Update chai 4.2.0 → 4.3.10 (minor)

[depfu]

Here is everything you need to know about this update. Please take a good look at what changed and the test results before merging this pull request.

What changed?

✳️ chai (4.2.0 → 4.3.10) · Repo · Changelog

Release Notes

4.3.10

This release simply bumps all dependencies to their latest non-breaking versions.

What's Changed

• upgrade all dependencies by @keithamus in #1540

Full Changelog: v4.3.9...v4.3.10

4.3.9

Upgrade dependencies.

This release upgrades dependencies to address CVE-2023-43646 where a large function name can cause "catastrophic backtracking" (aka ReDOS attack) which can cause the test suite to hang.

Full Changelog: v4.3.8...v4.3.9

4.3.8

What's Changed

• 4.x.x: Fix link to commit logs on GitHub by @bugwelle in #1487
• build(deps): bump socket.io-parser from 4.0.4 to 4.0.5 by @dependabot in #1488
• Small typo in test.js by @mavaddat in #1459
• docs: specify return type of objDisplay by @scarf005 in #1490
• Update CONTRIBUTING.md by @matheus-rodrigues00 in #1521
• Fix: update exports.version to current version by @peanutenthusiast in #1534

New Contributors

• @bugwelle made their first contribution in #1487
• @mavaddat made their first contribution in #1459
• @scarf005 made their first contribution in #1490
• @matheus-rodrigues00 made their first contribution in #1521
• @peanutenthusiast made their first contribution in #1534

Full Changelog: v4.3.7...v4.3.8

4.3.7

What's Changed

• fix: deep-eql bump package to support symbols comparison by @snewcomer in #1483

Full Changelog: v4.3.6...v4.3.7

4.3.6

Update loupe to 2.3.1

4.3.5

• build chaijs fca5bb1
• build(deps-dev): bump codecov from 3.1.0 to 3.7.1 (#1446) 747eb4e
• fix package.json exports 022c2fa
• fix: package.json - deprecation warning on exports field (#1400) 5276af6
• feat: use chaijs/loupe for inspection (#1401) (#1407) c8a4e00

v4.3.4...v4.3.5

4.3.4

This fixes broken inspect behavior with bigints (#1321) (#1383) thanks @vapier

4.3.3

This reintroduces Assertion as an export in the mjs file. See #1378 & #1375

4.3.1

This releases fixed an engine incompatibility with 4.3.0

The 4.x.x series of releases will be compatible with Node 4.0. Please report any errors found in Node 4 as bugs, and they will be fixed.

The 5.x.x series, when released, will drop support for Node 4.0

This fix also ensures pathval is updated to 1.1.1 to fix CVE-2020-7751

4.3.0

This is a minor release.

Not many changes have got in since the last release but this one contains a very important change (#1257) which will allow jest users to get better diffs. From this release onwards, jest users will be able to see which operator was used in their diffs. The operator is a property of the AssertionError thrown when assertions fail. This flag indicates what kind of comparison was made.

This is also an important change for plugin maintainers. Plugin maintainers will now have access to the operator flag, which they can have access to through an utilmethod calledgetOperator`.

Thanks to all the amazing people that contributed to this release.

New Features

• Allow contain.oneOf to take an array of possible values (@voliva)
• Adding operator attribute to assertion error (#1257) (@rpgeeganage)
• The closeTo error message will now inform the user when a delta is required (@eouw0o83hf)

Docs

• Add contains flag to oneOf documentation (@voliva)

Tests

• Make sure that useProxy config is checked in overwriteProperty (@vieiralucas)
• Add tests for contain.oneOf (@voliva )

Chores

• Update mocha to version 6.1.4
• Add node v10 and v12 to ci (@vieiralucas)
• Drop support for node v4, v6 and v9 (@vieiralucas)
• Fix sauce config for headless chrome (@meeber)
• Update dev dependencies (@meeber)
• Removed phantomjs dependency (#1204)

Does any of this look wrong? Please let us know.

Commits

See the full diff on Github. The new version differs by 73 commits:

• 4.3.10
• upgrade all dependencies (#1540)
• 4.3.9
• make
• upgrade deps
• 4.3.8
• build
• Fix: update exports.version to current version (#1534)
• Update CONTRIBUTING.md (#1521)
• docs: specify return type of objDisplay (#1490)
• test: fix typo in test.js (#1459)
• build(deps): bump socket.io-parser from 4.0.4 to 4.0.5 (#1488)
• chore: 4.x.x: Fix link to commit logs on GitHub (#1487)
• build
• 4.3.7
• fix: deep-eql bump package to support symbols comparison (#1483)
• 4.3.6
• build chaijs
• fix: use loupe@^2.3.1
• 4.3.5
• build chaijs
• build(deps-dev): bump codecov from 3.1.0 to 3.7.1 (#1446)
• fix package.json exports
• fix: package.json - deprecation warning on exports field (#1400)
• feat: use chaijs/loupe for inspection (#1401) (#1407)
• 4.3.4
• fix: support inspecting bigints (#1321) (#1383)
• chai@4.3.3
• export chai.Assertion (#1378)
• chai@4.3.2
• Fixed a regression that caused SyntaxErrors on IE 11
• chai@4.3.1
• chore: bump devdeps
• fix: package.json - pathval to 1.1.1 (CVE-2020-7751) (#1377)
• fix: bring min node version in line with still supported (#1374)
• docs: add non-nullable modifier to return type of functions never returning null (#1322)
• feat: add exists alias (#1227)
• docs: correct doesNotDecreaseBy name (#1285) (#1286)
• feat: add extra aliases for 'most' and 'least' (#1319)
• feat: add `also` language chain (#1324)
• feat: add "deep" flag in oneOf (#1334)
• build: drop test for IE10 (#1353)
• docs: fix missing arguments in `increasesButNotBy` (#1361)
• docs: fix JSDoc identation (#1355)
• chai@4.3.0
• chore: npm audit fix
• Fix JSDoc name (#1354)
• fix: unbox BigInt primitives in shouldGetter (#1349)
• test: replaced arrow function for IE support (#1348)
• chore(funding): display sponsor button for open collective (#1346)
• feat: add Node.js ESM entry point with named and default exports (#1340)
• docs: add missing apostrophes (#1344)
• docs: add --save-dev to npm install command (#1289)
• docs: Node version >=8 in README (#1306)
• test: The Buffer() and new Buffer() constructors are deprecated (#1305)
• feat: improve include error message (#1273)
• Merge pull request #1242 from voliva/contains-oneOf
• docs(oneOf): Add contains flag to oneOf documentation
• feat(oneOf): expect(value).to.contain.oneOf([])
• Adding operator attribute to assertion error (#1257)
• chore(package): update lockfile package-lock.json
• chore(package): update mocha to version 6.1.4
• test: make sure that useProxy config is checked in overwriteProperty
• chore: add node v10 and v12 to ci
• chore: drop support for node v4, v6 and v9
• Merge pull request #1248 from eouw0o83hf/master
• Include some missed some test files
• Add delta message to closeTo() error
• test(oneOf): Add failing tests for contain.oneOf
• Merge pull request #1216 from chaijs/fix-build
• chore: fix sauce config for headless chrome
• chore: update dev dependencies
• chore: Removed phantomjs dependency (#1204)

---

Depfu will automatically keep this PR conflict-free, as long as you don't add any commits to this branch yourself. You can also trigger a rebase manually by commenting with @depfu rebase.

All Depfu comment commands

@​depfu rebase

Rebases against your default branch and redoes this update

@​depfu recreate

Recreates this PR, overwriting any edits that you've made to it

@​depfu merge

Merges this PR once your tests are passing and conflicts are resolved

@​depfu cancel merge

Cancels automatic merging of this PR

@​depfu close

Closes this PR and deletes the branch

@​depfu reopen

Restores the branch and reopens this PR (if it's closed)

@​depfu pause

Ignores all future updates for this dependency and closes this PR

@​depfu pause [minor|major]

Ignores all future minor/major updates for this dependency and closes this PR

@​depfu resume

Future versions of this dependency will create PRs again (leaves this PR as is)