Skip to content
GitLab

Update mocha to the latest version 🚀

Merged Administrator requested to merge greenkeeper/mocha-5.0.3 into master

Created by: greenkeeper[bot]

️ Greenkeeper’s updated Terms of Service will come into effect on April 6th, 2018.

Version 5.0.3 of mocha was just published.

Dependency mocha
Current Version 5.0.2
Type devDependency

The version 5.0.3 is not covered by your current version range.

If you don’t accept this pull request, your project will work just like it did before. However, you might be missing out on a bunch of new features, fixes and/or performance improvements from the dependency update.

It might be worth looking into these changes and trying to get this project onto the latest version of mocha.

If you have a solid test suite and good coverage, a passing build is a strong indicator that you can take advantage of these changes directly by merging the proposed change into your project. If the build fails or you don’t have such unconditional trust in your tests, this branch is a great starting point for you to work on the update.

Release Notes v5.0.3

5.0.3 / 2018-03-06

This patch features a fix to address a potential "low severity" ReDoS vulnerability in the diff package (a dependency of Mocha).

🔒 Security Fixes

🔩 Other

Commits

The new version differs by 6 commits.

  • da6e5c9 Release v5.0.3
  • 70d9262 update CHANGELOG.md for v5.0.3 [ci skip]
  • aaaa5ab fix: ReDoS vuln in mocha@5.0.2 › diff@3.3.1 (#3266)
  • 8df5727 Tidies up code after review
  • 660bccc adds unit tests covering Base.generateDiff
  • bdcb3c3 exposes generateDiff function from base reporter

See the full diff

FAQ and help

There is a collection of frequently asked questions. If those don’t help, you can always ask the humans behind Greenkeeper.

Your Greenkeeper bot 🌴