Bump webpack-dev-middleware, karma-webpack and powerbi-visuals-tools

[dependabot[bot]]

Bumps webpack-dev-middleware to 5.3.4 and updates ancestor dependencies webpack-dev-middleware, karma-webpack and powerbi-visuals-tools. These dependencies need to be updated together.

Updates webpack-dev-middleware from 3.7.2 to 5.3.4

Release notes

Sourced from webpack-dev-middleware's releases.

v5.3.4

5.3.4 (2024-03-20)

Bug Fixes

• security: do not allow to read files above (#1779) (189c4ac)

v5.3.3

5.3.3 (2022-05-18)

Bug Fixes

• types for Request and Response (#1271) (eeb8aa8)

v5.3.2

5.3.2 (2022-05-17)

Bug Fixes

• node types (#1195) (d68ab36)
• compatibility with Node.js 18

v5.3.1

5.3.1 (2022-02-01)

Bug Fixes

• types (#1187) (0f82e1d)

v5.3.0

5.3.0 (2021-12-16)

Features

• added types (a2fa77f)
• removed cjs wrapper (#1146) (b6d53d3)

v5.2.2

5.2.2 (2021-11-17)

Chore

• update schema-utils package to 4.0.0 version

... (truncated)

Changelog

Sourced from webpack-dev-middleware's changelog.

5.3.4 (2024-03-20)

Bug Fixes

• security: do not allow to read files above (#1779) (189c4ac)

5.3.3 (2022-05-18)

Bug Fixes

• types for Request and Response (#1271) (eeb8aa8)

5.3.2 (2022-05-17)

Bug Fixes

• node types (#1195) (d68ab36)

5.3.1 (2022-02-01)

Bug Fixes

• types (#1187) (0f82e1d)

5.3.0 (2021-12-16)

Features

• added types (a2fa77f)
• removed cjs wrapper (#1146) (b6d53d3)

5.2.2 (2021-11-17)

Chore

• update schema-utils package to 4.0.0 version

5.2.1 (2021-09-25)

• internal release, no visible changes and features

5.2.0 (2021-09-24)

... (truncated)

Commits

• 86071ea chore(release): 5.3.4
• 189c4ac fix(security): do not allow to read files above (#1779)
• f3c62b8 chore(release): 5.3.3
• eeb8aa8 fix: types for Request and Response (#1271)
• 1a45388 chore(release): 5.3.2
• b8fb945 chore(deps): memfs force update (#1269)
• f88067d chore: update deps and ci (#1260)
• 7186318 chore(deps-dev): bump @​commitlint/cli
• 57c50ef ci: update checkout, setup-node, and codecov actions (#1267)
• 840146a chore(deps-dev): bump @​babel/preset-env
• Additional commits viewable in compare view

Updates karma-webpack from 4.0.2 to 5.0.1

Release notes

Sourced from karma-webpack's releases.

v5.0.1

5.0.1 (2024-02-01)

Fixes

• security fixes

v5.0.0

No release notes provided.

v5.0.0-alpha.6

Bug Fixes

• automatically fix missing webpack framework and report a warning (ea5dc8e)
• fix an issue where multiple karma-webpack processes could not run in parallel (ea3dabe)
• bump hotfix dependencies (98b3ec9)

v5.0.0-alpha.5

Bug Fixes

• change the webpack peer dependency to webpack v5 (2e0ca74)

v5.0.0-alpha.4

Bug Fixes

• fix compatibility issues for webpack v5 (8d7366f), closes #452
• remove deprecation warning for .watch() (4fe1f60)

Changelog

Sourced from karma-webpack's changelog.

5.0.1 (2024-02-01)

Fixes

• security fixes

5.0.0 (2021-02-02)

No changes, just a new stable release.

5.0.0-alpha.6 (2021-01-30)

Bug Fixes

• automatically fix missing webpack framework and report a warning (ea5dc8e)
• fix an issue where multiple karma-webpack processes could not run in parallel (ea3dabe)
• bump hotfix dependencies (98b3ec9)

5.0.0-alpha.5 (2020-12-06)

Bug Fixes

• change the webpack peer dependency to webpack v5 (2e0ca74)

5.0.0-alpha.4 (2020-12-06)

Bug Fixes

• fix compatibility issues for webpack v5 (8d7366f), closes #452
• remove deprecation warning for .watch() (4fe1f60)

5.0.0-alpha.3.0 (2019-03-07)

Bug Fixes

• allow for same filenames to be added (#401) (80ce2d8), closes #400

5.0.0-alpha.2 (2019-02-13)

Bug Fixes

• karma-webpack: normalize paths to be compatible with windows (b783e1c)

... (truncated)

Commits

• a12b34d chore(release): 5.0.1
• 16c7e50 chore(deps): update hotfix dependencies (#583)
• 3252713 build(deps-dev): bump follow-redirects from 1.14.8 to 1.15.4 (#582)
• 9ade240 update README.md (#581)
• 2337a82 chore: audit fix (#580)
• 645ee59 chore: remove github releaser (#579)
• f2327b1 fix(controller): disallow custom optiomization (#578)
• 908e03c Revert "chore: fix maintainers images being squished (#576)" (#577)
• 701a082 chore: fix maintainers images being squished (#576)
• 09d976c chore: update maintainers (#575)
• Additional commits viewable in compare view

Updates powerbi-visuals-tools from 3.1.10 to 3.4.3

Changelog

Sourced from powerbi-visuals-tools's changelog.

3.4.3

• Updated webpack assets compilation
• Added environment logging for debugging purposes
• Fixed certificate date verification for different regional settings

3.4.2

• Migrated from request lib to node https standard method
• Removed friendly-errors-webpack-plugin usage
• Removed or updated deprecated dependencies
• Fixed vulnerabilities

3.4.1

• Fixed certificate verification for 'non-english' environment

3.4.0

⚠ BREAKING CHANGES

• Removed old API ( 2.6.0 and bellow) templates logic
• Removed pbiviz-update method
• Removed --api [version] flag
• Migrated to webpack-dev-server v4

3.3.2

• Extended "powerbi-visuals-api" usage up to version 3.2.0 and higher

3.3.1

• Fixed certificate issues
• Fixed an issue when previous API version was used for a new package build

3.3.0

⚠ BREAKING CHANGES

• Starting from tools version 3.3.0, it expects usage of "powerbi-visuals-api": ">=3.8.0"

Features

• Added support for CV modal dialog

3.2.2

• Removed npm-force-resolutions package

3.2.1

... (truncated)

Commits

• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/microsoft/PowerBI-visuals-AsterPlot/network/alerts).