[Snyk] Upgrade sass-loader from 7.3.1 to 14.2.1

[WontonSam]

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to upgrade sass-loader from 7.3.1 to 14.2.1.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

⚠️ Warning: This PR contains major version upgrade(s), and may be a breaking change.

• The recommended version is 52 versions ahead of your current version.

• The recommended version was released on 2 months ago.

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	169	Proof of Concept
	Prototype Pollution SNYK-JS-LOADERUTILS-3043105	169	No Known Exploit
	Prototype Pollution SNYK-JS-AJV-584908	169	No Known Exploit
	Cryptographic Issues SNYK-JS-ELLIPTIC-571484	169	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-ANSIHTML-1296849	169	Proof of Concept
	Prototype Pollution SNYK-JS-ASYNC-2441827	169	Proof of Concept
	Improper Verification of Cryptographic Signature SNYK-JS-BROWSERIFYSIGN-6037026	169	No Known Exploit
	Denial of Service (DoS) SNYK-JS-DECODEURICOMPONENT-3149970	169	Proof of Concept
	Remote Memory Exposure SNYK-JS-DNSPACKET-1293563	169	No Known Exploit
	Prototype Pollution SNYK-JS-NODEFORGE-598677	169	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	169	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	169	Proof of Concept
	Cross-site Scripting (XSS) SNYK-JS-SERIALIZEJAVASCRIPT-536840	169	No Known Exploit
	Arbitrary Code Injection SNYK-JS-SERIALIZEJAVASCRIPT-570062	169	Proof of Concept
	Cross-site Scripting (XSS) SNYK-JS-SERIALIZEJAVASCRIPT-6056521	169	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SSRI-1246392	169	Proof of Concept
	Prototype Pollution SNYK-JS-MINIMIST-559764	169	Proof of Concept
	Prototype Pollution SNYK-JS-MINIMIST-559764	169	Proof of Concept
	Access Restriction Bypass SNYK-JS-URLPARSE-2401205	169	Proof of Concept
	Information Exposure SNYK-JS-EVENTSOURCE-2823375	169	Proof of Concept
	Open Redirect SNYK-JS-EXPRESS-6474509	169	No Known Exploit
	Denial of Service (DoS) SNYK-JS-HTTPPROXY-569139	169	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-BROWSERSLIST-1090194	169	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-COLORSTRING-1082939	169	Proof of Concept
	Prototype Pollution SNYK-JS-DOTPROP-543489	169	Proof of Concept
	Cryptographic Issues SNYK-JS-ELLIPTIC-1064899	169	No Known Exploit
	Timing Attack SNYK-JS-ELLIPTIC-511941	169	No Known Exploit
	Command Injection SNYK-JS-NODENOTIFIER-1035794	169	No Known Exploit
	Denial of Service (DoS) SNYK-JS-SOCKJS-575261	169	Proof of Concept
	Regular Expression Denial of Service (ReDoS) npm:debug:20170905	169	Proof of Concept
	Regular Expression Denial of Service (ReDoS) npm:debug:20170905	169	Proof of Concept
	Prototype Pollution SNYK-JS-MINIMIST-2429795	169	Proof of Concept
	Incomplete List of Disallowed Inputs SNYK-JS-BABELTRAVERSE-5962462	169	Proof of Concept
	Arbitrary File Overwrite SNYK-JS-TAR-1536528	169	No Known Exploit
	Improper Input Validation SNYK-JS-URLPARSE-2407770	169	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-WEBSOCKETEXTENSIONS-570623	169	Proof of Concept
	Prototype Pollution SNYK-JS-Y18N-1021887	169	Proof of Concept
	Arbitrary File Overwrite SNYK-JS-TAR-1536531	169	No Known Exploit
	Arbitrary File Write SNYK-JS-TAR-1579147	169	No Known Exploit
	Prototype Pollution SNYK-JS-INI-1048974	169	Proof of Concept
	Server-side Request Forgery (SSRF) SNYK-JS-IP-6240864	169	Proof of Concept
	Arbitrary File Write SNYK-JS-TAR-1579152	169	No Known Exploit
	Arbitrary File Write SNYK-JS-TAR-1579155	169	No Known Exploit
	Prototype Poisoning SNYK-JS-QS-3153490	169	Proof of Concept
	Code Injection SNYK-JS-LODASH-1040724	169	Proof of Concept
	Prototype Pollution SNYK-JS-LODASH-567746	169	Proof of Concept
	Prototype Pollution SNYK-JS-LODASH-608086	169	Proof of Concept
	Prototype Pollution SNYK-JS-LODASH-6139239	169	Proof of Concept
	Authorization Bypass SNYK-JS-URLPARSE-2407759	169	Proof of Concept
	Authorization Bypass Through User-Controlled Key SNYK-JS-URLPARSE-2412697	169	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-WS-1296835	169	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHPARSE-1077067	169	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-POSTCSS-1090595	169	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-ISSVG-1085627	169	Proof of Concept
	Uncontrolled Resource Consumption ('Resource Exhaustion') SNYK-JS-TAR-6476909	169	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-ISSVG-1243891	169	Proof of Concept
	Prototype Pollution SNYK-JS-JSON5-3182856	169	Proof of Concept
	Prototype Pollution SNYK-JS-JSON5-3182856	169	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-LOADERUTILS-3042992	169	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-LOADERUTILS-3105943	169	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASH-1018905	169	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-MINIMATCH-3050818	169	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-TAR-1536758	169	No Known Exploit
	Validation Bypass SNYK-JS-KINDOF-537849	169	Proof of Concept
	Prototype Pollution SNYK-JS-MINIMIST-2429795	169	Proof of Concept

Release notes

Package name: sass-loader

• 14.2.1 - 2024-04-16
  

  14.2.1 (2024-04-16)

  Bug Fixes

  • avoid multiple sass compiler creation (#1199) (77051d8)
• 14.2.0 - 2024-04-11
  

  14.2.0 (2024-04-11)

  Features

  • added the modern-compiler value for API to reuse compiler process (#1195) (cef40a8)
  • support webpack built-in resolver for modern and modern-compiler API (#1197) (2265b72)

  Notes:

  Using the modern-compiler value for the api option together with sass-embedded reduces compilation time by 5-10 times, especially for projects using large files with a lot of @ import/@ use, for small files the build time reduction will not be significant.

• 14.1.1 - 2024-02-19
  

  14.1.1 (2024-02-19)

  Bug Fixes

  • handle pkg: scheme (#1191) (c34c8e3)
• 14.1.0 - 2024-01-30
  

  14.1.0 (2024-01-30)

  Features

  • add @ rspack/core as an optional peer dependency (#1184) (637ba5b)
• 14.0.0 - 2024-01-15
  

  14.0.0 (2024-01-15)

  ⚠ BREAKING CHANGES

  • removed fibers support
  • minimum supported Node.js version is 18.12.0 (627f55d)
• 13.3.3 - 2023-12-25
  

  13.3.3 (2023-12-25)

  Bug Fixes

  • sass embedded importer detection (e34f938)
  • warning output (#1173) (0084b93)
• 13.3.2 - 2023-06-09
  

  13.3.2 (2023-06-09)

  Bug Fixes

  • perf: avoid using klona for sass options (#1145) (9e87b6b)
• 13.3.1 - 2023-05-28
• 13.3.0 - 2023-05-22
• 13.2.2 - 2023-03-27
• 13.2.1 - 2023-03-18
• 13.2.0 - 2022-11-09
• 13.1.0 - 2022-10-06
• 13.0.2 - 2022-06-27
• 13.0.1 - 2022-06-24
• 13.0.0 - 2022-05-18
• 12.6.0 - 2022-02-15
• 12.5.0 - 2022-02-14
• 12.4.0 - 2021-12-07
• 12.3.0 - 2021-10-27
• 12.2.0 - 2021-10-12
• 12.1.0 - 2021-06-10
• 12.0.0 - 2021-06-01
• 11.1.1 - 2021-05-13
• 11.1.0 - 2021-05-10
• 11.0.1 - 2021-02-08
• 11.0.0 - 2021-02-05
• 10.5.2 - 2024-01-04
  

  10.5.2 (2024-01-04)

  Bug Fixes

  • compatibility with node-sass@9 (#1176) (4e2569d)
• 10.5.1 - 2023-12-19
  

  10.5.1 (2023-12-19)

  Bug Fixes

  • missing sass embedded check when get default implementation (#1170) (9914870)
• 10.5.0 - 2023-12-06
  

  10.5.0 (2023-12-06)

  Features

  • support node-sass@9 (#1168) (6e59be2)
  • support sass-embedded implementation (#1152) (47e9814)
• 10.4.1 - 2022-11-15
• 10.4.0 - 2022-11-15
• 10.3.1 - 2022-07-06
• 10.3.0 - 2022-06-27
• 10.2.1 - 2022-01-14
• 10.2.0 - 2021-05-10
• 10.1.1 - 2021-01-11
• 10.1.0 - 2020-11-11
• 10.0.5 - 2020-11-02
• 10.0.4 - 2020-10-22
• 10.0.3 - 2020-10-09
• 10.0.2 - 2020-09-03
• 10.0.1 - 2020-08-25
• 10.0.0 - 2020-08-24
• 10.0.0-rc.0 - 2020-08-24
• 9.0.3 - 2020-08-05
• 9.0.2 - 2020-07-07
• 9.0.1 - 2020-07-03
• 9.0.0 - 2020-07-02
• 8.0.2 - 2020-01-13
• 8.0.1 - 2020-01-10
• 8.0.0 - 2019-08-29
• 7.3.1 - 2019-08-20

from sass-loader GitHub release notes

---

Important

• Warning: This PR contains a major version upgrade, and may be a breaking change.
• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.
• Max score is 1000. Note that the real score may have changed since the PR was raised.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs