[Snyk] Upgrade acorn from 4.0.13 to 8.12.0 #22
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR was automatically created by Snyk using the credentials of a real user.
![snyk-top-banner](https://github.com/andygongea/OWASP-Benchmark/assets/818805/c518c423-16fe-447e-b67f-ad5a49b5d123)
Snyk has created this PR to upgrade acorn from 4.0.13 to 8.12.0.
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version is 78 versions ahead of your current version.
The recommended version was released on a month ago.
Release notes
Package name: acorn
New features
Support ES2025 duplicate capture group names in regular expressions.
Bug fixes
Include
VariableDeclarator
in theAnyNode
type so that walker objects can refer to it without getting a type error.Properly raise a parse error for invalid
for
/of
statements usingasync
as binding name.Properly recognize "use strict" when preceded by a string with an escaped newline.
Mark the
Parser
constructor as protected, not private, so plugins can extend it without type errors.Fix a bug where some invalid
delete
expressions were let through when the operand was parenthesized andpreserveParens
was enabled.Properly normalize line endings in raw strings of invalid template tokens.
Properly track line numbers for escaped newlines in strings.
Fix a bug that broke line number accounting after a template literal with invalid escape sequences.
Bug fixes
Add
Function
andClass
to theAggregateType
type, so that they can be used in walkers without raising a type error.Make sure
onToken
get animport
keyword token when parsingimport.meta
.Fix a bug where
.loc.start
could be undefined fornew.target
meta
nodes.Bug fixes
Fix a bug that caused regular expressions after colon tokens to not be properly tokenized in some circumstances.
Bug fixes
Fix a regression where
onToken
would receive 'name' tokens for 'new' keyword tokens.Bug fixes
Fix an issue where tokenizing (without parsing) an object literal with a property named
class
orfunction
could, in some circumstance, put the tokenizer into an invalid state.Fix an issue where a slash after a call to a propery named the same as some keywords would be tokenized as a regular expression.
New features
Upgrade to Unicode 15.1.
Use a set of new, much more precise, TypeScript types.
New features
Add a
checkPrivateFields
option that disables strict checking of private property use.Bug fixes
Forbid dynamic import after
new
, even when part of a member expression.New features
Add Unicode properties for ES2023.
Add support for the
v
flag to regular expressions.Bug fixes
Fix a bug that caused
allowHashBang
to be set to false when not provided, even withecmaVersion >= 14
.Fix an exception when passing no option object to
parse
ornew Parser
.Fix incorrect parse error on
if (0) let\n[astral identifier char]
.Bug fixes
Make type for
Comment
compatible with estree types.Important
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information: