[Snyk] Security upgrade tap from 11.1.5 to 18.0.0

[snyk-io]

Snyk has created this PR to fix 1 vulnerabilities in the npm dependencies of this project.

Snyk changed the following file(s):

• package.json
• package-lock.json

Vulnerabilities that will be fixed with an upgrade:

	Issue	Score
	Inefficient Algorithmic Complexity SNYK-JS-MINIMATCH-15353389	170

Breaking Change Risk

Notice: This assessment is enhanced by AI.

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• Max score is 1000. Note that the real score may have changed since the PR was raised.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.

[snyk-io]

The upgrade from tap v11.1.5 to v18.0.0 is a major migration with significant breaking changes, primarily introduced in version 18. This upgrade requires substantial changes to configuration, test code, and CI/CD processes.

Key Breaking Changes:

• Complete Overhaul in v18: Version 18 was rewritten in TypeScript and moved to a plugin-based architecture. Features like TypeScript support, mocking, and most assertion methods are now managed as optional plugins that may need to be installed and configured separately.
• Coverage System Replaced: The coverage engine was switched from nyc to c8. Consequently, many CLI flags and configuration options related to nyc (e.g., --cov, --no-cov, --check-coverage) have been removed. Coverage is now enabled by default, and not meeting 100% coverage is considered a test failure.
• Configuration and CLI Changes: Many configuration options and CLI flags from v16 and earlier are deprecated or have been replaced. For example, tap repl replaces tap --watch, and generating a coverage report is now done with tap report.
• API and Behavior Changes:
  • Callbacks have been removed from t.beforeEach and t.afterEach in favor of promise-based approaches.
  • The t.test() method's promise now resolves to the child test's results instead of the parent's.
  • Support for Node.js versions below 10 was dropped in v15.

Source: Official Changelog, v18 Upgrade Guide

Recommendation: This is a major refactoring effort that requires careful planning. Developers must review the official v18 upgrade guide, update their configuration files, install necessary plugins for previously built-in functionality, and adapt their test code to the new APIs and coverage behavior.

Notice 🤖: This content was augmented using artificial intelligence. AI-generated content may contain errors and should be reviewed for accuracy before use.

[snyk-io]

⛔ Snyk checks have failed. 4 issues have been found so far.

Status	Scanner	Critical	High	Medium	Low	Total (4)
⛔	Open Source Security	0	1	3	0	4 issues
✅	Licenses	0	0	0	0	0 issues

💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse.