You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This update includes two major version upgrades, both of which are high-risk and require developer action.
@babel/cli from 7.28.6 to 8.0.0
Risk: HIGH
This is a significant upgrade that modernizes the entire Babel ecosystem. It introduces several breaking changes that require configuration updates and environment changes.
ESM Only: All Babel packages are now published as ESM, which may affect your build tooling and configuration. [1, 2, 3]
Default Target Changed: Babel no longer compiles to ES5 by default. It now targets modern browsers according to browserslist defaults. If you need to support older browsers, you must explicitly configure the targets option. [1, 3, 5]
Configuration Migration:
The loose and spec options are removed in favor of the top-level assumptions option. [1, 5]
Polyfill injection via useBuiltIns and corejs options has been removed from @babel/preset-env. You must now use a dedicated package like babel-plugin-polyfill-corejs3. [1, 4]
Recommendation:
Follow the official Babel 8 Migration Guide before upgrading. It is recommended to first update your Babel 7 configuration to align with Babel 8's new defaults, ensure your build works, and then perform the package upgrade. [5]
del from 3.0.0 to 8.0.0
Risk: HIGH
This upgrade spans five major versions (v4 through v8). While a direct changelog is not available, packages from this author have consistently migrated to pure ESM modules, which is a significant breaking change.
Key Breaking Changes:
Pure ESM Module: The package is almost certainly now a pure ESM module. This requires you to change how you import it, from const del = require('del') to import { del } from 'del'. This is a mandatory code modification.
Node.js Support: Support for older, end-of-life Node.js versions has been dropped. A modern version of Node.js is required.
Recommendation:
Update your code to use ES module import syntax. Given the large version gap and lack of a consolidated changelog, thorough testing is critical to ensure all functionality works as expected after the upgrade.
Notice 🤖: This content was augmented using artificial intelligence. AI-generated content may contain errors and should be reviewed for accuracy before use.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Snyk has created this PR to fix 1 vulnerabilities in the npm dependencies of this project.
Snyk changed the following file(s):
package.jsonVulnerabilities that will be fixed with an upgrade:
SNYK-JS-BRACEEXPANSION-17706650
Breaking Change Risk
Important
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.