rpt-labs / ghostbuster

MIT License
3 stars 17 forks source link

chore(deps): bump json5, webpack, css-loader, eslint-loader, html-loader, html-webpack-plugin, mini-css-extract-plugin and webpack-cli #157

Open dependabot[bot] opened 1 year ago

dependabot[bot] commented 1 year ago

Bumps json5 to 2.2.2 and updates ancestor dependencies json5, webpack, css-loader, eslint-loader, html-loader, html-webpack-plugin, mini-css-extract-plugin and webpack-cli. These dependencies need to be updated together.

Updates json5 from 2.2.1 to 2.2.2

Release notes

Sourced from json5's releases.

v2.2.2

  • Fix: Properties with the name __proto__ are added to objects and arrays. (#199) This also fixes a prototype pollution vulnerability reported by Jonathan Gregson! (#295).
Changelog

Sourced from json5's changelog.

v2.2.2 [code, diff]

  • Fix: Properties with the name __proto__ are added to objects and arrays. (#199) This also fixes a prototype pollution vulnerability reported by Jonathan Gregson! (#295).
Commits
  • 14f8cb1 2.2.2
  • 10cc7ca docs: update CHANGELOG for v2.2.2
  • 7774c10 fix: add proto to objects and arrays
  • edde30a Readme: slight tweak to intro
  • 97286f8 Improve example in readme
  • d720b4f Improve readme (e.g. explain JSON5 better!) (#291)
  • 910ce25 docs: fix spelling of Aseem
  • 2aab4dd test: require tap as t in cli tests
  • 6d42686 test: remove mocha syntax from tests
  • 4798b9d docs: update installation and usage for modules
  • Additional commits viewable in compare view


Updates webpack from 4.46.0 to 5.75.0

Release notes

Sourced from webpack's releases.

v5.75.0

Bugfixes

  • experiments.* normalize to false when opt-out
  • avoid NaN%
  • show the correct error when using a conflicting chunk name in code
  • HMR code tests existance of window before trying to access it
  • fix eval-nosources-* actually exclude sources
  • fix race condition where no module is returned from processing module
  • fix position of standalong semicolon in runtime code

Features

  • add support for @import to extenal CSS when using experimental CSS in node
  • add i64 support to the deprecated WASM implementation

Developer Experience

  • expose EnableWasmLoadingPlugin
  • add more typings
  • generate getters instead of readonly properties in typings to allow overriding them

v5.74.0

Features

  • add resolve.extensionAlias option which allows to alias extensions
    • This is useful when you are forced to add the .js extension to imports when the file really has a .ts extension (typescript + "type": "module")
  • add support for ES2022 features like static blocks
  • add Tree Shaking support for ProvidePlugin

Bugfixes

  • fix persistent cache when some build dependencies are on a different windows drive
  • make order of evaluation of side-effect-free modules deterministic between concatenated and non-concatenated modules
  • remove left-over from debugging in TLA/async modules runtime code
  • remove unneeded extra 1s timestamp offset during watching when files are actually untouched
    • This sometimes caused an additional second build which are not really needed
  • fix shareScope option for ModuleFederationPlugin
  • set "use-credentials" also for same origin scripts

Performance

  • Improve memory usage and performance of aggregating needed files/directories for watching
    • This affects rebuild performance

Extensibility

  • export HarmonyImportDependency for plugins

v5.73.0

... (truncated)

Commits


Updates css-loader from 1.0.1 to 6.7.3

Release notes

Sourced from css-loader's releases.

v6.7.3

6.7.3 (2022-12-14)

Bug Fixes

v6.7.2

6.7.2 (2022-11-13)

Bug Fixes

  • css modules generation with inline syntax (#1480) (2f4c273)

v6.7.1

6.7.1 (2022-03-08)

Bug Fixes

v6.7.0

6.7.0 (2022-03-04)

Features

v6.6.0

6.6.0 (2022-02-02)

Features

  • added the hashStrategy option (ca4abce)

v6.5.1

6.5.1 (2021-11-03)

Bug Fixes

  • regression with unicode characters in locals (b7a8441)
  • runtime path generation (#1393) (feafea8)

v6.5.0

... (truncated)

Changelog

Sourced from css-loader's changelog.

6.7.3 (2022-12-14)

Bug Fixes

6.7.2 (2022-11-13)

Bug Fixes

  • css modules generation with inline syntax (#1480) (2f4c273)

6.7.1 (2022-03-08)

Bug Fixes

6.7.0 (2022-03-04)

Features

6.6.0 (2022-02-02)

Features

  • added the hashStrategy option (ca4abce)

6.5.1 (2021-11-03)

Bug Fixes

  • regression with unicode characters in locals (b7a8441)
  • runtime path generation (#1393) (feafea8)

6.5.0 (2021-10-26)

Features

  • support absolute URL in url() when experiments.buildHttp enabled (#1389) (8946be4)

... (truncated)

Commits


Updates eslint-loader from 2.2.1 to 4.0.2

Release notes

Sourced from eslint-loader's releases.

v4.0.2

Bug Fixes

v4.0.1

Refactor

  • new cache implementation (#320) (6bb1fa6)

v4.0.0

Breaking Changes

  • drop support for Node < 10.13.0
  • minimum supported eslint version is 6

v3.0.4

Bug Fixes

v3.0.3

Bug Fixes

v3.0.2

Bug Fixes

v3.0.1

Bug Fixes

  • module build failed error at Linter.parseResults (#294) (360e69c)

v3.0.0

Bugfix

  • fix corrupted filenames if cwd == "/"
  • cannot use string formatter in outputReport
  • no Output Report in File when build fails under webpack 4
  • add posibility to use absolute file path in outputReport.filePath
  • it should be possible to use absolute file path in outputReport.filePath
  • try load official formatter (#285) (997cce5)
  • emit warning/error if no config was found/given (#286) (4204560)

... (truncated)

Changelog

Sourced from eslint-loader's changelog.

4.0.2 (2020-04-24)

Bug Fixes

4.0.1 (2020-04-24)

Refactor

4.0.0 (2020-04-03)

Breaking Changes

  • drop support for Node < 10.13.0
  • minimum supported eslint version is 6

3.0.4 (2020-04-02)

Bug Fixes

3.0.3 (2019-12-06)

Bug Fixes

3.0.2 (2019-09-27)

Bug Fixes

3.0.1 (2019-09-25)

Bug Fixes

  • module build failed error at Linter.parseResults (#294) (360e69c)

... (truncated)

Commits


Updates html-loader from 0.5.5 to 4.2.0

Release notes

Sourced from html-loader's releases.

v4.2.0

4.2.0 (2022-09-22)

Features

v4.1.0

4.1.0 (2022-07-11)

Features

v4.0.0

4.0.0 (2022-06-15)

⚠ BREAKING CHANGES

  • minimum supported Node.js version is 14.15.0
  • update parse5 to 7.0.0

Bug Fixes

  • handle text with <script> in the script element (#444) (9949d82)

v3.1.2

Fix

  • broken release

v3.1.0

3.1.0 (2022-01-08)

Features

  • add possibility to extend default minimize options (#414) (0fa36af)

v3.0.1

3.0.1 (2021-11-02)

Bug Fixes

... (truncated)

Changelog

Sourced from html-loader's changelog.

4.2.0 (2022-09-22)

Features

4.1.0 (2022-07-11)

Features

4.0.0 (2022-06-15)

⚠ BREAKING CHANGES

  • minimum supported Node.js version is 14.15.0
  • update parse5 to 7.0.0

Bug Fixes

  • handle text with <script> in the script element (#444) (9949d82)

3.1.0 (2022-01-08)

Features

  • add possibility to extend default minimize options (#414) (0fa36af)

3.0.1 (2021-11-02)

Bug Fixes

3.0.0 (2021-10-21)

⚠ BREAKING CHANGES

  • minimum supported Node.js version is 12.13.0

Features

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by evilebottnawi, a new releaser for html-loader since your current version.


Updates html-webpack-plugin from 3.0.7 to 5.5.0

Changelog

Sourced from html-webpack-plugin's changelog.

5.5.0 (2021-10-25)

Features

  • Support type=module via scriptLoading option (1e42625), closes #1663

5.4.0 (2021-10-15)

Features

5.3.2 (2021-06-22)

Bug Fixes

  • update lodash and pretty error (9c7fba0

5.3.1 (2021-03-09)

Bug Fixes

  • remove loader-utils from plugin core (82d0ee8)

5.3.0 (2021-03-07)

Features

  • allow to modify the interpolation options in webpack config (d654f5b)
  • drop loader-utils dependency (41d7a50)

5.2.0 (2021-02-19)

Features

5.1.0 (2021-02-12)

Features

  • omit html tag attribute with null/undefined/false value (aa6e78d), closes #1598

5.0.0 (2021-02-03)

... (truncated)

Commits
  • 873d75b chore(release): 5.5.0
  • ddeb774 chore: update examples
  • 1e42625 feat: Support type=module via scriptLoading option
  • 7d3645b Bump pretty-error to 4.0.0 to fix transitive vuln for ansi-regex CVE-2021-3807
  • 79be779 [chore] changes actions to run on pull_requests
  • b7e5859 [chore] fixes CI to avoid race conditions
  • 48131d3 chore(release): 5.4.0
  • 16a841a [chore] rebuild examples
  • 3bb7c17 Update index.js
  • e38ac97 Update index.js
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by jantimon, a new releaser for html-webpack-plugin since your current version.


Updates mini-css-extract-plugin from 0.4.5 to 2.7.2

Release notes

Sourced from mini-css-extract-plugin's releases.

v2.7.2

2.7.2 (2022-12-06)

Bug Fixes

v2.7.1

2.7.1 (2022-11-29)

Bug Fixes

v2.7.0

2.7.0 (2022-11-16)

Features

  • add function support for locals (loader) (#985) (65519d0)

v2.6.1

2.6.1 (2022-06-15)

Bug Fixes

  • do not attempt hot reloading when emit is false (#953) (b426f04)

v2.6.0

2.6.0 (2022-03-03)

Features

  • added baseUri option support (from entry options) (#915) (6004d95)

v2.5.3

2.5.3 (2022-01-25)

Bug Fixes

v2.5.2

2.5.2 (2022-01-17)

... (truncated)

Changelog

Sourced from mini-css-extract-plugin's changelog.

2.7.2 (2022-12-06)

Bug Fixes

2.7.1 (2022-11-29)

Bug Fixes

2.7.0 (2022-11-16)

Features

  • add function support for locals (loader) (#985) (65519d0)

2.6.1 (2022-06-15)

Bug Fixes

  • do not attempt hot reloading when emit is false (#953) (b426f04)

2.6.0 (2022-03-03)

Features

  • added baseUri option support (from entry options) (#915) (6004d95)

2.5.3 (2022-01-25)

Bug Fixes

2.5.2 (2022-01-17)

Bug Fixes

2.5.1 (2022-01-17)

... (truncated)

Commits


Updates webpack-cli from 3.3.12 to 5.0.1

Release notes

Sourced from webpack-cli's releases.

v5.0.1

5.0.1 (2022-12-05)

Bug Fixes

  • make define-process-env-node-env alias node-env (#3514) (346a518)

v5.0.0

5.0.0 (2022-11-17)

Bug Fixes

  • improve description of the --disable-interpret option (#3364) (bdb7e20)
  • remove the redundant utils export (#3343) (a9ce5d0)
  • respect NODE_PATH env variable (#3411) (83d1f58)
  • show all CLI specific flags in the minimum help output (#3354) (35843e8)

Features

  • failOnWarnings option (#3317) (c48c848)
  • update commander to v9 (#3460) (6621c02)
  • added the --define-process-env-node-env option
  • update interpret to v3 and rechoir to v0.8
  • add an option for preventing interpret (#3329) (c737383)

BREAKING CHANGES

  • the minimum supported webpack version is v5.0.0 (#3342) (b1af0dc), closes #3342
  • webpack-cli no longer supports webpack v4, the minimum supported version is webpack v5.0.0
  • webpack-cli no longer supports webpack-dev-server v3, the minimum supported version is webpack-dev-server v4.0.0
  • remove the migrate command (#3291) (56b43e4), closes #3291
  • remove the --prefetch option in favor the PrefetchPlugin plugin
  • remove the --node-env option in favor --define-process-env-node-env
  • remove the --hot option in favor of directly using the HotModuleReplacement plugin (only for build command, for serve it will work)
  • the behavior logic of the --entry option has been changed - previously it replaced your entries, now the option adds a specified entry, if you want to return the previous behavior please use webpack --entry-reset --entry './src/my-entry.js'

v4.10.0

4.10.0 (2022-06-13)

Bug Fixes

Features

v4.9.2

4.9.2 (2022-01-24)

... (truncated)

Changelog

Sourced from webpack-cli's changelog.

5.0.1 (2022-12-05)

Bug Fixes

  • make define-process-env-node-env alias node-env (#3514) (346a518)

5.0.0 (2022-11-17)

Bug Fixes

  • improve description of the --disable-interpret option (#3364) (bdb7e20)
  • remove the redundant utils export (#3343) (a9ce5d0)
  • respect NODE_PATH env variable (#3411) (83d1f58)
  • show all CLI specific flags in the minimum help output (#3354) (35843e8)

Features

  • failOnWarnings option (#3317) (c48c848)
  • update commander to v9 (#3460) (6621c02)
  • added the --define-process-env-node-env option
  • update interpret to v3 and rechoir to v0.8
  • add an option for preventing interpret (#3329) (c737383)

BREAKING CHANGES

  • the minimum supported webpack version is v5.0.0 (#3342) (b1af0dc), closes #3342
  • webpack-cli no longer supports webpack v4, the minimum supported version is webpack v5.0.0
  • webpack-cli no longer supports webpack-dev-server v3, the minimum supported version is webpack-dev-server v4.0.0
  • remove the migrate command (#3291) (56b43e4), closes #3291
  • remove the --prefetch option in favor the PrefetchPlugin plugin
  • remove the --node-env option in favor --define-process-env-node-env
  • remove the --hot option in favor of directly using the HotModuleReplacement plugin (only for build command, for serve it will work)
  • the behavior logic of the --entry option has been changed - previously it replaced your entries, now the option adds a specified entry, if you want to return the previous behavior please use webpack --entry-reset --entry './src/my-entry.js'

4.10.0 (2022-06-13)

Bug Fixes

Features

4.9.2 (2022-01-24)

Bug Fixes

  • respect negatedDescription for flags from schema (#3102) (463b731)

... (truncated)

Commits
  • 4a0f893 chore(release): publish new version
  • 9de982c chore: fix cspell
  • 32d26c8 chore(deps-dev): bump cspell from 6.15.1 to 6.16.0 (#3517)
  • 2788bf9 chore(deps-dev): bump eslint from 8.28.0 to 8.29.0 (#3516)
  • ac88ee4 chore(deps-dev): bump lint-staged from 13.0.4 to 13.1.0 (#3515)
  • 346a518 fix: make define-process-env-node-env alias node-env (#3514)
  • 3ec7b16 chore(deps): bump yeoman-environment from 3.12.1 to 3.13.0 (#3508)
  • c8adfa6 chore(deps-dev): bump @​types/node from 18.11.9 to 18.11.10 (#3513)
  • 0ad8cc2 chore(deps-dev): bump cspell from 6.15.0 to 6.15.1 (#3512)
  • d30f261 chore(deps-dev): bump ts-loader from 9.4.1 to 9.4.2 (#3511)
  • Additional commits viewable in compare view


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrad... _Description has been truncated_