Skip to content

Bump fast-check from 2.14.0 to 3.1.2#362

Closed
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/npm_and_yarn/fast-check-3.1.2
Closed

Bump fast-check from 2.14.0 to 3.1.2#362
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/npm_and_yarn/fast-check-3.1.2

Conversation

@dependabot
Copy link

@dependabot dependabot bot commented on behalf of github Sep 1, 2022

Bumps fast-check from 2.14.0 to 3.1.2.

Release notes

Sourced from fast-check's releases.

More resilient to external poisoning on assert and property

Fixes

  • (PR#3082) Bug: Protect assert from poisoned Math or Date
  • (PR#3086) Bug: Resist to poisoning of Object
  • (PR#3087) Bug: Resist to poisoning of Function/Array/String
  • (PR#3089) Bug: Clear poisoning instability in filter, map, chain
  • (PR#3079) CI: Auto-cancel previous runs on new commits
  • (PR#3088) Script: Add script to run e2e tests in debug mode
  • (PR#3092) Script: Better handle new projects in changelog generator
  • (PR#3081) Test: Add some poisoning e2e for fast-check
  • (PR#3085) Test: Check poisoning against noop arbitrary (for now)

Better package.json definition and __proto__ related fixes

Fixes

  • (PR#3066) Bug: Export package.json
  • (PR#3070) Bug: Support __proto__ as key in record
  • (PR#3068) Test: Fix test comparing stringify and JSON.stringify
  • (PR#3069) Test: Fix tests on record wrongly manipulating __proto__

Generate more dangerous strings by default

[Code][Diff]

Features

  • (PR#2975) Sanitize constraints used internally by "oneof" as much as possible
  • (PR#3048) Add experimental "custom slices" constraint on array
  • (PR#3043) Generate dangerous strings by default

Fixes

  • (PR#3049) Bug: Fix out-of-range in SlicedBasedGenerator
  • (PR#3050) Bug: Allow strange keys as keys of dictionary
  • (PR#3051) Bug: Better rounding in statistics
  • (PR#3052) CI: Add missing Ubuntu env for e2e
  • (PR#3047) Refactor: Implement sliced based generator for arrays
  • (PR#3059) Script: Add links to buggy PRs in changelog PR
  • (PR#3060) Script: Only commit package.json corresponding to impacted CHANGELOGs

Basic setup for monorepo

Basic setup for monorepo [Code][Diff]

Fixes

  • (PR#2986) CI: Switch to Yarn 3 and simple monorepo
  • (PR#2987) CI: Simplify test-bundle script following merge of Yarn 3
  • (PR#2988) CI: Switch to yarn workspace * instead of cd packages/*
  • (PR#2990) CI: Replace npx by yarn dlx
  • (PR#2991) CI: Setup prettier at the root of the project

... (truncated)

Changelog

Sourced from fast-check's changelog.

3.1.2

More resilient to external poisoning on assert and property [Code][Diff]

Fixes

  • (PR#3082) Bug: Protect assert from poisoned Math or Date
  • (PR#3086) Bug: Resist to poisoning of Object
  • (PR#3087) Bug: Resist to poisoning of Function/Array/String
  • (PR#3089) Bug: Clear poisoning instability in filter, map, chain
  • (PR#3079) CI: Auto-cancel previous runs on new commits
  • (PR#3088) Script: Add script to run e2e tests in debug mode
  • (PR#3092) Script: Better handle new projects in changelog generator
  • (PR#3081) Test: Add some poisoning e2e for fast-check
  • (PR#3085) Test: Check poisoning against noop arbitrary (for now)

3.1.1

Better package.json definition and __proto__ related fixes [Code][Diff]

Fixes

  • (PR#3066) Bug: Export package.json
  • (PR#3070) Bug: Support __proto__ as key in record
  • (PR#3068) Test: Fix test comparing stringify and JSON.stringify
  • (PR#3069) Test: Fix tests on record wrongly manipulating __proto__

3.1.0

Generate more dangerous strings by default [Code][Diff]

Features

  • (PR#2975) Sanitize constraints used internally by "oneof" as much as possible
  • (PR#3048) Add experimental "custom slices" constraint on array
  • (PR#3043) Generate dangerous strings by default

Fixes

  • (PR#3049) Bug: Fix out-of-range in SlicedBasedGenerator
  • (PR#3050) Bug: Allow strange keys as keys of dictionary
  • (PR#3051) Bug: Better rounding in statistics
  • (PR#3052) CI: Add missing Ubuntu env for e2e
  • (PR#3047) Refactor: Implement sliced based generator for arrays
  • (PR#3059) Script: Add links to buggy PRs in changelog PR
  • (PR#3060) Script: Only commit package.json corresponding to impacted CHANGELOGs

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump fast-check from 2.14.0 to 3.1.2
105414a 
Bumps [fast-check](https://github.com/dubzzz/fast-check/tree/HEAD/packages/fast-check) from 2.14.0 to 3.1.2.
- [Release notes](https://github.com/dubzzz/fast-check/releases)
- [Changelog](https://github.com/dubzzz/fast-check/blob/main/packages/fast-check/CHANGELOG.md)
- [Commits](https://github.com/dubzzz/fast-check/commits/v3.1.2/packages/fast-check)

---
updated-dependencies:
- dependency-name: fast-check
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Sep 1, 2022
@dependabot dependabot bot mentioned this pull request Sep 1, 2022
Closed
@dependabot @github
Copy link
Author

dependabot bot commented on behalf of github Oct 1, 2022

Superseded by #364.

@dependabot dependabot bot closed this Oct 1, 2022
@dependabot dependabot bot deleted the dependabot/npm_and_yarn/fast-check-3.1.2 branch October 1, 2022 09:01
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants