[Snyk] Upgrade eslint-plugin-prettier from 3.1.0 to 5.1.3

[snyk-io]

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to upgrade eslint-plugin-prettier from 3.1.0 to 5.1.3.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

⚠️ Warning: This PR contains major version upgrade(s), and may be a breaking change.

• The recommended version is 22 versions ahead of your current version.

• The recommended version was released on 6 months ago.

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Arbitrary File Overwrite SNYK-JS-TAR-1536528	95	No Known Exploit
	Arbitrary File Overwrite SNYK-JS-TAR-1536531	95	No Known Exploit
	Improper Verification of Cryptographic Signature SNYK-JS-BROWSERIFYSIGN-6037026	95	No Known Exploit
	Denial of Service (DoS) SNYK-JS-DECODEURICOMPONENT-3149970	95	Proof of Concept
	Cryptographic Issues SNYK-JS-ELLIPTIC-571484	95	Proof of Concept
	Arbitrary Code Execution SNYK-JS-ESLINTUTILS-460220	95	No Known Exploit
	Prototype Poisoning SNYK-JS-QS-3153490	95	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-ACORN-559469	95	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-ACORN-559469	95	No Known Exploit
	Prototype Pollution SNYK-JS-AJV-584908	95	No Known Exploit
	Denial of Service (DoS) SNYK-JS-WS-7266574	95	Proof of Concept
	Arbitrary File Write SNYK-JS-TAR-1579147	95	No Known Exploit
	Arbitrary File Write SNYK-JS-TAR-1579152	95	No Known Exploit
	Arbitrary File Write SNYK-JS-TAR-1579155	95	No Known Exploit
	Prototype Pollution SNYK-JS-JSONSCHEMA-1920922	95	No Known Exploit
	Prototype Pollution SNYK-JS-MIXINDEEP-450212	95	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	95	Proof of Concept
	Prototype Pollution SNYK-JS-SETVALUE-1540541	95	Proof of Concept
	Prototype Pollution SNYK-JS-SETVALUE-450213	95	Proof of Concept
	Prototype Pollution SNYK-JS-SETVALUE-1540541	95	Proof of Concept
	Prototype Pollution SNYK-JS-SETVALUE-450213	95	Proof of Concept
	Arbitrary Code Execution SNYK-JS-STATICEVAL-173693	95	No Known Exploit
	Arbitrary Code Execution SNYK-JS-JSYAML-174129	95	No Known Exploit
	Code Injection SNYK-JS-LODASH-1040724	95	Proof of Concept
	Prototype Pollution SNYK-JS-LODASH-450202	95	Proof of Concept
	Prototype Pollution SNYK-JS-LODASH-567746	95	Proof of Concept
	Prototype Pollution SNYK-JS-LODASH-608086	95	Proof of Concept
	Prototype Pollution SNYK-JS-LODASH-6139239	95	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-BROWSERSLIST-1090194	95	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-COLORSTRING-1082939	95	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-CSSWHAT-3035488	95	Proof of Concept
	Prototype Pollution SNYK-JS-DOTPROP-543489	95	Proof of Concept
	Cryptographic Issues SNYK-JS-ELLIPTIC-1064899	95	No Known Exploit
	Timing Attack SNYK-JS-ELLIPTIC-511941	95	No Known Exploit
	Arbitrary Code Execution SNYK-JS-SAFEREVAL-173772	95	No Known Exploit
	Arbitrary Code Execution SNYK-JS-SAFEREVAL-473029	95	No Known Exploit
	Prototype Pollution SNYK-JS-INI-1048974	95	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-WS-1296835	95	Proof of Concept
	Uncontrolled Resource Consumption ('Resource Exhaustion') SNYK-JS-TAR-6476909	95	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-HOSTEDGITINFO-1088355	95	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-ISSVG-1085627	95	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-ISSVG-1243891	95	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-JSBEAUTIFY-2311652	95	No Known Exploit
	Prototype Pollution SNYK-JS-JSON5-3182856	95	Proof of Concept
	Prototype Pollution SNYK-JS-JSON5-3182856	95	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-MINIMATCH-3050818	95	No Known Exploit
	Prototype Pollution SNYK-JS-MINIMIST-559764	95	Proof of Concept
	Denial of Service (DoS) SNYK-JS-NWSAPI-2841516	95	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHPARSE-1077067	95	Proof of Concept
	Prototype Pollution SNYK-JS-MINIMIST-559764	95	Proof of Concept
	Remote Memory Exposure SNYK-JS-NODEADDONAPI-571001	95	No Known Exploit
	Denial of Service (DoS) SNYK-JS-JSYAML-173999	95	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASH-1018905	95	Proof of Concept
	Regular Expression Denial of Service (ReDoS) npm:debug:20170905	95	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-TAR-1536758	95	No Known Exploit
	Prototype Pollution SNYK-JS-MINIMIST-2429795	95	Proof of Concept
	Prototype Pollution SNYK-JS-MINIMIST-2429795	95	Proof of Concept
	Validation Bypass SNYK-JS-KINDOF-537849	95	Proof of Concept

Release notes

Package name: eslint-plugin-prettier

• 5.1.3 - 2024-01-10
  

  Patch Changes

  • #629 985b33c Thanks @ JounQin! - chore: add package.json into exports map

  Full Changelog: v5.1.2...v5.1.3

• 5.1.2 - 2023-12-24
  

  5.1.2

  Patch Changes

  • #623 8210e44 Thanks @ BPScott! - Add exports mapping to package.json, to allow import eslintPluginRecommended from 'eslint-plugin-prettier/recommended' to work as expected.

    Strictly speaking this is a breaking change as it removes the ability for people to import from "eslint-plugin-prettier/eslint-plugin-prettier.js" and "eslint-plugin-prettier/recommended.js" but the former was never recommended in the first place and the latter has only been available for a few days.

  • #621 2b09e7f Thanks @ JounQin! - feat: support parsing markdown via eslint-mdx natively

    What means the following is unnecessary anymore when using with eslint-mdx/eslint-plugin-mdx!

    [
      {
        files: ["**/*.md"],
        rules: { "prettier/prettier": ["error", { parser: "markdown" }] },
      },
      {
        files: ["**/*.mdx"],
        rules: { "prettier/prettier": ["error", { parser: "mdx" }] },
      },
    ]

  Full Changelog: v5.1.1...v5.1.2

• 5.1.1 - 2023-12-21
  

  5.1.1

  Patch Changes

  • #619 b5c0dc5 Thanks @ JounQin! - chore: skip formatting inline scripts in pug files
• 5.1.0 - 2023-12-19
  

  Minor Changes

  • #616 3856413 Thanks @ BPScott! - Add recommended config for the flat config format.

    If you are using flat config, import the recommended config from eslint-plugin-prettier/recommended. Like the legacy format recommended config, this automatically includes the contents of eslint-config-prettier.

    // eslint.config.js
    const eslintPluginPrettierRecommended = require('eslint-plugin-prettier/recommended');

    module.exports = [
    // Any other config imports go at the top
    eslintPluginPrettierRecommended,
    ];

  Patch Changes

  • #614 5270877 Thanks @ BPScott! - Add meta block to plugin. This improves debugging and cachebusting when using the new flat config

  • #603 a63a570 Thanks @ filiptammergard! - fix: specify eslint-config-prettier as peer dependency

    It's already added to peerDependenciesMeta as optional, which means it should also be specified in peerDependencies.

  New Contributors

  • @ filiptammergard made their first contribution in #594

  Full Changelog: v5.0.1...v5.1.0

• 5.0.1 - 2023-10-11
  

  What's Changed

  • fix: parserPath type might be undefined on Eslint Flat Config by @ krist7599555 in #588

  New Contributors

  • @ krist7599555 made their first contribution in #588

  Full Changelog: v5.0.0...v5.0.1

• 5.0.0 - 2023-07-11
  

  What's Changed

  • feat!: bump eslint, node and prettier versions, add types support by @ JounQin in #508
  • fix: add missing dependency synckit by @ fisker in #548
  • fix: compatibility with prettier@3 without plugins by @ auvred in #564

  New Contributors

  • @ auvred made their first contribution in #564

  Full Changelog: v4.2.1...v5.0.0

• 5.0.0-alpha.2 - 2023-07-06
• 5.0.0-alpha.1 - 2023-03-10
• 5.0.0-alpha.0 - 2022-09-02
  
  • drop Node v12 - #488
  • drop ESLint v7 - #488
  • improve jsdoc inside, generate .d.ts typings - #509
  • docs: improve why usePrettierrc option is needed
  • upgrade to prettier v3
• 4.2.1 - 2022-06-30
  

  4.2.1

  Patch Changes

  • #485 5736ed5 Thanks @ JounQin! - chore: reuse prettierRcOptions instead of resolveConfig again
• 4.2.0 - 2022-06-30
  

  4.2.0

  Minor Changes

  • #483 7bd70b6 Thanks @ JounQin! - feat: support svelte out of box

    close #472, close #482

    We recommend to use eslint-plugin-svelte instead of eslint-plugin-svelte3.

• 4.1.0 - 2022-06-27
  

  v4.1.0 (2022-06-27)

  • feat: skip processing code blocks on specific languages like stylelint-prettier (#415) (52eec48)
  • build(deps): Bump minimist from 1.2.5 to 1.2.6 (#464) (42bfe88)
  • build(deps-dev): Bump graphql from 15.5.1 to 15.7.2 (#442) (0158640)
  • build(deps-dev): Bump @ graphql-eslint/eslint-plugin from 2.3.0 to 2.4.0 (#444) (4bcaca2)
  • chore(CI): add tests for ESLint 8 (#428) (f3713be)
  • README.md: HTTP => HTTPS (#443) (44e1478)
• 4.0.0 - 2021-08-30
• 3.4.1 - 2021-08-20
• 3.4.0 - 2021-04-15
• 3.3.1 - 2021-01-04
• 3.3.0 - 2020-12-13
• 3.2.0 - 2020-12-03
• 3.1.4 - 2020-06-14
• 3.1.3 - 2020-04-13
• 3.1.2 - 2019-12-15
• 3.1.1 - 2019-09-18
• 3.1.0 - 2019-05-11

from eslint-plugin-prettier GitHub release notes

---

Important

• Warning: This PR contains a major version upgrade, and may be a breaking change.
• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.
• Max score is 1000. Note that the real score may have changed since the PR was raised.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[google-cla]

Thanks for your pull request! It looks like this may be your first contribution to a Google open source project. Before we can look at your pull request, you'll need to sign a Contributor License Agreement (CLA).

View this failed invocation of the CLA check for more information.

For the most up to date status, view the checks section at the bottom of the pull request.