[Snyk] Upgrade nock from 13.0.2 to 13.5.4

[NOUIY]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade nock from 13.0.2 to 13.5.4.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 39 versions ahead of your current version.
• The recommended version was released a month ago, on 2024-02-26.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Prototype Pollution SNYK-JS-AJV-584908	405/1000 Why? CVSS 8.1	No Known Exploit
	Prototype Pollution SNYK-JS-AJV-584908	405/1000 Why? CVSS 8.1	No Known Exploit
	Prototype Pollution SNYK-JS-AJV-584908	405/1000 Why? CVSS 8.1	No Known Exploit
	Prototype Pollution SNYK-JS-ASYNC-2441827	405/1000 Why? CVSS 8.1	Proof of Concept
	Prototype Pollution SNYK-JS-JSONSCHEMA-1920922	405/1000 Why? CVSS 8.1	No Known Exploit
	Prototype Poisoning SNYK-JS-QS-3153490	405/1000 Why? CVSS 8.1	Proof of Concept
	Prototype Pollution SNYK-JS-LODASH-567746	405/1000 Why? CVSS 8.1	Proof of Concept
	Prototype Pollution SNYK-JS-LODASHSET-1320032	405/1000 Why? CVSS 8.1	Proof of Concept
	Prototype Pollution SNYK-JS-LODASH-567746	405/1000 Why? CVSS 8.1	Proof of Concept
	Denial of Service (DoS) SNYK-JS-DECODEURICOMPONENT-3149970	405/1000 Why? CVSS 8.1	Proof of Concept
	Prototype Pollution SNYK-JS-INI-1048974	405/1000 Why? CVSS 8.1	Proof of Concept
	Prototype Pollution SNYK-JS-LODASH-567746	405/1000 Why? CVSS 8.1	Proof of Concept
	Prototype Pollution SNYK-JS-SETVALUE-1540541	405/1000 Why? CVSS 8.1	Proof of Concept
	Prototype Pollution SNYK-JS-SETVALUE-450213	405/1000 Why? CVSS 8.1	Proof of Concept
	Prototype Pollution SNYK-JS-SETVALUE-1540541	405/1000 Why? CVSS 8.1	Proof of Concept
	Prototype Pollution SNYK-JS-SETVALUE-450213	405/1000 Why? CVSS 8.1	Proof of Concept
	Information Exposure SNYK-JS-SIMPLEGET-2361683	405/1000 Why? CVSS 8.1	Proof of Concept
	Prototype Pollution npm:extend:20180424	405/1000 Why? CVSS 8.1	No Known Exploit
	Regular Expression Denial of Service (ReDoS) npm:underscore.string:20170908	405/1000 Why? CVSS 8.1	No Known Exploit
	Prototype Pollution SNYK-JS-Y18N-1021887	405/1000 Why? CVSS 8.1	Proof of Concept
	Prototype Pollution SNYK-JS-Y18N-1021887	405/1000 Why? CVSS 8.1	Proof of Concept
	Prototype Pollution SNYK-JS-DOTPROP-543489	405/1000 Why? CVSS 8.1	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-POSTCSS-1255640	405/1000 Why? CVSS 8.1	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-POSTCSS-1255640	405/1000 Why? CVSS 8.1	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHPARSE-1077067	405/1000 Why? CVSS 8.1	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-POSTCSS-1255640	405/1000 Why? CVSS 8.1	Proof of Concept
	Validation Bypass SNYK-JS-KINDOF-537849	405/1000 Why? CVSS 8.1	Proof of Concept
	Incomplete List of Disallowed Inputs SNYK-JS-BABELTRAVERSE-5962462	405/1000 Why? CVSS 8.1	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-BROWSERSLIST-1090194	405/1000 Why? CVSS 8.1	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHPARSE-1077067	405/1000 Why? CVSS 8.1	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-HOSTEDGITINFO-1088355	405/1000 Why? CVSS 8.1	Proof of Concept
	Regular Expression Denial of Service (ReDoS) npm:debug:20170905	405/1000 Why? CVSS 8.1	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: nock

• 13.5.4 - 2024-02-26
  

  13.5.4 (2024-02-26)

  Bug Fixes

  • call fs.createReadStream lazily (#2357) (ba9fc42)
• 13.5.3 - 2024-02-17
  

  13.5.3 (2024-02-17)

  Bug Fixes

  • support literal query string (#2590) (4162fa8)
• 13.5.2 - 2024-02-17
  

  13.5.2 (2024-02-17)

  Bug Fixes

  • remove duplicates from activeMocks() and pendingMocks() (#2356) (7e957b3)
• 13.5.1 - 2024-01-28
  

  13.5.1 (2024-01-28)

  Bug Fixes

  • memory leak when using nock with jest (#2572) (7468cf1)
• 13.5.0 - 2024-01-14
  

  13.5.0 (2024-01-14)

  Features

  • add Scope#clone() method (#2564) (65385f7)
• 13.4.0 - 2023-11-27
• 13.3.8 - 2023-11-03
• 13.3.7 - 2023-10-30
• 13.3.6 - 2023-10-19
• 13.3.5 - 2023-10-19
• 13.3.4 - 2023-10-10
• 13.3.3 - 2023-08-16
• 13.3.2 - 2023-07-13
• 13.3.1 - 2023-04-27
• 13.3.0 - 2023-01-10
• 13.2.9 - 2022-07-19
• 13.2.8 - 2022-06-30
• 13.2.7 - 2022-06-15
• 13.2.6 - 2022-06-03
• 13.2.5 - 2022-06-03
• 13.2.4 - 2022-02-04
• 13.2.3 - 2022-02-03
• 13.2.2 - 2022-01-11
• 13.2.1 - 2021-11-12
• 13.2.0 - 2021-11-08
• 13.1.4 - 2021-10-19
• 13.1.3 - 2021-08-25
• 13.1.2 - 2021-08-20
• 13.1.1 - 2021-07-04
• 13.1.0 - 2021-05-31
• 13.0.11 - 2021-03-07
• 13.0.10 - 2021-03-02
• 13.0.9 - 2021-02-27
• 13.0.8 - 2021-02-25
• 13.0.7 - 2021-01-30
• 13.0.6 - 2021-01-20
• 13.0.5 - 2020-11-11
• 13.0.4 - 2020-08-11
• 13.0.3 - 2020-07-27
• 13.0.2 - 2020-07-01

from nock GitHub release notes

Commit messages

Package name: nock

• ba9fc42 fix: call `fs.createReadStream` lazily (Create an atom bisect command for determining which package is causing a problem atom/atom#2357)
• 81c20dd chore(deps-dev): bump chai from 4.3.10 to 4.4.1 (Scripts don't seem to do anything on Ubuntu 13.10 atom/atom#2576)
• 08b2b09 chore(deps-dev): bump prettier from 3.1.0 to 3.2.4 (Selections are hidden by tool panels atom/atom#2578)
• 1005698 chore(deps-dev): bump eslint-plugin-import from 2.29.0 to 2.29.1 (Fix NPM verification failures after script/clean on Win32 atom/atom#2577)
• 4162fa8 fix: support literal query string (Search in project cmd+shift+f for selected text atom/atom#2590)
• 7e957b3 fix: remove duplicates from `activeMocks()` and `pendingMocks()` (📝 Add solution for "TypeError: Unable to watch path" atom/atom#2356)
• 8bab28d ci: add node 20 in ci (HTML script tag does not use HTML comments atom/atom#2585)
• 8deca36 docs: add mikicho as a contributor for maintenance, code, and doc (Outdent only if a tab is matched at the start of the line atom/atom#2584)
• 4ad60ba add experimental fetch support notice (Cursor disappears when positioned over leading whitespace in vim-mode atom/atom#2583)
• f4d1b15 ci(test): use a single `test` job that we can require, independent of test matrix (Not reopening existing windows atom/atom#2581)
• 7468cf1 fix: memory leak when using nock with jest (Show all invisible characters atom/atom#2572)
• ccfa96d docs: add rsaryev as a contributor for code, and test (cannot find module 'Grim' atom/atom#2570)
• 65385f7 feat: add `Scope#clone()` method (Reloading spec window with inspector open pauses atom/atom#2564)
• ea13083 chore(deps-dev): bump eslint-config-prettier from 9.0.0 to 9.1.0
• 6a3cdfe chore(deps-dev): bump eslint from 8.51.0 to 8.56.0
• 30700f7 chore(deps-dev): bump typescript from 5.3.2 to 5.3.3
• debc220 chore(deps-dev): bump typescript from 5.2.2 to 5.3.2
• eaf0bde chore(deps-dev): bump eslint-plugin-mocha from 10.1.0 to 10.2.0
• 210a339 chore(deps-dev): bump prettier from 3.0.3 to 3.1.0
• 617511f feat: add `context.query()` to nock back (It takes too long to run script/build atom/atom#2553)
• 36a13fd docs(02_feature_request.yml): fix link (gyp requires Python 2.6 but Ubuntu 14.04 comes with 2.7 atom/atom#2554)
• c5016a5 docs(01_bug_report.yml): fix link
• 0b18d07 fix(typescript): `filteringBodyRequest` (Atom suddenly not launching anymore atom/atom#2552)
• 26bbb93 chore(deps-dev): bump semantic-release from 22.0.5 to 22.0.6

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs