chore(deps): bump @typescript-eslint/eslint-plugin from 5.40.1 to 5.50.0 #135

dependabot · 2023-02-01T13:16:46Z

Bumps @typescript-eslint/eslint-plugin from 5.40.1 to 5.50.0.

Release notes

Sourced from @typescript-eslint/eslint-plugin's releases.

v5.50.0

5.50.0 (2023-01-31)

Bug Fixes

ast-spec: a JSXEmptyExpression is not a possible JSXExpression (#6321) (4b27777)

eslint-plugin: [ban-ts-comment] counts graphemes instead of String.prototype.length (#5704) (09d57ce)

eslint-plugin: [prefer-optional-chain] fix ThisExpression and PrivateIdentifier errors (#6028) (85e783c)

eslint-plugin: [prefer-optional-chain] fixer produces wrong logic (#5919) (b0f6c8e), closes #1438

Features

eslint-plugin: add key-spacing rule extension for interface & type declarations (#6211) (67706e7)

v5.49.0

5.49.0 (2023-01-23)

Features

eslint-plugin: [naming-convention] add support for #private modifier on class members (#6259) (c8a6d80)

v5.48.2

5.48.2 (2023-01-16)

Note: Version bump only for package @typescript-eslint/typescript-eslint

v5.48.1

5.48.1 (2023-01-09)

Note: Version bump only for package @typescript-eslint/typescript-eslint

v5.48.0

5.48.0 (2023-01-02)

Features

eslint-plugin: specify which method is unbound and added test case (#6281) (cf3ffdd)

v5.47.1

5.47.1 (2022-12-26)

... (truncated)

Changelog

Sourced from @typescript-eslint/eslint-plugin's changelog.

5.50.0 (2023-01-31)

Bug Fixes

eslint-plugin: [ban-ts-comment] counts graphemes instead of String.prototype.length (#5704) (09d57ce)

eslint-plugin: [prefer-optional-chain] fix ThisExpression and PrivateIdentifier errors (#6028) (85e783c)

eslint-plugin: [prefer-optional-chain] fixer produces wrong logic (#5919) (b0f6c8e), closes #1438

Features

eslint-plugin: add key-spacing rule extension for interface & type declarations (#6211) (67706e7)

5.49.0 (2023-01-23)

Features

eslint-plugin: [naming-convention] add support for #private modifier on class members (#6259) (c8a6d80)

5.48.2 (2023-01-16)

Note: Version bump only for package @typescript-eslint/eslint-plugin

5.48.1 (2023-01-09)

Note: Version bump only for package @typescript-eslint/eslint-plugin

5.48.0 (2023-01-02)

Features

eslint-plugin: specify which method is unbound and added test case (#6281) (cf3ffdd)

... (truncated)

Commits

99c091e chore: publish v5.50.0
85e783c fix(eslint-plugin): [prefer-optional-chain] fix ThisExpression and `Private...
1623350 docs(eslint-plugin): corrected eslint-plugin README.md getting started link (...
f17d34b docs(eslint-plugin): update site description of ban-types docs (#6209)
b0f6c8e fix(eslint-plugin): [prefer-optional-chain] fixer produces wrong logic (#5919)
67706e7 feat(eslint-plugin): add key-spacing rule extension for interface & type de...
09d57ce fix(eslint-plugin): [ban-ts-comment] counts graphemes instead of `String.prot...
eef12d1 chore: publish v5.49.0
aea74d3 chore: pin ts-node to 10.7.0; partially replace with tsx (#6246)
c8a6d80 feat(eslint-plugin): [naming-convention] add support for #private modifier ...
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) from 5.40.1 to 5.50.0. - [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases) - [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md) - [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.50.0/packages/eslint-plugin) --- updated-dependencies: - dependency-name: "@typescript-eslint/eslint-plugin" dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

socket-security · 2023-02-01T13:17:41Z

Socket Security Pull Request Report

Dependency issues detected. If you merge this pull request, you will not be alerted to the instances of these issues again.

😵‍💫 Bin script confusion

This package has multiple bin scripts with the same name. This can cause non-deterministic behavior when installing or could be a sign of a supply chain attack

Consider removing one of the conflicting packages. Packages should only export bin scripts with their name

Package	Bin script	Source
semver@7.3.8 (upgraded)	`semver`	`package.json` via @storybook/addon-essentials@6.5.12, @storybook/addon-interactions@6.5.12, @storybook/builder-webpack5@6.5.12, @storybook/manager-webpack5@6.5.12, @storybook/react@6.5.12, @typescript-eslint/eslint-plugin@5.50.0, @typescript-eslint/parser@5.50.0, eslint-plugin-jest@27.1.3, jest@29.2.1, jest-preset-ns@2.1.1, lerna@6.0.1, lerna-changelog@2.2.0, `examples/example-js/package.json` via eslint-config-ns-base@3.5.0, `examples/example-js-react/package.json` via @storybook/addon-essentials@6.5.12, @storybook/addon-interactions@6.5.12, @storybook/builder-webpack5@6.5.12, @storybook/manager-webpack5@6.5.12, @storybook/react@6.5.12, eslint-config-ns@3.5.0, `examples/example-next/package.json` via eslint-config-ns-ts@3.5.0, `examples/example-ts/package.json` via eslint-config-ns-ts-base@3.5.0, ts-jest@29.0.5, `examples/example-ts-react/package.json` via @babel/core@7.20.12, @storybook/addon-essentials@6.5.12, @storybook/addon-interactions@6.5.12, @storybook/builder-webpack5@6.5.12, @storybook/manager-webpack5@6.5.12, @storybook/react@6.5.12, eslint-config-ns-ts@3.5.0, ts-jest@29.0.5, `packages/eslint-config-ns/package.json` via eslint-config-ns-base@3.5.0, `packages/eslint-config-ns-base/package.json` via eslint-plugin-jest@27.1.3, `packages/eslint-config-ns-ts/package.json` via @typescript-eslint/eslint-plugin@5.50.0, @typescript-eslint/parser@5.50.0, eslint-config-ns@3.5.0, eslint-config-ns-ts-base@3.5.0, `packages/eslint-config-ns-ts-base/package.json` via @typescript-eslint/eslint-plugin@5.50.0, @typescript-eslint/parser@5.50.0, eslint-config-ns-base@3.5.0

Pull request report summary

Issue	Status
Install scripts	✅ 0 issues
Native code	✅ 0 issues
Bin script confusion	⚠️ 1 issue
Bin script shell injection	✅ 0 issues
Unresolved require	✅ 0 issues
Invalid package.json	✅ 0 issues
HTTP dependency	✅ 0 issues
Git dependency	✅ 0 issues
Potential typo squat	✅ 0 issues
Known Malware	✅ 0 issues
Telemetry	✅ 0 issues
Protestware/Troll package	✅ 0 issues

Bot Commands

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of package-name@version specifiers. e.g. @SocketSecurity ignore foo@1.0.0 bar@2.4.2

@SocketSecurity ignore semver@7.3.8

Powered by socket.dev

dependabot · 2023-03-01T14:02:32Z

Superseded by #146.

dependabot bot added the dependencies Pull requests that update a dependency file label Feb 1, 2023

dependabot bot requested a review from natterstefan February 1, 2023 13:16

dependabot bot mentioned this pull request Feb 1, 2023

chore(deps): bump @typescript-eslint/eslint-plugin from 5.40.1 to 5.47.1 #125

Closed

dependabot bot closed this Mar 1, 2023

dependabot bot deleted the dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-5.50.0 branch March 1, 2023 14:02

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

chore(deps): bump @typescript-eslint/eslint-plugin from 5.40.1 to 5.50.0 #135

chore(deps): bump @typescript-eslint/eslint-plugin from 5.40.1 to 5.50.0 #135

Uh oh!

dependabot bot commented on behalf of github Feb 1, 2023

Uh oh!

socket-security bot commented Feb 1, 2023

Uh oh!

dependabot bot commented on behalf of github Mar 1, 2023

Uh oh!

Uh oh!

Uh oh!

chore(deps): bump @typescript-eslint/eslint-plugin from 5.40.1 to 5.50.0 #135

chore(deps): bump @typescript-eslint/eslint-plugin from 5.40.1 to 5.50.0 #135

Uh oh!

Conversation

dependabot bot commented on behalf of github Feb 1, 2023

v5.50.0

5.50.0 (2023-01-31)

Bug Fixes

Features

v5.49.0

5.49.0 (2023-01-23)

Features

v5.48.2

5.48.2 (2023-01-16)

v5.48.1

5.48.1 (2023-01-09)

v5.48.0

5.48.0 (2023-01-02)

Features

v5.47.1

5.47.1 (2022-12-26)

5.50.0 (2023-01-31)

Bug Fixes

Features

5.49.0 (2023-01-23)

Features

5.48.2 (2023-01-16)

5.48.1 (2023-01-09)

5.48.0 (2023-01-02)

Features

Uh oh!

socket-security bot commented Feb 1, 2023

Socket Security Pull Request Report

Uh oh!

dependabot bot commented on behalf of github Mar 1, 2023

Uh oh!

Uh oh!