Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Snyk] Upgrade karma from 0.12.37 to 0.13.22 #1

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Conversation

snyk-bot
Copy link

Snyk has created this PR to upgrade karma from 0.12.37 to 0.13.22.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
  • The recommended version is 33 versions ahead of your current version.
  • The recommended version was released 4 years ago, on 2016-03-08.

The recommended version fixes:

Severity Issue Exploit Maturity
Denial of Service (DoS)
npm:ws:20171108
Mature
Denial of Service (DoS)
npm:ws:20160624
No Known Exploit
Regular Expression Denial of Service (DoS)
npm:negotiator:20160616
No Known Exploit
Regular Expression Denial of Service (ReDoS)
npm:fresh:20170908
No Known Exploit
Uninitialized Memory Exposure
npm:base64-url:20180512
Mature
Insecure Randomness
npm:ws:20160920
No Known Exploit
Remote Memory Exposure
npm:ws:20160104
No Known Exploit
Regular Expression Denial of Service (DoS)
npm:uglify-js:20151024
No Known Exploit
Arbitrary Code Injection
SNYK-JS-MORGAN-72579
Proof of Concept
Uninitialized Memory Exposure
npm:utile:20180614
No Known Exploit
Release notes
Package name: karma
  • 0.13.22 - 2016-03-08

    There are no code changes, just removed a large temp file from the npm package. Thanks to @kasajian for the report.

  • 0.13.21 - 2016-02-12

    Reverts

    • "Merge pull request #1791 from budde377/feature-adding-no-colors-to-run-command" (96ebdc4), closes #1894 #1895
  • 0.13.20 - 2016-02-12

    Bug Fixes

    • runner: Remove null characters from terminal output (3481500), closes #1343
    • invalid characters in the headers on Node 5.6.0 (152337d)
    • Switch all requires from fs to graceful-fs (1e21aaa)
    • Upgrade socket.io to 1.4.5 (2f51a9f)

    Features

    • Allow custom browser names (60ba85f)
    • Do not fail on empty test suite (8004763), closes #926
    • config: Add forceJSONP option (8627d67)
    • launcher: Enable specification of retry-limit (cc5547c), closes #1126
    • logging: Add colors and log-level options to run-command (2d29165)
    • logging: Send color option to server (486c4f3)
    • web-server: Use isbinaryfile for binary file detection (f938a8e), closes #1070
  • 0.13.19 - 2016-01-06

    Bug Fixes

    • server: Handle new socket.io internal format. (3ab78d6), closes #1782
  • 0.13.18 - 2016-01-05

    Bug Fixes

    • preprocessor: Improve handling of failed preprocessors (e726d1c), closes #1521

    Features

    • cli: Add .config/karma.conf.js to the default lookup path (49bf1aa), closes #1387
    • config: Add a clearContext config to prevent clearing of context. (5fc8ee7)
    • config: mime config option support (d562383), closes #1735
  • 0.13.17 - 2016-01-04
    No content.
  • 0.13.16 - 2015-12-24

    Bug Fixes

    • config: corrects spelling in example config template (9fafc60)
    • middleware: Correct spelling of middleware logger name (9e9e7e6)
    • preprocessor: Directory names with dots (4b5e094)
    • test: locale in Expire header (db04cf0), closes #1741

    Features

    • proxy: Allow proxies configuration to be an object (ad94356)
    • proxy: Allow to configure changeOrigin option of http-proxy (ae05ea4), closes #1729
  • 0.13.15 - 2015-11-03

    Bug Fixes

    • eslint: Fix formatting for the new ESLint 1.8.0 (dc1bbab)
  • 0.13.14 - 2015-10-22

    Bug Fixes

    • client: Revert back to old reloading detection (f1c22d6)
    • client: Wait for childwindow to load (c1bb15a)
  • 0.13.13 - 2015-10-22

    Bug Fixes

    • client: Wait for iframe to be loaded (1631474), closes #1652
  • 0.13.12 - 2015-10-22
  • 0.13.11 - 2015-10-14
  • 0.13.10 - 2015-09-21
  • 0.13.9 - 2015-08-11
  • 0.13.8 - 2015-08-06
  • 0.13.7 - 2015-08-05
  • 0.13.6 - 2015-08-05
  • 0.13.5 - 2015-08-04
  • 0.13.4 - 2015-08-04
  • 0.13.3 - 2015-07-22
  • 0.13.2 - 2015-07-17
  • 0.13.1 - 2015-07-16
  • 0.13.0 - 2015-07-15
  • 0.13.0-rc.9 - 2015-07-13
  • 0.13.0-rc.8 - 2015-07-09
  • 0.13.0-rc.7 - 2015-07-08
  • 0.13.0-rc.6 - 2015-06-25
  • 0.13.0-rc.5 - 2015-06-23
  • 0.13.0-rc.4 - 2015-06-04
  • 0.13.0-rc.3 - 2015-05-29
  • 0.13.0-rc.2 - 2015-05-29
  • 0.13.0-rc.1 - 2015-05-27
  • 0.13.0-rc.0 - 2015-05-26
  • 0.12.37 - 2015-06-23
from karma GitHub release notes
Commit messages
Package name: karma
  • fe8d4e2 chore: release v0.13.22
  • a756242 chore: release v0.13.21
  • 823cc48 Merge pull request #1897 from dignifiedquire/fix-reporters
  • 96ebdc4 revert: "Merge pull request #1791 from budde377/feature-adding-no-colors-to-run-command"
  • c6076bd docs(readme): Remove unused badge
  • 99fb861 chore: release v0.13.20
  • 609917d chore: update contributors
  • 26ae115 Merge pull request #1818 from karma-runner/ie
  • dfedc97 test(client): Browserstack tests & more browsers
  • 574271c test(client): Move to assert and add shims
  • 8627d67 feat(config): Add `forceJSONP` option
  • 932b1cc chore(devDeps): Upgrade
  • 159015c Merge pull request #1886 from karma-runner/greenkeeper-glob-7.0.0
  • e697a2a Merge pull request #1883 from karma-runner/greenkeeper-core-js-2.1.0
  • 281d6ff chore(package): update glob to version 7.0.0
  • 6ea456e Merge pull request #1884 from thorn0/node-5-6-fix-dates
  • 152337d fix: invalid characters in the headers on Node 5.6.0
  • f7967f7 chore(package): update core-js to version 2.1.0
  • 9f13b55 Merge pull request #1881 from kentcdodds/pr/prs-welcome
  • 1ffb9a1 chore(docs): Add links to help first-time contributors
  • 19dd824 Merge pull request #1871 from karma-runner/greenkeeper-validate-commit-msg-1.3.0
  • 304eac5 chore(package): update validate-commit-msg to version 1.3.0
  • 17732d5 Merge pull request #1860 from karma-runner/greenkeeper-qunitjs-1.21.0
  • fce10b5 Merge pull request #1862 from karma-runner/greenkeeper-log4js-0.6.31

Compare


Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[//]: # (snyk:metadata:{"dependencies":[{"name":"karma","from":"0.12.37","to":"0.13.22"}],"packageManager":"npm","type":"auto","projectUrl":"https://app.snyk.io/org/saurabharch/project/e1e81c74-a02c-45f7-95d4-9912eb2be8da?utm_source=github&utm_medium=upgrade-pr","projectPublicId":"e1e81c74-a02c-45f7-95d4-9912eb2be8da","env":"prod","prType":"upgrade","vulns":["npm:ws:20171108","npm:ws:20160624","npm:negotiator:20160616","npm:fresh:20170908","npm:base64-url:20180512","npm:ws:20160920","npm:ws:20160104","npm:uglify-js:20151024","SNYK-JS-MORGAN-72579","npm:utile:20180614"],"issuesToFix":[{"issueId":"npm:ws:20171108","severity":"high","title":"Denial of Service (DoS)","exploitMaturity":"mature"},{"issueId":"npm:ws:20160624","severity":"high","title":"Denial of Service (DoS)","exploitMaturity":"no-known-exploit"},{"issueId":"npm:negotiator:20160616","severity":"high","title":"Regular Expression Denial of Service (DoS)","exploitMaturity":"no-known-exploit"},{"issueId":"npm:fresh:20170908","severity":"high","title":"Regular Expression Denial of Service (ReDoS)","exploitMaturity":"no-known-exploit"},{"issueId":"npm:base64-url:20180512","severity":"high","title":"Uninitialized Memory Exposure","exploitMaturity":"mature"},{"issueId":"npm:ws:20160920","severity":"medium","title":"Insecure Randomness","exploitMaturity":"no-known-exploit"},{"issueId":"npm:ws:20160104","severity":"medium","title":"Remote Memory Exposure","exploitMaturity":"no-known-exploit"},{"issueId":"npm:uglify-js:20151024","severity":"medium","title":"Regular Expression Denial of Service (DoS)","exploitMaturity":"no-known-exploit"},{"issueId":"SNYK-JS-MORGAN-72579","severity":"medium","title":"Arbitrary Code Injection","exploitMaturity":"proof-of-concept"},{"issueId":"npm:utile:20180614","severity":"low","title":"Uninitialized Memory Exposure","exploitMaturity":"no-known-exploit"}],"upgrade":["npm:ws:20171108","npm:ws:20160624","npm:negotiator:20160616","npm:fresh:20170908","npm:base64-url:20180512","npm:ws:20160920","npm:ws:20160104","npm:uglify-js:20151024","SNYK-JS-MORGAN-72579","npm:utile:20180614"],"upgradeInfo":{"versionsDiff":33,"publishedDate":"2016-03-08T21:52:22.980Z"},"templateVariants":[],"hasFixes":true,"isMajorUpgrade":false,"isBreakingChange":false})

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment