[Snyk] Upgrade mocha from 2.4.5 to 6.2.2

[snyk-bot]

Snyk has created this PR to upgrade mocha from 2.4.5 to 6.2.2.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

Warning: This is a major version upgrade, and may be a breaking change.

• The recommended version is 46 versions ahead of your current version.
• The recommended version was released a month ago, on 2019-10-18.

The recommended version fixes:

Severity	Title	Issue ID
	Arbitrary Code Injection	npm:growl:20160721

Release notes

• Package name: mocha
  • 6.2.2 - 2019-10-18

    6.2.2 / 2019-10-18

    🐛 Fixes

    • #4025: Fix duplicate EVENT_RUN_END events upon uncaught exception (@juergba)
    • #4051: Fix "unhide" function in html reporter (browser) (@pec9399)
    • #4063: Fix use of esm in Node.js v8.x (@boneskull)
    • #4033: Fix output when multiple async exceptions are thrown (@juergba)

    📖 Documentation

    • #4046: Site accessibility fixes (@Mia-jeong)
    • #4026: Update docs for custom reporters in browser (@Lindsay-Needs-Sleep)
    • #3971: Adopt new OpenJS Foundation Code of Conduct (@craigtaub)
  • 6.2.1 - 2019-09-29

    6.2.1 / 2019-09-29

    🐛 Fixes

    • #3955: tty.getWindowSize is not a function inside a "worker_threads" worker (@1999)
    • #3970: remove extraGlobals() (@juergba)
    • #3984: Update yargs-unparser to v1.6.0 (@juergba)
    • #3983: Package 'esm': spawn child-process for correct loading (@juergba)
    • #3986: Update yargs to v13.3.0 and yargs-parser to v13.1.1 (@juergba)

    📖 Documentation

    • #3886: fix styles on mochajs.org (@outsideris)
    • #3966: Remove jsdoc index.html placeholder from eleventy file structure and fix broken link in jsdoc tutorial (@Munter)
    • #3765: Add Matomo to website (@MarioDiaz98)
    • #3947: Clarify effect of .skip() (@oliversalzburg)
  • 6.2.0 - 2019-07-18

    6.2.0 / 2019-07-18

    🎉 Enhancements

    • #3827: Do not fork child-process if no Node flags are present (@boneskull)
    • #3725: Base reporter store ref to console.log, see mocha/wiki (@craigtaub)

    🐛 Fixes

    • #3960: Don't re-initialize grep option on watch re-run (@geigerzaehler)
    • #3942: Fix "No test files found" Error when file is passed via --file (@gabegorelick)
    • #3914: Modify Mocha constructor to accept options global or globals (@pascalpp)
    • #3894: Fix parsing of config files with _mocha binary (@juergba)
    • #3834: Fix CLI parsing with default values (@boneskull, @juergba)
    • #3831: Fix --timeout/--slow string values and duplicate arguments (@boneskull, @juergba)

    📖 Documentation

    • #3906: Document option to define custom report name for XUnit reporter (@pkuczynski)
    • #3889: Adds doc links for mocha-examples (@craigtaub)
    • #3887: Fix broken links (@toyjhlee)
    • #3841: Fix anchors to configuration section (@trescube)

    🔍 Coverage

    • #3915, #3929: Increase tests coverage for --watch options (@geigerzaehler)

    🔩 Other

    • #3953: Collect test files later, prepares improvements to the --watch mode behavior (@geigerzaehler)
    • #3939: Upgrade for npm audit (@boneskull)
    • #3930: Extract runWatch into separate module (@geigerzaehler)
    • #3922: Add mocha.min.js file to stacktrace filter (@brian-lagerman)
    • #3919: Update CI config files to use Node-12.x (@plroebuck)
    • #3892: Rework reporter tests (@plroebuck)
    • #3872: Rename --exclude to --ignore and create alias (@boneskull)
    • #3963: Hide stacktrace when cli args are missing (@outsideris)
    • #3956: Do not redeclare variable in docs array example (@DanielRuf)
    • #3957: Remove duplicate line-height property in mocha.css (@DanielRuf)
  • 6.1.4 - 2019-04-18

    6.1.4 / 2019-04-18

    🔒 Security Fixes

    • #3877: Upgrade js-yaml, addressing code injection vulnerability (@bjornstar)
  • 6.1.3 - 2019-04-12

    6.1.3 / 2019-04-11

    🐛 Fixes

    • #3863: Fix yargs-related global scope pollution (@inukshuk)
    • #3869: Fix failure when installed w/ pnpm (@boneskull)
  • 6.1.2 - 2019-04-08

    6.1.2 / 2019-04-08

    🐛 Fixes

    • #3867: Re-publish v6.1.1 from POSIX OS to avoid dropped executable flags (@boneskull)
  • 6.1.1 - 2019-04-07

    6.1.1 / 2019-04-07

    🐛 Fixes

    • #3866: Fix Windows End-of-Line publishing issue (@juergba & @cspotcode)
  • 6.1.0 - 2019-04-07

    6.1.0 / 2019-04-07

    🔒 Security Fixes

    • #3845: Update dependency "js-yaml" to v3.13.0 per npm security advisory (@plroebuck)

    🎉 Enhancements

    • #3766: Make reporter constructor support optional options parameter (@plroebuck)
    • #3760: Add support for config files with .jsonc extension (@sstephant)

    📠 Deprecations

    These are soft-deprecated, and will emit a warning upon use. Support will be removed in (likely) the next major version of Mocha:

    • #3719: Deprecate this.skip() for "after all" hooks (@juergba)

    🐛 Fixes

    • #3829: Use cwd-relative pathname to load config file (@plroebuck)
    • #3745: Fix async calls of this.skip() in "before each" hooks (@juergba)
    • #3669: Enable --allow-uncaught for uncaught exceptions thrown inside hooks (@givanse)

    and some regressions:

    • #3848: Fix Suite cloning by copying root property (@fatso83)
    • #3816: Guard against undefined timeout option (@boneskull)
    • #3814: Update "yargs" in order to avoid deprecation message (@boneskull)
    • #3788: Fix support for multiple node flags (@aginzberg)

    📖 Documentation

    • mochajs/mocha-examples: New repository of working examples of common configurations using mocha (@craigtaub)
    • #3850: Remove pound icon showing on header hover on docs (@jd2rogers2)
    • #3812: Add autoprefixer to documentation page CSS (@Munter)
    • #3811: Update doc examples "tests.html" (@DavidLi119)
    • #3807: Mocha website HTML tweaks (@plroebuck)
    • #3793: Update config file example ".mocharc.yml" (@cspotcode)

    🔩 Other

    • #3830: Replace dependency "findup-sync" with "find-up" for faster startup (@cspotcode)
    • #3799: Update devDependencies to fix many npm vulnerabilities (@XhmikosR)
  • 6.0.2 - 2019-02-25

    6.0.2 / 2019-02-25

    🐛 Fixes

    Two more regressions fixed:

    • #3768: Test file paths no longer dropped from mocha.opts (@boneskull)
    • #3767: --require does not break on module names that look like certain node flags (@boneskull)
  • 6.0.1 - 2019-02-21

    6.0.1 / 2019-02-21

    The obligatory round of post-major-release bugfixes.

    🐛 Fixes

    These issues were regressions.

    • #3754 - Mocha again finds test.js when run without arguments (@plroebuck)
    • #3756 - Mocha again supports third-party interfaces via --ui (@boneskull)
    • #3755 - Fix broken --watch (@boneskull)
    • #3759 - Fix unwelcome deprecation notice when Mocha run against languages (CoffeeScript) with implicit return statements; returning a non-undefined value from a describe callback is no longer considered deprecated (@boneskull)

    📖 Documentation

    • #3738 - Upgrade to @mocha/docdash@2 (@tendonstrength)
    • #3751 - Use preferred names for example config files (@Szauka)
  • 6.0.0 - 2019-02-18
  • 6.0.0-1 - 2019-01-02
  • 6.0.0-0 - 2019-01-01
  • 5.2.0 - 2018-05-18
  • 5.1.1 - 2018-04-18
  • 5.1.0 - 2018-04-12
  • 5.0.5 - 2018-03-23
  • 5.0.4 - 2018-03-07
  • 5.0.3 - 2018-03-07
  • 5.0.2 - 2018-03-06
  • 5.0.1 - 2018-02-13
  • 5.0.0 - 2018-01-18
  • 4.1.0 - 2017-12-29
  • 4.0.1 - 2017-10-06
  • 4.0.0 - 2017-10-03
  • 3.5.3 - 2017-09-11
  • 3.5.2 - 2017-09-10
  • 3.5.1 - 2017-09-10
  • 3.5.0 - 2017-07-31
  • 3.4.2 - 2017-05-24
  • 3.4.1 - 2017-05-14
  • 3.3.0 - 2017-04-24
  • 3.2.0 - 2016-11-24
  • 3.1.2 - 2016-10-11
  • 3.1.1 - 2016-10-10
  • 3.1.0 - 2016-09-27
  • 3.0.2 - 2016-08-08
  • 3.0.1 - 2016-08-04
  • 3.0.0 - 2016-08-01
  • 3.0.0-2 - 2016-07-26
  • 3.0.0-1 - 2016-07-08
  • 3.0.0-0 - 2016-07-03
  • 2.5.3 - 2016-05-25
  • 2.5.2 - 2016-05-24
  • 2.5.1 - 2016-05-23
  • 2.5.0 - 2016-05-23
  • 2.4.5 - 2016-01-28
from mocha GitHub release notes

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs