[Snyk] Fix for 1 vulnerabilities

[screwball22]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • test/package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	125/1000 Why? Confidentiality impact: None, Integrity impact: None, Availability impact: High, Scope: Unchanged, Exploit Maturity: No data, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: Low, Attack Vector: Network, EPSS: 0.01055, Social Trends: No, Days since published: 0, Reachable: No, Transitive dependency: Yes, Is Malicious: No, Business Criticality: High, Provider Urgency: High, Package Popularity Score: 99, Impact: 5.99, Likelihood: 2.08, Score Version: V5	Uncontrolled resource consumption SNYK-JS-BRACES-6838727	Yes	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: @jest/core

The new version differs by 250 commits.

• 75006e4 v29.0.0
• 7c82a9f chore: update jest-watch-typeahead again
• 352ff29 chore: update changelog for release
• 33ad8c3 docs: Jest 29 blog post (#13103)
• dda77e5 docs: collapse 28.0 and 28.1 docs (#13104)
• c0dc84c chore: update jest-watch-typeahead
• 05f6217 fix: support deep CJS re-exports when using ESM (#13170)
• 490fd88 chore: update yarn (#13169)
• 98936a2 docs: Update Enzyme links to use new URL (#13166)
• 187566a feat(pretty-format): allow to opt out from sorting object keys with `compareKeys: null` (#12443)
• ae2bed7 chore: tweak regex used in e2e tests (#13129)
• 8c56d74 docs: Update Configuration.md for added special notes on usage scenarios for pnpm. (#13115)
• fb1c53d feat(jest-config)!: remove undocumented `collectCoverageOnlyFrom` option (#13156)
• 075b489 fix: ignore `EISDIR` when resolving symlinks (#13157)
• 3bef02e feat(@ jest/test-result, @ jest/types)!: replace `Bytes` and `Milliseconds` types with `number` (#13155)
• 4def94b v29.0.0-alpha.6
• 0f00d4e fix: replace non-CLI `rimraf` usage (#13151)
• 6a90a2c fix: Allow updating inline snapshots when test includes JSX (#12760)
• 983274a feat: Let `babel` find config when updating inline snapshots (#13150)
• d2ff18a chore: make prettierPath optional in `SnapshotState` (#13149)
• 7d8d01c feat(circus): added each to failing tests (#13142)
• a5b52a5 chore(types): separate MatcherContext, MatcherUtils and MatcherState (#13141)
• 79b5e41 chore: get rid of peer dep warning in website
• 812763d chore: enable 'no-duplicate-imports' (#13138)

See the full diff

Package name: depcheck

The new version differs by 86 commits.

• 381fa30 Merge pull request RangeError: Maximum call stack size exceeded electron-userland/electron-builder#826 from miluoshi/tsconfig-jsonc
• 72bb511 Merge pull request AppImages fail to run if appimaged process is running electron-userland/electron-builder#827 from miluoshi/sass-refactored
• d24d28f Merge pull request Missing $APPIMAGE electron-userland/electron-builder#830 from dobesv/scoped-package-bin-no-key-fixup
• c64c3e5 Merge pull request It is ARM supported? electron-userland/electron-builder#831 from dobesv/jest-projects
• d07d214 Merge pull request dmg.title option removal electron-userland/electron-builder#834 from jtbandes/jacob/explicitResourceManagement
• 2687939 Add explicitResourceManagement
• fa8c49e Support projects field in jest configuration
• acb6fdd Handle scoped package bin with default name
• 3ae0c5e Merge pull request How to show EULA before install app with squirrel? electron-userland/electron-builder#829 from openam/quiet-flag
• 9bb4931 feat: add --quiet flag to suppress No depcheck issue messages
• 7003a45 fix(sass): don't detect transitive dependencies
• 7fa650a feat(tsconfig): support tsconfig.json files with comments
• 520b841 Merge pull request How to add aditional keys to the Info.plist for mac / mas builds electron-userland/electron-builder#825 from miluoshi/fix-storybook-addons
• 7b4d19b fix(storybook): parse package names out of addons array
• fe84f6a Don't use node 10.x when publishing
• d95770e Merge pull request Ignore more files by default on build electron-userland/electron-builder#823 from simllll/simllll-patch-1
• 6c8f1b8 Merge pull request [DEB packaging] Surround [version]-[revision] with underscores rather than dashes in filenames electron-userland/electron-builder#803 from a-rothwell/arothwell/add-publish-action
• 8d314e1 Merge pull request Unable to code sign on OSX, the specified item could not be found. electron-userland/electron-builder#820 from miluoshi/jest-mjs
• 35c91a1 fix: typescript parser add importAssertions
• a37e479 feat(jest): add support for jest.config.ts
• d26f78f feat(jest): add support for jest.config.mjs
• 8ead447 Merge pull request Add support for PortableApps.com Format electron-userland/electron-builder#808 from miluoshi/improve-babel-special
• 2d1fdbd Merge pull request Windows 7: build msi installer error electron-userland/electron-builder#809 from regseb/clear-content
• 83e9f54 Merge pull request Windows 10 Icon Missing In Application Bar electron-userland/electron-builder#810 from ArtskydJ/fix-dynamic-import-template-literal

See the full diff

Package name: jest

The new version differs by 250 commits.

• 75006e4 v29.0.0
• 7c82a9f chore: update jest-watch-typeahead again
• 352ff29 chore: update changelog for release
• 33ad8c3 docs: Jest 29 blog post (#13103)
• dda77e5 docs: collapse 28.0 and 28.1 docs (#13104)
• c0dc84c chore: update jest-watch-typeahead
• 05f6217 fix: support deep CJS re-exports when using ESM (#13170)
• 490fd88 chore: update yarn (#13169)
• 98936a2 docs: Update Enzyme links to use new URL (#13166)
• 187566a feat(pretty-format): allow to opt out from sorting object keys with `compareKeys: null` (#12443)
• ae2bed7 chore: tweak regex used in e2e tests (#13129)
• 8c56d74 docs: Update Configuration.md for added special notes on usage scenarios for pnpm. (#13115)
• fb1c53d feat(jest-config)!: remove undocumented `collectCoverageOnlyFrom` option (#13156)
• 075b489 fix: ignore `EISDIR` when resolving symlinks (#13157)
• 3bef02e feat(@ jest/test-result, @ jest/types)!: replace `Bytes` and `Milliseconds` types with `number` (#13155)
• 4def94b v29.0.0-alpha.6
• 0f00d4e fix: replace non-CLI `rimraf` usage (#13151)
• 6a90a2c fix: Allow updating inline snapshots when test includes JSX (#12760)
• 983274a feat: Let `babel` find config when updating inline snapshots (#13150)
• d2ff18a chore: make prettierPath optional in `SnapshotState` (#13149)
• 7d8d01c feat(circus): added each to failing tests (#13142)
• a5b52a5 chore(types): separate MatcherContext, MatcherUtils and MatcherState (#13141)
• 79b5e41 chore: get rid of peer dep warning in website
• 812763d chore: enable 'no-duplicate-imports' (#13138)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Uncontrolled resource consumption

[stale]

Is this still relevant? If so, what is blocking it? Is there anything you can do to help move it forward?

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs.