[Snyk] Security upgrade eslint from 8.40.0 to 10.0.0#190
[Snyk] Security upgrade eslint from 8.40.0 to 10.0.0#190snyk-io[bot] wants to merge 1 commit intomainfrom
Conversation
The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-AJV-15274295
✅ Snyk checks have passed. No issues have been found so far.
💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse. |
WalkthroughThis PR upgrades ESLint from version 8.40.0 to 10.0.0 in the GUI package, representing a major version update with significant architectural changes. The upgrade introduces new ESLint core packages (@eslint/config-array, @eslint/core, @eslint/plugin-kit, @eslint/object-schema, @eslint/config-helpers) and replaces deprecated @eslint/eslintrc with modernized configuration systems. Several legacy dependencies (chalk, doctrine v3, grapheme-splitter, strip-ansi, js-yaml) have been removed, while new dependencies supporting flat config and improved performance through native modules have been added. The update includes comprehensive dependency updates across eslint-community packages, type definitions, and utility libraries, along with enhanced @HumanFS packages for file system operations. Changes
Sequence DiagramThis diagram shows the interactions between components: sequenceDiagram
participant App as Application
participant ESLint as ESLint 10.0.0
participant ConfigArray as @eslint/config-array
participant ConfigHelpers as @eslint/config-helpers
participant Core as @eslint/core
participant PluginKit as @eslint/plugin-kit
participant HumanFS as @humanfs/node
participant Espree as Espree Parser
participant Plugins as ESLint Plugins
App->>ESLint: Initialize linter
ESLint->>ConfigArray: Load configuration
ConfigArray->>ConfigHelpers: Validate config structure
ConfigHelpers->>Core: Process config schema
Core-->>ConfigArray: Schema validated
ConfigArray->>HumanFS: Read config files
HumanFS-->>ConfigArray: Config file contents
ConfigArray-->>ESLint: Merged configuration
ESLint->>PluginKit: Register plugins
PluginKit->>Plugins: Load plugin rules
Plugins-->>PluginKit: Rule definitions
PluginKit-->>ESLint: Plugins registered
App->>ESLint: Lint files
ESLint->>HumanFS: Read source files
HumanFS-->>ESLint: File contents
loop For each file
ESLint->>Espree: Parse source code
Espree-->>ESLint: AST (Abstract Syntax Tree)
ESLint->>Core: Apply rules to AST
Core->>Plugins: Execute rule checks
Plugins-->>Core: Rule violations
Core-->>ESLint: Linting results
end
ESLint-->>App: Aggregated lint results
Note for WindsurfPlease change the default marketplace provider to the following in the windsurf settings:Marketplace Extension Gallery Service URL: https://marketplace.visualstudio.com/_apis/public/gallery Marketplace Gallery Item URL: https://marketplace.visualstudio.com/items Entelligence.ai can learn from your feedback. Simply add 👍 / 👎 emojis to teach it your preferences. More shortcuts belowEmoji Descriptions:
Interact with the Bot:
Also you can trigger various commands with the bot by doing The current supported commands are
More commands to be added soon. |
Snyk has created this PR to fix 1 vulnerabilities in the npm dependencies of this project.
Snyk changed the following file(s):
gui/package.jsongui/package-lock.jsonVulnerabilities that will be fixed with an upgrade:
SNYK-JS-AJV-15274295
Important
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Regular Expression Denial of Service (ReDoS)
EntelligenceAI PR Summary
Major ESLint upgrade from version 8.40.0 to 10.0.0 with architectural modernization and dependency cleanup.