Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(core): update css-loader to latest #4619

Merged
merged 8 commits into from
Nov 5, 2018
Merged

chore(core): update css-loader to latest #4619

merged 8 commits into from
Nov 5, 2018

Conversation

Stephanemw
Copy link
Contributor

Issue:
css-loader 1.0.0 depends on vulnerable versions of lodash packages

What I did

updated to latest css-loader that addresses these transitive dependency issues

How to test

yarn test

@codecov
Copy link

codecov bot commented Oct 30, 2018
edited
Loading

Codecov Report

Merging #4619 into master will not change coverage.
The diff coverage is n/a.

Impacted file tree graph

@@           Coverage Diff           @@
##           master    #4619   +/-   ##
=======================================
  Coverage   35.59%   35.59%           
=======================================
  Files         557      557           
  Lines        6732     6732           
  Branches      884      884           
=======================================
  Hits         2396     2396           
  Misses       3876     3876           
  Partials      460      460

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 729bc9c...009ebe8. Read the comment docs.

igor-dv
igor-dv reviewed Oct 30, 2018
View reviewed changes
lib/core/package.json Outdated
@@ -47,7 +47,7 @@
"commander": "^2.19.0",
"common-tags": "^1.8.0",
"core-js": "^2.5.7",
"css-loader": "^1.0.0",
"css-loader": "^1.0.1",
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks like css-loader is used in some other packages too. Can you update it there as well?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Sure thing, happy to!

@igor-dv igor-dv merged commit e1b7cf6 into storybookjs:master Nov 5, 2018
This was referenced Dec 1, 2018
Closed
Closed
Closed
Open
Closed
Open
Closed
Closed
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@igor-dv igor-dv igor-dv approved these changes

@alterx alterx Awaiting requested review from alterx

@tmeasday tmeasday Awaiting requested review from tmeasday

@Hypnosphi Hypnosphi Awaiting requested review from Hypnosphi

@ndelangen ndelangen Awaiting requested review from ndelangen ndelangen is a code owner

@shilman shilman Awaiting requested review from shilman shilman is a code owner

@stijnkoopal stijnkoopal Awaiting requested review from stijnkoopal stijnkoopal is a code owner

Assignees
No one assigned
Labels
dependencies
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@Stephanemw @igor-dv @phated @Hypnosphi