search

microsoft / griffel

CSS-in-JS with ahead-of-time compilation ⚡️
https://griffel.js.org
MIT License
1.2k stars 61 forks source link

chore(deps): bump webpack-dev-middleware from 5.3.3 to 5.3.4 #525

Closed dependabot[bot] closed 8 months ago

dependabot[bot] commented 8 months ago

Bumps webpack-dev-middleware from 5.3.3 to 5.3.4.

Release notes

Sourced from webpack-dev-middleware's releases.

v5.3.4

5.3.4 (2024-03-20)

Bug Fixes

  • security: do not allow to read files above (#1779) (189c4ac)
Changelog

Sourced from webpack-dev-middleware's changelog.

5.3.4 (2024-03-20)

Bug Fixes

  • security: do not allow to read files above (#1779) (189c4ac)
Commits


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/microsoft/griffel/network/alerts).
github-actions[bot] commented 8 months ago

📊 Bundle size report

Unchanged fixtures | Package & Exports | Size (minified/GZIP) | | -------------------------------------------------------------------------------------------------------------------------- | --------------------------: | | core
\_\_resetStyles (makeResetStyles) | `273 B`
`197 B` | | core
\_\_styles (makeStyles) | `1.662 kB`
`793 B` | | core
makeResetStyles (runtime) | `17.14 kB`
`6.569 kB` | | core
makeStyles (runtime) | `21.651 kB`
`8.202 kB` | | core
mergeClasses | `1.821 kB`
`876 B` | | core
shorthands.padding() | `4.781 kB`
`1.537 kB` | | react
\_\_css | `1.658 kB`
`774 B` | | react
\_\_styles | `3.776 kB`
`1.668 kB` | | react
makeResetStyles (runtime) | `19.285 kB`
`7.429 kB` | | react
makeStaticStyles (runtime) | `9.225 kB`
`4.051 kB` | | react
makeStyles (runtime) | `23.803 kB`
`9.044 kB` | | shadow-dom
createShadowDOMRenderer | `3.468 kB`
`1.467 kB` |

🤖 This report was generated against 7eb2fec2e84b606fa92ddc8a1775a74ce8ad3a43