Eslint-plugin-jest version 22.21.0 represents a minor update to the suite of ESLint rules specifically designed for Jest testing environments, building upon the foundation laid by version 22.20.1. Both versions maintain the same core dependencies, including "@typescript-eslint/experimental-utils" for enhanced TypeScript support. Crucially, the peer dependency on ESLint remains at ">=5," ensuring compatibility with a wide range of ESLint installations. Developers using either version will find familiar tools like Jest itself, Prettier, and various ESLint plugins related to Node.js, import handling, and Prettier integration present for code formatting and linting.
A primary difference lies in the unpacked size of the package where version 22.21.0 sees a slight increase in the package size of around 3KB, this might indicate a change in the core rules or associated tooling. Additionally, the release date also differs; version 22.21.0 was released on 2019-10-27 compared to version 22.20.1 which was realesed on 2019-10-26. This suggests that version 22.21.0 incorporates bug fixes, minor enhancements, or refinements to existing rules. Developers considering an upgrade should examine the changelog for detailed specifics. Both versions benefit from a comprehensive development environment, including TypeScript support, commitlint for enforcing commit message conventions and husky to properly manage git hook to enforce the linting ruleset.
All the vulnerabilities related to the version 22.21.0 of the package
semver vulnerable to Regular Expression Denial of Service
Versions of the package semver before 7.5.2 on the 7.x branch, before 6.3.1 on the 6.x branch, and all other versions before 5.7.2 are vulnerable to Regular Expression Denial of Service (ReDoS) via the function new Range, when untrusted user data is provided as a range.
