19.1 #6

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Conversation

snyk-bot
Copy link

Snyk has created this PR to upgrade eslint from 4.4.1 to 4.19.1.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
  • The recommended version is 23 versions ahead of your current version.
  • The recommended version was released 2 years ago, on 2018-03-22.

The recommended version fixes:

Severity Issue Exploit Maturity
Regular Expression Denial of Service (ReDoS)
npm:eslint:20180222
Proof of Concept
Release notes
Package name: eslint
  • 4.19.1 - 2018-03-22
    • 3ff5d11 Fix: no-invalid-regexp not understand variable for flags (fixes #10112) (#10113) (薛定谔的猫)
    • abc765c Fix: object-curly-newline minProperties w/default export (fixes #10101) (#10103) (Kevin Partington)
    • 6f9e155 Docs: Update ambiguous for...in example for guard-for-in (#10114) (CJ R)
    • 0360cc2 Chore: Adding debug logs on successful plugin loads (#10100) (Kevin Partington)
    • a717c5d Chore: Adding log at beginning of unit tests in Makefile.js (#10102) (Kevin Partington)
  • 4.19.0 - 2018-03-16
    • 55a1593 Update: consecutive option for one-var (fixes #4680) (#9994) (薛定谔的猫)
    • 8d3814e Fix: false positive about ES2018 RegExp enhancements (fixes #9893) (#10062) (Toru Nagashima)
    • 935f4e4 Docs: Clarify default ignoring of node_modules (#10092) (Matijs Brinkhuis)
    • 72ed3db Docs: Wrap Buffer() in backticks in no-buffer-constructor rule description (#10084) (Stephen Edgar)
    • 3aded2f Docs: Fix lodash typos, make spacing consistent (#10073) (Josh Smith)
    • e33bb64 Chore: enable no-param-reassign on ESLint codebase (#10065) (Teddy Katz)
    • 66a1e9a Docs: fix possible typo (#10060) (Vse Mozhet Byt)
    • 2e68be6 Update: give a node at least the indentation of its parent (fixes #9995) (#10054) (Teddy Katz)
    • 72ca5b3 Update: Correctly indent JSXText with trailing linebreaks (fixes #9878) (#10055) (Teddy Katz)
    • 2a4c838 Docs: Update ECMAScript versions in FAQ (#10047) (alberto)
  • 4.18.2 - 2018-03-02
    • 6b71fd0 Fix: [email protected], because 4.0.3 needs "ajv": "^6.0.1" (#10022) (Mathieu Seiler)
    • 3c697de Chore: fix incorrect comment about linter.verify return value (#10030) (Teddy Katz)
    • 9df8653 Chore: refactor parser-loading out of linter.verify (#10028) (Teddy Katz)
    • f6901d0 Fix: remove catastrophic backtracking vulnerability (fixes #10002) (#10019) (Jamie Davis)
    • e4f52ce Chore: Simplify dataflow in linter.verify (#10020) (Teddy Katz)
    • 33177cd Chore: make library files non-executable (#10021) (Teddy Katz)
    • 558ccba Chore: refactor directive comment processing (#10007) (Teddy Katz)
    • 18e15d9 Chore: avoid useless catch clauses that just rethrow errors (#10010) (Teddy Katz)
    • a1c3759 Chore: refactor populating configs with defaults in linter (#10006) (Teddy Katz)
    • aea07dc Fix: Make max-len ignoreStrings ignore JSXText (fixes #9954) (#9985) (Rachael Sim)
  • 4.18.1 - 2018-02-20
    • f417506 Fix: ensure no-await-in-loop reports the correct node (fixes #9992) (#9993) (Teddy Katz)
    • 3e99363 Docs: Fixed typo in key-spacing rule doc (#9987) (Jaid)
    • 7c2cd70 Docs: deprecate experimentalObjectRestSpread (#9986) (Toru Nagashima)
  • 4.18.0 - 2018-02-16
    • 70f22f3 Chore: Apply memoization to config creation within glob utils (#9944) (Kenton Jacobsen)
    • 0e4ae22 Update: fix indent bug with binary operators/ignoredNodes (fixes #9882) (#9951) (Teddy Katz)
    • 47ac478 Update: add named imports and exports for object-curly-newline (#9876) (Nicholas Chua)
    • e8efdd0 Fix: support Rest/Spread Properties (fixes #9885) (#9943) (Toru Nagashima)
    • f012b8c Fix: support Async iteration (fixes #9891) (#9957) (Toru Nagashima)
    • 74fa253 Docs: Clarify no-mixed-operators options (fixes #9962) (#9964) (Ivan Hayes)
    • 426868f Docs: clean up key-spacing docs (fixes #9900) (#9963) (Abid Uzair)
    • 4a6f22e Update: support eslint-disable-* block comments (fixes #8781) (#9745) (Erin)
    • 777283b Docs: Propose fix typo for function (#9965) (John Eismeier)
    • bf3d494 Docs: Fix typo in max-len ignorePattern example. (#9956) (Tim Martin)
    • d64fbb4 Docs: fix typo in prefer-destructuring.md example (#9930) (Vse Mozhet Byt)
    • f8d343f Chore: Fix default issue template (#9946) (Kai Cataldo)
  • 4.17.0 - 2018-02-03
    • 1da1ada Update: Add "multiline" type to padding-line-between-statements (#8668) (Matthew Bennett)
    • bb213dc Chore: Use messageIds in some of the core rules (#9648) (Jed Fox)
    • 1aa1970 Docs: remove outdated rule naming convention (#9925) (Teddy Katz)
    • 3afaff6 Docs: Add prefer-destructuring variable reassignment example (#9873) (LePirlouit)
    • d20f6b4 Fix: Typo in error message when running npm (#9866) (Maciej Kasprzyk)
    • 51ec6a7 Docs: Use GitHub Multiple PR/Issue templates (#9911) (Kai Cataldo)
    • dc80487 Update: space-unary-ops uses astUtils.canTokensBeAdjacent (fixes #9907) (#9906) (Kevin Partington)
    • 084351b Docs: Fix the messageId example (fixes #9889) (#9892) (Jed Fox)
    • 9cbb487 Docs: Mention the globals key in the no-undef docs (#9867) (Dan Dascalescu)
  • 4.16.0 - 2018-01-20
    • e26a25f Update: allow continue instead of if wrap in guard-for-in (fixes #7567) (#9796) (Michael Ficarra)
    • af043eb Update: Add NewExpression support to comma-style (#9591) (Frazer McLean)
    • 4f898c7 Build: Fix JSDoc syntax errors (#9813) (Matija Marohnić)
    • 13bcf3c Fix: Removing curly quotes in no-eq-null report message (#9852) (Kevin Partington)
    • b96fb31 Docs: configuration hierarchy for CLIEngine options (fixes #9526) (#9855) (PiIsFour)
    • 8ccbdda Docs: Clarify that -c configs merge with .eslintrc.* (fixes #9535) (#9847) (Kevin Partington)
    • 978574f Docs: Fix examples for no-useless-escape (#9853) (Toru Kobayashi)
    • cd5681d Chore: Deactivate consistent-docs-url in internal rules folder (#9815) (Kevin Partington)
    • 2e87ddd Docs: Sync messageId examples' style with other examples (#9816) (Kevin Partington)
    • 1d61930 Update: use doctrine range information in valid-jsdoc (#9831) (Teddy Katz)
    • 133336e Update: fix indent behavior on template literal arguments (fixes #9061) (#9820) (Teddy Katz)
    • ea1b15d Fix: avoid crashing on malformed configuration comments (fixes #9373) (#9819) (Teddy Katz)
    • add1e70 Update: fix indent bug on comments in ternary expressions (fixes #9729) (#9818) (Teddy Katz)
    • 6a5cd32 Fix: prefer-destructuring error with computed properties (fixes #9784) (#9817) (Teddy Katz)
    • 601f851 Docs: Minor modification to code comments for clarity (#9821) (rgovind92)
    • b9da067 Docs: fix misleading info about RuleTester column numbers (#9830) (Teddy Katz)
    • 2cf4522 Update: Rename and deprecate object-property-newline option (#9570) (Jonathan Pool)
    • acde640 Docs: Add ES 2018 to Configuring ESLint (#9829) (Kai Cataldo)
    • ccfce15 Docs: Minor tweaks to working with rules page (#9824) (Kevin Partington)
    • 54b329a Docs: fix substitution of {{ name }} (#9822) (Andres Kalle)
  • 4.15.0 - 2018-01-07
    • 6ab04b5 New: Add context.report({ messageId }) (fixes #6740) (#9165) (Jed Fox)
    • fc7f404 Docs: add url to each of the rules (refs #6582) (#9788) (Patrick McElhaney)
    • fc44da9 Docs: fix sort-imports rule block language (#9805) (ferhat elmas)
    • 65f0176 New: CLIEngine#getRules() (refs #6582) (#9782) (Patrick McElhaney)
    • c64195f Update: More detailed assert message for rule-tester (#9769) (Weijia Wang)
    • 9fcfabf Fix: no-extra-parens false positive (fixes: #9755) (#9795) (Erin)
    • 61e5fa0 Docs: Add table of contents to Node.js API docs (#9785) (Patrick McElhaney)
    • 4c87f42 Fix: incorrect error messages of no-unused-vars (fixes #9774) (#9791) (akouryy)
    • bbabf34 Update: add ignoreComments option to indent rule (fixes #9018) (#9752) (Kevin Partington)
    • db431cb Docs: HTTP -> HTTPS (fixes #9768) (#9768) (Ronald Eddy Jr)
    • cbf0fb9 Docs: describe how to feature-detect scopeManager/visitorKeys support (#9764) (Teddy Katz)
    • f7dcb70 Docs: Add note about "patch release pending" label to maintainer guide (#9763) (Teddy Katz)
  • 4.14.0 - 2017-12-23
    • be2f57e Update: support separate requires in one-var. (fixes #6175) (#9441) (薛定谔的猫)
    • 370d614 Docs: Fix typos (#9751) (Jed Fox)
    • 8196c45 Chore: Reorganize CLI options and associated docs (#9758) (Kevin Partington)
    • 75c7419 Update: Logical-and is counted in complexity rule (fixes #8535) (#9754) (Kevin Partington)
    • eb4b1e0 Docs: reintroduce misspelling in valid-typeof example (#9753) (Teddy Katz)
    • ae51eb2 New: Add allowImplicit option to array-callback-return (fixes #8539) (#9344) (James C. Davis)
    • e9d5dfd Docs: improve no-extra-parens formatting (#9747) (Rich Trott)
    • 37d066c Chore: Add unit tests for overrides glob matching. (#9744) (Robert Jackson)
    • 805a94e Chore: Fix typo in CLIEngine test name (#9741) (@scriptdaemon)
    • 1c2aafd Update: Improve parser integrations (fixes #8392) (#8755) (Toru Nagashima)
    • 4ddc131 Upgrade: debug@^3.1.0 (#9731) (Kevin Partington)
    • f252c19 Docs: Make the lint message source property a little more subtle (#9735) (Jed Fox)
    • 5a5c23c Docs: fix the link to contributing page (#9727) (Victor Hom)
    • f44ce11 Docs: change beginner to good first issue label text (#9726) (Victor Hom)
    • 14baa2e Chore: improve arrow-body-style error message (refs #5498) (#9718) (Teddy Katz)
    • f819920 Docs: fix typos (#9723) (Thomas Broadley)
    • 43d4ba8 Fix: false positive on rulelines-between-class-members (fixes #9665) (#9680) (sakabar)
  • 4.13.1 - 2017-12-11
    • b72dc83 Fix: eol-last allow empty-string to always pass (refs #9534) (#9696) (Kevin Partington)
    • d80aa7c Fix: camelcase destructure leading/trailing underscore (fixes #9700) (#9701) (Kevin Partington)
    • d49d9d0 Docs: Add missing period to the README (#9702) (Kevin Partington)
    • 4564fe0 Chore: no-invalid-meta crash if no export assignment (refs #9534) (#9698) (Kevin Partington)
  • 4.13.0 - 2017-12-08
  • 4.12.1 - 2017-11-30
  • 4.12.0 - 2017-11-26
  • 4.11.0 - 2017-11-10
  • 4.10.0 - 2017-10-27
  • 4.9.0 - 2017-10-14
  • 4.8.0 - 2017-09-29
  • 4.7.2 - 2017-09-21
  • 4.7.1 - 2017-09-18
  • 4.7.0 - 2017-09-15
  • 4.6.1 - 2017-09-03
  • 4.6.0 - 2017-09-01
  • 4.5.0 - 2017-08-19
  • 4.4.1 - 2017-08-07
from eslint GitHub release notes
Commit messages
Package name: eslint
  • f1f1bdf 4.19.1
  • b446650 Build: changelog update for 4.19.1
  • 3ff5d11 Fix: no-invalid-regexp not understand variable for flags (fixes #10112) (#10113)
  • abc765c Fix: object-curly-newline minProperties w/default export (fixes #10101) (#10103)
  • 6f9e155 Docs: Update ambiguous for...in example for guard-for-in (#10114)
  • 0360cc2 Chore: Adding debug logs on successful plugin loads (#10100)
  • a717c5d Chore: Adding log at beginning of unit tests in Makefile.js (#10102)
  • 4f595e8 4.19.0
  • 16fc59e Build: changelog update for 4.19.0
  • 55a1593 Update: consecutive option for one-var (fixes #4680) (#9994)
  • 8d3814e Fix: false positive about ES2018 RegExp enhancements (fixes #9893) (#10062)
  • 935f4e4 Docs: Clarify default ignoring of node_modules (#10092)
  • 72ed3db Docs: Wrap `Buffer()` in backticks in `no-buffer-constructor` rule description (#10084)
  • 3aded2f Docs: Fix lodash typos, make spacing consistent (#10073)
  • e33bb64 Chore: enable no-param-reassign on ESLint codebase (#10065)
  • 66a1e9a Docs: fix possible typo (#10060)
  • 2e68be6 Update: give a node at least the indentation of its parent (fixes #9995) (#10054)
  • 72ca5b3 Update: Correctly indent JSXText with trailing linebreaks (fixes #9878) (#10055)
  • 2a4c838 Docs: Update ECMAScript versions in FAQ (#10047)
  • 22ff6f3 4.18.2
  • 817b84b Build: changelog update for 4.18.2
  • 6b71fd0 Fix: [email protected], because 4.0.3 needs "ajv": "^6.0.1" (#10022)
  • 3c697de Chore: fix incorrect comment about linter.verify return value (#10030)
  • 9df8653 Chore: refactor parser-loading out of linter.verify (#10028)

Compare


Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment