search

jywarren / woofmark

:dog2: Barking up the DOM tree. A modular, progressive, and beautiful Markdown and HTML editor
http://bevacqua.github.io/woofmark
MIT License
3 stars 5 forks source link

Bump terser from 4.8.0 to 5.3.1 #48

Closed dependabot-preview[bot] closed 3 years ago

dependabot-preview[bot] commented 4 years ago

Bumps terser from 4.8.0 to 5.3.1.

Changelog

Sourced from terser's changelog.

v5.3.1

  • An issue with destructuring declarations when pure_getters is enabled has been fixed
  • Fixed a crash when chain expressions need to be shallowly compared
  • Made inlining functions more conservative to make sure a function that contains a reference to itself isn't moved into a place that can create multiple instances of itself.

v5.3.0

  • Fixed a crash when compressing object spreads in some cases
  • Fixed compiletime evaluation of optional chains (caused typeof a?.b to always return "object")
  • domprops has been updated to contain every single possible prop

v5.2.1

  • The parse step now doesn't accept an ecma option, so that all ES code is accepted.
  • Optional dotted chains now accept keywords, just like dotted expressions (foo?.default)

v5.2.0

  • Optional chaining syntax is now supported.
  • Consecutive await expressions don't have unnecessary parens
  • Taking the variable name's length (after mangling) into consideration when deciding to inline

v5.1.0

  • import.meta is now supported
  • Typescript typings have been improved

v5.0.0

  • in operator now taken into account during property mangle.
  • Fixed infinite loop in face of a reference loop in some situations.
  • Kept exports and imports around even if there's something which will throw before them.
  • The main exported bundle for commonjs, dist/bundle.min.js is no longer minified.

v5.0.0-beta.0

  • BREAKING: minify() is now async and rejects a promise instead of returning an error.
  • BREAKING: Internal AST is no longer exposed, so that it can be improved without releasing breaking changes.
  • BREAKING: Lowest supported node version is 10
  • BREAKING: There are no more warnings being emitted
  • Module is now distributed as a dual package - You can import and require() too.
  • Inline improvements were made
Commits
  • fe4a974 5.3.1
  • 1dbf169 update changelog
  • 290f26a be a little more conservative when inlining a function into another function....
  • f69e2e6 fix shallow_cmp for chain expressions. Closes #816
  • dda86f5 skip pure getters for destructuring with rest (#778)
  • c70f4b1 5.3.0
  • f306199 update changelog
  • 501afef fix failure case when evaluating an optional chain. Closes #806
  • 6b6cb9f add note about node version to CONTRIBUTING.md
  • fc1ea2d Added note about no sync (#793)
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired)
gitpod-io[bot] commented 4 years ago

dependabot-preview[bot] commented 3 years ago

Superseded by #49.