[Snyk] Upgrade eslint-plugin-import from 2.22.1 to 2.27.5

[ManuelDevWeb]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade eslint-plugin-import from 2.22.1 to 2.27.5.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 20 versions ahead of your current version.
• The recommended version was released 6 months ago, on 2023-01-16.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Prototype Pollution SNYK-JS-JSON5-3182856	427/1000 Why? Proof of Concept exploit, CVSS 6.4	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHPARSE-1077067	427/1000 Why? Proof of Concept exploit, CVSS 6.4	Proof of Concept
	Prototype Pollution SNYK-JS-MINIMIST-2429795	427/1000 Why? Proof of Concept exploit, CVSS 6.4	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: eslint-plugin-import

• 2.27.5 - 2023-01-16
  

  v2.27.5

• 2.27.4 - 2023-01-12
  

  v2.27.4

• 2.27.3 - 2023-01-12
  

  v2.27.3

• 2.27.2 - 2023-01-12
  

  v2.27.2

• 2.27.1 - 2023-01-12
  

  v2.27.1

• 2.27.0 - 2023-01-11
  

  v2.27.0

• 2.26.0 - 2022-04-05
  

  v2.26.0

• 2.25.4 - 2022-01-02
• 2.25.3 - 2021-11-10
• 2.25.2 - 2021-10-12
• 2.25.1 - 2021-10-12
• 2.25.0 - 2021-10-12
• 2.24.2 - 2021-08-24
• 2.24.1 - 2021-08-19
• 2.24.0 - 2021-08-08
• 2.23.4 - 2021-05-29
• 2.23.3 - 2021-05-21
• 2.23.2 - 2021-05-15
• 2.23.1 - 2021-05-15
• 2.23.0 - 2021-05-14
• 2.22.1 - 2020-09-27

from eslint-plugin-import GitHub release notes

Commit messages

Package name: eslint-plugin-import

• 5ff9e45 Bump to v2.27.5
• ee6e1be [Refactor] minor performance refactors
• 3cb966e [Deps] update `array.prototype.flatmap`
• 0778b03 [Fix] `order`: Fix group ranks order when alphabetizing
• af8fd26 [eslint] configure `no-extraneous-dependencies` rule properly, to prevent today’s bugs
• cda23fe Bump to 2.27.4
• 520e169 [Fix] `semver` should be a prod dep
• 82d81f1 Bump to 2.27.3
• 2035355 [Fix] `no-empty-named-blocks`: rewrite rule to only check import declarations
• eee88e4 Bump to 2.27.2
• 07171ef [Fix] `no-duplicates`: do not unconditionally require `typescript`
• 167f16c Bump to 2.27.1
• 7cca10b [Fix] `array.prototype.flatmap` should be a prod dep
• 01950df Bump to 2.27.0
• 3b45d20 [Deps] update `eslint-import-resolver-node`
• 74e2a95 [resolvers/node] v0.3.7
• 9288cf7 [meta] CONTRIBUTING.md: add resources for newcomers
• c2f003a [Fix] `no-import-module-exports`: avoid a false positive for import variables
• 404b5ce [Deps] update `debug` to v3
• 6304ddc [New] `no-duplicates`: support inline type import with `inlineTypeImport` option
• de895ac [meta] link rule names in changelog
• 56b3ea4 [Perf] `no-cycle`, `no-internal-modules`, `no-restricted-paths`: use `anyOf` instead of `oneOf`
• b96b499 [New] `no-absolute-path`: add fixer
• 5a37196 [Fix] `no-cycle`: Accept `import typeof`, like `import type`

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs