Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Snyk] Upgrade jscodeshift from 0.1.6 to 0.7.0 #1

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

[Snyk] Upgrade jscodeshift from 0.1.6 to 0.7.0 #1

wants to merge 1 commit into from

Conversation

snyk-bot
Copy link

Snyk has created this PR to upgrade jscodeshift from 0.1.6 to 0.7.0.

merge advice

✨What is Merge Advice? We check thousands of dependency upgrade pull requests and CI tests every day to see which upgrades were successfully merged. After crunching this data, we give a recommendation on how safe we think the change is for you to merge without causing issues. Learn more, and share your feedback to help improve this feature. 🙏
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
  • The recommended version is 44 versions ahead of your current version.
  • The recommended version was released 5 months ago, on 2019-12-11.

The recommended version fixes:

Severity Issue Exploit Maturity
Prototype Pollution
SNYK-JS-LODASH-450202		 Proof of Concept
Prototype Pollution
SNYK-JS-LODASH-73638		 No Known Exploit
Regular Expression Denial of Service (ReDoS)
npm:minimatch:20160620		 No Known Exploit
Regular Expression Denial of Service (ReDoS)
SNYK-JS-LODASH-73639		 No Known Exploit
Prototype Pollution
npm:lodash:20180130		 No Known Exploit
Regular Expression Denial of Service (ReDoS)
npm:braces:20180219		 Proof of Concept
Release notes
Package name: jscodeshift
  • 0.7.0 - 2019-12-11

    Added

    Changed

    • Moved from BSD to MIT license

    Fixed

    • No longer throw an error when calling jscodeshift on a non-existent path (#334, @threepointone)
    • Preserve the original file extension in remote files (#317, @samselikoff)
  • 0.6.4 - 2019-04-30

    Changed

    • Allow writing tests in TypeScript (#308)
    • Better handling of .gitingore files: Ignore comments and support \r\n line breaks (#306)
  • 0.6.3 - 2019-01-19

    Fixed

    • Don't throw an error when jscodeshift processes an empty set of files (#295, @skovhus).
    • renameTo should not rename class properties (#296, @henryqdineen).
    • Custom/unknown CLI parameters are parsed as JSON, just like nomnom used to do.
  • 0.6.2 - 2018-12-06

    Changed

    • @babel/register/@babel/preset-env is configured to not transpile any
      language features that the running Node process supports. That means if you use
      features in your transform code supported by the Node version you are running,
      they will be left as is. Most of ES2015 is actually supported since Node v6.
    • Do not transpile object rest/spread in transform code if supported by running
      Node version.

    Fixed

    • Presets and plugins passed to @babel/register are now properly named and
      loaded.
  • 0.6.1 - 2018-12-05

    Added

    • Tranform files can be written in Typescript. If the file extension of the
      transform file is .ts or .tsx, @babel/preset-typescript is used to
      convert them. This requires the --babel option to be set (which it is by
      default). ( #287 , @brieb )

    Changed

    • The preset and plugins for converting the transform file itself via babeljs
      have been updated to work with babel v7. This included removing
      babel-preset-es2015 and babel-preset-stage-1 in favor of
      @babel/preset-env. Only @babel/proposal-class-properties and
      @babel/proposal-object-rest-spread are enabled as experimental features. If
      you want to use other's in your transform file, please create a PR.

    Fixed

    • Typescript parses use @babel/parser instead of Babylon ( #291, @elliottsj )

    Bumped

    • micromatch => v3.1.10, which doesn't (indirectly) depend on randomatic <
      v3 anymore (see #292).
  • 0.6.0 - 2018-12-04

    A bunch of changes to get jscodeshift in a better shape. This is minor version update because important dependencies and parser configurations have changed.

    New

    • New CLI option --parser-config: This option accepts a path to a JSON file and overrides the default options for flow or babylon. This allows you to tweak parser settings (e.g. legacy decorators). (46d250f)
    • New CLI option --stdin: If provided, the list of files/directories is read from stdin. This makes it easier to pass large lists of files. (b6eaa0a)
    • New API in transforms: api.report lets you print arbitrary text to stdout. Useful if another tools consumes jscodeshift's stdout. (c902a00) Example:
    // In the transform
api.report('some data');

    // in stdout
    
REP path/to/file.js some data

    • Support for Typescript source code, via babylon ( #286 ; @brieb). Use --parser=ts or --parser=tsx.

    Improvements

    Fixes

    • JSXElements's hasAttributes method understands value-less Boolean attributes (#277 , @artemruts )
    • More reliable printing to stdout (62b12ad)

    Internal

    • Replaces deprecated nomnom with own implementation (a2becc5)
    • Remove direct dependency on lodash (4701096)
  • 0.5.1 - 2018-06-05

    Bump version to 0.5.1 for publishing

  • 0.5.0 - 2018-03-07

    New

    • Bump recast and babylon to support JSX fragments (#239)
    • Add dynamicImport plugin to babylon parser. (#208)
    • Allow specifying a testName for inline tests (#218)
    • Add some() and every() methods for Collection (#216)

    Fixed/Improved

    • Fix error handling for http (#242)
    • Perf: replace async with neo-async (#241)
    • Fix renameTo renaming React component prop name unexpectedly (#220)
    • Fix renameTo not taking property shorthands into account (#211)
  • 0.4.1 - 2018-02-20

    Bump version to 0.4.1 for publishing

  • 0.4.0 - 2017-12-07

    0.4.0

  • 0.3.32 - 2017-06-20
  • 0.3.31 - 2017-06-13
  • 0.3.30 - 2016-10-25
  • 0.3.29 - 2016-09-30
  • 0.3.28 - 2016-08-15
  • 0.3.27 - 2016-07-29
  • 0.3.26 - 2016-07-18
  • 0.3.25 - 2016-06-23
  • 0.3.24 - 2016-06-22
  • 0.3.23 - 2016-06-22
  • 0.3.22 - 2016-06-20
  • 0.3.21 - 2016-06-20
  • 0.3.20 - 2016-04-24
  • 0.3.19 - 2016-03-27
  • 0.3.18 - 2016-03-18
  • 0.3.17 - 2016-03-17
  • 0.3.16 - 2016-03-15
  • 0.3.15 - 2016-03-15
  • 0.3.14 - 2016-03-09
  • 0.3.13 - 2016-01-25
  • 0.3.12 - 2016-01-07
  • 0.3.11 - 2015-12-19
  • 0.3.10 - 2015-12-07
  • 0.3.9 - 2015-11-18
  • 0.3.8 - 2015-10-21
  • 0.3.7 - 2015-09-03
  • 0.3.6 - 2015-08-21
  • 0.3.5 - 2015-08-12
  • 0.3.4 - 2015-08-06
  • 0.3.3 - 2015-07-31
  • 0.3.2 - 2015-07-30
  • 0.3.1 - 2015-07-30
  • 0.3.0 - 2015-07-28
  • 0.2.0 - 2015-07-21
  • 0.1.6 - 2015-07-16
from jscodeshift GitHub release notes
Commit messages
Package name: jscodeshift

Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@snyk-bot