search

hypothesis / via

Proxies third-party PDF files and HTML pages with the Hypothesis client embedded, so you can annotate them
https://via.hypothes.is/
BSD 2-Clause "Simplified" License
20 stars 7 forks source link

Bump terser from 5.31.6 to 5.36.0 #1465

Closed dependabot[bot] closed 1 month ago

dependabot[bot] commented 1 month ago

Bumps terser from 5.31.6 to 5.36.0.

Changelog

Sourced from terser's changelog.

v5.36.0

  • Support import attributes with syntax

v5.35.0

  • Ensure parent directory exists when using --output on CLI (#1530)

v5.34.1

  • bump the rollup devDependency to disable CVE warnings (Terser was not affected)

v5.34.0

  • internal: stop assigning properties to objects they don't belong in
  • internal: run compress tests in parallel
  • drop_console: emit an empty function if the return value of console.METHOD(...) may be called.

v5.33.0

  • reduce_vars improved when dealing with hoisted function definitions (#1544)

v5.32.0

  • import("module") can now be input and output from ESTree AST (#1557)
  • BigInt literals can now be input and output from ESTree AST (#1555)
  • typeof an object or array (typeof {} and typeof []) can now be statically evaluated. (#1546)
Commits


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)