App: [HOLD for payment 2022-08-08] [$250] Upgrade the package babel-jest to the latest version

If you haven’t already, check out our contributing guidelines for onboarding and email contributors@expensify.com to request to join our Slack channel!

Coming from this issue: https://github.com/Expensify/Expensify/issues/218328

Snyk reported a HIGH severity vulnerability in Expensify/App:package.json.

More information about this issue can be found [here](http://security.snyk.io/vuln/SNYK-JS-TMPL-1583443).

Snyk ID: SNYK-JS-TMPL-1583443
Package: tmpl
Version: 1.0.4
Language: js
Date Introduced: 2022-07-04

Upwork job link - https://www.upwork.com/jobs/~0166a49f3c92894698

About this issue

Original URL
State: closed
Created 2 years ago
Comments: 26 (21 by maintainers)

Most upvoted comments

What’s the status on this?

I guess you merged the PR 8 days back.

parasharrajat on Jul 29, 2022

What’s the status on this?

neil-marcellini on Jul 28, 2022

I’ll just re-assign myself and get it back on track 🚂

michaelhaxhiu on Jul 29, 2022

ah ha, looks like dylan un-assigned me as the CM after he asked his question about reproducibility

michaelhaxhiu on Jul 29, 2022

Ok so after reading our contributor process SO the Exported label was added meaning that an Upwork job was created. It should be linked here and @parasharrajat should be hired and paid on the correct date.

I think since Exported was added before External our normal process didn’t trigger, but that’ fine since @dylanexpensify is a contributor manager. Could you please link the Upwork job and take care of the next steps?

neil-marcellini on Jul 29, 2022

Right, but we prefer 1 PR per upgraded package (in package.json) please

flodnv on Jul 20, 2022

can we merge https://github.com/Expensify/App/issues/9941 into this issue? Upgrading babel-jest will also require upgrading jest and necessary changes.

parasharrajat on Jul 19, 2022

I can do that…

parasharrajat on Jul 19, 2022