build(deps): bump postcss and @parcel/transformer-postcss

[dependabot[bot]]

Bumps postcss and @parcel/transformer-postcss. These dependencies needed to be updated together. Updates postcss from 6.0.1 to 8.3.11

Release notes

Sourced from postcss's releases.

8.3.10

• Fixed Maximum call stack issue of some source maps (by @​yetingli).

8.3.9

• Replaced nanocolors to picocolors.
• Reduced package size.

8.3.8

• Update nanocolors.

8.3.7

• Replaced colorette to nanocolors.
• Added bug field to package.json (by @​coliff).
• Improved docs (by @​camelpunch and @​paulshryock).

8.3.6

• Fixed column in missed semicolon error (by @​Gusted).

8.3.5

• Fixed broken AST detection.

8.3.4

• Fixed broken AST detection.

8.3.3

• Fixed broken AST on postcss dependency duplication in custom parsers.

8.3.2

• Update changelog.

8.3.1

• Fixed false positives PostCSS does nothing warning on syntax option.

8.3 “Duke Murmur”

PostCSS 8.3 improved source map parsing performance, added Node#assign() shortcut, and experimental Document node to AST.

Thanks to Sponsors

This release was possible thanks to our community.

If your company wants to support the sustainability of front-end infrastructure or wants to give some love to PostCSS, you can join our supporters by:

... (truncated)

Changelog

Sourced from postcss's changelog.

8.3.11

• Remove debugging code.

8.3.10

• Fixed Maximum call stack issue of some source maps (by Yeting Li).

8.3.9

• Replaced nanocolors to picocolors.
• Reduced package size.

8.3.8

• Update nanocolors.

8.3.7

• Replaced colorette to nanocolors.
• Added bug field to package.json (by Christian Oliff).
• Improved docs (by Andrew Bruce and Paul Shryock).

8.3.6

• Fixed column in missed semicolon error (by @​Gusted).

8.3.5

• Fixed broken AST detection.

8.3.4

• Fixed broken AST detection.

8.3.3

• Fixed broken AST on postcss dependency duplication in custom parsers.

8.3.2

• Update changelog.

8.3.1

• Fixed false positives PostCSS does nothing warning on syntax option.

8.3 “Duke Murmur”

• Added Node#assign() shortcut (by Jonathan Neal).
• Added experimental Document node to AST (by Aleks Hudochenkov).
• Moved to faster fork of source-map (by Valentin Semirulnik).

8.2.15

• Fixed list type definitions (by @​n19htz).

8.2.14

• Removed source-map from client-side bundle (by Barak Igal).

8.2.13

• Fixed ReDoS vulnerabilities in source map parsing (by Yeting Li).

... (truncated)

Commits

• dbb2870 Release 8.3.11 version
• e64fd86 Update dependencies
• 5446af5 Remove console.log
• 5361115 Release 8.3.10 version
• 164eb37 Fix stack overflow on complex RegExp
• 1d36519 Update dependencies
• acbd372 Remove Node.js 17 from CI until al problems will be fixed
• 4bdc53f Update CI config
• ca65e55 Merge pull request #1644 from ambar/patch-1
• 6cf4616 Add postcss-theme-colors to plugins.md
• Additional commits viewable in compare view

Updates @parcel/transformer-postcss from 2.0.1 to 2.7.0

Release notes

Sourced from @​parcel/transformer-postcss's releases.

v2.7.0

Added

• Core
  • Log resolved targets in verbose log level for debugging - Details
  • Allow plugin configs to be written with .cjs extension - Details
• JavaScript
  • Support react refresh for @emotion/react - Details
  • Inject script for hmr when there is only normal script in html - Details
• Elm
  • Add support for compiling multiple modules at once via with query param - Details
• CSS
  • Add support for errorRecovery option in @parcel/transformer-css - Details
• Experimental bundler - Details
  • Implement bundling for multiple targets
  • Internalize async dependencies
  • Merge bundles of the same type
  • Fix missing module - Details

Fixed

• JavaScript
  • Default interop missing when importing a CommonJS module - Details
  • Add missing imports for external dependencies in skipped assets - Details
  • Bump SWC to fix undefined variables - Details
  • Remove charset from JS loaded script to avoid double fetching in Firefox - Details
  • Use placeholder expression when replacing unused symbols - Details
• Core
  • Fix atomic writestream handling on Windows - Details
  • Fix non-deterministic bundle hashes between builds due to symbol propagation - Details
  • Fix TypeScript types for @parcel/package-manager - Details
• Dependencies
  • Bump terser to 5.14.2 - Details
  • Bump node-forge to 1.3.0 - Details

v2.6.2

This release includes bug fixes:

• Core
  • Fix race condition between writing and reading from cache - Details

v2.6.1

This release includes bug fixes:

• JavaScript
  • Fix issue with conditional dependencies based on process.env - Details
  • Fix transformation of import/requires wrapped into Promise.resolve() - Details
  • Fix object literal shorthand with imported variables - Details
  • Fix imported values in computed optional member expressions - Details
  • Bump SWC to fix issue with missing parenthesis in optional chaining call - Details

... (truncated)

Changelog

Sourced from @​parcel/transformer-postcss's changelog.

[2.7.0] - 2022-08-03

Added

• Core
  • Log resolved targets in verbose log level for debugging - Details
  • Allow plugin configs to be written with .cjs extension - Details
• JavaScript
  • Support react refresh for @emotion/react - Details
  • Inject script for hmr when there is only normal script in html - Details
• Elm
  • Add support for compiling multiple modules at once via with query param - Details
• CSS
  • Add support for errorRecovery option in @parcel/transformer-css - Details
• Experimental bundler - Details
  • Implement bundling for multiple targets
  • Internalize async dependencies
  • Merge bundles of the same type
  • Fix missing module - Details

Fixed

• JavaScript
  • Default interop missing when importing a CommonJS module - Details
  • Add missing imports for external dependencies in skipped assets - Details
  • Bump SWC to fix undefined variables - Details
  • Remove charset from JS loaded script to avoid double fetching in Firefox - Details
  • Use placeholder expression when replacing unused symbols - Details
• Core
  • Fix atomic writestream handling on Windows - Details
  • Fix non-deterministic bundle hashes between builds due to symbol propagation - Details
  • Fix TypeScript types for @parcel/package-manager - Details
• Dependencies
  • Bump terser to 5.14.2 - Details
  • Bump node-forge to 1.3.0 - Details

[2.6.2] - 2022-06-21

Fixed

• Core
  • Fix race condition between writing and reading from cache - Details

[2.6.1] - 2022-06-17

Fixed

• JavaScript
  • Fix issue with conditional dependencies based on process.env - Details
  • Fix transformation of import/requires wrapped into Promise.resolve() - Details

... (truncated)

Commits

• 5f095fd v2.7.0
• 000d332 Changelog for v2.7.0
• 1a96d6d Use placeholder expression when replacing unused symbols (#8358)
• a22164c Lint (#8359)
• 9012616 Add support for errorRecovery option in @​parcel/transformer-css (#8352)
• 56e621e VS Code Extension for Parcel (#8139)
• fca5c8c Add multi module compilation for elm (#8076)
• 128e072 Bump terser from 5.7.2 to 5.14.2 (#8322)
• 565e5f0 Bump node-forge from 1.2.1 to 1.3.0 (#8271)
• 085a7aa allow cjs config files on type module projects (#8253)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/LibreWeather/libre-weather/network/alerts).

[TobiTenno]

@dependabot rebase

[TobiTenno]

@dependabot rebase

[TobiTenno]

@dependabot rebase