Closed dependabot[bot] closed 3 weeks ago
New and removed dependencies detected. Learn more about Socket for GitHub ↗︎
Package | New capabilities | Transitives | Size | Publisher |
---|---|---|---|---|
npm/webpack-dev-server@5.0.4 | environment, eval, network Transitive: filesystem, shell, unsafe | +221 |
15.3 MB | evilebottnawi |
🚮 Removed packages: npm/webpack-dev-server@4.15.1
Superseded by #2475.
Bumps webpack-dev-server from 4.15.1 to 5.0.4.
Release notes
Sourced from webpack-dev-server's releases.
Changelog
Sourced from webpack-dev-server's changelog.
Commits
64a1860
chore(release): 5.0.4aab576a
fix(security): bump webpack-dev-middleware (#5112)fb6f22a
chore(deps-dev): bump@commitlint/config-conventional
(#5104)ba9dfb6
chore(deps-dev): bump@commitlint/cli
from 19.0.3 to 19.1.0 (#5103)08cab58
chore(release): 5.0.337f4760
chore(deps-dev): bump@types/node
from 20.11.25 to 20.11.26 (#5102)6e1aed3
fix(types): proxy (#5101)8ea7cb8
chore(deps): bump open from 10.0.4 to 10.1.0 (#5100)c6a3586
chore(deps-dev): bump puppeteer from 22.4.0 to 22.4.1 (#5099)2201442
chore(deps): update (#5096)You can trigger a rebase of this PR by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show