chore(deps): bump the npm_and_yarn at /. security update group with 6 updates

[dependabot[bot]]

Bumps the npm_and_yarn at /. security update group with 6 updates:

Package	From	To
css-loader	1.0.0	6.8.1
optimize-css-assets-webpack-plugin	5.0.1	6.0.1
postcss-flexbugs-fixes	4.1.0	5.0.2
postcss-loader	3.0.0	7.3.3
postcss-preset-env	6.3.1	9.3.0
postcss-safe-parser	4.0.1	7.0.0

Updates css-loader from 1.0.0 to 6.8.1

Release notes

Sourced from css-loader's releases.

v6.8.1

6.8.1 (2023-05-28)

Bug Fixes

• use cause for original errors and warnings (#1526) (ae3d8ae)

v6.8.0

6.8.0 (2023-05-27)

Features

• use template literal when it possible to prevent Maximum call stack size exceeded (#1525) (6eb5661)

Bug Fixes

• warning and error serialization (#1523) (3e52969)

v6.7.4

6.7.4 (2023-05-19)

Bug Fixes

• bugs in css modules (c3099fb)
• output warning when built-in CSS support enabled (#1520) (0700ce8)

v6.7.3

6.7.3 (2022-12-14)

Bug Fixes

• remove sourceURL from emitted CSS (#1487) (962924c)

v6.7.2

6.7.2 (2022-11-13)

Bug Fixes

• css modules generation with inline syntax (#1480) (2f4c273)

v6.7.1

6.7.1 (2022-03-08)

... (truncated)

Changelog

Sourced from css-loader's changelog.

6.8.1 (2023-05-28)

Bug Fixes

• use cause for original errors and warnings (#1526) (ae3d8ae)

6.8.0 (2023-05-27)

Features

• use template literal when it possible to prevent Maximum call stack size exceeded (#1525) (6eb5661)

Bug Fixes

• warning and error serialization (#1523) (3e52969)

6.7.4 (2023-05-19)

Bug Fixes

• bugs in css modules (c3099fb)
• output warning when built-in CSS support enabled (#1520) (0700ce8)

6.7.3 (2022-12-14)

Bug Fixes

• remove sourceURL from emitted CSS (#1487) (962924c)

6.7.2 (2022-11-13)

Bug Fixes

• css modules generation with inline syntax (#1480) (2f4c273)

6.7.1 (2022-03-08)

Bug Fixes

• defaultGetLocalIdent export (#1427) (74dac1e)

6.7.0 (2022-03-04)

... (truncated)

Commits

• 4673caa chore(release): 6.8.1
• ae3d8ae fix: use cause for original errors and warnings (#1526)
• c0ce599 chore(release): 6.8.0
• 6eb5661 feat: use template literal when it possible to prevent `Maximum call stack si...
• 0a2a596 chore(deps): update (#1524)
• 3e52969 fix: warning and error serialization (#1523)
• ed77720 chore(release): 6.7.4
• c3099fb fix: bugs in css modules
• f1ba0db docs: fix (#1521)
• 0700ce8 fix: output warning when built-in CSS support enabled (#1520)
• Additional commits viewable in compare view

Updates optimize-css-assets-webpack-plugin from 5.0.1 to 6.0.1

Commits

• e896b97 6.0.1
• 24ed912 fix: cve in dependencies
• 29c44fb 6.0.0
• 51313e4 feat(deps): upgrade cssnano and postcss major version
• 3e6a04c 5.0.6
• 9567391 fix: previous version breaking changes (#156)
• 09d29b3 5.0.5
• d0a7da7 feat(deps): update dependencies (#154)
• 41d1e23 Redirect to css-minimizer-webpack-plugin for webpack 5 or above
• e9b84f1 5.0.4
• Additional commits viewable in compare view

Updates postcss-flexbugs-fixes from 4.1.0 to 5.0.2

Release notes

Sourced from postcss-flexbugs-fixes's releases.

5.0.2

What's Changed

• Promote postcss to a production dependency by @​s100 in luisrudge/postcss-flexbugs-fixes#74

New Contributors

• @​s100 made their first contribution in luisrudge/postcss-flexbugs-fixes#74

Full Changelog: https://github.com/luisrudge/postcss-flexbugs-fixes/compare/5.0.0...5.0.2

5.0.0

https://github.com/luisrudge/postcss-flexbugs-fixes/blob/master/CHANGELOG.md

Changelog

Sourced from postcss-flexbugs-fixes's changelog.

5.0.2

• Moving postcss to peer dependencies #74

5.0.1

• Adding postcss as dependency #74

5.0.0

• upgrade to postcss 8 #71

4.2.1

• Fix calc regex #69

4.2.0

• Don't change values that reference custom props #64

Commits

• See full diff in compare view

Updates postcss-loader from 3.0.0 to 7.3.3

Release notes

Sourced from postcss-loader's releases.

v7.3.3

7.3.3 (2023-06-10)

Bug Fixes

• perf: avoid using klona for postcss options (#658) (e754c3f)
• bug with loading configurations after updating cosmiconfig to version 8.2 (684d265)

v7.3.2

7.3.2 (2023-05-28)

Bug Fixes

• use cause to keep original errors and warnings (#655) (e8873f4)

v7.3.1

7.3.1 (2023-05-26)

Bug Fixes

• warning and error serialization (65748ec)

v7.3.0

7.3.0 (2023-04-28)

Features

• use jiti for typescript configurations (#649) (8b876fa)

v7.2.4

7.2.4 (2023-04-04)

Bug Fixes

• memory leak (#642) (7ab3b59)

v7.2.3

7.2.3 (2023-04-03)

Bug Fixes

• ts-node loading (#640) (38b1992)

v7.2.2

... (truncated)

Changelog

Sourced from postcss-loader's changelog.

7.3.3 (2023-06-10)

Bug Fixes

• perf: avoid using klona for postcss options (#658) (e754c3f)
• bug with loading configurations after updating cosmiconfig to version 8.2 (684d265)

7.3.2 (2023-05-28)

Bug Fixes

• use cause to keep original errors and warnings (#655) (e8873f4)

7.3.1 (2023-05-26)

Bug Fixes

• warning and error serialization (65748ec)

7.3.0 (2023-04-28)

Features

• use jiti for typescript configurations (#649) (8b876fa)

7.2.4 (2023-04-04)

Bug Fixes

• memory leak (#642) (7ab3b59)

7.2.3 (2023-04-03)

Bug Fixes

• ts-node loading (#640) (38b1992)

7.2.2 (2023-04-03)

Bug Fixes

• cannot find module 'ts-node' (#639) (ab4d16a)

... (truncated)

Commits

• 7a85867 chore(release): 7.3.3
• 684d265 fix: regression on cosmiconfig side
• e754c3f fix(perf): avoid using klona for postcss options (#658)
• 69446c3 docs: remove Gitter from issue templates (#657)
• c058a06 chore(release): 7.3.2
• e8873f4 fix: use cause to keep original errors and warnings (#655)
• 7e5eaeb chore(release): 7.3.1
• 65748ec fix: warning and error serialization
• a98d7d0 docs: add GitHub discussions badge (#652)
• 0a53820 chore: add scripts to fix lint (#651)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by evilebottnawi, a new releaser for postcss-loader since your current version.

Updates postcss-preset-env from 6.3.1 to 9.3.0

Changelog

Sourced from postcss-preset-env's changelog.

9.3.0

October 31, 2023

• Added @csstools/postcss-logical-overflow Check the plugin README for usage details.
• Added @csstools/postcss-logical-overscroll-behavior Check the plugin README for usage details.
• Updated cssdb to 7.9.0 (minor)
• Updated @csstools/postcss-cascade-layers to 4.0.1 (patch)

9.2.0

October 9, 2023

• Added @csstools/postcss-gamut-mapping Check the plugin README for usage details.
• Updated cssdb to 7.8.0 (minor)
• Updated @csstools/postcss-color-function to 3.0.7 (patch)
• Updated @csstools/postcss-color-mix-function to 2.0.7 (patch)
• Updated @csstools/postcss-exponential-functions to 1.0.1 (patch)
• Updated @csstools/postcss-gradients-interpolation-method to 4.0.7 (patch)
• Updated @csstools/postcss-hwb-function to 3.0.6 (patch)
• Updated @csstools/postcss-ic-unit to 3.0.2 (patch)
• Updated @csstools/postcss-is-pseudo-class to 4.0.3 (patch)
• Updated @csstools/postcss-logical-viewport-units to 2.0.3 (patch)
• Updated @csstools/postcss-media-minmax to 1.1.0 (minor)
• Updated @csstools/postcss-media-queries-aspect-ratio-number-values to 2.0.3 (patch)
• Updated @csstools/postcss-oklab-function to 3.0.7 (patch)
• Updated @csstools/postcss-progressive-custom-properties to 3.0.2 (patch)
• Updated @csstools/postcss-relative-color-syntax to 2.0.7 (patch)
• Updated @csstools/postcss-stepped-value-functions to 3.0.2 (patch)
• Updated @csstools/postcss-trigonometric-functions to 3.0.2 (patch)
• Updated postcss-color-functional-notation to 6.0.2 (patch)
• Updated postcss-custom-media to 10.0.2 (patch)
• Updated postcss-custom-properties to 13.3.2 (patch)
• Updated postcss-custom-selectors to 7.1.6 (patch)
• Updated postcss-double-position-gradients to 5.0.2 (patch)
• Updated postcss-lab-function to 6.0.7 (patch)

9.1.4

September 18, 2023

• Updated @csstools/postcss-is-pseudo-class to 4.0.2 (patch)
• Updated @csstools/postcss-logical-viewport-units to 2.0.2 (patch)
• Updated @csstools/postcss-normalize-display-values to 3.0.1 (patch)
• Updated @csstools/postcss-progressive-custom-properties to 3.0.1 (patch)
• Updated @csstools/postcss-text-decoration-shorthand to 3.0.3 (patch)
• Updated postcss-color-rebeccapurple to 9.0.1 (patch)
• Updated postcss-custom-properties to 13.3.1 (patch)
• Updated postcss-image-set-function to 6.0.1 (patch)
• Updated @csstools/postcss-color-function to 3.0.4 (patch)

... (truncated)

Commits

• See full diff in compare view

Maintainer changes

This version was pushed to npm by romainmenke, a new releaser for postcss-preset-env since your current version.

Updates postcss-safe-parser from 4.0.1 to 7.0.0

Changelog

Sourced from postcss-safe-parser's changelog.

Change Log

This project adheres to Semantic Versioning.

7.0

• Removed Node.js 16, 14, and 12 support.
• Added Root#source.end.

6.0

• Removed Node.js 10 support.
• Moved postcss to peerDependencies.

5.0.2

• Added funding links.

5.0.1

• Fixed parsing missed semicolon.

5.0

• Removed support for Node.js 6.x, 8.x, 11.x, and 13.x versions.
• Moved to PostCSS 8.0.

4.0.2

• Fix parsing :;.

Commits

• bdd0c12 Release 7.0 version
• 2c04213 Update PostCSS peer req
• 52ebd9c Remove Node 12, 14, 16 support
• cb8fcdc Update dependencies and practies
• abf10f9 Bump postcss from 8.4.21 to 8.4.31 (#38)
• 5e931f4 Update dependencies
• 3963537 Update CI config
• e119881 Add funding option
• 64e0aec Add Tidelift links
• e0089d9 Add security note
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/SAP-samples/ui5-webcomponents-sample-react/network/alerts).