Bump loader-utils, babel-loader, css-loader, file-loader, imports-loader, postcss-loader and webpack

[dependabot[bot]]

Bumps loader-utils to 2.0.4 and updates ancestor dependencies loader-utils, babel-loader, css-loader, file-loader, imports-loader, postcss-loader and webpack. These dependencies need to be updated together.

Updates loader-utils from 1.2.3 to 2.0.4

Release notes

Sourced from loader-utils's releases.

v2.0.4

2.0.4 (2022-11-11)

Bug Fixes

• ReDoS problem (#225) (ac09944)

v2.0.3

2.0.3 (2022-10-20)

Bug Fixes

• security: prototype pollution exploit (#217) (a93cf6f)

v2.0.2

2.0.2 (2021-11-04)

Bug Fixes

• base64 generation and unicode characters (#197) (8c2d24e)

v2.0.1

2.0.1 (2021-10-29)

Bug Fixes

• md4 support on Node.js v17 (#193) (1069f61)

v2.0.0

2.0.0 (2020-03-17)

⚠ BREAKING CHANGES

• minimum required Node.js version is 8.9.0 (#166) (c937e8c)
• the getOptions method returns empty object on empty query (#167) (b595cfb)
• Use md4 by default

v1.4.2

1.4.2 (2022-11-11)

Bug Fixes

• ReDoS problem (#226) (17cbf8f)

... (truncated)

Changelog

Sourced from loader-utils's changelog.

2.0.4 (2022-11-11)

Bug Fixes

• ReDoS problem (#225) (ac09944)

2.0.3 (2022-10-20)

Bug Fixes

• security: prototype pollution exploit (#217) (a93cf6f)

2.0.2 (2021-11-04)

Bug Fixes

• base64 generation and unicode characters (#197) (8c2d24e)

2.0.1 (2021-10-29)

Bug Fixes

• md4 support on Node.js v17 (#193) (1069f61)

2.0.0 (2020-03-17)

⚠ BREAKING CHANGES

• minimum required Node.js version is 8.9.0 (#166) (c937e8c)
• the getOptions method returns empty object on empty query (#167) (b595cfb)
• Use md4 by default

1.4.0 (2020-02-19)

Features

• the resourceQuery is passed to the interpolateName method (#163) (cd0e428)

1.3.0 (2020-02-19)

... (truncated)

Commits

• 6688b50 chore(release): 2.0.4
• ac09944 fix: ReDoS problem (#225)
• 7162619 chore(release): 2.0.3
• a93cf6f fix(security): prototype polution exploit (#217)
• 90c7c4b chore(release): 2.0.2
• 8c2d24e fix: base64 generation and unicode characters (#197)
• 5fb5562 chore(release): 2.0.1
• 1069f61 fix: md4 support on Node.js v17 (#193)
• d9f4e23 chore(release): 2.0.0
• 865dc03 refactor: switch to md4 by default (#168)
• Additional commits viewable in compare view

Updates babel-loader from 6.4.1 to 9.1.0

Release notes

Sourced from babel-loader's releases.

v9.1.0

New features

• Pass external dependencies from Babel to Webpack by @​nicolo-ribaudo in babel/babel-loader#971

Full Changelog: https://github.com/babel/babel-loader/compare/v9.0.1...v9.1.0

v9.0.1

Bug Fixes

• remove "node:" builtin prefix by @​JLHwung in babel/babel-loader#970

Full Changelog: https://github.com/babel/babel-loader/compare/v9.0.0...v9.0.1

v9.0.0

What's Changed

• update hash method mechanism so it doesn't fail on a fips enabled machine by @​darmbrust in babel/babel-loader#939
• Require babel ^7.12.0 and Node.js >= 14.15.0 versions by @​JLHwung in babel/babel-loader#956
• Remove dependency on loader-utils and drop webpack 4 support by @​nied in babel/babel-loader#942

New Contributors

• @​darmbrust made their first contribution in babel/babel-loader#939
• @​nied made their first contribution in babel/babel-loader#942

Full Changelog: https://github.com/babel/babel-loader/compare/v8.2.5...v9.0.0

v8.3.0

New features

• Pass external dependencies from Babel to Webpack by @​nicolo-ribaudo in babel/babel-loader#971

Full Changelog: https://github.com/babel/babel-loader/compare/v8.2.5...v8.3.0

v8.2.5

What's Changed

• fix: respect inputSourceMap loader option by @​alan-agius4 in babel/babel-loader#896

New Contributors

• @​alan-agius4 made their first contribution in babel/babel-loader#896

Full Changelog: https://github.com/babel/babel-loader/compare/v8.2.4...v8.2.5

v8.2.4

What's Changed

• doc(README.md): fix a broken markdown link by @​loveDstyle in babel/babel-loader#919
• Bump loader-utils to 2.x by @​stianjensen in babel/babel-loader#931
• Use md5 hashing for OpenSSL 3 by @​pathmapper in babel/babel-loader#924

Thanks @​loveDstyle, @​stianjensen and @​pathmapper for your first PRs!

8.2.3

... (truncated)

Changelog

Sourced from babel-loader's changelog.

Changelog

For changes in version v7.0.0 and up please go to release

Old Changelog

Commits

• 15fbacf 9.1.0
• 6348e1c Pass external dependencies from Babel to Webpack (#971)
• 457b9ad Update webpack
• f42ac9b 9.0.1
• 4f9c0bf remove "node:" builtin prefix (#970)
• 9ff288f 9.0.0
• 006a3dc Update README.md
• daed88a Update README.md
• 0ed5fd6 Bump ini from 1.3.5 to 1.3.8 (#968)
• b1749e3 Bump y18n from 4.0.0 to 4.0.3 (#967)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by nicolo-ribaudo, a new releaser for babel-loader since your current version.

Updates css-loader from 0.23.1 to 6.7.2

Release notes

Sourced from css-loader's releases.

v6.7.2

6.7.2 (2022-11-13)

Bug Fixes

• css modules generation with inline syntax (#1480) (2f4c273)

v6.7.1

6.7.1 (2022-03-08)

Bug Fixes

• defaultGetLocalIdent export (#1427) (74dac1e)

v6.7.0

6.7.0 (2022-03-04)

Features

• re-export defaultGetLocalIdent (#1423) (207cf36)

v6.6.0

6.6.0 (2022-02-02)

Features

• added the hashStrategy option (ca4abce)

v6.5.1

6.5.1 (2021-11-03)

Bug Fixes

• regression with unicode characters in locals (b7a8441)
• runtime path generation (#1393) (feafea8)

v6.5.0

6.5.0 (2021-10-26)

Features

• support absolute URL in url() when experiments.buildHttp enabled (#1389) (8946be4)

... (truncated)

Changelog

Sourced from css-loader's changelog.

6.7.2 (2022-11-13)

Bug Fixes

• css modules generation with inline syntax (#1480) (2f4c273)

6.7.1 (2022-03-08)

Bug Fixes

• defaultGetLocalIdent export (#1427) (74dac1e)

6.7.0 (2022-03-04)

Features

• re-export defaultGetLocalIdent (#1423) (207cf36)

6.6.0 (2022-02-02)

Features

• added the hashStrategy option (ca4abce)

6.5.1 (2021-11-03)

Bug Fixes

• regression with unicode characters in locals (b7a8441)
• runtime path generation (#1393) (feafea8)

6.5.0 (2021-10-26)

Features

• support absolute URL in url() when experiments.buildHttp enabled (#1389) (8946be4)

Bug Fixes

• respect nosources in the devtool option (c60eff2)

6.4.0 (2021-10-09)

... (truncated)

Commits

• 394d200 chore(release): 6.7.2
• 2f4c273 fix: css modules generation with inline syntax (#1480)
• 7c5cdcc chore(deps): bump loader-utils from 2.0.2 to 2.0.3 (#1479)
• d5bc6ea chore: update dependencies to the latest version (#1478)
• 85b6bf7 ci: add node v19 (#1477)
• 0f85c5b chore: update dependencies to the latest version (#1474)
• 560c05f ci: add dependency review action (#1476)
• cc4e08f chore: update commitlint action (#1473)
• 9846913 chore: run cancel workflow on pull request (#1472)
• 845718c chore: update jest to the latest version (#1471)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by evilebottnawi, a new releaser for css-loader since your current version.

Updates file-loader from 0.8.5 to 6.2.0

Release notes

Sourced from file-loader's releases.

v6.2.0

6.2.0 (2020-10-27)

Features

• added the sourceFilename property to asset info with original filename (#393) (654e0d6)

Bug Fixes

• immutable flag when the name option have hash in query string (#392) (381d8bd)

v6.1.1

6.1.1 (2020-10-09)

Chore

• update schema-utils

v6.1.0

6.1.0 (2020-08-31)

Features

• pass immutable flag to asset info (#383) (40fcde8)

v6.0.0

6.0.0 (2020-03-17)

⚠ BREAKING CHANGES

• use md4 by default for hashing (#369) (ad39022)

v5.1.0

5.1.0 (2020-02-19)

Features

• support the query template for the name option (#366) (cd8698b)

v5.0.2

5.0.2 (2019-11-25)

Chore

... (truncated)

Changelog

Sourced from file-loader's changelog.

6.2.0 (2020-10-27)

Features

• added the sourceFilename property to asset info with original filename (#393) (654e0d6)

Bug Fixes

• immutable flag when the name option have hash in query string (#392) (381d8bd)

6.1.1 (2020-10-09)

Chore

• update schema-utils

6.1.0 (2020-08-31)

Features

• pass immutable flag to asset info (#383) (40fcde8)

6.0.0 (2020-03-17)

⚠ BREAKING CHANGES

• use md4 by default for hashing (#369) (ad39022)

5.1.0 (2020-02-19)

Features

• support the query template for the name option (#366) (cd8698b)

5.0.2 (2019-11-25)

Chore

• add the funding field in package.json

5.0.1 (2019-11-25)

... (truncated)

Commits

• c423008 chore(release): 6.2.0
• 654e0d6 feat: added the sourceFilename property to asset info with original filenam...
• 381d8bd fix: immutable flag when the name option have hash in query string (#392)
• 14ed4c9 ci: updated webpack versions (#389)
• 6fadfbe chore(release): 6.1.1
• 60508cf chore(deps): update
• 25e2668 chore(release): 6.1.0
• 6e22f6e test: fix
• 40fcde8 feat: pass immutable flag to asset info (#383)
• 718aef5 chore(deps): update (#375)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by evilebottnawi, a new releaser for file-loader since your current version.

Updates imports-loader from 0.6.5 to 4.0.1

Release notes

Sourced from imports-loader's releases.

v4.0.1

4.0.1 (2022-08-12)

Bug Fixes

• source map for other loaders (#146) (5a1f866)

v4.0.0

4.0.0 (2022-05-17)

⚠ BREAKING CHANGES

• minimum supported Node.js version is 14.15.0

v3.1.1

3.1.1 (2021-11-01)

Bug Fixes

• sourcemaps generation (#113) (6f948c2)

v3.1.0

3.1.0 (2021-10-22)

Features

• output links and descriptions on errors (#110) (b86cb8b)

v3.0.1

3.0.1 (2021-10-21)

Bug Fixes

• small perf improvement (#860) (7fabfab)

v3.0.0

3.0.0 (2021-05-18)

⚠ BREAKING CHANGES

• minimum supported Node.js version is 12.13.0

v2.0.0

2.0.0 (2021-02-01)

... (truncated)

Changelog

Sourced from imports-loader's changelog.

4.0.1 (2022-08-12)

Bug Fixes

• source map for other loaders (#146) (5a1f866)

4.0.0 (2022-05-17)

⚠ BREAKING CHANGES

• minimum supported Node.js version is 14.15.0

3.1.1 (2021-11-01)

Bug Fixes

• sourcemaps generation (#113) (6f948c2)

3.1.0 (2021-10-22)

Features

• output links and descriptions on errors (#110) (b86cb8b)

3.0.1 (2021-10-21)

Bug Fixes

• small perf improvement (#860) (7fabfab)

3.0.0 (2021-05-18)

⚠ BREAKING CHANGES

• minimum supported Node.js version is 12.13.0

2.0.0 (2021-02-01)

⚠ BREAKING CHANGES

• minimum supported webpack version is 5
• inline syntax was changed: [] is no longer supported (i.e. imports-loader?imports[]=default|jquery|$&imports[]=angular!./example.js), please use , comma separator (i.e. imports-loader?imports=default|jquery|$,angular!./example.js)

1.2.0 (2020-10-07)

... (truncated)

Commits

• 1ff803f chore(release): 4.0.1
• 5a1f866 fix: source map for other loaders (#146)
• b90be51 chore: update dependencies to the latest version (#145)
• 249666e ci: add GitHub token permissions for workflow (#144)
• 44c5031 chore(deps): bump terser from 5.13.1 to 5.14.2 (#143)
• 1d8f8c3 chore: update dependencies to the latest version (#140)
• adbbb1d docs: update note in README.md (#138)
• 8c4ad54 chore: disable commit message length check (#137)
• 7c35d20 chore: update dependencies to the latest version (#136)
• 8242b29 docs: remove old badge (#135)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by evilebottnawi, a new releaser for imports-loader since your current version.

Updates postcss-loader from 0.8.2 to 7.0.1

Release notes

Sourced from postcss-loader's releases.

v7.0.1

7.0.1 (2022-07-11)

Bug Fixes

• unexpected failing on CSS syntax error (#593) (888d72e)

v7.0.0

7.0.0 (2022-05-18)

⚠ BREAKING CHANGES

• minimum supported Node.js version is 14.15.0

v6.2.1

6.2.1 (2021-11-26)

Bug Fixes

• watching configuration (#553) (7f165b4)

v6.2.0

6.2.0 (2021-10-13)

Features

• add link field in schema (#540) (1ae8212)

v6.1.1

6.1.1 (2021-07-01)

Bug Fixes

• do not swallow exception from postcss (2eec42b)

v6.1.0

6.1.0 (2021-06-10)

Features

• allow String value for the "implementation" option (0d342b1)

v6.0.0

6.0.0 (2021-06-10)

... (truncated)

Changelog

Sourced from postcss-loader's changelog.

7.0.1 (2022-07-11)

Bug Fixes

• unexpected failing on CSS syntax error (#593) (888d72e)

7.0.0 (2022-05-18)

⚠ BREAKING CHANGES

• minimum supported Node.js version is 14.15.0

6.2.1 (2021-11-26)

Bug Fixes

• watching configuration (#553) (7f165b4)

6.2.0 (2021-10-13)

Features

• add link field in schema (#540) (1ae8212)

6.1.1 (2021-07-01)

Bug Fixes

• do not swallow exception from postcss (2eec42b)

6.1.0 (2021-06-10)

Features

• allow String value for the "implementation" option (0d342b1)

6.0.0 (2021-06-10)

⚠ BREAKING CHANGES

• minimum supported Node.js version is 12.13.0 (#526)

Bug Fixes

... (truncated)

Commits

• f1729f8 chore(release): 7.0.1
• 888d72e fix: unexpected failing on CSS syntax error (#593)
• 004334a chore: update dependencies to the latest version (#591)
• ca51b83 docs: update note in README.md (#589)
• 229ebc7 chore: disable commit message length check (#588)
• 024b04a chore: update dependencies to the latest version (#587)
• 7cb51fc docs: remove old badge (#586)
• cacc4b3 chore(release): 7.0.0
• 8a2e706 chore(deps): update (#585)
• bc66435 refactor!: minimum supported Node.js version is 14.15.0 (#582)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by evilebottnawi, a new releaser for postcss-loader since your current version.

Updates webpack from 1.15.0 to 5.75.0

Release notes

Sourced from webpack's releases.

v5.75.0

Bugfixes

• experiments.* normalize to false when opt-out
• avoid NaN%
• show the correct error when using a conflicting chunk name in code
• HMR code tests existance of window before trying to access it
• fix eval-nosources-* actually exclude sources
• fix race condition where no module is returned from processing module
• fix position of standalong semicolon in runtime code

Features

• add support for @import to extenal CSS when using experimental CSS in node
• add i64 support to the deprecated WASM implementation

Developer Experience

• expose EnableWasmLoadingPlugin
• add more typings
• generate getters instead of readonly properties in typings to allow overriding them

v5.74.0

Features

• add resolve.extensionAlias option which allows to alias extensions
  • This is useful when you are forced to add the .js extension to imports when the file really has a .ts extension (typescript + "type": "module")
• add support for ES2022 features like static blocks
• add Tree Shaking support for ProvidePlugin

Bugfixes

• fix persistent cache when some build dependencies are on a different windows drive
• make order of evaluation of side-effect-free modules deterministic between concatenated and non-concatenated modules
• remove left-over from debugging in TLA/async modules runtime code
• remove unneeded extra 1s timestamp offset during watching when files are actually untouched
  • This sometimes caused an additional second build which are not really needed
• fix shareScope option for ModuleFederationPlugin
• set "use-credentials" also for same origin scripts

Performance

• Improve memory usage and performance of aggregating needed files/directories for watching
  • This affects rebuild performance

Extensibility

• export HarmonyImportDependency for plugins

v5.73.0

... (truncated)

Commits

• 8241da7 5.75.0
• a91d923 Merge pull request #16458 from webpack/bugfix/semi
• 4608b11 Merge pull request #16457 from webpack/tooling/update
• dfdd0b0 Merge pull request #16122 from AnmolBansalDEV/bug/compilationCallback
• 23b9a1c Merge pull request #16167 from exposir/fixts
• 6f2c5e8 Merge pull request #16257 from alexzhang1030/calc_deterministic_verbose
• f7f36ad Merge pull request #16339 from Liamolucko/wasm-i64
• 761a542 fix semicolon position
• 2403a36 Merge pull request #16345 from ahabhgk/fix-eval-nosources
• c18203c update tooling
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Ghirro/graphql-network/network/alerts).