Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
Vulnerabilities that will be fixed
With an upgrade:
Why? Confidentiality impact: None, Integrity impact: None, Availability impact: High, Scope: Unchanged, Exploit Maturity: No data, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: Low, Attack Vector: Network, EPSS: 0.01055, Social Trends: No, Days since published: 0, Reachable: No, Transitive dependency: Yes, Is Malicious: No, Business Criticality: High, Provider Urgency: High, Package Popularity Score: 99, Impact: 5.99, Likelihood: 2.08, Score Version: V5
SNYK-JS-INFLIGHT-6095116
(*) Note that the real score may have changed since the PR was raised.
Release notes
Package name: add-asset-html-webpack-plugin
5.0.0 (2022-03-08)
Bug Fixes
BREAKING CHANGES
filename
no longer accepts a glob pattern, that must be passed asglob
instead.4.0.1 (2022-03-08)
Bug Fixes
4.0.0 (2022-03-08)
Bug Fixes
BREAKING CHANGES
3.2.2 (2022-03-08)
Bug Fixes
3.2.1 (2022-03-08)
Bug Fixes
3.2.0 (2021-02-20)
Features
3.1.3 (2019-01-27)
Bug Fixes
3.1.2 (2018-10-31)
Bug Fixes
3.1.1 (2018-10-13)
Bug Fixes
3.1.0 (2018-10-13)
Features
attributes
option (cfb247a)Package name: cacache
17.0.5 (2023-03-21)
Dependencies
a6dd005
#176 bump glob from 8.1.0 to 9.3.1 (#176)17.0.4 (2022-12-14)
Dependencies
fe71fab
#159 bump fs-minipass from 2.1.0 to 3.0.017.0.3 (2022-12-07)
Dependencies
0dc98f7
#156 bump minipass from 3.3.6 to 4.0.017.0.2 (2022-11-04)
Bug Fixes
4a7382f
#152 replace @ npmcli/move-file with @ npmcli/fs (@ lukekarrys)17.0.1 (2022-10-17)
Dependencies
d3515de
#146 bump unique-filename from 2.0.1 to 3.0.0e57ebd9
#143 bump ssri from 9.0.1 to 10.0.09dd537a
#144 bump @ npmcli/move-file from 2.0.1 to 3.0.017.0.0 (2022-10-13)
cacache
is now compatible with the following semver range for node:^14.17.0 || ^16.13.0 || >=18.0.0
Features
479b135
#141 do not alter file ownership (#141) (@ nlf)f57bb4d
#140 remove sync methods (#140) (@ nlf)cfebcde
#133 postinstall for dependabot template-oss PR (@ lukekarrys)16.1.3 (2022-08-23)
Dependencies
16.1.2 (2022-08-15)
Bug Fixes
16.1.1 (2022-06-02)
Bug Fixes
16.1.0 (2022-05-17)
Features
Bug Fixes
Package name: compression-webpack-plugin
7.0.0 (2020-12-02)
⚠ BREAKING CHANGES
^5.1.0
cache
option was removed, the plugin respects caching from configurations, please read6.1.1 (2020-11-12)
Bug Fixes
6.1.0 (2020-11-09)
Features
keep-source-maps
value to thedeleteOriginalAssets
option (#216) (bd60650)6.0.5 (2020-11-02)
Bug Fixes
deleteOriginalAssets
option (62d3d0a)6.0.4 (2020-10-26)
Bug Fixes
algorithm
(483f328)6.0.3 (2020-10-09)
Chore
schema-utils
6.0.2 (2020-09-19)
Bug Fixes
6.0.1 (2020-09-16)
Bug Fixes
⚠ BREAKING CHANGES
filename
option was changed to"[path][base].gz"
[dir]
placeholder, please use the[path]
placeholderFunction
type of thefilename
option should return value with placeholders, please see an exampleFeatures
[fragment]
,[base]
and[path]
placeholders for thefilename
optionBug Fixes
immutable
flag for assets5.0.2 (2020-09-02)
Bug Fixes
algorithm
option return nonBuffer
(#190) (81bf601)Package name: del
Breaking
Improvements
v5.1.0...v6.0.0
Enhancements:
Fixes:
cwd
option (#96) ffbf4c4v5.0.0...v5.1.0
Shoutout to @ chrisblossom for doing most of the work on this release 🙌
This release changes the underlying globbing engine, so you are strongly recommended to use the
dryRun
option to ensuredel
still does what you expect before you run it on the real files.Breaking:
path.posix.join()
instead ofpath.join()
. You can useslash
to transform backward-slash paths to forward-slash paths.Important: If you used any of the
globby
options, please note thatglobby
switched from using theglob
package tofast-glob
, so almost all the option names changed. Here's how to migrate the options.v4.1.1...v5.0.0
For TypeScript users only:
v4.1.0...v4.1.1
v4.0.0...v4.1.0
Breaking:
Enhancements:
v3.0.0...v4.0.0
concurrency
option.v2.2.2...v3.0.0
2.2.2
Package name: eslint
81aa06b
Upgrade: [email protected] (#11869) (Teddy Katz)5f022bc
Fix: no-else-return autofix produces name collisions (fixes #11069) (#11867) (Milos Djermanovic)ded9548
Fix: multiline-comment-style incorrect message (#11864) (golopot)cad074d
Docs: Add JSHint W047 compat to no-floating-decimal (#11861) (Timo Tijhof)41f6304
Upgrade: sinon (#11855) (Toru Nagashima)167ce87
Chore: remove unuseable profile command (#11854) (Toru Nagashima)c844c6f
Fix: max-len properly ignore trailing comments (fixes #11838) (#11841) (ZYSzys)1b5661a
Fix: no-var should not fix variables named 'let' (fixes #11830) (#11832) (Milos Djermanovic)4d75956
Build: CI with Azure Pipelines (#11845) (Toru Nagashima)1db3462
Chore: rm superfluous argument & fix perf-multifiles-targets (#11834) (薛定谔的猫)c57a4a4
Upgrade: @ babel/polyfill => core-js v3 (#11833) (薛定谔的猫)65faa04
Docs: Clarify prefer-destructuring array/object difference (fixes #9970) (#11851) (Oliver Sieweke)81c3823
Fix: require-atomic-updates reports parameters (fixes #11723) (#11774) (Toru Nagashima)aef8ea1
Sponsors: Sync README with website (ESLint Jenkins)f403b07
Update: introduce minKeys option to sort-keys rule (fixes #11624) (#11625) (Christian)87451f4
Fix: no-octal should report NonOctalDecimalIntegerLiteral (fixes #11794) (#11805) (Milos Djermanovic)e4ab053
Update: support "bigint" in valid-typeof rule (#11802) (Colin Ihrig)e0fafc8
Chore: removes unnecessary assignment in loop (#11780) (Dimitri Mitropoulos)20908a3
Docs: removed '>' prefix from from docs/working-with-rules (#11818) (Alok Takshak)1c43eef
Sponsors: Sync README with website (ESLint Jenkins)21f3131
Fix:overrides
handle relative paths as expected (fixes #11577) (#11799) (Toru Nagashima)5509cdf
Fix: fails the test case if autofix made syntax error (fixes #11615) (#11798) (Toru Nagashima)cb1922b
Fix: show custom message for namespace import (fixes #11580) (#11791) (Pig Fang)37e5193
Update: addendColumn
to no-useless-escape (fixes #11629) (#11790) (Pig Fang)ad4b048
Build: Fix typo in blog post template (fixes #11614) (#11782) (Kai Cataldo)9590587
Update: improve reported location of arrow-parens (fixes #11773) (#11775) (Pig Fang)d662b17
New: Add classname attribute to JUnit testcase (refs #11068) (#11683) (Fabio Pitino)8eaa9b2
Chore: remove incorrect comment (#11769) (薛定谔的猫)4039a49
Chore: add .github/funding.yml (#11764) (Toru Nagashima)9b87fee
Chore: Fix formatter documentation generation (#11767) (Ilya Volodin)f116208
Chore: Fix site generation script for releases (#11766) (Ilya Volodin)cf9cce8
Update: Add never option for new-parens (refs #10034) (#11379) (pfgithub)b5fa149
New: multiple processors support (fixes #11035, fixes #11725) (#11552) (Toru Nagashima)2d32a9e
Breaking: stricter rule config validating (fixes #9505) (#11742) (薛定谔的猫)71716eb
Update: add fixer for no-div-regex rule (fixes #11355) (#11744) (joe-re)53f7f4c
Update: Uniform messages for the rules in "complexity" section (#11759) (Igor Novozhilov)0a801d7
Chore: improve perf test (#11756) (薛定谔的猫)45bd336
Docs: add about RuleTester's parser to migration guide (fixes #11728) (