Bump webpack, webpack-assets-manifest and webpack-cli

[dependabot]

Bumps webpack, webpack-assets-manifest and webpack-cli. These dependencies needed to be updated together.
Updates webpack from 4.46.0 to 5.30.0

Release notes

Sourced from webpack's releases.

v5.30.0

Features

• add GC to memory cache
  • opt-in via cache.maxGenerations when cache.type: "memory"
  • default for cache.type: "filesystem" and mode: "development"
  • configure via cache.maxMemoryGenerations when cache.type: "filesystem"
  • Generations = Rebuilds
• add GC for untouched filesystem cache files
• allow to configurate GC for the filesystem cache via cache.maxAge
• allow to disable memory cache when using the filesystem cache with cache.maxMemoryGenerations: 0
• Caches will be cleared on Compiler close resp Cache shutdown (after persisting for the filesystem cache)

Bugfixes

• add a few workarounds for v8 bug that causes memory leaks in optimized code (only partially fixes it)
• after serializing filesystem no longer keeps cache items in memory, instead it will read them from disk again when accessed

GC = Garbage Collection

v5.29.0

Bugfixes

• fix some edge cases for splitChunks.maxSize which cause too large chunks to be created
• add stats.groupModulesByType to the schema

Developer Experience

• add resolving trace for error during resolving build dependencies
• expose Stats-related types
• exports AsyncDependenciesBlock and Module/Const/NullDependency on the API

v5.28.0

Features

• add module.generator.asset.publicPath to configure a different publicPath for assets

Bugfixes

• fixes a watch mode caching problem which was introduced in 5.26.0 when using the unsafe cache

Performance

• improve serialization performance

v5.27.2

Bugfixes

• fix error reporting when errors happen in beforeLoaders hook
• avoid crash when experiments.lazyCompilation is used (regression)

... (truncated)

Commits

• f3dce69 5.30.0
• 3b8d26d Merge pull request #12990 from webpack/bugfix/memory-leak-in-ic
• 0522deb 5.29.0
• b9519dc Merge pull request #12987 from barak007/export-missing-entities
• e42f6d7 Merge pull request #12963 from smelukov/add-missing-groupModulesByType
• c84329f add GC to the memory cache and make it configurable
• 8074127 avoid leaking memory after the compiler has been closed
• fb384fe Merge pull request #13033 from webpack/bugfix/split-chunks-max-size
• d39e948 update cli snapshot
• 3d90836 fix some edge cases in deterministicGrouping and add more tests
• Additional commits viewable in compare view

Updates webpack-assets-manifest from 4.0.1 to 5.0.2

Release notes

Sourced from webpack-assets-manifest's releases.

5.0.2

• Improved entrypoints handling. #140
• Updated inDevServer() to not use WEBPACK_DEV_SERVER / WEBPACK_SERVE env vars. #125
• Improved writeToDisk: 'auto' behavior
• Updated dependencies

5.0.1

Fixes for #115 and #116

• Improved finding asset modules
• Updated hooks for watch mode
• Use public path with entrypoints
• Updated dependencies

5.0.0

• Compatible with webpack 5 only (5.1+ required).
• Supports finding asset modules.
• Updated options schema to prevent additional properties. This helps with catching typos in option names.
• ⚠️ Updated default value of the output option to be assets-manifest.json. This is to prevent confusion when working with Web app manifests or WebExtension manifests.

4.0.2

• Improved entrypoints handling. #140
• Updated inDevServer() to not use WEBPACK_DEV_SERVER / WEBPACK_SERVE env vars. #125
• Improved writeToDisk: 'auto' behavior
• Updated dependencies

Commits

• 098dc5c 5.0.2
• 1417929 Miscellaneous updates (#142)
• fc1ca85 Added husky and lint-staged
• d8099a7 Updated @​types/tapable
• 0b323fc Improved handling of persistent cache assets
• 62b0a73 Updated lock file
• 0927640 Updated tests
• db19a3c Updated customize section
• 06c59ad Merge pull request #133 from bebraw/patch-1
• 7c47112 Updated dependencies
• Additional commits viewable in compare view

Updates webpack-cli from 3.3.12 to 4.6.0

Release notes

Sourced from webpack-cli's releases.

v4.6.0

4.6.0 (2021-03-27)

Bug Fixes

• negative options (#2555) (f26ebc1)
• improve error message for help (#2482) (99ae2a3)
• show --node-env in minimum help output (#2411) (f5fc302)

Features

• added WEBPACK_PACKAGE env var to use custom webpack package (#2556) (3d1e485)
• added WEBPACK_CLI_SKIP_IMPORT_LOCAL env var to skip local import (#2546) (e130822)
• allow string value for the --hot option (#2444) (8656e78)
• display used config path when logging level=log (#2431) (f8406e1)

v4.5.0

4.5.0 (2021-02-02)

Notes

• now you can use webpack.config.mjs and webpack.config.js with { "type": "module" } in package.json
• you can avoid using the cross-env package:

Before:

{
    "scripts": {
        "build": "cross-env NODE_ENV=production webpack --config build/webpack.config.js"
    }
}

Now (you can remove the cross-env if you don't use it somewhere else):

{
    "scripts": {
        "build": "webpack --node-env=production --config build/webpack.config.js"
    }
}

• the mode option respect the --node-env option if you don't set the mode option explicit using CLI options or in configuration(s), i.e. --node-env production set process.env.NODE_ENV and mode to production

Bug Fixes

• avoid deprecation message (9d6dbda)
• error message on invalid plugin options (#2380) (f9ce1d3)

... (truncated)

Changelog

Sourced from webpack-cli's changelog.

4.6.0 (2021-03-27)

Bug Fixes

• negative options (#2555) (f26ebc1)
• improve error message for help (#2482) (99ae2a3)
• show --node-env in minimum help output (#2411) (f5fc302)

Features

• added WEBPACK_PACKAGE env var to use custom webpack package (#2556) (3d1e485)
• added WEBPACK_CLI_SKIP_IMPORT_LOCAL env var to skip local import (#2546) (e130822)
• allow string value for the --hot option (#2444) (8656e78)
• display used config path when logging level=log (#2431) (f8406e1)

4.5.0 (2021-02-02)

Notes

• now you can use webpack.config.mjs and webpack.config.js with { "type": "module" } in package.json
• you can avoid using the cross-env package:

Before:

{
    "scripts": {
        "build": "cross-env NODE_ENV=production webpack --config build/webpack.config.js"
    }
}

Now (you can remove the cross-env if you don't use it somewhere else):

{
    "scripts": {
        "build": "webpack --node-env=production --config build/webpack.config.js"
    }
}

• the mode option respect the --node-env option if you don't set the mode option explicit using CLI options or in configuration(s), i.e. --node-env production set process.env.NODE_ENV and mode to production

Bug Fixes

• avoid deprecation message (9d6dbda)
• error message on invalid plugin options (#2380) (f9ce1d3)
• improve description for 'configtest' command (#2379) (311bae3)

... (truncated)

Commits

• b7b0852 chore(release): publish new version
• a8afb64 chore(deps-dev): bump @​types/node
• 7ff723c chore(deps-dev): bump @​types/jest
• 9d296df chore(deps-dev): bump eslint from 7.22.0 to 7.23.0 (#2564)
• f8d6606 chore: ignore tests from npm (#2563)
• f26ebc1 fix: generation of negative flags (#2555)
• 3d1e485 feat: add WEBPACK_PACKAGE env var to use custom webpack package (#2556)
• d039472 test: update snapshots (#2557)
• 5c96b69 ci: add bootstrap step in workflow (#2553)
• a141bbb feat: allow all css possibilities for default template (#2544)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Superseded by #880.