search

snowdensb / questdb

An open source SQL database designed to process time series data, faster
https://questdb.io
Apache License 2.0
0 stars 1 forks source link

chore(deps): update dependency webpack to v5 - autoclosed #106

Closed mend-for-github-com[bot] closed 2 years ago

mend-for-github-com[bot] commented 2 years ago

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
webpack 4.43.0 -> 5.0.0 age adoption passing confidence

By merging this PR, the below issues will be automatically resolved and closed:

Severity CVSS Score CVE GitHub Issue
High 7.5 CVE-2020-28469 #7
High 7.5 CVE-2021-27290 #14

Release Notes

webpack/webpack ### [`v5.0.0`](https://togithub.com/webpack/webpack/releases/v5.0.0) [Compare Source](https://togithub.com/webpack/webpack/compare/v4.46.0...v5.0.0) [Announcement and changelog](https://webpack.js.org/blog/2020-10-10-webpack-5-release/) ### [`v4.46.0`](https://togithub.com/webpack/webpack/releases/v4.46.0) [Compare Source](https://togithub.com/webpack/webpack/compare/v4.45.0...v4.46.0) ### Bugfixes - fix behavior of defaults for `resolve.roots` to be backward-compatible ### [`v4.45.0`](https://togithub.com/webpack/webpack/releases/v4.45.0) [Compare Source](https://togithub.com/webpack/webpack/compare/v4.44.2...v4.45.0) ### Features - resolve server-relative requests relative to project context by default ### Bugfixes - fix a bug where `splitChunk` `minSize` is not handled correctly - fix a bug where the order of `splitChunk` `cacheGroups` is not handled correctly ### [`v4.44.2`](https://togithub.com/webpack/webpack/releases/v4.44.2) [Compare Source](https://togithub.com/webpack/webpack/compare/v4.44.1...v4.44.2) ### Bugfixes - make sure to generate correct chunk connection for blocks that are only connected in some runtimes - fixes a bug where filename contains undefined hash at runtime ### [`v4.44.1`](https://togithub.com/webpack/webpack/releases/v4.44.1) [Compare Source](https://togithub.com/webpack/webpack/compare/v4.44.0...v4.44.1) ### Bugfixes - fix bug in sideEffects optimization when using `export * from "non-esm"` and a default export. - add missing optional peerDependencies for webpack-cli and webpack-command to support Yarn 2 ### [`v4.44.0`](https://togithub.com/webpack/webpack/releases/v4.44.0) [Compare Source](https://togithub.com/webpack/webpack/compare/v4.43.0...v4.44.0) ### Features - Improve `sideEffects` flag behavior when dynamic modules are part of the tree - Fixes a bug which causes empty modules (or type-only modules) to "break" Tree Shaking - add `splitChunks.enforceSizeThreshold` to allow enfore splitting larger chunks unrelated from other limiations - Not set by default to avoid breaking change - It will be set by default to 50k in webpack 5 - It's recommended to set it in webpack 4 too - add support for `resolve.roots` and default `resolve.roots: [context]` - This allows to resolve server-relative urls (e.g. `/src/abc`) to the project root (or other locations when configured) - This allows to use loaders that rely on that behavior ### Bugfixes - fix bug where splitChunks produced non-optimal results when `minSize` is set to `0` - This lead to `NaN`s in some places which breaks ordering - Fix bug which lead to HMR not working for splitChunks in entrypoints - force update watchpack and chokidar for chokidar bugfix which causes files to stop being watched