[Snyk] Upgrade mocha from 6.0.2 to 6.2.2

[snyk-bot]

Snyk has created this PR to upgrade mocha from 6.0.2 to 6.2.2.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 8 versions ahead of your current version.
• The recommended version was released 6 months ago, on 2019-10-18.

The recommended version fixes:

Severity	Issue	Exploit Maturity
	Arbitrary Code Execution SNYK-JS-JSYAML-174129	No Known Exploit
	Denial of Service (DoS) SNYK-JS-JSYAML-173999	No Known Exploit

Release notes

Package name: mocha

• 6.2.2 - 2019-10-18
  

  6.2.2 / 2019-10-18

  🐛 Fixes

  • #4025: Fix duplicate EVENT_RUN_END events upon uncaught exception (@juergba)
  • #4051: Fix "unhide" function in html reporter (browser) (@pec9399)
  • #4063: Fix use of esm in Node.js v8.x (@boneskull)
  • #4033: Fix output when multiple async exceptions are thrown (@juergba)

  📖 Documentation

  • #4046: Site accessibility fixes (@Mia-jeong)
  • #4026: Update docs for custom reporters in browser (@Lindsay-Needs-Sleep)
  • #3971: Adopt new OpenJS Foundation Code of Conduct (@craigtaub)
• 6.2.1 - 2019-09-29
  

  6.2.1 / 2019-09-29

  🐛 Fixes

  • #3955: tty.getWindowSize is not a function inside a "worker_threads" worker (@1999)
  • #3970: remove extraGlobals() (@juergba)
  • #3984: Update yargs-unparser to v1.6.0 (@juergba)
  • #3983: Package 'esm': spawn child-process for correct loading (@juergba)
  • #3986: Update yargs to v13.3.0 and yargs-parser to v13.1.1 (@juergba)

  📖 Documentation

  • #3886: fix styles on mochajs.org (@outsideris)
  • #3966: Remove jsdoc index.html placeholder from eleventy file structure and fix broken link in jsdoc tutorial (@Munter)
  • #3765: Add Matomo to website (@MarioDiaz98)
  • #3947: Clarify effect of .skip() (@oliversalzburg)
• 6.2.0 - 2019-07-18
  

  6.2.0 / 2019-07-18

  🎉 Enhancements

  • #3827: Do not fork child-process if no Node flags are present (@boneskull)
  • #3725: Base reporter store ref to console.log, see mocha/wiki (@craigtaub)

  🐛 Fixes

  • #3960: Don't re-initialize grep option on watch re-run (@geigerzaehler)
  • #3942: Fix "No test files found" Error when file is passed via --file (@gabegorelick)
  • #3914: Modify Mocha constructor to accept options global or globals (@pascalpp)
  • #3894: Fix parsing of config files with _mocha binary (@juergba)
  • #3834: Fix CLI parsing with default values (@boneskull, @juergba)
  • #3831: Fix --timeout/--slow string values and duplicate arguments (@boneskull, @juergba)

  📖 Documentation

  • #3906: Document option to define custom report name for XUnit reporter (@pkuczynski)
  • #3889: Adds doc links for mocha-examples (@craigtaub)
  • #3887: Fix broken links (@toyjhlee)
  • #3841: Fix anchors to configuration section (@trescube)

  🔍 Coverage

  • #3915, #3929: Increase tests coverage for --watch options (@geigerzaehler)

  🔩 Other

  • #3953: Collect test files later, prepares improvements to the --watch mode behavior (@geigerzaehler)
  • #3939: Upgrade for npm audit (@boneskull)
  • #3930: Extract runWatch into separate module (@geigerzaehler)
  • #3922: Add mocha.min.js file to stacktrace filter (@brian-lagerman)
  • #3919: Update CI config files to use Node-12.x (@plroebuck)
  • #3892: Rework reporter tests (@plroebuck)
  • #3872: Rename --exclude to --ignore and create alias (@boneskull)
  • #3963: Hide stacktrace when cli args are missing (@outsideris)
  • #3956: Do not redeclare variable in docs array example (@DanielRuf)
  • #3957: Remove duplicate line-height property in mocha.css (@DanielRuf)
• 6.1.4 - 2019-04-18
  

  6.1.4 / 2019-04-18

  🔒 Security Fixes

  • #3877: Upgrade js-yaml, addressing code injection vulnerability (@bjornstar)
• 6.1.3 - 2019-04-12
  

  6.1.3 / 2019-04-11

  🐛 Fixes

  • #3863: Fix yargs-related global scope pollution (@inukshuk)
  • #3869: Fix failure when installed w/ pnpm (@boneskull)
• 6.1.2 - 2019-04-08
  

  6.1.2 / 2019-04-08

  🐛 Fixes

  • #3867: Re-publish v6.1.1 from POSIX OS to avoid dropped executable flags (@boneskull)
• 6.1.1 - 2019-04-07
  

  6.1.1 / 2019-04-07

  🐛 Fixes

  • #3866: Fix Windows End-of-Line publishing issue (@juergba & @cspotcode)
• 6.1.0 - 2019-04-07
  

  6.1.0 / 2019-04-07

  🔒 Security Fixes

  • #3845: Update dependency "js-yaml" to v3.13.0 per npm security advisory (@plroebuck)

  🎉 Enhancements

  • #3766: Make reporter constructor support optional options parameter (@plroebuck)
  • #3760: Add support for config files with .jsonc extension (@sstephant)

  📠 Deprecations

  These are soft-deprecated, and will emit a warning upon use. Support will be removed in (likely) the next major version of Mocha:

  • #3719: Deprecate this.skip() for "after all" hooks (@juergba)

  🐛 Fixes

  • #3829: Use cwd-relative pathname to load config file (@plroebuck)
  • #3745: Fix async calls of this.skip() in "before each" hooks (@juergba)
  • #3669: Enable --allow-uncaught for uncaught exceptions thrown inside hooks (@givanse)

  and some regressions:

  • #3848: Fix Suite cloning by copying root property (@fatso83)
  • #3816: Guard against undefined timeout option (@boneskull)
  • #3814: Update "yargs" in order to avoid deprecation message (@boneskull)
  • #3788: Fix support for multiple node flags (@aginzberg)

  📖 Documentation

  • mochajs/mocha-examples: New repository of working examples of common configurations using mocha (@craigtaub)
  • #3850: Remove pound icon showing on header hover on docs (@jd2rogers2)
  • #3812: Add autoprefixer to documentation page CSS (@Munter)
  • #3811: Update doc examples "tests.html" (@DavidLi119)
  • #3807: Mocha website HTML tweaks (@plroebuck)
  • #3793: Update config file example ".mocharc.yml" (@cspotcode)

  🔩 Other

  • #3830: Replace dependency "findup-sync" with "find-up" for faster startup (@cspotcode)
  • #3799: Update devDependencies to fix many npm vulnerabilities (@XhmikosR)
• 6.0.2 - 2019-02-25
  

  6.0.2 / 2019-02-25

  🐛 Fixes

  Two more regressions fixed:

  • #3768: Test file paths no longer dropped from mocha.opts (@boneskull)
  • #3767: --require does not break on module names that look like certain node flags (@boneskull)

from mocha GitHub release notes

Commit messages

Package name: mocha

• 843a322 6.2.2
• aec8b02 update CHANGELOG for v6.2.2 [ci skip]
• 7a8b95a npm audit fixes
• cebddf2 Improve reporter documentation for mocha in browser. (#4026)
• 3f7b987 uncaughtException: report more than one exception per test (#4033)
• ee82d38 modify alt text of image from Backers to Sponsors inside Sponsors section in Readme (#4046)
• e9c036c special-case parsing of "require" in unparseNodeArgs(); closes #4035 (#4063)
• 954cf0b Fix HTMLCollection iteration to make unhide function work as expected (#4051)
• 816dc27 uncaughtException: fix double EVENT_RUN_END events (#4025)
• 9650d3f add OpenJS Foundation logo to website (#4008)
• f04b81d Adopt the OpenJSF Code of Conduct (#3971)
• aca8895 Add link checking to docs build step (#3972)
• ef6c820 Release v6.2.1
• 9524978 updated CHANGELOG for v6.2.1 [ci skip]
• dfdb8b3 Update yargs to v13.3.0 (#3986)
• 18ad1c1 treat '--require esm' as Node option (#3983)
• fcffd5a Update yargs-unparser to v1.6.0 (#3984)
• ad4860e Remove extraGlobals() (#3970)
• b269ad0 Clarify effect of .skip() (#3947)
• 1e6cf3b Add Matomo to website (#3765)
• 91b3a54 fix style on mochajs.org (#3886)
• 0e9d8ad tty.getWindowSize is not a function inside a "worker_threads" worker (#3955)
• 48da42e Remove jsdoc index.html placeholder from eleventy file structure and fix broken link in jsdoc tutorial (#3966)
• bd47776 Release v6.2.0

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs