[Snyk] Upgrade sinon from 15.0.4 to 15.2.0

[MaxMood96]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade sinon from 15.0.4 to 15.2.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 4 versions ahead of your current version.
• The recommended version was released 3 months ago, on 2023-06-20.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-WORDWRAP-3149973	482/1000 Why? Proof of Concept exploit, CVSS 7.5	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: sinon

• 15.2.0 - 2023-06-20
  

  15.2.0

• 15.1.2 - 2023-06-12
  

  15.1.2

• 15.1.1 - 2023-06-12
  

  15.1.1

• 15.1.0 - 2023-05-18
  

  15.1.0

• 15.0.4 - 2023-04-20
  

  15.0.4

from sinon GitHub release notes

Commit messages

Package name: sinon

• c97f511 15.2.0
• 11fe43c lockfile update
• 66b0081 Use fake-timers v10.1.0 re-released as v10.3.0
• a79ccae Support callable instances (Use @mswjs/interceptors for mocking - WIP nock/nock#2517)
• d220c99 fix: bundling compatibility with webpack@5 (Facing Configuration Errors While Using nock with react-query in a vitest Environment nock/nock#2519)
• b4f868d 15.1.2
• 02b73ae Update lock file after removing node_modules ...
• 0720b2f 15.1.1
• 2e4918d Update lock file
• 194fc2e Change fake-timers version to target the one containing the 'jump' feature
• 05f05ac docs: Remove threw(obj) from docs (chore(deps-dev): bump chai from 4.3.7 to 4.3.8 nock/nock#2513)
• 7e13966 15.1.0
• 79e719f Ensure we use a fake-timers version with clock.jump
• f096abf fix (chore(deps-dev): bump eslint-plugin-import from 2.28.0 to 2.28.1 nock/nock#2514): only force new or inherited descriptors to be configurable (chore(deps-dev): bump typescript from 5.1.6 to 5.2.2 nock/nock#2515)
• b2a4df5 Add docs for clock.jump method (chore(deps-dev): bump eslint-config-prettier from 8.9.0 to 9.0.0 nock/nock#2512)
• fb6e695 Bump nokogiri from 1.13.10 to 1.14.3
• 53e287f Bump yaml from 2.2.1 to 2.2.2 (fix: revert #2497 (nock.removeInterceptor can remove the wrong Intercept) nock/nock#2510)
• 100991f avoid conflicts on releases branch

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[stale]

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. We try to do our best, but nock is maintained by volunteers and there is only so much we can do at a time. Thank you for your contributions.