wc-catalogue / blaze-elements

Web Component Blaze Elements
https://wc-catalogue.github.io/blaze-elements/
MIT License
10 stars 4 forks source link

Update webpack-dev-server to the latest version πŸš€ #307

Open greenkeeper[bot] opened 7 years ago

greenkeeper[bot] commented 7 years ago

Version 2.4.2 of webpack-dev-server just got published.

Dependency webpack-dev-server
Current Version 2.4.1
Type devDependency

The version 2.4.2 is not covered by your current version range.

Without accepting this pull request your project will work just like it did before. There might be a bunch of new features, fixes and perf improvements that the maintainers worked on for you though.

I recommend you look into these changes and try to get onto the latest version of webpack-dev-server. Given that you have a decent test suite, a passing build is a strong indicator that you can take advantage of these changes by merging the proposed change into your project. Otherwise this branch is a great starting point for you to work on the update.


Commits

The new version differs by 15 commits .

  • 60e4727 2.4.2
  • 32adae3 Added beforeunload check to index.js (#544) (#841)
  • d69559a Handle external upgrade for all websocket proxies (#843)
  • 35a44d1 Remove Node.js v7 warning
  • d2f579c Support for array of contentBase (#832)
  • aabeeaa Remove unnecessary logging of closing the dev-server
  • 1dc9461 Fix to share proxy option between proxy settings when the proxy option is a same object (#836)
  • 42cd23c Explicitely but gracefully handle SIGINT and SIGTERM signals. (#787)
  • 85de417 Use arrow function if it possible and get rid of .bind in server part (#835)
  • 234294a Add unit tests for proxy options (#834)
  • 8d4b826 add codecov
  • d081f01 Update webpack-dev-middleware to 0.17.4 (#827)
  • ccc8163 Fix exception when client script is used in webworkers (#813)
  • f996bd4 fix typo and add --open (#814)
  • 690df60 devClient does not work with dynamic entry. (#802)

See the full diff.

Not sure how things should work exactly? There is a collection of [frequently asked questions](https://greenkeeper.io/faq.html) and of course you may always [ask my humans](https://github.com/greenkeeperio/greenkeeper/issues/new).

Your Greenkeeper Bot :palm_tree:

greenkeeper[bot] commented 7 years ago

Version 2.4.3 just got published.

Update to this version instead πŸš€

Release Notes v2.4.3

Security fix:

This version contains a security fix, which is also breaking change if you have an insecure configuration.
We are releasing this breaking change as patch version to protect you from attacks.
Sorry if this breaks your setup, but the fix is easy.

We added a check for the correct Host header to the webpack-dev-server.
This allowed evil websites to access your assets.

The Host header of the request have to match the listening adress or the host provided in the public option.
Make sure to provide correct values here.

The response will contain a note when using an incorrect Host header.

For usage behind a Proxy or similar setups we also added a disableHostCheck option to disable this check.
Only use it when you know what you do. Not recommended.

This version also includes this security fix for webpack-dev-middleware: https://github.com/webpack/webpack-dev-middleware/releases/tag/v1.10.2

Note: This only affect the development server and middleware. webpack and built bundles are not affected.

Bugfixes:

  • Requests are not blocked when Host doesn't match listening host or public option.
  • Requests to localhost or 127.0.0.1 are not blocked.

Features:

  • Added disableHostCheck option to disable the host check
Commits

The new version differs by 4 commits0.

  • ca93284 2.4.3
  • f3a4ac6 Merge branch 'security/host-check'
  • 8db5fd5 Require a secure webpack-dev-middleware version
  • 2957853 enable Host header check for all requests and sockets

false

See the full diff

greenkeeper[bot] commented 7 years ago

Version 2.4.4 just got published.

Update to this version instead πŸš€

Release Notes v2.4.4

Bugfixes:

  • add disableHostCheck to schema
Commits

The new version differs by 2 commits0.

false

See the full diff

greenkeeper[bot] commented 7 years ago

Version 2.4.5 just got published.

Update to this version instead πŸš€

Commits

The new version differs by 4 commits0.

  • 662bc31 2.4.5
  • 99b273c Merge pull request #888 from phairoh/fix-incorrect-variable-usage
  • f26f985 Added tests for Server.prototype.checkHost
  • 9688eea Use idxPublic when extracting hostname from publicHost

false

See the full diff

greenkeeper[bot] commented 7 years ago

Version 2.5.0 just got published.

Update to this version instead πŸš€

Release Notes v2.5.0

Security

Don't provide a SSL cert, but generate one on demand. Unique for each developer.

https://medium.com/@mikenorth/961572624c54 by Mike North

Bugfixes

  • allow port 0 again
  • add allowedHosts option
  • better check for WebWorker
  • add openPage option to open a specific page
  • add --bonjour
  • add lan option, which listen on lan ip by default
Commits

The new version differs by 11 commits.

  • bbcdca7 2.5.0
  • 7b3a42a Add 'lan' option (modify the option name to β€˜useLocalIp’ for more semantic) (#901)
  • 8d5f252 replace console.log with internal log function (#856)
  • c9fe53d zeroconf dns (bonjour) service publishing (#930)
  • 14d77a5 Adding page argument to the Open option (#917)
  • 2ca97dd Strongly check client isn't running on WebWorker for sendMsg (#929)
  • ab889c3 Add 'allowedHosts' option (#899)
  • 1a26ab4 fix #752: allow --port 0 again (#918)
  • 9a7693c Merge pull request #942 from webpack/ssl-path
  • 25e1098 updating https docs
  • 400b289 generate ssl certs per instance

See the full diff

greenkeeper[bot] commented 7 years ago

Version 2.5.1 just got published.

Update to this version instead πŸš€

Release Notes v2.5.1

Bugfixes

Fix peer dependencies to support webpack 3 ( #946 ) ( Fixes #932 )

Commits

The new version differs by 3 commits.

See the full diff

greenkeeper[bot] commented 7 years ago

Version 2.6.0 just got published.

Update to this version instead πŸš€

Release Notes v2.6.0
  • Browser console messages now respect clientLogLevel (#921).
  • Don't output startup info if quiet is set to true (#970).
  • Only load Bonjour when needed (#958).
  • Set HMR log level (#926).
  • Do not show warnings @ overlay unless explicitly set (#881).
  • Add cli option --disable-host-check (#980).
Commits

The new version differs by 10 commits ahead by 10, behind by 1.

  • adc9a0d 2.6.0
  • 6da2f38 Set HMR log level. (#926)
  • 140da45 Don't output startup info if quiet is set to true (#970)
  • 9188878 Added cli option --disable-host-check (#980)
  • b97dc5e Only load bonjour when needed (#958)
  • e5b6202 Do not show warnings @ overlay unless explicitly set (#881)
  • a7fdb06 Fix typo in https docs (#952)
  • be1af21 Update README.md (#963)
  • bd22dce Browser console messages should respect clientLogLevel (#921)
  • 2041b11 Updated sockjs-client to 1.1.4 (#975)

See the full diff

greenkeeper[bot] commented 7 years ago

Version 2.6.1 just got published.

Update to this version instead πŸš€

Release Notes v2.6.1
  • Move loglevel from devDependencies to dependencies #1001
Commits

The new version differs by 2 commits.

  • 09ffe23 2.6.1
  • d35c1c4 Move loglevel from devDependencies to dependencies (#1001)

See the full diff

greenkeeper[bot] commented 7 years ago

Version 2.7.0 just got published.

Update to this version instead πŸš€

Release Notes v2.7.0

Features

  • Added Sockjs prefix config (#911)
  • Added --allowed-hosts CLI option (#1012)

Bugfixes

  • Always allow requests with IP-address as host in checkHost() (#1007)
  • Fully mute output info if quiet is set to true. (#999)
  • Set undefined openPage to empty string when open option is true
Commits

The new version differs by 6 commits.

  • 62a46a5 2.7.0
  • ccd113a Sockjs prefix config (#911)
  • 1cf4359 add --allowed-hosts CLI option (#1012)
  • 72efaab Always allow requests with IP-address as host in checkHost() (#1007)
  • 628f0a2 Fully mute output info if quiet is set to true. (#999)
  • 8207238 Set undefined openPage to empty string when open option is true (#973)

See the full diff

greenkeeper[bot] commented 7 years ago

Version 2.7.1 just got published.

Update to this version instead πŸš€

Commits

The new version differs by 3 commits ahead by 3, behind by 1.

See the full diff

greenkeeper[bot] commented 7 years ago

Version 2.8.0 just got published.

Update to this version instead πŸš€

Release Notes v2.8.0

Features

  • Print webpack progress to browser console (#1063)
  • Disable hot reloading with query string (#1068)

Bugfixes

  • Fixes issue #1064 by switching to a named logger (#1070)
  • Fix Broken Socket on Client for Custom/Random Port Numbers (#1060)
  • Addresses #998 to properly assign a random port and access the port assigned (#1054)
  • Don't generate ssl cert when one is already specified via options (#1036)
  • Fix for ./log module not found (#1050)
  • Fixes #1042: overlay doesn't clear if errors are fixed but warnings remain (#1043)
  • Handle IPv6-addresses correctly in checkHost() (#1026)

Updates

  • Allow --open option to specify the browser to use (#825)
  • Adds requestCert support to the server
  • Code cleanup and ESLint + eslint-config-webpack (#1058)
  • Include subjectAltName field in self-signed cert (#987)
Commits

The new version differs by 17 commits.

  • 0df1fa7 2.8.0
  • ccef0d1 Print webpack progress to browser console (#1063)
  • d3a650f include subjectAltName field in self-signed cert (#987)
  • e519cf2 Add feature to disable hotReloading with query string (#1068)
  • f166177 Fixes issue #1064 by switching to a named logger (#1070)
  • f00fcb3 Allow --open option to specify the browser to use (#825)
  • cf5dda8 improving requestCert description
  • 2b760f6 Merge branch 'dbk91-request_cert_support'
  • 11a3e63 Merge branch 'request_cert_support' of https://github.com/dbk91/webpack-dev-server into dbk91-request_cert_support
  • 0fa8fea Fix Broken Socket on Client for Custom/Random Port Numbers (#1060)
  • 1201ac1 addresses #998 to properly assign a random port and access the port assigned (#1054)
  • 69239ce Cleanup Effort (#1058)
  • e6ccbaf No longer generating ssl cert when one is already specified (#1036)
  • 0b4729f Proposed fix for ./log module not found (#1050)
  • b2cf847 fixes #1042: overlay doesn't clear if errors are fixed but warnings remain (#1043)

There are 17 commits in total.

See the full diff

greenkeeper[bot] commented 7 years ago

Version 2.8.1 just got published.

Update to this version instead πŸš€

Commits

The new version differs by 5 commits.

  • e8cbdad 2.8.1 + package-lock.json
  • e5dc236 fixes #1081, closes #1079. addDevServerEndpoints needs app stub for
  • e61972a fixes #1080 - jQuery update caused live bundle iframe issue
  • 6e1a466 removing errant console.log, update lint rules
  • c7d2c9d clean up progress option typo and options def

See the full diff

greenkeeper[bot] commented 7 years ago

Version 2.8.2 just got published.

Update to this version instead πŸš€

Commits

The new version differs by 6 commits.

  • bc22935 2.8.2
  • 35e1d5f fixes #1087: yargs@8 causes error output with webpack@2.x
  • c9d32f8 fixes #1084: template literals causing errors on IE (#1089)
  • 6e18fa6 add promise-config example
  • 8f897c5 fixes #1086: promise configs fix and example
  • 35295b7 update issue template to include commonly needed info

See the full diff

greenkeeper[bot] commented 7 years ago

Version 2.9.0 just got published.

Update to this version instead πŸš€

Release Notes v2.9.0

Note: Minor release due to addition of before and after hooks

Features

Deprecate setup in favor of before and after hooks (#1108)

Bugfixes

Fixed check for webpack/hot/log when setting HMR log level. (#1096)
fixes #1109: internal-ip update breaks useLocalIp option
Fix quote style to satisfy ESLint (#1098)

Updates

Made error overlay translucent. (#1097)

Commits

The new version differs by 7 commits.

  • 5982806 2.9.0
  • dcb4e3d feat: deprecate setup in favor of before and after hooks (#1108)
  • 8bc6daa adding modification option to issue template
  • 33bef0d fixes #1109: internal-ip update breaks useLocalIp option
  • 114e67c Fixed check for webpack/hot/log when setting HMR log level. (#1096)
  • bad7ed5 Made error overlay translucent. (#1097)
  • 3e24ac4 Fix quote style to satisfy ESLint (#1098)

See the full diff

greenkeeper[bot] commented 7 years ago

Version 2.9.1 just got published.

Update to this version instead πŸš€

Commits

The new version differs by 2 commits.

  • 97484a9 2.9.1
  • 8de5d0a fix errant always-on log message regarding 'setup'

See the full diff

greenkeeper[bot] commented 7 years ago

Version 2.9.2 just got published.

Update to this version instead πŸš€

Release Notes v2.9.2

Bugfixes

Changed property descriptor for Array.includes polyfill (#1134)

Updates

Remove header additional property validation (#1115)
Allow explicitly setting the protocol from the public option (#1117)
Updates readme with support, usage, and caveats (outlines no support for old IE)

Commits

The new version differs by 5 commits.

  • 32412bb 2.9.2
  • 1af8f0e Remove header property validation (#1115)
  • c490b24 allow explicitly setting the protocol from the public option (#1117)
  • ee7231b Changed property descriptor for Array.includes polyfill (#1134)
  • 5a7f26b updating readme with support, usage, and caveats

See the full diff

greenkeeper[bot] commented 7 years ago

Version 2.9.3 just got published.

Update to this version instead πŸš€

Release Notes v2.9.3

Bugfixes

  • Fixes #1082, #1142. bin file correctly prefers local module, uses it, and bails if local module detected.
  • Use dist/build sockjs-client instead of module source (#1148)
Commits

The new version differs by 3 commits.

  • 3d72858 2.9.3
  • a3f7277 fixes #1082, #1142. bin file bails if local module detected
  • 06df2f4 Use built version os sockjs-client (#1148)

See the full diff

greenkeeper[bot] commented 7 years ago

Version 2.9.4 just got published.

Update to this version instead πŸš€

Release Notes v2.9.4

Bugfixes

  • assert ssl certs aren't published. fixes #1171
  • fixes #860: failure to exit on SIGINT race condition (#1157)
Commits

The new version differs by 5 commits.

  • 2e501c8 2.9.4
  • f87ad34 Fix https in homepage url (#1159)
  • cd01d9e assert ssl certs aren't published. fixes #1171
  • d2fef58 enhancing server.close with killable
  • 0a8f896 fixes #860: failure to exit on SIGINT race condition (#1157)

See the full diff

greenkeeper[bot] commented 6 years ago

Version 2.9.5 just got published.

Update to this version instead πŸš€

Release Notes v2.9.5

Updates

Commits

The new version differs by 4 commits.

  • 6c1d3e4 2.9.5
  • 6b2d7a0 fixes #1198: bump express for security
  • 8a11122 Update README.md (#1194)
  • b10c9eb Update Examples And Add Hotness (#1183)

See the full diff

greenkeeper[bot] commented 6 years ago

Version 2.9.6 just got published.

Update to this version instead πŸš€

Release Notes v2.9.6

Bugfixes

  • fixes #1208: watchOptions not passed to chokidar in wds
Commits

The new version differs by 2 commits.

  • 2719590 2.9.6
  • f967925 fixes #1208: watchOptions not passed to chokidar in wds

See the full diff

greenkeeper[bot] commented 6 years ago

Version 2.9.7 just got published.

Update to this version instead πŸš€

Commits

The new version differs by 2 commits.

  • fd3c176 2.9.7
  • ddc1e2c fixes #1217: edge case with default watchOptions value (#1218)

See the full diff

greenkeeper[bot] commented 6 years ago

Version 2.10.0 just got published.

Update to this version instead πŸš€

Release Notes v2.10.0

Version 2.10.0 adds the transpilation of the client scripts via babel to ES5 which restores backwards compatibility (that was removed in 2.8.0) to very old or out of date browsers.

Important webpack-dev-server has entered a maintenance-only mode. We won't be accepting any new features or major modifications. We'll still welcome pull requests for fixes however, and will continue to address any bugs that arise. Announcement with specifics pending.

Bugfixes

  • iOS Safari 10 bug where SockJS couldn't be found (#1238)
  • reportTime option (#1209)
  • don't mutate stats configuration (#1174)
  • enable progress from config (#1181)

Updates

  • transpile client bundles with babel (#1242)
  • dependency updates (ce30460)
  • Increase minimum marked version for ReDos vuln (#1255)
  • Update sockjs dependency to fix auditjs security vulnerability warning
Commits

The new version differs by 13 commits.

  • ca8b5aa 2.10.0 (#1258)
  • 17355f0 transpile client bundles with babel (#1242)
  • ce30460 rolling back webpack-dev-midddleware 2.0, as it's node6+
  • 00e8500 updating deps and patching as necessary
  • 082ddae maint only mode
  • c9c61f2 fix(package): Increase minimum marked version for ReDos vuln (#1255)
  • aab49de iOS Safari 10 bug where SockJS couldn't be found (#1238)
  • a168b81 feat: reportTime option (#1209)
  • 32c3ceb don't mutate stats configuration (#1174)
  • ef18fc8 Update sockjs dependency to fix auditjs security vulnerability warning (#1178)
  • 7e89442 enable progress from config (#1181)
  • e8964d1 add --progress cli test (#1182)
  • a9327e5 Fix typos (#1236)

See the full diff

greenkeeper[bot] commented 6 years ago

Version 2.10.1 just got published.

Update to this version instead πŸš€

Commits

The new version differs by commits.

See the full diff