[Snyk] Upgrade chai-http from 4.3.0 to 4.4.0 #5

roblo1801 · 2024-05-17T21:35:52Z

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade chai-http from 4.3.0 to 4.4.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 1 version ahead of your current version.
The recommended version was released a year ago, on 2023-06-09.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Regular Expression Denial of Service (ReDoS) SNYK-JS-COOKIEJAR-3149984	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: chai-http

4.4.0 - 2023-06-09
What's Changed
- ci: add semantic-release by @ austince in #248
- ci: add secure variables to release stage by @ austince in #250
- ci: build before release, commit assets, remove .npmrc by @ austince in #252
- Fix for issue #254, add extended request method explanations to the README by @ theodorewahle in #256
- Add matcher to check for charset. by @ kierans in #253
- Build: Use GitHub Actions for CI/CD by @ keithamus in #255
- Update superagent to ^6.1.0 by @ Exotrom in #281
- ci: correctly template github event in if condition for release by @ austince in #283
- ci: use correct event_name property by @ austince in #284
- ci: install node deps before release by @ austince in #285
- Added auth example with Bearer Token by @ keyuls in #282
- Update CI release token by @ keithamus in #287
- feat: drop support for node < 10 by @ austince in #288
- docs: add badges to the README by @ austince in #286
- ci: update npm token by @ austince in #289
- Dependency updates to fix security vulnerabilities by @ Trickfilm400 in #306
New Contributors
- @ theodorewahle made their first contribution in #256
- @ kierans made their first contribution in #253
- @ Exotrom made their first contribution in #281
- @ keyuls made their first contribution in #282
- @ Trickfilm400 made their first contribution in #306
Full Changelog: 4.3.0...4.4.0
4.3.0 - 2019-04-26
This feature release allows you to pass a Regular Expression to the redirectTo function.
```
expect(res).to.redirectTo(/^\/search\/results\?orderBy=desc$/);
```
Community Contributions

Code Features & Fixes
- #243 configures redirectTo to accept regex (by @ mikemfleming)

from chai-http GitHub release notes

Commit messages

Package name: chai-http

a3715c4 4.4.0
83f4f9e build
ce9866f Dependency updates to fix security vulnerabilities (#306)
dbba17c ci: update npm token (#289)
0c2c350 docs: add badges to the README
be1d005 ci: don't run publish-npm job unless push
0e78cee build(dev-deps): update semantic-release packages to latest versions
ee4952e docs: update README examples to modern syntax
233118b feat: drop support for node < 10
04ebb3d ci: update release token (#287)
edb5bca docs: add auth example with Bearer Token (#282)
56e15ff ci: install node deps before release (#285)
55c0e80 ci: use correct `event_name` property (#284)
c34b299 ci: correctly template github event in `if` condition for release (#283)
4a196eb feat(deps): update superagent to ^6.1.0 (#281)
601854f Build: Use GitHub Actions for CI/CD (#255)
50d9db4 feat: add charset assertion (#253)
7f5f260 docs: add extended request method explanations (#256)
7f9a8a5 ci: build before release, commit assets, remove .npmrc (#252)
9a99ed4 Merge pull request #250 from chaijs/ci/fix-tokens
cfd84e3 ci: add secure variables to release stage
da01dba ci: add semantic-release, update ci (#248)