[Snyk] Upgrade eslint from 7.4.0 to 7.29.0

[snyk-bot]

Snyk has created this PR to upgrade eslint from 7.4.0 to 7.29.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 27 versions ahead of your current version.
• The recommended version was released 24 days ago, on 2021-06-18.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Prototype Pollution SNYK-JS-Y18N-1021887	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SSRI-1246392	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SSRI-1085630	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
	Prototype Pollution SNYK-JS-LODASH-590103	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
	Command Injection SNYK-JS-LODASH-1040724	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Prototype Pollution SNYK-JS-INI-1048974	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Arbitrary Code Injection SNYK-JS-UNDERSCORE-1080984	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Regular Expression Denial of Service (ReDoS ) SNYK-JS-MARKED-584281	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASH-1018905	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Cryptographic Issues SNYK-JS-ELLIPTIC-1064899	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: eslint

• 7.29.0 - 2021-06-18
  
  • bfbfe5c New: Add only to RuleTester (refs eslint/rfcs#73) (#14677) (Brandon Mills)
  • c2cd7b4 New: Add ESLint#getRulesMetaForResults() (refs #13654) (#14716) (Nicholas C. Zakas)
  • eea7e0d Chore: remove duplicate code (#14719) (Nitin Kumar)
  • 6a1c7a0 Fix: allow fallthrough comment inside block (fixes #14701) (#14702) (Kevin Gibbons)
  • a47e5e3 Docs: Add Mega-Linter to the list of integrations (#14707) (Nicolas Vuillamy)
  • 353ddf9 Chore: enable reportUnusedDisableDirectives in eslint-config-eslint (#14699) (薛定谔的猫)
  • 757c495 Chore: add some rules to eslint-config-eslint (#14692) (薛定谔的猫)
  • c93a222 Docs: fix a broken link (#14697) (Sam Chen)
  • 655c118 Sponsors: Sync README with website (ESLint Jenkins)
  • e2bed2e Sponsors: Sync README with website (ESLint Jenkins)
  • 8490fb4 Sponsors: Sync README with website (ESLint Jenkins)
  • ddbe877 Sponsors: Sync README with website (ESLint Jenkins)
• 7.28.0 - 2021-06-04
  
  • 1237705 Upgrade: @ eslint/eslintrc to 0.4.2 (#14672) (Milos Djermanovic)
  • 123fb86 Docs: Add Feedback Needed triage description (#14670) (Nicholas C. Zakas)
  • c545163 Update: support multiline /eslint-env/ directives (fixes #14652) (#14660) (薛定谔的猫)
  • 8d1e75a Upgrade: glob-parent version in package.json (#14658) (Hamza Najeeb)
  • 1f048cb Fix: no-implicit-coercion false positive with String() (fixes #14623) (#14641) (Milos Djermanovic)
  • d709abf Chore: fix comment location in no-unused-vars (#14648) (Milos Djermanovic)
  • e44ce0a Fix: no-duplicate-imports allow unmergeable (fixes #12758, fixes #12760) (#14238) (Soufiane Boutahlil)
  • bb66a3d New: add getPhysicalFilename() method to rule context (fixes #11989) (#14616) (Nitin Kumar)
  • 2e43dac Docs: fix no-sequences example (#14643) (Nitin Kumar)
  • 958ff4e Docs: add note for arrow functions in no-seq rule (#14578) (Nitin Kumar)
  • e4f111b Fix: arrow-body-style crash with object pattern (fixes #14633) (#14635) (Milos Djermanovic)
  • ec28b5a Chore: upgrade eslint-plugin-eslint-plugin (#14590) (薛定谔的猫)
  • 85a2725 Docs: Update README team and sponsors (ESLint Jenkins)
• 7.27.0 - 2021-05-22
  
  • 2c0868c Chore: merge all html formatter files into html.js (#14612) (Milos Djermanovic)
  • 9e9b5e0 Update: no-unused-vars false negative with comma operator (fixes #14325) (#14354) (Nitin Kumar)
  • afe9569 Chore: use includes instead of indexOf (#14607) (Mikhail Bodrov)
  • c0f418e Chore: Remove lodash (#14287) (Stephen Wade)
  • 52655dd Update: no-restricted-imports custom message for patterns (fixes #11843) (#14580) (Alex Holden)
  • 967b1c4 Chore: Fix typo in large.js (#14589) (Ikko Ashimine)
  • 2466a05 Sponsors: Sync README with website (ESLint Jenkins)
  • fe29f18 Sponsors: Sync README with website (ESLint Jenkins)
  • 086c1d6 Chore: add more test cases for no-sequences (#14579) (Nitin Kumar)
  • 6a2ced8 Docs: Update README team and sponsors (ESLint Jenkins)
• 7.26.0 - 2021-05-08
  
  • aaf65e6 Upgrade: eslintrc for ModuleResolver fix (#14577) (Brandon Mills)
  • ae6dbd1 Fix: track variables, not names in require-atomic-updates (fixes #14208) (#14282) (Patrick Ahmetovic)
  • 6a86e50 Chore: remove loose-parser tests (fixes #14315) (#14569) (Milos Djermanovic)
  • ee3a3ea Fix: create .eslintrc.cjs for module type (#14304) (Nitin Kumar)
  • 6791dec Docs: fix example for require-atomic-updates (#14562) (Milos Djermanovic)
  • 388eb7e Sponsors: Sync README with website (ESLint Jenkins)
  • f071d1e Update: Add automated suggestion to radix rule for parsing decimals (#14291) (Bryan Mishkin)
  • 0b6a3f3 New: Include XO style guide in eslint --init (#14193) (Federico Brigante)
• 7.25.0 - 2021-04-23
  Read more
• 7.24.0 - 2021-04-09
  Read more
• 7.23.0 - 2021-03-26
  Read more
• 7.22.0 - 2021-03-12
  Read more
• 7.21.0 - 2021-02-27
  Read more
• 7.20.0 - 2021-02-12
  Read more
• 7.19.0 - 2021-01-31
• 7.18.0 - 2021-01-15
• 7.17.0 - 2021-01-02
• 7.16.0 - 2020-12-18
• 7.15.0 - 2020-12-05
• 7.14.0 - 2020-11-20
• 7.13.0 - 2020-11-07
• 7.12.1 - 2020-10-27
• 7.12.0 - 2020-10-24
• 7.11.0 - 2020-10-09
• 7.10.0 - 2020-09-26
• 7.9.0 - 2020-09-12
• 7.8.1 - 2020-09-01
• 7.8.0 - 2020-08-31
• 7.7.0 - 2020-08-14
• 7.6.0 - 2020-07-31
• 7.5.0 - 2020-07-18
• 7.4.0 - 2020-07-03

from eslint GitHub release notes

Commit messages

Package name: eslint

• b402f78 7.29.0
• a02dbd2 Build: changelog update for 7.29.0
• bfbfe5c New: Add only to RuleTester (refs New: RuleTester test isolation with only eslint/rfcs#73) (#14677)
• c2cd7b4 New: Add ESLint#getRulesMetaForResults() (refs #13654) (#14716)
• eea7e0d Chore: remove duplicate code (#14719)
• 6a1c7a0 Fix: allow fallthrough comment inside block (fixes #14701) (#14702)
• 97d9bd2 Revert "Update: ecmaVersion defaults to 5, and allows "latest" (#14622)" (#14711)
• a47e5e3 Docs: Add Mega-Linter to the list of integrations (#14707)
• 353ddf9 Chore: enable reportUnusedDisableDirectives in eslint-config-eslint (#14699)
• 757c495 Chore: add some rules to eslint-config-eslint (#14692)
• 831f6b3 Update: ecmaVersion defaults to 5, and allows "latest" (#14622)
• c93a222 Docs: fix a broken link (#14697)
• 655c118 Sponsors: Sync README with website
• e2bed2e Sponsors: Sync README with website
• 8490fb4 Sponsors: Sync README with website
• ddbe877 Sponsors: Sync README with website
• 55c1a50 7.28.0
• 78d3e5d Build: changelog update for 7.28.0
• 1237705 Upgrade: @ eslint/eslintrc to 0.4.2 (#14672)
• 123fb86 Docs: Add Feedback Needed triage description (#14670)
• c545163 Update: support multiline /*eslint-env*/ directives (fixes #14652) (#14660)
• 8d1e75a Upgrade: glob-parent version in package.json (#14658)
• 1f048cb Fix: no-implicit-coercion false positive with `String()` (fixes #14623) (#14641)
• d709abf Chore: fix comment location in no-unused-vars (#14648)

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs