[Snyk] Upgrade mocha from 9.2.2 to 11.7.1

[snyk-io]

Snyk has created this PR to upgrade mocha from 9.2.2 to 11.7.1.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

⚠️ Warning: This PR contains major version upgrade(s), and may be a breaking change.

• The recommended version is 30 versions ahead of your current version.

• The recommended version was released 2 months ago.

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Regular Expression Denial of Service (ReDoS) SNYK-JS-MOCHA-2863123	154	No Known Exploit
	Improper Input Validation SNYK-JS-NANOID-8492085	154	No Known Exploit
	Cross-site Scripting (XSS) SNYK-JS-SERIALIZEJAVASCRIPT-6147607	154	Proof of Concept

Release notes

Package name: mocha

• 11.7.1 - 2025-06-24
  

  11.7.1 (2025-06-24)

  🩹 Fixes

  • always fallback to import() if require() fails (#5384) (295c168)

  🧹 Chores

  • add esm loader test (#5383) (f58e49f)
• 11.7.0 - 2025-06-18
  

  11.7.0 (2025-06-18)

  🌟 Features

  • use require to load esm (#5366) (41e24a2)
• 11.6.0 - 2025-06-09
  

  11.6.0 (2025-06-09)

  🌟 Features

  • bump workerpool from ^6.5.1 to ^9.2.0 (#5350) (581a3c5)
• 11.5.0 - 2025-05-23
  

  11.5.0 (2025-05-22)

  🌟 Features

  • bump mimimatch from ^5.1.6 to ^9.0.5 (#5349) (a3dea85)
• 11.4.0 - 2025-05-19
  

  11.4.0 (2025-05-19)

  🌟 Features

  • bump diff from ^5.2.0 to ^7.0.0 (#5348) (554d6bb)

  📚 Documentation

  • added CHANGELOG.md note around 11.1 yargs-parser update (#5362) (618415d)
• 11.3.0 - 2025-05-16
  

  11.3.0 (2025-05-16)

  🌟 Features

  • add option to use posix exit code upon fatal signal (#4989) (91bbf85)

  📚 Documentation

  • Deploy new site alongside old one (#5360) (6c96545)
  • mention explicit browser support range (#5354) (c514c0b)
  • update Node.js version requirements for 11.x (#5329) (abf3dd9)

  🧹 Chores

  • remove prerelease setting in release-please config (#5363) (8878f22)
• 11.2.2 - 2025-04-10
  

  11.2.2 (2025-04-10)

  🩹 Fixes

  • deps: update chokidar to v4 (#5256) (8af0f1a)

  📚 Documentation

  • add ClientRedirects.astro (#5324) (b88d441)
  • add example/tests.html to docs-next (#5325) (6ec5762)
• 11.2.1 - 2025-04-10
  

  11.2.1 (2025-04-10)

  🩹 Fixes

  • switch from ansi-colors to picocolors (#5323) (7c08d09)

  📚 Documentation

  • fix new website typos, improve readability (#5312) (fbceb19)

  🧹 Chores

  • "force" Netlify to use npm to build new site (#5319) (3a46855)
  • Fix tests (#5320) (18699a0)
• 11.2.0 - 2025-03-17
  

  11.2.0 (2025-03-17)

  🌟 Features

  • enable reporters to show relative paths of tests (#5292) (81ea666)

  📚 Documentation

  • add instructions for API docs (#5287) (b720ec1)
  • add new website using Astro Starlight (#5246) (b1f1cb7)
  • improve third-party reporter docs (#5285) (c5a0ef5)

  🧹 Chores

  • enabled eslint-plugin-n (#5280) (945d6e3)
  • pin node-lts tests to 22.11.0 (#5279) (664e1f4)
  • replace fs-extra with newer fs built-ins (#5284) (75dcf8c)
• 11.1.0 - 2025-01-02
  

  11.1.0 (2025-01-02)

  🌟 Features

  • bump yargs to 17 (#5165) (8f1c8d8)
    • Note that this also included a version bump of yargs-parser from ^20.2.9 to ^21.1., which fixed a bug that caused extra quotes in file paths to be removed.
      See #5341 for more information.
• 11.0.2 - 2024-12-09
• 11.0.1 - 2024-12-02
• 11.0.0 - 2024-11-11
• 11.0.0-beta - 2024-11-23
• 10.8.2 - 2024-10-30
• 10.8.1 - 2024-10-29
• 10.8.0 - 2024-10-29
• 10.7.3 - 2024-08-09
• 10.7.0 - 2024-07-20
• 10.6.1 - 2024-07-20
• 10.6.0 - 2024-07-02
• 10.5.2 - 2024-06-26
• 10.5.1 - 2024-06-25
• 10.5.0 - 2024-06-24
• 10.4.0 - 2024-03-26
• 10.3.0 - 2024-02-08
• 10.3.0-preminor.0 - 2024-01-30
• 10.2.0 - 2022-12-11
• 10.1.0 - 2022-10-15
• 10.0.0 - 2022-05-01
• 9.2.2 - 2022-03-11

from mocha GitHub release notes

---

Important

• Warning: This PR contains a major version upgrade, and may be a breaking change.
• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.
• Max score is 1000. Note that the real score may have changed since the PR was raised.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[semanticdiff-com]

Review changes with  

Changed Files

File	Status
package.json	0% smaller

[snyk-io]

🎉 Snyk checks have passed. No issues have been found so far.

✅ security/snyk check is complete. No issues have been found. (View Details)