[Snyk] Upgrade karma from 3.1.4 to 6.4.4

[snyk-io]

Snyk has created this PR to upgrade karma from 3.1.4 to 6.4.4.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

⚠️ Warning: This PR contains major version upgrade(s), and may be a breaking change.

• The recommended version is 58 versions ahead of your current version.

• The recommended version was released 5 months ago.

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Regular Expression Denial of Service (ReDoS) SNYK-JS-USERAGENT-174737	115	No Known Exploit
	Denial of Service (DoS) SNYK-JS-WS-7266574	115	Proof of Concept
	Denial of Service (DoS) SNYK-JS-ENGINEIO-1056749	115	Proof of Concept
	Denial of Service (DoS) SNYK-JS-ENGINEIO-3136336	115	No Known Exploit
	Arbitrary Code Injection SNYK-JS-XMLHTTPREQUESTSSL-1082936	115	Proof of Concept
	Access Restriction Bypass SNYK-JS-XMLHTTPREQUESTSSL-1255647	115	Proof of Concept
	Denial of Service (DoS) SNYK-JS-SOCKETIOPARSER-1056752	115	Proof of Concept
	Cross-site Scripting (XSS) SNYK-JS-KARMA-2395349	115	Proof of Concept
	Open Redirect SNYK-JS-KARMA-2396325	115	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-USERAGENT-8309369	115	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-WS-1296835	115	Proof of Concept
	Information Exposure SNYK-JS-LOG4JS-2348757	115	No Known Exploit
	Cross-site Scripting (XSS) SNYK-JS-COOKIE-8163060	115	No Known Exploit
	Insecure Defaults SNYK-JS-SOCKETIO-1024859	115	Proof of Concept
	Regular Expression Denial of Service (ReDoS) npm:braces:20180219	115	Proof of Concept
	Improper Input Validation SNYK-JS-SOCKETIOPARSER-3091012	115	No Known Exploit

Release notes

Package name: karma

• 6.4.4 - 2024-07-29
  

  6.4.4 (2024-07-29)

• 6.4.3 - 2024-02-24
  

  6.4.3 (2024-02-24)

  Bug Fixes

  • add build commits for patch release (d7f2d69)
• 6.4.2 - 2023-04-21
  

  6.4.2 (2023-04-21)

  Bug Fixes

  • few typos (c6a4271)
• 6.4.1 - 2022-09-19
  

  6.4.1 (2022-09-19)

  Bug Fixes

  • pass integrity value (63d86be)
• 6.4.0 - 2022-06-14
  

  6.4.0 (2022-06-14)

  Features

  • support SRI verification of link tags (dc51a2e)
  • support SRI verification of script tags (6a54b1c)
• 6.3.20 - 2022-05-13
  

  6.3.20 (2022-05-13)

  Bug Fixes

  • prefer IPv4 addresses when resolving domains (e17698f), closes #3730
• 6.3.19 - 2022-04-19
  

  6.3.19 (2022-04-19)

  Bug Fixes

  • client: error out when opening a new tab fails (099b85e)
• 6.3.18 - 2022-04-13
  

  6.3.18 (2022-04-13)

  Bug Fixes

  • deps: upgrade socket.io to v4.4.1 (52a30bb)
• 6.3.17 - 2022-02-28
  

  6.3.17 (2022-02-28)

  Bug Fixes

  • deps: update colors to maintained version (#3763) (fca1884)
• 6.3.16 - 2022-02-10
  

  6.3.16 (2022-02-10)

  Bug Fixes

  • security: mitigate the "Open Redirect Vulnerability" (ff7edbb)
• 6.3.15 - 2022-02-05
• 6.3.14 - 2022-02-05
• 6.3.13 - 2022-01-31
• 6.3.12 - 2022-01-24
• 6.3.11 - 2022-01-13
• 6.3.10 - 2022-01-08
• 6.3.9 - 2021-11-16
• 6.3.8 - 2021-11-07
• 6.3.7 - 2021-11-01
• 6.3.6 - 2021-10-25
• 6.3.5 - 2021-10-20
• 6.3.4 - 2021-06-14
• 6.3.3 - 2021-06-01
• 6.3.2 - 2021-03-29
• 6.3.1 - 2021-03-24
• 6.3.0 - 2021-03-23
• 6.2.0 - 2021-03-10
• 6.1.2 - 2021-03-09
• 6.1.1 - 2021-02-12
• 6.1.0 - 2021-02-03
• 6.0.4 - 2021-02-01
• 6.0.3 - 2021-01-27
• 6.0.2 - 2021-01-25
• 6.0.1 - 2021-01-20
• 6.0.0 - 2021-01-13
• 5.2.3 - 2020-09-25
• 5.2.2 - 2020-09-08
• 5.2.1 - 2020-09-02
• 5.2.0 - 2020-08-31
• 5.1.1 - 2020-07-28
• 5.1.0 - 2020-06-11
• 5.0.9 - 2020-05-19
• 5.0.8 - 2020-05-18
• 5.0.7 - 2020-05-16
• 5.0.6 - 2020-05-16
• 5.0.5 - 2020-05-07
• 5.0.4 - 2020-04-30
• 5.0.3 - 2020-04-29
• 5.0.2 - 2020-04-16
• 5.0.1 - 2020-04-10
• 5.0.0 - 2020-04-09
• 4.4.1 - 2019-10-18
• 4.4.0 - 2019-10-17
• 4.3.0 - 2019-08-27
• 4.2.0 - 2019-07-12
• 4.1.0 - 2019-04-15
• 4.0.1 - 2019-02-28
• 4.0.0 - 2019-01-23
• 3.1.4 - 2018-12-17

from karma GitHub release notes

---

Important

• Warning: This PR contains a major version upgrade, and may be a breaking change.
• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.
• Max score is 1000. Note that the real score may have changed since the PR was raised.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[semanticdiff-com]

Review changes with  

Changed Files

File	Status
package.json	0% smaller

[snyk-io]

🎉 Snyk checks have passed. No issues have been found so far.

✅ security/snyk check is complete. No issues have been found. (View Details)

✅ license/snyk check is complete. No issues have been found. (View Details)