-
Notifications
You must be signed in to change notification settings - Fork 10.3k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
fix(deps): update e2e-tests to v8 [security] #39090
Open
renovate
wants to merge
1
commit into
master
Choose a base branch
from
renovate/npm-simonsmith-cypress-image-snapshot-vulnerability
base: master
Could not load branches
Branch not found: {{ refName }}
Loading
Could not load tags
Nothing to show
Loading
Are you sure you want to change the base?
Some commits from the old base branch may be removed from the timeline,
and old review comments may become outdated.
Open
fix(deps): update e2e-tests to v8 [security] #39090
renovate
wants to merge
1
commit into
master
from
renovate/npm-simonsmith-cypress-image-snapshot-vulnerability
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
renovate
bot
added
the
topic: automation
Related to Circle CI, Peril, Renovate, scripts/*, Github Workflows, Github Actions, or Slackbot
label
Sep 19, 2024
gatsbot
bot
added
the
status: triage needed
Issue or pull request that need to be triaged and assigned to a reviewer
label
Sep 19, 2024
renovate
bot
force-pushed
the
renovate/npm-simonsmith-cypress-image-snapshot-vulnerability
branch
9 times, most recently
from
September 23, 2024 23:13
135808f
to
c59e3ee
Compare
renovate
bot
force-pushed
the
renovate/npm-simonsmith-cypress-image-snapshot-vulnerability
branch
from
September 27, 2024 22:42
c59e3ee
to
e920315
Compare
renovate
bot
changed the title
fix(deps): update e2e-tests to v8 [security]
fix(deps): update e2e-tests to v9 [security]
Sep 27, 2024
renovate
bot
force-pushed
the
renovate/npm-simonsmith-cypress-image-snapshot-vulnerability
branch
from
September 27, 2024 22:47
e920315
to
e273e9c
Compare
renovate
bot
changed the title
fix(deps): update e2e-tests to v9 [security]
fix(deps): update e2e-tests to v8 [security]
Sep 27, 2024
renovate
bot
force-pushed
the
renovate/npm-simonsmith-cypress-image-snapshot-vulnerability
branch
from
October 1, 2024 22:38
e273e9c
to
ee36adc
Compare
renovate
bot
changed the title
fix(deps): update e2e-tests to v8 [security]
fix(deps): update e2e-tests to v9 [security]
Oct 1, 2024
renovate
bot
force-pushed
the
renovate/npm-simonsmith-cypress-image-snapshot-vulnerability
branch
from
October 1, 2024 22:42
ee36adc
to
daee163
Compare
renovate
bot
changed the title
fix(deps): update e2e-tests to v9 [security]
fix(deps): update e2e-tests to v8 [security]
Oct 1, 2024
renovate
bot
force-pushed
the
renovate/npm-simonsmith-cypress-image-snapshot-vulnerability
branch
from
October 3, 2024 23:50
daee163
to
d271f6b
Compare
renovate
bot
changed the title
fix(deps): update e2e-tests to v8 [security]
fix(deps): update e2e-tests to v9 [security]
Oct 3, 2024
renovate
bot
force-pushed
the
renovate/npm-simonsmith-cypress-image-snapshot-vulnerability
branch
from
October 4, 2024 01:08
d271f6b
to
920b5cc
Compare
renovate
bot
changed the title
fix(deps): update e2e-tests to v9 [security]
fix(deps): update e2e-tests to v8 [security]
Oct 4, 2024
renovate
bot
force-pushed
the
renovate/npm-simonsmith-cypress-image-snapshot-vulnerability
branch
from
October 7, 2024 21:58
920b5cc
to
a770d7e
Compare
renovate
bot
changed the title
fix(deps): update e2e-tests to v8 [security]
fix(deps): update e2e-tests to v9 [security]
Oct 7, 2024
renovate
bot
force-pushed
the
renovate/npm-simonsmith-cypress-image-snapshot-vulnerability
branch
from
October 7, 2024 22:04
a770d7e
to
6b9e57c
Compare
renovate
bot
changed the title
fix(deps): update e2e-tests to v9 [security]
fix(deps): update e2e-tests to v8 [security]
Oct 7, 2024
renovate
bot
force-pushed
the
renovate/npm-simonsmith-cypress-image-snapshot-vulnerability
branch
from
October 7, 2024 22:07
6b9e57c
to
9b5a7cb
Compare
renovate
bot
changed the title
fix(deps): update e2e-tests to v8 [security]
fix(deps): update e2e-tests to v9 [security]
Oct 7, 2024
renovate
bot
force-pushed
the
renovate/npm-simonsmith-cypress-image-snapshot-vulnerability
branch
from
October 8, 2024 00:14
9b5a7cb
to
b5cb8f0
Compare
renovate
bot
force-pushed
the
renovate/npm-simonsmith-cypress-image-snapshot-vulnerability
branch
3 times, most recently
from
November 7, 2024 17:25
3e6c56a
to
2be7a84
Compare
renovate
bot
changed the title
fix(deps): update e2e-tests to v9 [security]
fix(deps): update e2e-tests to v8 [security]
Nov 7, 2024
renovate
bot
force-pushed
the
renovate/npm-simonsmith-cypress-image-snapshot-vulnerability
branch
from
November 7, 2024 18:57
2be7a84
to
40f1b5c
Compare
renovate
bot
changed the title
fix(deps): update e2e-tests to v8 [security]
fix(deps): update e2e-tests to v9 [security]
Nov 7, 2024
renovate
bot
force-pushed
the
renovate/npm-simonsmith-cypress-image-snapshot-vulnerability
branch
from
November 7, 2024 22:46
40f1b5c
to
2a9cb67
Compare
renovate
bot
changed the title
fix(deps): update e2e-tests to v9 [security]
fix(deps): update e2e-tests to v8 [security]
Nov 7, 2024
renovate
bot
force-pushed
the
renovate/npm-simonsmith-cypress-image-snapshot-vulnerability
branch
from
November 8, 2024 08:39
2a9cb67
to
05f6342
Compare
renovate
bot
changed the title
fix(deps): update e2e-tests to v8 [security]
fix(deps): update e2e-tests to v9 [security]
Nov 8, 2024
renovate
bot
force-pushed
the
renovate/npm-simonsmith-cypress-image-snapshot-vulnerability
branch
from
November 8, 2024 09:10
05f6342
to
47ecf4c
Compare
renovate
bot
changed the title
fix(deps): update e2e-tests to v9 [security]
fix(deps): update e2e-tests to v8 [security]
Nov 8, 2024
renovate
bot
force-pushed
the
renovate/npm-simonsmith-cypress-image-snapshot-vulnerability
branch
from
November 18, 2024 14:47
47ecf4c
to
6bd698c
Compare
renovate
bot
changed the title
fix(deps): update e2e-tests to v8 [security]
fix(deps): update e2e-tests to v9 [security]
Nov 18, 2024
renovate
bot
force-pushed
the
renovate/npm-simonsmith-cypress-image-snapshot-vulnerability
branch
from
November 18, 2024 16:35
6bd698c
to
347008c
Compare
renovate
bot
changed the title
fix(deps): update e2e-tests to v9 [security]
fix(deps): update e2e-tests to v8 [security]
Nov 18, 2024
renovate
bot
force-pushed
the
renovate/npm-simonsmith-cypress-image-snapshot-vulnerability
branch
from
November 18, 2024 17:27
347008c
to
0b30db0
Compare
renovate
bot
changed the title
fix(deps): update e2e-tests to v8 [security]
fix(deps): update e2e-tests to v9 [security]
Nov 18, 2024
renovate
bot
force-pushed
the
renovate/npm-simonsmith-cypress-image-snapshot-vulnerability
branch
from
November 18, 2024 19:22
0b30db0
to
0a0dfb8
Compare
renovate
bot
changed the title
fix(deps): update e2e-tests to v9 [security]
fix(deps): update e2e-tests to v8 [security]
Nov 18, 2024
renovate
bot
force-pushed
the
renovate/npm-simonsmith-cypress-image-snapshot-vulnerability
branch
from
November 19, 2024 12:42
0a0dfb8
to
0b15231
Compare
renovate
bot
changed the title
fix(deps): update e2e-tests to v8 [security]
fix(deps): update e2e-tests to v9 [security]
Nov 19, 2024
renovate
bot
force-pushed
the
renovate/npm-simonsmith-cypress-image-snapshot-vulnerability
branch
2 times, most recently
from
November 19, 2024 19:10
218101d
to
f4d4cad
Compare
renovate
bot
changed the title
fix(deps): update e2e-tests to v9 [security]
fix(deps): update e2e-tests to v8 [security]
Nov 19, 2024
renovate
bot
force-pushed
the
renovate/npm-simonsmith-cypress-image-snapshot-vulnerability
branch
from
November 21, 2024 19:18
f4d4cad
to
a610150
Compare
renovate
bot
changed the title
fix(deps): update e2e-tests to v8 [security]
fix(deps): update e2e-tests to v9 [security]
Nov 21, 2024
renovate
bot
force-pushed
the
renovate/npm-simonsmith-cypress-image-snapshot-vulnerability
branch
from
November 21, 2024 23:03
a610150
to
c0572d9
Compare
renovate
bot
changed the title
fix(deps): update e2e-tests to v9 [security]
fix(deps): update e2e-tests to v8 [security]
Nov 21, 2024
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Labels
status: triage needed
Issue or pull request that need to be triaged and assigned to a reviewer
topic: automation
Related to Circle CI, Peril, Renovate, scripts/*, Github Workflows, Github Actions, or Slackbot
0 participants
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
^6.1.1
->^8.0.2
GitHub Vulnerability Alerts
CVE-2023-38695
Impact
It's possible for a user to pass a relative file path for the snapshot name and reach outside of the project directory into the machine running the test. Example:
The above will create an
ignore-relative-dirs.png
three levels upPatches
Fixed in
8.0.2
Workarounds
Validate all the existing uses of
matchImageSnapshot
to ensure correct use of the filename argument. Example:References
https://github.com/simonsmith/cypress-image-snapshot/issues/15
Release Notes
simonsmith/cypress-image-snapshot (@simonsmith/cypress-image-snapshot)
v8.0.2
Compare Source
Bug Fixes
v8.0.1
Compare Source
Bug Fixes
v8.0.0
Compare Source
Bug Fixes
Features
BREAKING CHANGES
Cypress.spec.relative
option togenerate the snapshot directory and changes the folder structure.
It should now match the directory structure found in the
cypress/e2e/
directory
Updating to this change may mean committing new snapshot paths and
removing old ones in your project (especially with component testing)
See the section "Snapshot paths" in the README for more information
v7.0.0
Compare Source
Bug Fixes
Features
BREAKING CHANGES
This is a rewrite of the original library, now with full support for
TypeScript and improved testing.
Notes:
matchImageSnapshot
remains the same, as well as all theimport paths
options
TypeScript types are exported under
@simonsmith/cypress-image-snapshot/types
.These should be used instead of the package on DefinitelyTyped
Removed:
reporter
is not supported in this version.Configuration
📅 Schedule: Branch creation - "" in timezone GMT, Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR was generated by Mend Renovate. View the repository job log.