Created by: greenkeeper[bot]
mocha was just published.
Version 5.0.3 ofDependency | mocha |
---|---|
Current Version | 5.0.2 |
Type | devDependency |
The version 5.0.3 is not covered by your current version range.
If you don’t accept this pull request, your project will work just like it did before. However, you might be missing out on a bunch of new features, fixes and/or performance improvements from the dependency update.
It might be worth looking into these changes and trying to get this project onto the latest version of mocha.
If you have a solid test suite and good coverage, a passing build is a strong indicator that you can take advantage of these changes directly by merging the proposed change into your project. If the build fails or you don’t have such unconditional trust in your tests, this branch is a great starting point for you to work on the update.
Release Notes
v5.0.35.0.3 / 2018-03-06
This patch features a fix to address a potential "low severity" ReDoS vulnerability in the diff package (a dependency of Mocha).
🔒 Security Fixes
🔩 Other
-
#3011: Expose
generateDiff()
inBase
reporter (@harrysarson)
Commits
The new version differs by 6 commits.
-
da6e5c9
Release v5.0.3
-
70d9262
update CHANGELOG.md for v5.0.3 [ci skip]
-
aaaa5ab
fix: ReDoS vuln in mocha@5.0.2 › diff@3.3.1 (#3266)
-
8df5727
Tidies up code after review
-
660bccc
adds unit tests covering Base.generateDiff
-
bdcb3c3
exposes generateDiff function from base reporter
See the full diff
FAQ and help
There is a collection of frequently asked questions. If those don’t help, you can always ask the humans behind Greenkeeper.
Your Greenkeeper bot