Bump loader-utils, react-dev-utils and react-scripts

[dependabot[bot]]

Bumps loader-utils to 3.2.1 and updates ancestor dependencies loader-utils, react-dev-utils and react-scripts. These dependencies need to be updated together.

Updates loader-utils from 1.2.3 to 3.2.1

Release notes

Sourced from loader-utils's releases.

v3.2.1

3.2.1 (2022-11-11)

Bug Fixes

• ReDoS problem (#224) (d2d752d)

v3.2.0

3.2.0 (2021-11-11)

Features

• hash uniformity for base digests (451858b)

v3.1.3

3.1.3 (2021-11-04)

Bug Fixes

• crash with md4 hash (#198) (ef084d4)

v3.1.2

3.1.2 (2021-11-04)

Bug Fixes

• bug with unicode characters (#196) (0426405)

v3.1.1

3.1.1 (2021-11-04)

Bug Fixes

• base64 and unicode characters (02b1f3f)

v3.1.0

3.1.0 (2021-10-29)

Features

• added md4 (wasm version) and md4-native (crypto module version) algorithms (cbf9d1d)

v3.0.0

3.0.0 (2021-10-20)

... (truncated)

Changelog

Sourced from loader-utils's changelog.

3.2.1 (2022-11-11)

Bug Fixes

• ReDoS problem (#224) (d2d752d)

3.2.0 (2021-11-11)

Features

• hash uniformity for base digests (451858b)

3.1.3 (2021-11-04)

Bug Fixes

• crash with md4 hash (#198) (ef084d4)

3.1.2 (2021-11-04)

Bug Fixes

• bug with unicode characters (#196) (0426405)

3.1.1 (2021-11-04)

Bug Fixes

• base64 and unicode characters (02b1f3f)

3.1.0 (2021-10-29)

Features

• added md4 (wasm version) and md4-native (crypto module version) algorithms (cbf9d1d)

3.0.0 (2021-10-20)

⚠ BREAKING CHANGES

• minimum supported Node.js version is 12.13.0 (93a87ce)
• use xxhash64 by default for [hash]/[contenthash] and getHashDigest API
• [emoji] was removed without replacements, please use custom function if you need this

... (truncated)

Commits

• a3fd3ca chore(release): 3.2.1
• d2d752d fix: ReDoS problem (#224)
• 52cd134 chore(deps): bump minimist from 1.2.5 to 1.2.6 (#209)
• 9fe2381 chore: add .gitattributes for normalizing end of lines - fixes #203 (#204)
• a282654 chore(release): 3.2.0
• f2a524b chore(deps): update (#200)
• 451858b feat: hash uniformity for base digests
• f7dbfe1 chore(release): 3.1.3
• ef084d4 fix: crash with md4 hash (#198)
• 097f5c3 chore(release): 3.1.2
• Additional commits viewable in compare view

Updates react-dev-utils from 11.0.3 to 12.0.1

Changelog

Sourced from react-dev-utils's changelog.

2.0.3 and Newer Versions

Please refer to CHANGELOG-2.x.md for the 2.x range, and https://github.com/facebook/create-react-app/blob/main/CHANGELOG.md for the newer versions.

1.1.5 (August 24, 2018)

• react-scripts

  • Update the webpack-dev-server dependency

• react-dev-utils

  • #4866 Fix a Windows-only vulnerability (CVE-2018-6342) in the development server (@​acdlite)
  • Update the sockjs-client dependency

Committers: 1

• Andrew Clark (acdlite)

Migrating from 1.1.4 to 1.1.5

Inside any created project that has not been ejected, run:

npm install --save --save-exact react-scripts@1.1.5

or

yarn add --exact react-scripts@1.1.5

1.1.4 (April 3, 2018)

:bug: Bug Fix

• react-dev-utils

  • #4250 Upgrade detect-port-alt to fix #4189. (@​Timer)

Committers: 1

• Joe Haddad (Timer)

Migrating from 1.1.3 to 1.1.4

Inside any created project that has not been ejected, run:

</tr></table> 

... (truncated)

Commits

• 19fa58d Publish
• a422bf2 Ensure posix compliant joins for urls in middleware (#11640)
• 221e511 Publish
• 3afbbc0 Update all dependencies (#11624)
• 3880ba6 Remove dependency pinning (#11474)
• 5cedfe4 Bump browserslist from 4.14.2 to 4.16.5 (#11476)
• 63bba07 Upgrade jest and related packages from 26.6.0 to 27.1.0 (#11338)
• 960b21e Bump immer from 8.0.4 to 9.0.6 (#11364)
• f0a837c Webpack 5 (#11201)
• 369fccf fix: fast refresh stops on needed bail outs (#11105)
• Additional commits viewable in compare view

Updates react-scripts from 4.0.1 to 5.0.1

Changelog

Sourced from react-scripts's changelog.

4.0.3 (2021-02-22)

v4.0.3 is a maintenance release that includes minor bug fixes and dependency updates.

:bug: Bug Fix

• react-scripts
  • #10590 Upgrade eslint-webpack-plugin to fix opt-out flag (@​mrmckeb)

:house: Internal

• react-dev-utils
  • #10412 update immer to 8.0.1 to address vulnerability (@​wclem4)
• create-react-app
  • #10384 tests: update test case to match the description (@​jamesgeorge007)

Committers: 4

• Brody McKee (@​mrmckeb)
• Dion Woolley (@​Awarua-)
• James George (@​jamesgeorge007)
• Walker Clem (@​wclem4)

Migrating from 4.0.2 to 4.0.3

Inside any created project that has not been ejected, run:

npm install --save --save-exact react-scripts@4.0.3

or

yarn add --exact react-scripts@4.0.3

4.0.2 (2021-02-03)

v4.0.2 is a maintenance release that includes minor bug fixes and documentation updates.

:rocket: New Feature

• react-scripts
  • #8986 Add support for new BUILD_PATH advanced configuration variable (@​ajhyndman)

:bug: Bug Fix

• react-scripts
  • #10170 Add opt-out for eslint-webpack-plugin (@​mrmckeb)

... (truncated)

Commits

• 19fa58d Publish
• 9802941 fix: webpack noise printed only if error or warning (#12245)
• 2eef1d0 Update templates to use React 18 createRoot (#12220)
• 221e511 Publish
• 5614c87 Add support for Tailwind (#11717)
• 20edab4 fix(webpackDevServer): disable overlay for warnings (#11413)
• 3afbbc0 Update all dependencies (#11624)
• f5467d5 feat(eslint-config-react-app): support ESLint 8.x (#11375)
• c7627ce Update webpack and dev server (#11646)
• 544befe Update package.json (#11597)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/TNRIS/dataHub/network/alerts).