Skip to content

Bump Jest to 30.4.2 and pin @babel/core to 7.29.6#213

Merged
abdulahmad307 merged 4 commits into
mainfrom
copilot/update-jest-version-30-4-2
Jun 19, 2026
Merged

Bump Jest to 30.4.2 and pin @babel/core to 7.29.6#213
abdulahmad307 merged 4 commits into
mainfrom
copilot/update-jest-version-30-4-2

Conversation

Copilot AI commented Jun 19, 2026
edited by abdulahmad307
Loading

Copy link
Copy Markdown
Contributor

Should address this security finding: https://github.com/github/markdownlint-github/security/dependabot/47
🤞 - we want babel/core 7.29.6

Updates the repository’s Jest toolchain to 30.4.2, pins the transitive Babel core dependency to 7.29.6, and refreshes the npm lockfile to match the resolved dependency graph. This keeps the test runner version current without changing the package’s runtime surface.

  • Dependency update

    • Raises the jest devDependency from ^30.0.3 to ^30.4.2 in package.json.

  • Transitive dependency pin

    • Adds an npm overrides entry for @babel/core at 7.29.6 so the Jest toolchain resolves the requested Babel core version consistently.

  • Lockfile refresh

    • Regenerates package-lock.json via npm install so the checked-in lockfile matches the updated Jest version, the @babel/core override, and their transitive resolutions.
{
  "devDependencies": {
    "jest": "^30.4.2"
  },
  "overrides": {
    "@babel/core": "7.29.6"
  }
}

Copilot AI changed the title Update Jest to 30.4.2 Bump Jest to 30.4.2 Jun 19, 2026
GitHub Advanced Security started work on behalf of abdulahmad307 June 19, 2026 15:14 View session
Copilot AI requested a review from abdulahmad307 June 19, 2026 15:15
GitHub Advanced Security finished work on behalf of abdulahmad307 June 19, 2026 15:16
@abdulahmad307

abdulahmad307 commented Jun 19, 2026

Copy link
Copy Markdown
Contributor

@copilot i noticed babel/core didn't get updated in package-lock.json - i'd like it to be updated to 7.29.6, how can we make that happen? which npm package can we upgrade to make babel/core go up to 7.29.6?

GitHub Advanced Security started work on behalf of abdulahmad307 June 19, 2026 15:25 View session

Copilot AI commented Jun 19, 2026

Copy link
Copy Markdown
Contributor Author

@copilot i noticed babel/core didn't get updated in package-lock.json - i'd like it to be updated to 7.29.6, how can we make that happen? which npm package can we upgrade to make babel/core go up to 7...

There isn’t a separate top-level package we can upgrade to land exactly on @babel/core@7.29.6 here — the existing Jest packages already allow that range, and a plain refresh now resolves to 7.29.7. I addressed it in 9922b24 by adding an npm overrides entry for @babel/core: 7.29.6 and refreshing the lockfile, so package-lock.json now resolves to 7.29.6 consistently.

Copilot AI changed the title Bump Jest to 30.4.2 Bump Jest to 30.4.2 and pin @babel/core to 7.29.6 Jun 19, 2026
GitHub Advanced Security finished work on behalf of abdulahmad307 June 19, 2026 15:26
@abdulahmad307 abdulahmad307 marked this pull request as ready for review June 19, 2026 15:30
@abdulahmad307 abdulahmad307 requested a review from a team as a code owner June 19, 2026 15:30
Copilot AI review requested due to automatic review settings June 19, 2026 15:30
Copilot AI reviewed Jun 19, 2026
View reviewed changes

Copilot AI left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Updates the repo’s test toolchain dependencies to address a Dependabot security finding by bumping Jest and pinning a transitive Babel core version, with a corresponding lockfile refresh.

Changes:

  • Bump jest devDependency from ^30.0.3 to ^30.4.2.
  • Add an npm overrides pin for @babel/core to 7.29.6.
  • Regenerate package-lock.json to reflect the updated dependency graph.
Show a summary per file
File Description
package.json Updates Jest version and adds an npm override to pin @babel/core to 7.29.6.
package-lock.json Refreshes the lockfile to resolve Jest 30.4.2 and Babel dependencies (including @babel/core@7.29.6).

Copilot's findings

Tip

Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

  • Files reviewed: 1/2 changed files
  • Comments generated: 1

Comment thread package.json
Comment on lines +26 to 28
"globals": "^17.0.0",
"jest": "^30.4.2",
"markdownlint": "^0.41.0",

Copilot AI Jun 19, 2026

Copy link
Copy Markdown
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Updated engines.node to ^18.14.0 || ^20.0.0 || ^22.0.0 || >=24.0.0 to match jest@30.4.2's requirement in tighten engines.node to match jest@30 minimum requirement.

GitHub Advanced Security started work on behalf of abdulahmad307 June 19, 2026 15:47 View session
smockle
smockle reviewed Jun 19, 2026
View reviewed changes
Comment thread package.json
GitHub Advanced Security finished work on behalf of abdulahmad307 June 19, 2026 15:48
@abdulahmad307 @smockle
Update package.json
75cc342 
Co-authored-by: Clay Miller <clay@smockle.com>
GitHub Advanced Security started work on behalf of abdulahmad307 June 19, 2026 15:48 View session
GitHub Advanced Security finished work on behalf of abdulahmad307 June 19, 2026 15:50
@abdulahmad307 abdulahmad307 merged commit 0ea0fa8 into main Jun 19, 2026
5 checks passed
@abdulahmad307 abdulahmad307 deleted the copilot/update-jest-version-30-4-2 branch June 19, 2026 15:50
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@smockle smockle smockle approved these changes

@abdulahmad307 abdulahmad307 Awaiting requested review from abdulahmad307

Assignees

Copilot code review Copilot

@abdulahmad307 abdulahmad307

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@abdulahmad307 @smockle