search

DeviaVir / zenbot

Zenbot is a command-line cryptocurrency trading bot using Node.js and MongoDB.
MIT License
8.21k stars 2.04k forks source link

[Snyk] Upgrade webpack from 5.24.2 to 5.38.1 #2695

Closed snyk-bot closed 3 years ago

snyk-bot commented 3 years ago

Snyk has created this PR to upgrade webpack from 5.24.2 to 5.38.1.

merge advice :information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

Release notes
Package name: webpack
  • 5.38.1 - 2021-05-27

    Performance

    • fix missing increment in sorting optimization from last release
  • 5.38.0 - 2021-05-27

    Features

    • new URL("data:...", import.meta.url) is now supported
    • add module.rules[].scheme as condition to match the request scheme (like data, http, etc.)

    Bugfixes

    • fix tracking of changes and removals during watching in some edge cases
    • fix incorrect renaming of class fields in concatenatenated modules
    • fix crash in HMR when removing runtimes from the compilation

    Performance

    • lazy import some internal modules only when used
    • allow unsafe caching of the entrypoint
    • improve performance of sorting exports info map
    • update to latest webpack-sources for improved source map performance
  • 5.37.1 - 2021-05-19

    Bugfixes

    • When using multiple configurations in watch mode and calling Watching.invalidate, dependencies and parallelism of the config array is now respected correctly
    • Fix a crash when accessing the stats after the next compilation has started
    • fix collecting changes when using Watching.suspend
    • fix schema of RuleCondition.not and allow passing a condition directly instead of only an array

    Developer Experience

    • typings accept a ReadonlyArray of configurations now

    Contributing

    • fix coverage reporting for child processes
    • remove outdated loader from readme
  • 5.37.0 - 2021-05-10

    Features

    • add output.trustedTypes

    Bugfixes

    • fix inclusion of too many chunk in the filename function when using dependOn
    • allow errors to be null in fs callbacks

    Developer Experiences

    • make ESM tracking info message less verbose
    • add typings for loaders
  • 5.36.2 - 2021-04-30

    Bugfixes

    • correctly handle errors thrown during parser/generator creation
      • e. g. validation errors for asset module options
    • use a better automatic runtime name for workers
      • not too long to cause filename problems
    • no longer assume assets do not get removed when the compiler is running
      • Using output.clean is against this assumption
      • It fixes a bug where assets are missing, when removed and readded to the compilation
    • fix a problem when chained dependOn, which causes too many modules being included in entrypoints
  • 5.36.1 - 2021-04-28

    Performance

    • add cache.profile (type: "filesystem" only) flag for more info about (de)serialization timings
    • avoid complex "by exports" splitting for splitChunks in development mode
    • faster hashing for the common case
    • improve algorithmic complexity for merging InitFragments to solve performance in an edge case
  • 5.36.0 - 2021-04-27

    Features

    • add support for class fields (stage 4)

    Performance

    • improve (de)serialization performance of dependency locations
  • 5.35.1 - 2021-04-23

    Bugfixes

    • fix an __webpack_exports__ is not defined error with some library types

    performance

    • improve stats grouping performance
    • improve providedExports analysis performance
    • improve hashing performance
    • lazy merge dependencies from creating context modules
    • improve dependency parents access performance
  • 5.35.0 - 2021-04-21

    Bugfixes

    • fix handling of build dependencies with # in path

    Performance

    • improve memory usage when using the filesystem cache

    When reading a file into a Buffer and picking smaller slices of the Buffer
    the small slices still keep a reference to the large original Buffer.
    The leads to increased memory usage. A fix would be to clone the slice into
    a smaller Buffer when wasting too much memory, but this has a performance cost.
    There is now a new option cache.allowCollectingMemory which controls that.
    For one-off builds you probably want allowCollectingMemory: false and
    for watch builds you probably want allowCollectingMemory: true.
    It defaults to false in production mode and true in development mode.

  • 5.34.0 - 2021-04-19

    Features

    • add support for empty string in resolve.extensions and handle them in this order
    • add pnpapi as builtin external when using target: "node"

    Bugfixes

    • fix a bug where chunks filenames where not included in runtime when using splitChunks and runtimeChunk with target: "node"
    • fix deprecation message from LimitChunkCountPlugin

    Performance

    • precompile schemas into functions to avoid schema compilation overhead
    • fix performance regression when storing the cache
    • performance improvement for snapshot file iterators

    Developer Experience

    • remove removed store: 'idle' from schema description
  • 5.33.2 - 2021-04-14
  • 5.33.1 - 2021-04-14
  • 5.33.0 - 2021-04-14
  • 5.32.0 - 2021-04-12
  • 5.31.2 - 2021-04-09
  • 5.31.1 - 2021-04-09
  • 5.31.0 - 2021-04-07
  • 5.30.0 - 2021-04-01
  • 5.29.0 - 2021-04-01
  • 5.28.0 - 2021-03-24
  • 5.27.2 - 2021-03-22
  • 5.27.1 - 2021-03-20
  • 5.27.0 - 2021-03-19
  • 5.26.3 - 2021-03-17
  • 5.26.2 - 2021-03-16
  • 5.26.1 - 2021-03-16
  • 5.26.0 - 2021-03-15
  • 5.25.1 - 2021-03-14
  • 5.25.0 - 2021-03-12
  • 5.24.4 - 2021-03-08
  • 5.24.3 - 2021-03-03
  • 5.24.2 - 2021-02-24
from webpack GitHub release notes
Commit messages
Package name: webpack
  • 487665c 5.38.1
  • e5c1beb Merge pull request #13464 from webpack/bugfix/increment-in-sort
  • 55dacb4 increment index in sorting
  • daa0f1e 5.38.0
  • a402ea1 Merge pull request #13455 from webpack/perf/webpack-soures
  • 1131afe Merge pull request #13450 from webpack/test/hmr-move-between-runtime
  • 8da0542 Merge pull request #13449 from webpack/bugfix/hmr-new-runtime
  • c802ad0 update to latest webpack-source version for better performance
  • 47e0777 Merge pull request #13448 from webpack/perf/little-things
  • cf0c816 add test case for moving modules and chunks between runtimes
  • a45140d add test case
  • bd8af21 avoid generating hmr updates for previously not existing runtimes
  • b1b9ef3 cache buffer in local var
  • bb6040b (re)store provided exports sorted
  • cc58901 improve ExportsInfo sorting performance by keeping Map size to avoid reorganizing
  • f6b5bc5 Create entry dependency only once for better unsafe caching
  • 4845915 Lazy require some modules
  • 62e86f0 Merge pull request #13423 from webpack/dependabot/npm_and_yarn/css-loader-5.2.5
  • c4ad043 Merge pull request #13422 from webpack/bugfix/watcher-invalidate-and-changes
  • fbcc470 add fsStartTime for single runs
  • f73f1a6 chore(deps-dev): bump css-loader from 5.2.4 to 5.2.5
  • c2383a4 Merge pull request #13421 from webpack/ci/test-timeout
  • ad7cd0d increase timeout
  • ad1c802 Merge pull request #13409 from webpack/bugfix/class-fields-concatenated
Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs