Bump loader-utils, babel-loader, vue-loader and webpack #4

dependabot · 2023-04-20T06:06:05Z

Bumps loader-utils to 1.4.2 and updates ancestor dependencies loader-utils, babel-loader, vue-loader and webpack. These dependencies need to be updated together.

Updates loader-utils from 1.1.0 to 1.4.2

Release notes

Sourced from loader-utils's releases.

v1.4.2

1.4.2 (2022-11-11)

Bug Fixes

ReDoS problem (#226) (17cbf8f)

v1.4.1

1.4.1 (2022-11-07)

Bug Fixes

security problem (#220) (4504e34)

v1.4.0

1.4.0 (2020-02-19)

Features

the resourceQuery is passed to the interpolateName method (#163) (cd0e428)

v1.3.0

1.3.0 (2020-02-19)

Features

support the [query] template for the interpolatedName method (#162) (469eeba)

v1.2.3

1.2.3 (2018-12-27)

Bug Fixes

interpolateName: don't interpolated hashType without hash or contenthash (#140) (3528fd9)

v1.2.2

1.2.2 (2018-12-27)

Bug Fixes

... (truncated)

Changelog

Sourced from loader-utils's changelog.

1.4.2 (2022-11-11)

Bug Fixes

ReDoS problem (#226) (17cbf8f)

1.4.1 (2022-11-07)

Bug Fixes

security problem (#220) (4504e34)

1.4.0 (2020-02-19)

Features

the resourceQuery is passed to the interpolateName method (#163) (cd0e428)

1.3.0 (2020-02-19)

Features

support the [query] template for the interpolatedName method (#162) (469eeba)

1.2.3 (2018-12-27)

Bug Fixes

interpolateName: don't interpolated hashType without hash or contenthash (#140) (3528fd9)

1.2.2 (2018-12-27)

Bug Fixes

... (truncated)

Commits

331ad50 chore(release): 1.4.2
17cbf8f fix: ReDoS problem (#226)
8f082b3 chore(release): 1.4.1
4504e34 fix: security problem (#220)
d95b8b5 chore(release): 1.4.0
cd0e428 feat: the resourceQuery is passed to the interpolateName method (#163)
06d36cf chore(release): 1.3.0
469eeba feat: support the [query] template for the interpolatedName method (#162)
909c99d chore: funding.yml config and CI fix (#159)
b5b74f0 Set up CI with Azure Pipelines
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by evilebottnawi, a new releaser for loader-utils since your current version.

Updates babel-loader from 6.4.1 to 9.1.2

Release notes

Sourced from babel-loader's releases.

v9.1.2

9.1.1 was a broken release, it didn't include all the commits.

Dependencies updates

Bump qs from 6.5.2 to 6.5.3 by @dependabot in babel/babel-loader#977

Bump json5 from 2.2.1 to 2.2.3 by @dependabot in babel/babel-loader#980

Misc

GitHub Workflows security hardening by @sashashura in babel/babel-loader#976

New Contributors

@sashashura made their first contribution in babel/babel-loader#976

Full Changelog: babel/babel-loader@v9.1.0...v9.1.2

v9.1.0

New features

Pass external dependencies from Babel to Webpack by @nicolo-ribaudo in babel/babel-loader#971

Full Changelog: babel/babel-loader@v9.0.1...v9.1.0

v9.0.1

Bug Fixes

remove "node:" builtin prefix by @JLHwung in babel/babel-loader#970

Full Changelog: babel/babel-loader@v9.0.0...v9.0.1

v9.0.0

What's Changed

update hash method mechanism so it doesn't fail on a fips enabled machine by @darmbrust in babel/babel-loader#939

Require babel ^7.12.0 and Node.js >= 14.15.0 versions by @JLHwung in babel/babel-loader#956

Remove dependency on loader-utils and drop webpack 4 support by @nied in babel/babel-loader#942

New Contributors

@darmbrust made their first contribution in babel/babel-loader#939

@nied made their first contribution in babel/babel-loader#942

Full Changelog: babel/babel-loader@v8.2.5...v9.0.0

v8.3.0

New features

Pass external dependencies from Babel to Webpack by @nicolo-ribaudo in babel/babel-loader#971

Full Changelog: babel/babel-loader@v8.2.5...v8.3.0

v8.2.5

What's Changed

fix: respect inputSourceMap loader option by @alan-agius4 in babel/babel-loader#896

... (truncated)

Changelog

Sourced from babel-loader's changelog.

Changelog

For changes in version v7.0.0 and up please go to release

Old Changelog

Commits

0406d16 9.1.2
ca0cc0e Bump json5 from 2.2.1 to 2.2.3 (#980)
c8b1feb build: harden ci.yml permissions (#976)
4e70cca Bump qs from 6.5.2 to 6.5.3 (#977)
15fbacf 9.1.0
6348e1c Pass external dependencies from Babel to Webpack (#971)
457b9ad Update webpack
f42ac9b 9.0.1
4f9c0bf remove "node:" builtin prefix (#970)
9ff288f 9.0.0
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by nicolo-ribaudo, a new releaser for babel-loader since your current version.

Updates vue-loader from 10.3.0 to 17.0.1

Release notes

Sourced from vue-loader's releases.

v17.0.1

Bug Fixes

add vue and @vue/compiler-sfc to optional peerDependencies (df0ded5), closes #1944

merge custom queries rather than appending (#1911) (9e4249a)

v17.0.0

Features

support reactivityTransform option (e07490e)

BREAKING CHANGES

remove refSugar option, require vue@^3.2.13

v16.8.3

Bug Fixes

HMR not working correctly with vue-class-component components (#1897) (76b1448)

v16.8.2

Bug Fixes

should allow chaining with loaders for non-vue files (#1889) (f32f953), closes #1879 #1883 #1890

plugin: use compiler.webpack when possible (#1884) (820d23c)

v16.8.1

Bug Fixes

fix template options resolving for ts (91f581b)

v16.8.0

Bug Fixes

hmr: fix hmr regression (bacc6a9)

Features

enableTsInTemplate option (7613534)

When used with ts-loader, due to ts-loader's cache invalidation behavior, it sometimes prevents the template from being hot-reloaded in isolation, causing the component to reload despite only the template being edited. If this is annoying, you can set this option to false (and avoid using TS expressions in templates).

Alternatively, leave this option on (by default) and use esbuild-loader to transpile TS instead, which doesn't suffer from this problem (it's also a lot faster). However, do note you will need to rely on TS type checking from other sources (e.g. IDE or vue-tsc).

v16.7.1

Bug Fixes

remove pure annotation for custom blocks (cd891e5)

... (truncated)

Changelog

Sourced from vue-loader's changelog.

17.0.1 (2022-10-28)

Bug Fixes

add vue and @vue/compiler-sfc to optional peerDependencies (df0ded5), closes #1944

merge custom queries rather than appending (#1911) (9e4249a)

17.0.1 (2022-10-28)

Bug Fixes

add vue and @vue/compiler-sfc to optional peerDependencies (df0ded5), closes #1944

merge custom queries rather than appending (#1911) (9e4249a)

17.0.0 (2021-12-12)

Features

support reactivityTransform option (e07490e)

BREAKING CHANGES

remove refSugar option, require vue@^3.2.13

16.8.3 (2021-11-04)

Bug Fixes

HMR not working correctly with vue-class-component components (#1897) (76b1448)

16.8.3 (2021-11-04)

Bug Fixes

HMR not working correctly with vue-class-component components (#1897) (76b1448)

... (truncated)

Commits

75d2b5d 17.0.1
df0ded5 fix: add vue and @vue/compiler-sfc to optional peerDependencies
b3265c9 chore: add repository property to package.json (#1934)
0a02377 chore: fix typo (#2010)
9e4249a fix: merge custom queries rather than appending (#1911)
6a293df chore: changelog [ci skip]
e5c7ab4 v17.0.0
e931434 chore: lockfile
e07490e feat: support reactivityTransform option
b391b04 chore: remove unncessary log
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by soda, a new releaser for vue-loader since your current version.

Updates webpack from 2.7.0 to 5.80.0

Release notes

Sourced from webpack's releases.

v5.80.0

New Features

Support destructuring assignment in import.meta by @vankop in webpack/webpack#16996

Support treeshaking for destructuring assignment with AwaitExpression by @vankop in webpack/webpack#16995

Introduce errorsSpace, warningsSpace for more readable traces in stats by @vankop in webpack/webpack#15450

Bug Fixes

[CSS] - Fix runtime generation bug for merged CSS Chunks by @janlent1 in webpack/webpack#16903

[CSS] - Properly handle url()/src()/image-set()/image() by @alexander-akait in webpack/webpack#16978

ES Module webpack loaders are now supported @stefanprobst in webpack/webpack#15198

Fix spelling error for statement.finalizer in parser by @xiaoboost in webpack/webpack#17016

Fix non-deterministic moduleId assignment due to encountering NaN in sort function by @scameron in webpack/webpack#16933

[enhanced-resolve]: Support wildcards pattern with common suffix in package maps & imports/exports field by @bvanjoi in webpack/enhanced-resolve#353

Tests & Contributor Experience

[CSS] - Added test case for @supports field by @alexander-akait in webpack/webpack#17011

Add test for include option in BannerPlugin by @jeffin143 in webpack/webpack#10736

Remove finializer from cspell.json by @snitin315 in webpack/webpack#17022

Developer Experience

Adds the twitter badge by @yadunandanbhat in webpack/webpack#15667

Add wasm-bindgen example to example by @gthb in webpack/webpack#14313

Update grammar mistakes in examples by @ersachin3112 in webpack/webpack#16988

Dependencies & Maintenance

Bump core-js from 3.30.0 to 3.30.1 by @dependabot in webpack/webpack#16983

Bump @webassemblyjs by @alexander-akait in webpack/webpack#17003

Bump assemblyscript from 0.25.2 to 0.27.2 by @dependabot in webpack/webpack#16959

Bump enhanced-resolve to 5.13.0 by @TheLarkInn in webpack/webpack#17024

Included githubactions in the dependabot config by @neilnaveen in webpack/webpack#15618

Fix prettier by @alexander-akait in webpack/webpack#16976

New Contributors

@neilnaveen made their first contribution in webpack/webpack#15618

@yadunandanbhat made their first contribution in webpack/webpack#15667

@ersachin3112 made their first contribution in webpack/webpack#16988

@stefanprobst made their first contribution in webpack/webpack#15198

@xiaoboost made their first contribution in webpack/webpack#17016

@scameron made their first contribution in webpack/webpack#16933

Full Changelog: webpack/webpack@v5.79.0...v5.80.0

v5.79.0

New Features

webpack will now support simple destructuring scenarios for treeshaking namespaced imports and DefinePlugin by @vankop in webpack/webpack#16941

Bugfixes

Truncate extremely long module names in DefaultStatsPrinter by @snitin315 in webpack/webpack#16882

Add [contenthash] template support in DllPlugin's name option by @snitin315 in webpack/webpack#16935

Fixed a bug where readRecords compiler hook was causing hangs in conjunction with the ReadRecordsPlugin by @snitin315 & @zookatron in webpack/webpack#16944

... (truncated)

Commits

9ac1728 5.80.0
09dc9e2 Merge pull request #17024 from webpack/thelarkinn/bump-enhanced-resolve
d58760a yarn-lint
58396f5 introduce the new types from enhanced-resolve
4ff4d59 Merge pull request #16933 from scameron/deterministic-moduleids
8bc34bc feat(deps): Update enhanced-resolve to latest for * wildcard pattern in exports
5c522c4 Merge pull request #17022 from snitin315/patch-3
457cbe1 Merge pull request #16903 from janlent1/fixruntimeissue
63c1601 chore: remove finializer from cspell.json
9c70d1d Merge pull request #17016 from xiaoboost/fix/fix-spell-error
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by thelarkinn, a new releaser for webpack since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the Security Alerts page.

Bumps [loader-utils](https://github.com/webpack/loader-utils) to 1.4.2 and updates ancestor dependencies [loader-utils](https://github.com/webpack/loader-utils), [babel-loader](https://github.com/babel/babel-loader), [vue-loader](https://github.com/vuejs/vue-loader) and [webpack](https://github.com/webpack/webpack). These dependencies need to be updated together. Updates `loader-utils` from 1.1.0 to 1.4.2 - [Release notes](https://github.com/webpack/loader-utils/releases) - [Changelog](https://github.com/webpack/loader-utils/blob/v1.4.2/CHANGELOG.md) - [Commits](webpack/loader-utils@v1.1.0...v1.4.2) Updates `babel-loader` from 6.4.1 to 9.1.2 - [Release notes](https://github.com/babel/babel-loader/releases) - [Changelog](https://github.com/babel/babel-loader/blob/main/CHANGELOG.md) - [Commits](babel/babel-loader@v6.4.1...v9.1.2) Updates `vue-loader` from 10.3.0 to 17.0.1 - [Release notes](https://github.com/vuejs/vue-loader/releases) - [Changelog](https://github.com/vuejs/vue-loader/blob/main/CHANGELOG.md) - [Commits](vuejs/vue-loader@v10.3.0...v17.0.1) Updates `webpack` from 2.7.0 to 5.80.0 - [Release notes](https://github.com/webpack/webpack/releases) - [Commits](webpack/webpack@v2.7.0...v5.80.0) --- updated-dependencies: - dependency-name: loader-utils dependency-type: indirect - dependency-name: babel-loader dependency-type: direct:development - dependency-name: vue-loader dependency-type: direct:development - dependency-name: webpack dependency-type: direct:development ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added the dependencies Pull requests that update a dependency file label Apr 20, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump loader-utils, babel-loader, vue-loader and webpack #4

Bump loader-utils, babel-loader, vue-loader and webpack #4

dependabot bot commented on behalf of github Apr 20, 2023

Bump loader-utils, babel-loader, vue-loader and webpack #4

Are you sure you want to change the base?

Bump loader-utils, babel-loader, vue-loader and webpack #4

Conversation

dependabot bot commented on behalf of github Apr 20, 2023

v1.4.2

1.4.2 (2022-11-11)

Bug Fixes

v1.4.1

1.4.1 (2022-11-07)

Bug Fixes

v1.4.0

1.4.0 (2020-02-19)

Features

v1.3.0

1.3.0 (2020-02-19)

Features

v1.2.3

1.2.3 (2018-12-27)

Bug Fixes

v1.2.2

1.2.2 (2018-12-27)

Bug Fixes

1.4.2 (2022-11-11)

Bug Fixes

1.4.1 (2022-11-07)

Bug Fixes

1.4.0 (2020-02-19)

Features

1.3.0 (2020-02-19)

Features

1.2.3 (2018-12-27)

Bug Fixes

1.2.2 (2018-12-27)

Bug Fixes

v9.1.2

Dependencies updates

Misc

New Contributors

v9.1.0

New features

v9.0.1

Bug Fixes

v9.0.0

What's Changed

New Contributors

v8.3.0

New features

v8.2.5

What's Changed

Changelog

Old Changelog

v17.0.1

Bug Fixes

v17.0.0

Features

BREAKING CHANGES

v16.8.3

Bug Fixes

v16.8.2

Bug Fixes

v16.8.1

Bug Fixes

v16.8.0

Bug Fixes

Features

v16.7.1

Bug Fixes

17.0.1 (2022-10-28)

Bug Fixes

17.0.1 (2022-10-28)

Bug Fixes

17.0.0 (2021-12-12)

Features

BREAKING CHANGES

16.8.3 (2021-11-04)

Bug Fixes

16.8.3 (2021-11-04)

Bug Fixes

v5.80.0