Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump axios, chokidar, mocha, and elliptic #8490 #8563

Merged
merged 2 commits into from
Oct 15, 2024

Conversation

AMoo-Miki
Copy link
Collaborator

@AMoo-Miki AMoo-Miki commented Oct 11, 2024

Description

Cherry picked commit 2b149d2 from #8490

[GHSA-8hc4-vh64-cxmj] Bump axios from 1.7.2 to 1.7.7
Bump chokidar from 3.5.3 to 3.6.0
[SNYK-JS-MOCHA-2863123] Bump mocha from 10.1.0 to 10.7.3
[GHSA-f7q4-pwc6-w24p][GHSA-977x-g7h5-7qgw][GHSA-49q7-c7j4-3p7m] Bump elliptic from 6.5.4 to 6.5.7
Removed blanket override of minimatch

Note [email protected] cannot be upgraded due to a need for typescript bump which would be a breaking change.

Check List

  • All tests pass
    • yarn test:jest
    • yarn test:jest_integration
  • New functionality includes testing.
  • New functionality has been documented.
  • Update CHANGELOG.md
  • Commits are signed per the DCO using --signoff

Copy link
Contributor

❌ Invalid Changelog Heading

The '## Changelog' heading in your PR description is either missing or malformed. Please make sure that your PR description includes a '## Changelog' heading with proper spelling, capitalization, spacing, and Markdown syntax.

Copy link

codecov bot commented Oct 11, 2024

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 61.01%. Comparing base (52dbe6e) to head (855c8ad).
Report is 1 commits behind head on 2.x.

Additional details and impacted files
@@            Coverage Diff             @@
##              2.x    #8563      +/-   ##
==========================================
- Coverage   61.02%   61.01%   -0.01%     
==========================================
  Files        3784     3784              
  Lines       90225    90225              
  Branches    14122    14122              
==========================================
- Hits        55056    55054       -2     
- Misses      31719    31720       +1     
- Partials     3450     3451       +1     
Flag Coverage Δ
Linux_1 29.23% <ø> (ø)
Linux_2 56.53% <ø> (ø)
Linux_3 37.75% <ø> (-0.01%) ⬇️
Linux_4 30.02% <ø> (ø)
Windows_1 29.25% <ø> (ø)
Windows_2 56.48% <ø> (ø)
Windows_3 37.75% <ø> (ø)
Windows_4 30.02% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

Bump chokidar from 3.5.3 to 3.6.0
[SNYK-JS-MOCHA-2863123] Bump mocha from 10.2.0 to 10.7.3
[CVE-2024-42459][CVE-2024-42460][CVE-2024-42461] Bump elliptic from 6.5.4 to 6.5.7
Remove blanket override of `minimatch`

Signed-off-by: Miki <[email protected]>
Copy link
Contributor

❌ Invalid Changelog Heading

The '## Changelog' heading in your PR description is either missing or malformed. Please make sure that your PR description includes a '## Changelog' heading with proper spelling, capitalization, spacing, and Markdown syntax.

@joshuali925 joshuali925 merged commit b65ea4a into opensearch-project:2.x Oct 15, 2024
14 of 15 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
cve Security vulnerabilities detected by Dependabot or Mend failed changeset v2.18.0
Projects
None yet
Development

Successfully merging this pull request may close these issues.

3 participants