chore: bump sucrase from 3.18.1 to 3.35.0 #75

dependabot · 2024-03-01T12:24:58Z

Bumps sucrase from 3.18.1 to 3.35.0.

Changelog

3.35.0 (2023-12-21)

Upgrade glob to fix a security vulnerability in the inflight package. (#822) (Patrick Nappa)

Note that the sucrase CLI no longer works in Node.js versions before 14.7.

If you use the sucrase CLI, you should pin to Sucrase 3.34.0 until you're able to upgrade Node.js to a supported version. Note that all Node.js versions before 18 are end-of-life.

If you don't use the sucrase CLI, you may need to silence errors related to package.json engines, e.g. yarn --ignore-engines.

This change is being released in a semver-minor release since it fixes a security vulnerability and the breaking change impact is expected to be small. See this PR comment for a rationale on the release strategy.

3.34.0 (2023-07-19)

Add CLI options for all remaining Sucrase options, e.g. --disable-es-transforms for disableESTransforms. (<<-ArS, Alan Pierce) (#670, #812)

Add SUCRASE_OPTIONS environment variable for configuring sucrase/register, sucrase-node, and any programmatic require hook usages. The value must be a valid JSON object of Sucrase options that will be merged with the usual options. (#813)

3.33.0 (2023-07-14)

Add an option keepUnusedImports that disables all automatic import/export elision, equivalent to the TypeScript option verbatimModuleSyntax. (#811, #615) (Kotaro Chikuba, Alan Pierce)

Add support for the await using proposal and the updated import attributes proposal. Both are preserved in the output code, not transformed. (#798)

Fix some issues with TypeScript automatic export elision in export {...} from statements. (#806)

Type names from the current file are no longer removed.

When all exports are type exports, the entire statement is now removed.

Fix bug where fn(x < y, x >= y) was incorrectly parsed as type arguments. (#798)

Fix a few bugs in enableLegacyBabel5ModuleInterop: properly handle as default, and properly ignore type exports. (#804, #807) (三咲智子 Kevin Deng, Alan Pierce)

Fix bug where parameters inside function types could be misinterpreted as declarations and result in imports being incorrectly marked as unused. (#809)

Fix bug where import {} and export {} statements were removed with the TypeScript transform disabled. (#810)

Make the transform behavior more forgiving when code accidentally has a return type annotation on a constructor. (#800)

3.32.0 (2023-04-08)

Improve source map quality by adding column information. This fixes several source map use cases, such as Jest inline snapshots, source map composition, and some debugger features. (#759) (Emily Marigold Klassen)

Unfortunately, this change comes at some performance cost. Previously, the slowdown from enabling source maps was about 10%, and now it is about 30%. In most cases, the more detailed source maps are probably still preferable, so for configuration simplicity, there is currently no option to switch back to source maps without column information. If you would like to still use the faster but less accurate implementation, feel free to file an issue to request a new config option, or create the source map yourself in wrapper code by copying the original simple implementation.

... (truncated)

Commits

See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [sucrase](https://github.com/alangpierce/sucrase) from 3.18.1 to 3.35.0. - [Changelog](https://github.com/alangpierce/sucrase/blob/main/CHANGELOG.md) - [Commits](https://github.com/alangpierce/sucrase/commits) --- updated-dependencies: - dependency-name: sucrase dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added the dependencies Pull requests that update a dependency file label Mar 1, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore: bump sucrase from 3.18.1 to 3.35.0 #75

chore: bump sucrase from 3.18.1 to 3.35.0 #75

dependabot bot commented on behalf of github Mar 1, 2024

chore: bump sucrase from 3.18.1 to 3.35.0 #75

Are you sure you want to change the base?

chore: bump sucrase from 3.18.1 to 3.35.0 #75

Conversation

dependabot bot commented on behalf of github Mar 1, 2024

3.35.0 (2023-12-21)

3.34.0 (2023-07-19)

3.33.0 (2023-07-14)

3.32.0 (2023-04-08)