[Snyk] Upgrade: acorn, browser-sync, chai, del, drool, escodegen, through2, gulp, gulp-autoprefixer, gulp-cache, gulp-csso, gulp-file, gulp-flatten, gulp-header, merge-stream, gulp-if, gulp-iife, gulp-rename, gulp-imagemin, gulp-load-plugins, gulp-open, gulp-replace, gulp-sass, gulp-shell, gulp-size, gulp-sourcemaps, gulp-tap, gulp-uglify, gulp-zip, mocha, prismjs, run-sequence, vinyl-paths #26
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Snyk has created this PR to upgrade multiple dependencies.
👯 The following dependencies are linked and will therefore be updated together.ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
acorn
⚠️ This is a major version upgrade, and may be a breaking change | 2 months ago
⚠️ This is a major version upgrade, and may be a breaking change | 9 months ago
⚠️ This is a major version upgrade, and may be a breaking change | 4 months ago
⚠️ This is a major version upgrade, and may be a breaking change | a year ago
⚠️ This is a major version upgrade, and may be a breaking change | a year ago
⚠️ This is a major version upgrade, and may be a breaking change | 4 years ago
⚠️ This is a major version upgrade, and may be a breaking change | 6 months ago
⚠️ This is a major version upgrade, and may be a breaking change | 10 months ago
⚠️ This is a major version upgrade, and may be a breaking change | 5 years ago
⚠️ This is a major version upgrade, and may be a breaking change | 5 years ago
⚠️ This is a major version upgrade, and may be a breaking change | 5 years ago
⚠️ This is a major version upgrade, and may be a breaking change | 5 years ago
⚠️ This is a major version upgrade, and may be a breaking change | 5 years ago
⚠️ This is a major version upgrade, and may be a breaking change | 5 years ago
⚠️ This is a major version upgrade, and may be a breaking change | 4 months ago
⚠️ This is a major version upgrade, and may be a breaking change | 2 years ago
⚠️ This is a major version upgrade, and may be a breaking change | 6 years ago
⚠️ This is a major version upgrade, and may be a breaking change | 2 years ago
⚠️ This is a major version upgrade, and may be a breaking change | 3 years ago
⚠️ This is a major version upgrade, and may be a breaking change | 10 months ago
⚠️ This is a major version upgrade, and may be a breaking change | 4 years ago
⚠️ This is a major version upgrade, and may be a breaking change | 5 years ago
⚠️ This is a major version upgrade, and may be a breaking change | 6 years ago
⚠️ This is a major version upgrade, and may be a breaking change | 10 months ago
⚠️ This is a major version upgrade, and may be a breaking change | a month ago
⚠️ This is a major version upgrade, and may be a breaking change | 2 years ago
⚠️ This is a major version upgrade, and may be a breaking change | 7 years ago
⚠️ This is a major version upgrade, and may be a breaking change | 2 years ago
from 4.0.13 to 8.12.1 | 79 versions ahead of your current version
on 2024-07-03
browser-sync
from 2.29.3 to 3.0.2 | 9 versions ahead of your current version
on 2023-12-27
chai
from 3.5.0 to 5.1.1 | 32 versions ahead of your current version
on 2024-05-09
del
from 2.2.2 to 7.1.0 | 11 versions ahead of your current version
on 2023-08-30
drool
from 0.4.0 to 0.6.0 | 2 versions ahead of your current version | 7 years ago
on 2018-02-04
escodegen
from 1.14.3 to 2.1.0 | 2 versions ahead of your current version
on 2023-06-29
through2
from 2.0.5 to 4.0.2 | 6 versions ahead of your current version
on 2020-06-30
gulp
from 3.9.1 to 5.0.0 | 4 versions ahead of your current version
on 2024-03-29
gulp-autoprefixer
from 3.1.1 to 9.0.0 | 9 versions ahead of your current version
on 2023-11-02
gulp-cache
from 0.4.6 to 1.1.3 | 8 versions ahead of your current version
on 2019-08-10
gulp-csso
from 1.0.0 to 4.0.1 | 7 versions ahead of your current version
on 2019-11-14
gulp-file
from 0.3.0 to 0.4.0 | 1 version ahead of your current version | 7 years ago
on 2018-01-02
gulp-flatten
from 0.3.1 to 0.4.0 | 1 version ahead of your current version | 7 years ago
on 2017-12-31
gulp-header
from 1.8.12 to 2.0.9 | 7 versions ahead of your current version
on 2019-07-12
merge-stream
from 1.0.1 to 2.0.0 | 1 version ahead of your current version
on 2019-05-23
gulp-if
from 2.0.2 to 3.0.0 | 1 version ahead of your current version
on 2019-07-18
gulp-iife
from 0.3.0 to 0.4.0 | 1 version ahead of your current version | 6 years ago
on 2018-10-31
gulp-rename
from 1.4.0 to 2.0.0 | 1 version ahead of your current version
on 2019-12-04
gulp-imagemin
from 3.4.0 to 9.1.0 | 15 versions ahead of your current version
on 2024-05-05
gulp-load-plugins
from 1.6.0 to 2.0.8 | 9 versions ahead of your current version
on 2022-08-29
gulp-open
from 2.1.0 to 3.0.1 | 2 versions ahead of your current version
on 2018-03-25
gulp-replace
from 0.5.4 to 1.1.4 | 8 versions ahead of your current version
on 2022-12-17
gulp-sass
from 3.0.0 to 5.1.0 | 10 versions ahead of your current version
on 2021-12-31
gulp-shell
from 0.5.2 to 0.8.0 | 9 versions ahead of your current version | 5 years ago
on 2020-02-12
gulp-size
from 2.1.0 to 5.0.0 | 4 versions ahead of your current version
on 2023-10-31
gulp-sourcemaps
from 2.6.5 to 3.0.0 | 1 version ahead of your current version
on 2020-11-11
gulp-tap
from 0.1.3 to 2.0.0 | 5 versions ahead of your current version
on 2019-08-19
gulp-uglify
from 2.1.2 to 3.0.2 | 3 versions ahead of your current version
on 2019-03-01
gulp-zip
from 4.2.0 to 6.0.0 | 5 versions ahead of your current version
on 2023-11-03
mocha
from 3.5.3 to 10.7.3 | 70 versions ahead of your current version
on 2024-08-09
prismjs
from 0.0.1 to 1.29.0 | 36 versions ahead of your current version
on 2022-08-23
run-sequence
from 1.2.2 to 2.2.1 | 4 versions ahead of your current version
on 2018-01-03
vinyl-paths
from 2.1.0 to 5.0.0 | 4 versions ahead of your current version
on 2022-07-26
Issues fixed by the recommended upgrade:
SNYK-JS-OPEN-174041
npm:open:20180512
SNYK-JS-ADMZIP-1065796
SNYK-JS-NODESASS-535500
SNYK-JS-PRISMJS-1076581
SNYK-JS-NODESASS-541000
SNYK-JS-PRISMJS-1314893
SNYK-JS-PRISMJS-1585202
SNYK-JS-PRISMJS-561410
SNYK-JS-MINIMATCH-1019388
npm:minimatch:20160620
SNYK-JS-MICROMATCH-6838728
SNYK-JS-SEMVER-3247795
SNYK-JS-SEMVER-3247795
SNYK-JS-MOCHA-2863123
SNYK-JS-MOCHA-561476
SNYK-JS-SEMVERREGEX-1584358
SNYK-JS-SEMVERREGEX-1585624
SNYK-JS-MICROMATCH-6838728
SNYK-JS-MINIMATCH-1019388
npm:minimatch:20160620
SNYK-JS-AXIOS-6032459
SNYK-JS-BRACES-6838727
SNYK-JS-BRACES-6838727
SNYK-JS-TAR-1536528
SNYK-JS-TAR-1536531
SNYK-JS-TAR-1579147
SNYK-JS-TAR-1579152
SNYK-JS-TAR-1579155
SNYK-JS-UNSETVALUE-2400660
SNYK-JS-URLREGEX-569472
npm:diff:20180305
SNYK-JS-NODESASS-535498
SNYK-JS-NODESASS-540958
SNYK-JS-NODESASS-540964
SNYK-JS-NODESASS-540978
SNYK-JS-NODESASS-540992
SNYK-JS-NODESASS-540998
SNYK-JS-POSTCSS-1255640
SNYK-JS-NODESASS-541002
SNYK-JS-MINIMATCH-3050818
SNYK-JS-SCSSTOKENIZER-2339884
SNYK-JS-NODESASS-1059081
SNYK-JS-SEMVERREGEX-1047770
SNYK-JS-SEMVERREGEX-2824151
SNYK-JS-DECOMPRESS-557358
SNYK-JS-DECOMPRESSTAR-559095
SNYK-JS-MINIMATCH-3050818
SNYK-JS-GLOBPARENT-1016905
SNYK-JS-GOT-2932019
SNYK-JS-ISSVG-1085627
SNYK-JS-ISSVG-1243891
npm:adm-zip:20180415
SNYK-JS-AXIOS-6124857
SNYK-JS-BROWSERSLIST-1090194
npm:tunnel-agent:20170305
SNYK-JS-TAR-6476909
SNYK-JS-WS-1296835
npm:braces:20180219
SNYK-JS-TAR-1536758
npm:debug:20170905
npm:growl:20160721
Release notes
Package name: acorn
Bug fixes
Fix a regression that caused Acorn to no longer run on Node versions <8.10.
New features
Support ES2025 duplicate capture group names in regular expressions.
Bug fixes
Include
VariableDeclarator
in theAnyNode
type so that walker objects can refer to it without getting a type error.Properly raise a parse error for invalid
for
/of
statements usingasync
as binding name.Properly recognize "use strict" when preceded by a string with an escaped newline.
Mark the
Parser
constructor as protected, not private, so plugins can extend it without type errors.Fix a bug where some invalid
delete
expressions were let through when the operand was parenthesized andpreserveParens
was enabled.Properly normalize line endings in raw strings of invalid template tokens.
Properly track line numbers for escaped newlines in strings.
Fix a bug that broke line number accounting after a template literal with invalid escape sequences.
Bug fixes
Add
Function
andClass
to theAggregateType
type, so that they can be used in walkers without raising a type error.Make sure
onToken
get animport
keyword token when parsingimport.meta
.Fix a bug where
.loc.start
could be undefined fornew.target
meta
nodes.Bug fixes
Fix a bug that caused regular expressions after colon tokens to not be properly tokenized in some circumstances.
Bug fixes
Fix a regression where
onToken
would receive 'name' tokens for 'new' keyword tokens.Bug fixes
Fix an issue where tokenizing (without parsing) an object literal with a property named
class
orfunction
could, in some circumstance, put the tokenizer into an invalid state.Fix an issue where a slash after a call to a propery named the same as some keywords would be tokenized as a regular expression.
New features
Upgrade to Unicode 15.1.
Use a set of new, much more precise, TypeScript types.
New features
Add a
checkPrivateFields
option that disables strict checking of private property use.Bug fixes
Forbid dynamic import after
new
, even when part of a member expression.New features
Add Unicode properties for ES2023.
Add support for the
v
flag to regular expressions.Bug fixes
Fix a bug that caused
allowHashBang
to be set to false when not provided, even withecmaVersion >= 14
.Fix an exception when passing no option object to
parse
ornew Parser
.Fix incorrect parse error on
if (0) let\n[astral identifier char]
.Bug fixes
Make type for
Comment
compatible with estree types.Package name: browser-sync
What's Changed
New Contributors
Full Changelog: v3.0.1...v3.0.2
What's Changed
Full Changelog: v2.29.3...v3.0.1
v3.0.0
v3.0.0-alpha.2
v3.0.0-alpha.1
v3.0.0-alpha.0
v2.30.0-alpha.3
v2.30.0-alpha.2
v2.30.0-alpha.1
Package name: chai
What's Changed
toThrow
by @ 43081j in #1609New Contributors
Full Changelog: v5.1.0...v5.1.1
What's Changed
iterable
assertion by @ koddsson in #1592New Contributors
Full Changelog: v5.0.3...v5.1.0
Fix bad v5.0.2 publish.
Full Changelog: v5.0.2...v5.0.3
What's Changed
bump-cli
by @ koddsson in #1559??
for node compat (5.x) by @ 43081j in #1576loupe
to latest version by @ koddsson in #1579Full Changelog: v5.0.1...v5.0.2
BREAKING CHANGES
import {...} from 'chai'
orimport('chai')
.require('chai')
will cause failures in nodejs. If you're using ESM and seeing failures, it may be due to a bundler or transpiler which is incorrectly converting import statements into require calls.What's Changed
get-func-name
dependency by @ koddsson in #1416