Skip to content

chore(deps): update jest monorepo #162

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

chore(deps): update jest monorepo #162

wants to merge 1 commit into from

Conversation

renovate[bot]
Copy link

@renovate renovate bot commented May 31, 2023
edited
Loading

This PR contains the following updates:

Package Change Age Confidence
@types/jest (source) 29.5.1 -> 29.5.14 age confidence
jest (source) 29.5.0 -> 29.7.0 age confidence

Release Notes

jestjs/jest (jest)

v29.7.0

Compare Source

Features
  • [create-jest] Add npm init / yarn create initialiser for Jest projects (#​14465)
  • [jest-validate] Allow deprecation warnings for unknown options (#​14499)
Fixes
  • [jest-resolver] Replace unmatched capture groups in moduleNameMapper with empty string instead of undefined (#​14507)
  • [jest-snapshot] Allow for strings as well as template literals in inline snapshots (#​14465)
  • [@jest/test-sequencer] Calculate test runtime if perStats.duration is missing (#​14473)
Performance
  • [@jest/create-cache-key-function] Cache access of NODE_ENV and BABEL_ENV (#​14455)
Chore & Maintenance
  • [jest-cli] Move internal config initialisation logic to the create-jest package (#​14465)

v29.6.4

Compare Source

Fixes

  • [jest-core] Fix typo in scheduleAndRun performance marker (#​14434)
  • [jest-environment-node] Make sure atob and btoa are writeable in Node 20 (#​14446)
  • [jest-worker] Additional error wrapper for parentPort.postMessage to fix unhandled DataCloneError. (#​14437)

New Contributors

Full Changelog: jestjs/jest@v29.6.3...v29.6.4

v29.6.3

Compare Source

Fixes
  • [expect, @​jest/expect-utils] ObjectContaining support sumbol as key (#​14414)
  • [expect] Remove @types/node from dependencies (#​14385)
  • [jest-core] Use workers in watch mode by default to avoid crashes (#​14059 & #​14085).
  • [jest-reporters] Update istanbul-lib-instrument dependency to v6. (#​14401)
  • [jest-mock] Revert #​13692 as it was a breaking change (#​14429)
  • [jest-mock] Revert #​13866 as it was a breaking change (#​14429)
  • [jest-mock] Revert #​13867 as it was a breaking change (#​14429)
  • [@jest/reporters] Marks Reporter's hooks as optional (#​14433)
  • [jest-runtime] Fix dynamic ESM import module bug when loaded module through jest.isolateModulesAsync (#​14397)
Chore & Maintenance
  • [jest-changed-files, jest-circus, jest-console, @​jest/core, @​jest/runtime, @​jest/transform] Use invariant and notEmpty from jest-util rather than own internal (#​14366)

v29.6.2

Compare Source

Fixes

  • [jest-circus] Fix snapshot matchers in concurrent tests when nr of tests exceeds maxConcurrency (#​14335)
  • [@jest/core] When running global setup and teardown, do not try to change the message property of the thrown error object when the message property is unwritable (#​14113)
  • [jest-snapshot] Move @types/prettier from dependencies to devDependencies (#​14328)
  • [jest-snapshot] Throw an explicit error if Prettier v3 is used (#​14367)
  • [jest-reporters] Add "skipped" and "todo" symbols to Github Actions Reporter (#​14309)

Chore & Maintenance

  • [@jest/core] Use pluralize from jest-util rather than own internal (#​14322)

New Contributors

Full Changelog: jestjs/jest@v29.6.1...v29.6.2

v29.6.1

Compare Source

Fixes

Full Changelog: jestjs/jest@v29.6.0...v29.6.1

v29.6.0

Compare Source

Features

  • [jest-circus, jest-snapshot] Add support for snapshot matchers in concurrent tests (#​14139)
  • [jest-cli] Include type definitions to generated config files (#​14078)
  • [jest-snapshot] Support arrays as property matchers (#​14025)
  • [jest-core, jest-circus, jest-reporter, jest-runner] Added support for reporting about start individual test cases using jest-circus (#​14174)

Fixes

  • [jest-circus] Prevent false test failures caused by promise rejections handled asynchronously (#​14110)
  • [jest-config] Handle frozen config object (#​14054)
  • [jest-config] Allow coverageDirectory and collectCoverageFrom in project config (#​14180)
  • [jest-core] Always use workers in watch mode to avoid crashes (#​14059).
  • [jest-environment-jsdom, jest-environment-node] Fix assignment of customExportConditions via testEnvironmentOptions when custom env subclass defines a default value (#​13989)
  • [jest-matcher-utils] Fix copying value of inherited getters (#​14007)
  • [jest-mock] Tweak typings to allow jest.replaceProperty() replace methods (#​14008)
  • [jest-mock] Improve user input validation and error messages of spyOn and replaceProperty methods (#​14087)
  • [jest-runtime] Bind jest.isolateModulesAsync to this (#​14083)
  • [jest-runtime] Forward wrapperLength to the Script constructor as columnOffset for accurate debugging (#​14148)
  • [jest-runtime] Guard _isMockFunction access with in (#​14188)
  • [jest-snapshot] Fix a potential bug when not using prettier and improve performance (#​14036)
  • [@jest/transform] Do not instrument .json modules (#​14048)
  • [jest-worker] Restart a shut down worker before sending it a task (#​14015)

Chore & Maintenance

  • [*] Update semver dependency to get vulnerability fix (#​14262)
  • [docs] Updated documentation for the --runTestsByPath CLI command (#​14004)
  • [docs] Updated documentation regarding the synchronous fallback when asynchronous code transforms are unavailable (#​14056)
  • [docs] Update jest statistics of use and downloads in website Index.

New Contributors

Full Changelog: jestjs/jest@v29.5.0...v29.6.0

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot changed the title chore(deps): update dependency @types/jest to v29.5.2 chore(deps): update jest monorepo Jul 4, 2023
@renovate renovate bot force-pushed the renovate/jest-monorepo branch 3 times, most recently from 558d5c2 to 8c3c66e Compare July 10, 2023 20:42
@renovate renovate bot force-pushed the renovate/jest-monorepo branch from 8c3c66e to afb91c1 Compare July 27, 2023 10:46
@renovate renovate bot changed the title chore(deps): update jest monorepo chore(deps): update dependency @types/jest to v29.5.3 Aug 21, 2023
@renovate renovate bot changed the title chore(deps): update dependency @types/jest to v29.5.3 chore(deps): update dependency @types/jest to v29.5.4 Aug 22, 2023
@renovate renovate bot force-pushed the renovate/jest-monorepo branch from afb91c1 to 591b264 Compare August 22, 2023 20:37
@renovate renovate bot changed the title chore(deps): update dependency @types/jest to v29.5.4 chore(deps): update jest monorepo Aug 27, 2023
@renovate renovate bot force-pushed the renovate/jest-monorepo branch from 591b264 to b2f0726 Compare August 27, 2023 08:16
@renovate renovate bot force-pushed the renovate/jest-monorepo branch 2 times, most recently from 68eb731 to f4e742d Compare September 15, 2023 22:54
@renovate renovate bot force-pushed the renovate/jest-monorepo branch from f4e742d to 92d8ce2 Compare October 18, 2023 09:09
@renovate renovate bot force-pushed the renovate/jest-monorepo branch from 92d8ce2 to a2e02a8 Compare October 30, 2023 21:33
@renovate renovate bot force-pushed the renovate/jest-monorepo branch from a2e02a8 to c60ff07 Compare November 7, 2023 23:11
@renovate renovate bot force-pushed the renovate/jest-monorepo branch 2 times, most recently from fd9a540 to 4507c17 Compare November 22, 2023 04:07
@renovate renovate bot force-pushed the renovate/jest-monorepo branch from 4507c17 to ad7d2ce Compare December 6, 2023 03:57
@renovate renovate bot force-pushed the renovate/jest-monorepo branch from ad7d2ce to f99fadc Compare February 1, 2024 18:39
@renovate renovate bot force-pushed the renovate/jest-monorepo branch from f99fadc to a2cd47f Compare September 12, 2024 17:12
@socket-security Socket Security
Copy link

socket-security bot commented Sep 12, 2024
edited
Loading

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff Package Supply Chain
Security		 Vulnerability Quality Maintenance License
Addedform-data@​4.0.0992510089100
Added@​babel/​traverse@​7.21.5100257996100
Added@​nrwl/​nx-darwin-arm64@​15.9.41001003884100
Added@​nrwl/​nx-darwin-x64@​15.9.41001003884100
Added@​nrwl/​nx-linux-arm-gnueabihf@​15.9.41001003884100
Added@​nrwl/​nx-linux-arm64-gnu@​15.9.41001003884100
Added@​nrwl/​nx-linux-arm64-musl@​15.9.41001003884100
Added@​nrwl/​nx-linux-x64-gnu@​15.9.41001003884100
Added@​nrwl/​nx-linux-x64-musl@​15.9.41001003884100
Added@​nrwl/​nx-win32-arm64-msvc@​15.9.41001003884100
Added@​nrwl/​nx-win32-x64-msvc@​15.9.41001003884100
Addedfs-constants@​1.0.01001005677100
Added@​types/​parse-json@​4.0.01001005878100
Updatedjest-regex-util@​29.4.3 ⏵ 29.6.31001006286100
Added@​babel/​plugin-syntax-async-generators@​7.8.41001006382100
Added@​babel/​plugin-syntax-bigint@​7.8.31001006382100
Added@​babel/​plugin-syntax-import-meta@​7.10.41001006382100
Added@​babel/​plugin-syntax-json-strings@​7.8.31001006382100
Added@​babel/​plugin-syntax-logical-assignment-operators@​7.10.41001006382100
Added@​babel/​plugin-syntax-nullish-coalescing-operator@​7.8.31001006382100
Added@​babel/​plugin-syntax-numeric-separator@​7.10.41001006382100
Added@​babel/​plugin-syntax-object-rest-spread@​7.8.31001006382100
Added@​babel/​plugin-syntax-optional-catch-binding@​7.8.31001006382100
Added@​babel/​plugin-syntax-optional-chaining@​7.8.31001006382100
Added@​jest/​globals@​29.7.01001006396100
Added@​babel/​plugin-syntax-class-properties@​7.12.131001006382100
Added@​babel/​plugin-syntax-top-level-await@​7.14.51001006382100
Added@​jest/​source-map@​29.6.31001006488100
Added@​babel/​plugin-syntax-jsx@​7.21.41001006591100
Addedcollect-v8-coverage@​1.0.11001006677100
Addedjest-resolve-dependencies@​29.7.01001006696100
Addedjest-environment-node@​29.7.01001006695100
Added@​jest/​expect@​29.7.01001006696100
See 130 more rows in the dashboard

View full report

@renovate renovate bot force-pushed the renovate/jest-monorepo branch from a2cd47f to 2834a45 Compare October 23, 2024 06:04
@renovate renovate bot force-pushed the renovate/jest-monorepo branch 2 times, most recently from ceac11d to c1dd4e4 Compare August 13, 2025 17:37
@renovate renovate bot force-pushed the renovate/jest-monorepo branch from c1dd4e4 to 208a9c8 Compare August 19, 2025 15:05
@renovate renovate bot force-pushed the renovate/jest-monorepo branch from 208a9c8 to 34b2095 Compare August 31, 2025 09:55
@renovate renovate bot force-pushed the renovate/jest-monorepo branch from 34b2095 to 2f13381 Compare September 25, 2025 14:33
@socket-security Socket Security
Copy link

Warning

Review the following alerts detected in dependencies.

According to your organization's Security Policy, it is recommended to resolve "Warn" alerts. Learn more about Socket for GitHub.

Action Severity Alert  (click "▶" to expand/collapse)
Warn Critical
@babel/[email protected] has a Critical CVE.

CVE: GHSA-67hx-6x53-jw92 Babel vulnerable to arbitrary code execution when compiling specifically crafted malicious code (CRITICAL)

Affected versions: < 7.23.2; >= 8.0.0-alpha.0 < 8.0.0-alpha.4

Patched version: 7.23.2

From: yarn.locknpm/@babel/[email protected]

ℹ Read more on: This package | This alert | What is a critical CVE?

Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at [email protected].

Suggestion: Remove or replace dependencies that include known critical CVEs. Consumers can use dependency overrides or npm audit fix --force to remove vulnerable dependencies.

Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment @SocketSecurity ignore npm/@babel/[email protected]. You can also ignore all packages with @SocketSecurity ignore-all. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

Warn Critical
[email protected] has a Critical CVE.

CVE: GHSA-fjxv-7rqg-78g4 form-data uses unsafe random function in form-data for choosing boundary (CRITICAL)

Affected versions: < 2.5.4; >= 3.0.0 < 3.0.4; >= 4.0.0 < 4.0.4

Patched version: 4.0.4

From: yarn.locknpm/[email protected]

ℹ Read more on: This package | This alert | What is a critical CVE?

Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at [email protected].

Suggestion: Remove or replace dependencies that include known critical CVEs. Consumers can use dependency overrides or npm audit fix --force to remove vulnerable dependencies.

Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment @SocketSecurity ignore npm/[email protected]. You can also ignore all packages with @SocketSecurity ignore-all. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

View full report

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants