Sourced from eslint's releases.

v5.16.0

• dfef227 Build: gensite passes rulesMeta to formatter rendering (#11567) (Kevin Partington)
• c06d38c Fix: Allow HTML formatter to handle no meta data (#11566) (Ilya Volodin)
• 87a5c03 Docs: func-style: clarify when allowArrowFunctions is used (#11548) (Oliver Joseph Ash)
• bc3e427 Update: pass rule meta to formatters RFC 10 (#11551) (Chris Meyer)
• b452f27 Chore: Update README to pull in reviewer data (#11506) (Nicholas C. Zakas)
• afe3d25 Upgrade: Bump js-yaml dependency to fix Denial of Service vulnerability (#11550) (Vernon de Goede)
• 4fe7eb7 Chore: use nyc instead of istanbul (#11532) (Toru Nagashima)
• f16af43 Chore: fix formatters/table test (#11534) (Toru Nagashima)
• 78358a8 Docs: fix duplicate punctuation in CLI docs (#11528) (Teddy Katz)

v5.15.3

• 71adc66 Fix: avoid moving comments in implicit-arrow-linebreak (fixes #11521) (#11522) (Teddy Katz)
• 1f715a2 Chore: make test-case-property-ordering reasonable (#11511) (Toru Nagashima)

v5.15.2

• 29dbca7 Fix: implicit-arrow-linebreak adds extra characters (fixes #11268) (#11407) (Mark de Dios)
• 5d2083f Upgrade: [email protected] (#11513) (Teddy Katz)
• a5dae7c Fix: Empty glob pattern incorrectly expands to "/**" (#11476) (Ben Chauvette)
• 448e8da Chore: improve crash reporting (fixes #11304) (#11463) (Alex Zherdev)
• 0f56dc6 Chore: make config validator params more consistent (#11435) (薛定谔的猫)
• d6c1122 Docs: Add working groups to maintainer guide (#11400) (Nicholas C. Zakas)
• 5fdb4d3 Build: compile deps to ES5 when generating browser file (fixes #11504) (#11505) (Teddy Katz)
• 06fa165 Build: update CI testing configuration (#11500) (Reece Dunham)
• 956e883 Docs: Fix example in no-restricted-modules docs (#11454) (Paul O’Shannessy)
• 2c7431d Docs: fix json schema example dead link (#11498) (kazuya kawaguchi)
• e7266c2 Docs: Fix invalid JSON in "Specifying Parser Options" (#11492) (Mihira Jayasekera)
• 6693161 Sponsors: Sync README with website (ESLint Jenkins)
• 62fee4a Chore: eslint-config-eslint enable comma-dangle functions: "never" (#11434) (薛定谔的猫)
• 34a5382 Build: copy bundled espree to website directory (#11478) (Pig Fang)
• f078f9a Chore: use "file:" dependencies for internal rules/config (#11465) (Teddy Katz)
• 0756128 Docs: Add visualstudio to formatter list (#11480) (Patrick Eriksson)
• 44de9d7 Docs: Fix typo in func-name-matching rule docs (#11484) (Iulian Onofrei)

v5.15.1

• fe1a892 Build: bundle espree (fixes eslint/eslint.github.io#546) (#11467) (薛定谔的猫)
• 458053b Fix: avoid creating invalid regex in no-warning-comments (fixes #11471) (#11472) (Teddy Katz)

v5.15.0

• 4088c6c Build: Remove path.resolve in webpack build (#11462) (Kevin Partington)
• ec59ec0 New: add rule "prefer-named-capture-group" (fixes #11381) (#11392) (Pig Fang)
• a44f750 Upgrade: [email protected] (#11461) (Teddy Katz)
• d3ce611 Sponsors: Sync README with website (ESLint Jenkins)
• ee88475 Chore: add utils for rule tests (#11453) (薛定谔的猫)
• d4824e4 Sponsors: Sync README with website (ESLint Jenkins)
• 6489518 Fix: no-extra-parens crash when code is "((let))" (#11444) (Teddy Katz)
• 9d20de2 Sponsors: Sync README with website (ESLint Jenkins)
• 3f14de4 Sponsors: Sync README with website (ESLint Jenkins)
• 3d6c770 Sponsors: Sync README with website (ESLint Jenkins)
• de5cbc5 Update: remove invalid defaults from core rules (fixes #11415) (#11427) (Teddy Katz)

... (truncated)

Sourced from eslint's changelog.

v5.16.0 - March 29, 2019

• dfef227 Build: gensite passes rulesMeta to formatter rendering (#11567) (Kevin Partington)
• c06d38c Fix: Allow HTML formatter to handle no meta data (#11566) (Ilya Volodin)
• 87a5c03 Docs: func-style: clarify when allowArrowFunctions is used (#11548) (Oliver Joseph Ash)
• bc3e427 Update: pass rule meta to formatters RFC 10 (#11551) (Chris Meyer)
• b452f27 Chore: Update README to pull in reviewer data (#11506) (Nicholas C. Zakas)
• afe3d25 Upgrade: Bump js-yaml dependency to fix Denial of Service vulnerability (#11550) (Vernon de Goede)
• 4fe7eb7 Chore: use nyc instead of istanbul (#11532) (Toru Nagashima)
• f16af43 Chore: fix formatters/table test (#11534) (Toru Nagashima)
• 78358a8 Docs: fix duplicate punctuation in CLI docs (#11528) (Teddy Katz)

v5.15.3 - March 18, 2019

• 71adc66 Fix: avoid moving comments in implicit-arrow-linebreak (fixes #11521) (#11522) (Teddy Katz)
• 1f715a2 Chore: make test-case-property-ordering reasonable (#11511) (Toru Nagashima)

v5.15.2 - March 15, 2019

• 29dbca7 Fix: implicit-arrow-linebreak adds extra characters (fixes #11268) (#11407) (Mark de Dios)
• 5d2083f Upgrade: [email protected] (#11513) (Teddy Katz)
• a5dae7c Fix: Empty glob pattern incorrectly expands to "/**" (#11476) (Ben Chauvette)
• 448e8da Chore: improve crash reporting (fixes #11304) (#11463) (Alex Zherdev)
• 0f56dc6 Chore: make config validator params more consistent (#11435) (薛定谔的猫)
• d6c1122 Docs: Add working groups to maintainer guide (#11400) (Nicholas C. Zakas)
• 5fdb4d3 Build: compile deps to ES5 when generating browser file (fixes #11504) (#11505) (Teddy Katz)
• 06fa165 Build: update CI testing configuration (#11500) (Reece Dunham)
• 956e883 Docs: Fix example in no-restricted-modules docs (#11454) (Paul O’Shannessy)
• 2c7431d Docs: fix json schema example dead link (#11498) (kazuya kawaguchi)
• e7266c2 Docs: Fix invalid JSON in "Specifying Parser Options" (#11492) (Mihira Jayasekera)
• 6693161 Sponsors: Sync README with website (ESLint Jenkins)
• 62fee4a Chore: eslint-config-eslint enable comma-dangle functions: "never" (#11434) (薛定谔的猫)
• 34a5382 Build: copy bundled espree to website directory (#11478) (Pig Fang)
• f078f9a Chore: use "file:" dependencies for internal rules/config (#11465) (Teddy Katz)
• 0756128 Docs: Add visualstudio to formatter list (#11480) (Patrick Eriksson)
• 44de9d7 Docs: Fix typo in func-name-matching rule docs (#11484) (Iulian Onofrei)

v5.15.1 - March 4, 2019

• fe1a892 Build: bundle espree (fixes eslint/eslint.github.io#546) (#11467) (薛定谔的猫)
• 458053b Fix: avoid creating invalid regex in no-warning-comments (fixes #11471) (#11472) (Teddy Katz)

v5.15.0 - March 1, 2019

• 4088c6c Build: Remove path.resolve in webpack build (#11462) (Kevin Partington)
• ec59ec0 New: add rule "prefer-named-capture-group" (fixes #11381) (#11392) (Pig Fang)
• a44f750 Upgrade: [email protected] (#11461) (Teddy Katz)
• d3ce611 Sponsors: Sync README with website (ESLint Jenkins)
• ee88475 Chore: add utils for rule tests (#11453) (薛定谔的猫)
• d4824e4 Sponsors: Sync README with website (ESLint Jenkins)

... (truncated)

• ded2f94 5.16.0
• ea36e13 Build: changelog update for 5.16.0
• dfef227 Build: gensite passes rulesMeta to formatter rendering (#11567)
• c06d38c Fix: Allow HTML formatter to handle no meta data (#11566)
• 87a5c03 Docs: func-style: clarify when allowArrowFunctions is used (#11548)
• bc3e427 Update: pass rule meta to formatters RFC 10 (#11551)
• b452f27 Chore: Update README to pull in reviewer data (#11506)
• afe3d25 Upgrade: Bump js-yaml dependency to fix Denial of Service vulnerability (#11550)
• 4fe7eb7 Chore: use nyc instead of istanbul (#11532)
• f16af43 Chore: fix formatters/table test (#11534)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Automerge options (never/patch/minor, and dev/runtime dependencies)
• Pull request limits (per update run and/or open at any time)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

Finally, you can contact us by mentioning @dependabot.

Greenkeeper adds a badge to your README which indicates the status of this repository.

This is what your badge looks like right now :point_right:

You may have good reasons for not wanting to update to a certain dependency right now. In this case, you can change the dependency’s version string in the package.json file back to whatever you prefer.

To make sure Greenkeeper doesn’t nag you again on the next update, add a greenkeeper.ignore field to your package.json, containing a list of dependencies you don’t want to update.

// package.json
{
  …
  "greenkeeper": {
    "ignore": [
      "package-names",
      "you-want-me-to-ignore"
    ]
  }
}

  # Change into your repository’s directory
  git fetch
  git checkout greenkeeper/initial
  npm install-test
  # Adapt your code until everything works again
  git commit -m 'chore: adapt code to updated dependencies'
  git push origin greenkeeper/initial

After you merge this pull request, Greenkeeper will create a new branch whenever a dependency is updated, with the new version applied. The branch creation should trigger your testing services and check whether your code still works with the new dependency version. Depending on the the results of these tests Greenkeeper will try to open meaningful and helpful pull requests and issues, so your dependencies remain working and up-to-date.

-  "underscore": "^1.6.0"
+  "underscore": "^1.7.0"

The above example shows an in-range update. 1.7.0 is included in the old ^1.6.0 range, because of the caret ^ character. When the test services report success Greenkeeper will silently delete the branch again, because no action needs to be taken – everything is fine.

However, should the tests fail, Greenkeeper will create an issue to inform you about the problem immediately.

This way, you’ll never be surprised by a dependency breaking your code. As long as everything still works, Greenkeeper will stay out of your way, and as soon as something goes wrong, you’ll be the first to know.

-  "lodash": "^3.0.0"
+  "lodash": "^4.0.0"

In this example, the new version 4.0.0 is not included in the old ^3.0.0 range. For version updates like these – let’s call them “out of range” updates – you’ll receive a pull request.

This means that you no longer need to check for new versions manually – Greenkeeper will keep you up to date automatically.

These pull requests not only serve as reminders to update: If you have solid tests and good coverage, and the pull requests passes those tests, you can very likely just merge it and release a new version of your software straight away :shipit:

To get a better idea of which ranges apply to which releases, check out the extremely useful semver calculator provided by npm.

There is a collection of frequently asked questions. If those don’t help, you can always ask the humans behind Greenkeeper.

Sourced from [@​semantic-release/changelog's releases](https://github.com/semantic-release/changelog/releases).

v3.0.2

3.0.2 (2018-12-26)

Bug Fixes

• package: update aggregate-error to version 2.0.0 (4007c72)

• 4007c72 fix(package): update aggregate-error to version 2.0.0
• c06530a build: remove unnecessary docker service in Travis
• f7ba85b chore(package): update nyc and sinon
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Automerge options (never/patch/minor, and dev/runtime dependencies)
• Pull request limits (per update run and/or open at any time)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

Finally, you can contact us by mentioning @dependabot.

Sourced from husky's releases.

v6.0.0

After being in early access for Open Source projects and Sponsors for a limited time, I'm happy to announce that husky 6 is MIT again and can be freely used in commercial projects! 🎉

Many thanks to the Open Source projects and Companies which have switched to/sponsored the new husky during this period!

OSS is my full-time job, please consider sponsoring the development of husky on GitHub sponsors or Open Collective. Thank you!

Breaking change

• husky init has been moved to its own package (npx husky-init)

Added

• Programmatically use husky: require('husky')
• TypeScript definitions

Migrating from husky 4

Husky 6 contains breaking changes. If you're coming from v4, npm install husky@6 won't be enough.

Recommended: see husky-4-to-6 CLI to automatically migrate your config. There's also a dedicated section in the docs.

If you're curious why config has changed, you may be interested in reading: https://blog.typicode.com/husky-git-hooks-javascript-config/

Also Husky 6 follows official npm and Yarn best practices regarding autoinstall. It's recommended to use prepare script instead (see usage in docs).

v5.2.0

• Add set command to replace hooks (husky set .husky/pre-commit cmd)
• Update add command to append command (husky add .husky/pre-commit cmd)
• Improve error messages

v5.1.3

• docs: add specific Yarn v2 install/uninstall instructions
• cli: husky init will detect Yarn v2 and initialize accordingly

v5.1.2

• docs: recommend prepare script instead of postinstall (#890)
• cli: husky init use prepare script (#890)

v5.1.1

• style(shell): add trailing newlines (#870)
• fix(init): update package.json postinstall

v5.1.0

• Add husky init

v5.0.9

• fix(install): do not fail if not inside a Git directory (closes #851)

... (truncated)

• cb4e3b9 v6.0.0
• db0a35c update
• 3bcbbd5 chore: update .gitignore
• 554ced9 v6.0.0
• ee1b299 update (#916)
• d022b2b style: formatting
• 57602ca docs: update how it works
• 6e19b1a style: img size
• 5a09e91 style: companies
• 5ee1f24 style: formatting
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Pull request limits (per update run and/or open at any time)
• Automerge options (never/patch/minor, and dev/runtime dependencies)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

Sourced from mocha's releases.

v8.1.0

8.1.0 / 2020-07-30

In this release, Mocha now builds its browser bundle with Rollup and Babel, which will provide the project's codebase more flexibility and consistency.

While we've been diligent about backwards compatibility, it's possible consumers of the browser bundle will encounter differences (other than an increase in the bundle size). If you do encounter an issue with the build, please report it here.

This release does not drop support for IE11.

Other community contributions came from @Devjeel, @Harsha509 and @sharath2106. Thank you to everyone who contributed to this release!

Do you read Korean? See this guide to running parallel tests in Mocha, translated by our maintainer, @outsideris.

:tada: Enhancements

• #4287: Use background colors with inline diffs for better visual distinction (@michael-brade)

:bug: Fixes

• #4328: Fix "watch" mode when Mocha run in parallel (@boneskull)
• #4382: Fix root hook execution in "watch" mode (@indieisaconcept)
• #4383: Consistent auto-generated hook titles (@cspotcode)
• #4359: Better errors when running mocha init (@boneskull)
• #4341: Fix weirdness when using delay option in browser (@craigtaub)

:lock: Security Fixes

• #4378, #4333: Update javascript-serialize (@martinoppitz, @wnghdcjfe)
• #4354: Update yargs-unparser (@martinoppitz)

:book: Documentation & Website

• #4173: Document how to use --enable-source-maps with Mocha (@bcoe)
• #4343: Clean up some API docs (@craigtaub)
• #4318: Sponsor images are now self-hosted (@Munter)

:nut_and_bolt: Other

• #4293: Use Rollup and Babel in build pipeline; add source map to published files (@Munter)

v8.0.1

8.0.1 / 2020-06-10

The obligatory patch after a major.

:bug: Fixes

• #4328: Fix --parallel when combined with --watch (@boneskull)

Sourced from mocha's changelog.

8.1.0 / 2020-07-30

In this release, Mocha now builds its browser bundle with Rollup and Babel, which will provide the project's codebase more flexibility and consistency.

While we've been diligent about backwards compatibility, it's possible consumers of the browser bundle will encounter differences (other than an increase in the bundle size). If you do encounter an issue with the build, please report it here.

This release does not drop support for IE11.

Other community contributions came from @Devjeel, @Harsha509 and @sharath2106. Thank you to everyone who contributed to this release!

Do you read Korean? See this guide to running parallel tests in Mocha, translated by our maintainer, @outsideris.

:tada: Enhancements

• #4287: Use background colors with inline diffs for better visual distinction (@michael-brade)

:bug: Fixes

• #4328: Fix "watch" mode when Mocha run in parallel (@boneskull)
• #4382: Fix root hook execution in "watch" mode (@indieisaconcept)
• #4383: Consistent auto-generated hook titles (@cspotcode)
• #4359: Better errors when running mocha init (@boneskull)
• #4341: Fix weirdness when using delay option in browser (@craigtaub)

:lock: Security Fixes

• #4378, #4333: Update javascript-serialize (@martinoppitz, @wnghdcjfe)
• #4354: Update yargs-unparser (@martinoppitz)

:book: Documentation & Website

• #4173: Document how to use --enable-source-maps with Mocha (@bcoe)
• #4343: Clean up some API docs (@craigtaub)
• #4318: Sponsor images are now self-hosted (@Munter)

:nut_and_bolt: Other

• #4293: Use Rollup and Babel in build pipeline; add source map to published files (@Munter)

8.0.1 / 2020-06-10

The obligatory patch after a major.

:bug: Fixes

• #4328: Fix --parallel when combined with --watch (@boneskull)

8.0.0 / 2020-06-10

In this major release, Mocha adds the ability to run tests in parallel. Better late than never! Please note the breaking changes detailed below.

• 7e250ef Release v8.1.0
• a6203c6 add git tag message to .npmrc
• 60858dc devDependency updates for v8.1.0
• cf736fe handle errors in supporter images during 11ty build
• f966c94 Fixing typos
• 8970429 update CHANGELOG for v8.1.0
• edc09bf Ensure root level hooks are called when running in watch mode
• 29012aa Update javascript-serialize 3.1.0 to 4.0.0; closes #4375 (#4378)
• 7884893 ensure hook titles are consistent; closes #4348 (PR #4383)
• ad03d29 build UMD bundle and polyfill language features (#4366)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Pull request limits (per update run and/or open at any time)
• Automerge options (never/patch/minor, and dev/runtime dependencies)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

Sourced from mocha's releases.

v8.0.1

8.0.1 / 2020-06-10

The obligatory patch after a major.

:bug: Fixes

• #4328: Fix --parallel when combined with --watch (@boneskull)

v8.0.0

8.0.0 / 2020-06-10

In this major release, Mocha adds the ability to run tests in parallel. Better late than never! Please note the breaking changes detailed below.

Let's welcome @giltayar and @nicojs to the maintenance team!

:boom: Breaking Changes

• #4164: Mocha v8.0.0 now requires Node.js v10.0.0 or newer. Mocha no longer supports the Node.js v8.x line ("Carbon"), which entered End-of-Life at the end of 2019 (@UlisesGascon)

• #4175: Having been deprecated with a warning since v7.0.0, mocha.opts is no longer supported (@juergba)

  :sparkles: WORKAROUND: Replace mocha.opts with a configuration file.

• #4260: Remove enableTimeout() (this.enableTimeout()) from the context object (@craigtaub)

  :sparkles: WORKAROUND: Replace usage of this.enableTimeout(false) in your tests with this.timeout(0).

• #4315: The spec option no longer supports a comma-delimited list of files (@juergba)

  :sparkles: WORKAROUND: Use an array instead (e.g., "spec": "foo.js,bar.js" becomes "spec": ["foo.js", "bar.js"]).

• #4309: Drop support for Node.js v13.x line, which is now End-of-Life (@juergba)

• #4282: --forbid-only will throw an error even if exclusive tests are avoided via --grep or other means (@arvidOtt)

• #4223: The context object's skip() (this.skip()) in a "before all" (before()) hook will no longer execute subsequent sibling hooks, in addition to hooks in child suites (@juergba)

• #4178: Remove previously soft-deprecated APIs (@wnghdcjfe):

  • Mocha.prototype.ignoreLeaks()
  • Mocha.prototype.useColors()
  • Mocha.prototype.useInlineDiffs()
  • Mocha.prototype.hideDiff()

:tada: Enhancements

• #4245: Add ability to run tests in parallel for Node.js (see docs) (@boneskull)

  :exclamation: See also #4244; Root Hook Plugins (docs) -- root hooks must be defined via Root Hook Plugins to work in parallel mode

... (truncated)

Sourced from mocha's changelog.

8.0.1 / 2020-06-10

The obligatory patch after a major.

:bug: Fixes

• #4328: Fix --parallel when combined with --watch (@boneskull)

8.0.0 / 2020-06-10

In this major release, Mocha adds the ability to run tests in parallel. Better late than never! Please note the breaking changes detailed below.

Let's welcome @giltayar and @nicojs to the maintenance team!

:boom: Breaking Changes

• #4164: Mocha v8.0.0 now requires Node.js v10.0.0 or newer. Mocha no longer supports the Node.js v8.x line ("Carbon"), which entered End-of-Life at the end of 2019 (@UlisesGascon)

• #4175: Having been deprecated with a warning since v7.0.0, mocha.opts is no longer supported (@juergba)

  :sparkles: WORKAROUND: Replace mocha.opts with a configuration file.

• #4260: Remove enableTimeout() (this.enableTimeout()) from the context object (@craigtaub)

  :sparkles: WORKAROUND: Replace usage of this.enableTimeout(false) in your tests with this.timeout(0).

• #4315: The spec option no longer supports a comma-delimited list of files (@juergba)

  :sparkles: WORKAROUND: Use an array instead (e.g., "spec": "foo.js,bar.js" becomes "spec": ["foo.js", "bar.js"]).

• #4309: Drop support for Node.js v13.x line, which is now End-of-Life (@juergba)

• #4282: --forbid-only will throw an error even if exclusive tests are avoided via --grep or other means (@arvidOtt)

• #4223: The context object's skip() (this.skip()) in a "before all" (before()) hook will no longer execute subsequent sibling hooks, in addition to hooks in child suites (@juergba)

• #4178: Remove previously soft-deprecated APIs (@wnghdcjfe):

  • Mocha.prototype.ignoreLeaks()
  • Mocha.prototype.useColors()
  • Mocha.prototype.useInlineDiffs()
  • Mocha.prototype.hideDiff()

:tada: Enhancements

• #4245: Add ability to run tests in parallel for Node.js (see docs) (@boneskull)

  :exclamation: See also #4244; Root Hook Plugins (docs) -- root hooks must be defined via Root Hook Plugins to work in parallel mode

• #4304: --require now works with ES modules (@JacobLey)

... (truncated)

• 9b203fa Release v8.0.1
• ad8d83d update CHANGELOG for v8.0.1 [ci skip]
• 66ce143 fix --parallel --watch; closes #4327
• e0e6568 update release process in MAINTAINERS.md
• fc618a1 Switch opencollective images to self-hosted spritesheet (#4318)
• 612fa31 Release v8.0.0
• 57fbbee update changelog for v8.0.0
• 26c6cae options 'spec' and 'ignore': no splitting by comma
• 2da50aa add a section regarding 3p reporters & parallel mode
• dc26e90 disable parallel mode by default
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Pull request limits (per update run and/or open at any time)
• Automerge options (never/patch/minor, and dev/runtime dependencies)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

Sourced from husky's releases.

v4.0.0

• Support Yarn v2 new Plug'n'Play feature (thanks to @arcanis)
• Improve path handling on Windows (in particular with Cygwin and Cmdr)
• Remove dependencies and simplify code
• Breaking requires Node 10+

Thanks to all contributors and everyone who is supporting Husky on Open Collective, GitHub sponsors and Patreon!

v4.0.0-beta.5

• Fixes a bug in v4.0.0-beta.4

v4.0.0-beta.4

• Rely on INIT_CWD env rather than node_modules path
• Reduce dependencies: run-node, read-pkg
• Target ES2017 environments
• Support Cygwin and Cmdr on Windows

v4.0.0-beta.3

• Reduce dependencies: remove execa typicode/husky#592 typicode/husky#590 typicode/husky#219
• Merge changes from master since previous release

v4.0.0-beta.2

Merge bug fixes from v3 since v4.0.0-beta.1 was released.

v4.0.0-beta.1

Fix: yarn run error (typicode/husky#562)

v4.0.0-beta.0

This is an experimental release with Yarn PnP support. Huge thanks to @arcanis for the help.

• 764a236 Update dependencies
• fe22db2 4.0.0
• d56d341 Update README.md
• e2ad780 Update README.md
• 0ffe785 Merge 4.0 (#625)
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Pull request limits (per update run and/or open at any time)
• Automerge options (never/patch/minor, and dev/runtime dependencies)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

Sourced from [@​semantic-release/changelog's releases](https://github.com/semantic-release/changelog/releases).

v3.0.4

3.0.4 (2019-05-14)

Bug Fixes

• package: update fs-extra to version 8.0.0 (50ed752)

v3.0.3

3.0.3 (2019-04-14)

Bug Fixes

• package: update aggregate-error to version 3.0.0 (50789ef)

• 50ed752 fix(package): update fs-extra to version 8.0.0
• dd0d91f chore(package): update tempy to version 0.3.0
• 00204d2 chore(package): update nyc to version 14.0.0
• 50789ef fix(package): update aggregate-error to version 3.0.0
• cb9c5eb chore(package): update xo to version 0.24.0
• 7474f2c chore(package): update ava to version 1.0.1
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Automerge options (never/patch/minor, and dev/runtime dependencies)
• Pull request limits (per update run and/or open at any time)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

Finally, you can contact us by mentioning @dependabot.

• 9869a4b release v4.2.6 🎉
• ee0de20 Merge pull request #344 from stefanpenner/add-home-page
• 013a847 Add homepage property to package.json as per @​niftylettuce’s suggestion
• 89c252f Merge pull request #343 from niftylettuce/master
• 9233361 fix: fixed sorting of package.json with fixpack, added jsdelivr/unpkg (clos...
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Automerge options (never/patch/minor, and dev/runtime dependencies)
• Pull request limits (per update run and/or open at any time)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

Finally, you can contact us by mentioning @dependabot.

Sourced from handlebars's changelog.

v4.1.2 - April 13th, 2019

Chore/Test:

• #1515 - Port over linting and test for typings (@​zimmi88)
• chore: add missing typescript dependency, add package-lock.json - 594f1e3
• test: remove safari from saucelabs - 871accc

Bugfixes:

• fix: prevent RCE through the "lookup"-helper - cd38583

Compatibility notes:

Access to the constructor of a class thought {{lookup obj "constructor" }} is now prohibited. This closes a leak that only half closed in versions 4.0.13 and 4.1.0, but it is a slight incompatibility.

This kind of access is not the intended use of Handlebars and leads to the vulnerability described in #1495. We will not increase the major version, because such use is not intended or documented, and because of the potential impact of the issue (we fear that most people won't use a new major version and the issue may not be resolved on many systems).

Commits

v4.1.1 - March 16th, 2019

Bugfixes:

• fix: add "runtime.d.ts" to allow "require('handlebars/runtime')" in TypeScript - 5cedd62

Refactorings:

• replace "async" with "neo-async" - 048f2ce
• use "substring"-function instead of "substr" - 445ae12

Compatibility notes:

• This is a bugfix release. There are no breaking change and no new features.

Commits

v4.1.0 - February 7th, 2019

New Features

• import TypeScript typings - 27ac1ee

Security fixes:

• disallow access to the constructor in templates to prevent RCE - 42841c4, #1495

Housekeeping

• chore: fix components/handlebars package.json and auto-update on release - bacd473
• chore: Use node 10 to build handlebars - 78dd89c
• chore/doc: Add more release docs - 6b87c21

... (truncated)

• 10b5fcf v4.1.2
• dd0144c Update release notes
• 594f1e3 chore: add missing typescript dependency, add package-lock.json
• 871accc test: remove safari from saucelabs
• cd38583 fix: prevent RCE through the "lookup"-helper
• c454d94 Merge pull request #1515 from zimmi88/4.x-typings-lint
• 9cfb5dd Merge pull request #1516 from phil-davis/revert-double-release-notes
• be44246 Remove triplicate of v4.0.12 release notes
• 002561b Revert "Update release notes"
• 3fb6687 Port over linting and test for typings
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language