[Snyk] Upgrade rollup from 2.32.1 to 2.56.1

[snyk-bot]

Snyk has created this PR to upgrade rollup from 2.32.1 to 2.56.1.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 74 versions ahead of your current version.
• The recommended version was released 21 days ago, on 2021-08-08.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHPARSE-1077067	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-GLOBPARENT-1016905	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: rollup

• 2.56.1 - 2021-08-08
  

  2021-08-08

  Bug Fixes

  • Fix rendering of SystemJS export declarations initialized with a simplifiable expression (#4202)

  Pull Requests

  • #4202: Fix incorrect rendering of export declarations in SystemJS (@ lukastaegert)
• 2.56.0 - 2021-08-05
  

  2021-08-05

  Features

  • Create more efficient code for SystemJS exports (#4199)
  • Extend maxParallelFileReads option to also throttle plugin load hooks (#4200)

  Bug Fixes

  • Return correct value for postfix update expressions of exported variables (#4194)

  Pull Requests

  • #4199: Refine SystemJS export rendering (@ lukastaegert)
  • #4200: Restrict parallel execution of load hook (@ schummar)
• 2.55.1 - 2021-07-29
  

  2021-07-29

  Bug Fixes

  • Improve CLI warning message for unused external imports (#4194)

  Pull Requests

  • #4194: Align batch warning for UNUSED_EXTERNAL_IMPORT to individual warning (@ benmccann)
• 2.55.0 - 2021-07-28
  

  2021-07-28

  Features

  • Support default export live-bindings when generating ESM output (#4182)

  Bug Fixes

  • Always write ["default"] as computed property when used as named export (#4182)
  • Do not mask default export TDZ errors (#4182)
• 2.54.0 - 2021-07-25
  

  2021-07-25

  Features

  • Extend UMD import.meta.url polyfill to support web workers (#4186)

  Bug Fixes

  • Resolve an issue where certain uses of classes could lead to an infinite recursion (#4189)

  Pull Requests

  • #4186: Fix UMD import.meta.url inside web workers (@ ceifa)
  • #4188: Fix typo in renderHelpers.ts (@ eltociear)
  • #4189: Move long path recursion prevention to MemberExpression (@ lukastaegert)
  • #4190: Stop recommending node-builtins (@ curran)
• 2.53.3 - 2021-07-21
  

  2021-07-21

  Bug Fixes

  • Solve an issue that could lead to severe memory issues and crashes when there are a lot of hoisted variables (#4183)

  Pull Requests

  • #4183: Avoid memory issues with hoisted variables (@ lukastaegert)
• 2.53.2 - 2021-07-15
  

  2021-07-15

  Bug Fixes

  • Identify additional TDZ situations in functions that are run more than once (#4177)
  • Fix a scoping issue when a variable inside a catch scope matches the scope parameter's name (#4178)

  Pull Requests

  • #4177: Fix additional let/var init bugs (@ kzc)
  • #4178: Correctly create outside variable when shadowed by catch parameter (@ lukastaegert)
• 2.53.1 - 2021-07-11
  

  2021-07-11

  Bug Fixes

  • Do not omit namespace reexports when treeshake is false (#4175)

  Pull Requests

  • #4175: Generate namespace objects when not tree-shaking (@ lukastaegert)
• 2.53.0 - 2021-07-09
  

  2021-07-09

  Features

  • Add maxParallelFileReads option to limit read operations with a default of 20 (#4170)

  Pull Requests

  • #4170: Limit parallel file reads to prevent "EMFILE: too many open files" error (@ schummar)
• 2.52.8 - 2021-07-07
  

  2021-07-07

  Bug Fixes

  • Automatically handle many use var before declaration and TDZ access scenarios correctly without the need for treeshake.correctVarValueBeforeDeclaration (#4148)

  Pull Requests

  • #4148: Fix var/const/let variable use before declaration (@ kzc and @ lukastaegert)
• 2.52.7 - 2021-07-02
• 2.52.6 - 2021-07-01
• 2.52.5 - 2021-07-01
• 2.52.4 - 2021-06-30
• 2.52.3 - 2021-06-25
• 2.52.2 - 2021-06-21
• 2.52.1 - 2021-06-17
• 2.52.0 - 2021-06-16
• 2.51.2 - 2021-06-11
• 2.51.1 - 2021-06-08
• 2.51.0 - 2021-06-06
• 2.50.6 - 2021-06-03
• 2.50.5 - 2021-05-30
• 2.50.4 - 2021-05-29
• 2.50.3 - 2021-05-28
• 2.50.2 - 2021-05-27
• 2.50.1 - 2021-05-26
• 2.50.0 - 2021-05-25
• 2.49.0 - 2021-05-23
• 2.49.0-1 - 2021-05-20
• 2.49.0-0 - 2021-05-18
• 2.48.0 - 2021-05-15
• 2.47.0 - 2021-05-04
• 2.46.0 - 2021-04-29
• 2.45.2 - 2021-04-13
• 2.45.1 - 2021-04-10
• 2.45.0 - 2021-04-09
• 2.44.0 - 2021-03-29
• 2.43.1 - 2021-03-28
• 2.43.0 - 2021-03-27
• 2.42.4 - 2021-03-24
• 2.42.3 - 2021-03-22
• 2.42.2 - 2021-03-22
• 2.42.1 - 2021-03-20
• 2.42.0 - 2021-03-19
• 2.41.5 - 2021-03-18
• 2.41.4 - 2021-03-16
• 2.41.3 - 2021-03-16
• 2.41.2 - 2021-03-12
• 2.41.1 - 2021-03-11
• 2.41.0 - 2021-03-09
• 2.40.0 - 2021-02-26
• 2.39.1 - 2021-02-23
• 2.39.0 - 2021-02-12
• 2.38.5 - 2021-02-05
• 2.38.4 - 2021-02-02
• 2.38.3 - 2021-02-01
• 2.38.2 - 2021-01-31
• 2.38.1 - 2021-01-28
• 2.38.0 - 2021-01-22
• 2.37.1 - 2021-01-20
• 2.37.0 - 2021-01-19
• 2.36.2 - 2021-01-16
• 2.36.1 - 2021-01-06
• 2.36.0 - 2021-01-05
• 2.35.1 - 2020-12-14
• 2.35.0 - 2020-12-14
• 2.34.2 - 2020-12-06
• 2.34.1 - 2020-12-03
• 2.34.0 - 2020-11-29
• 2.33.3 - 2020-11-18
• 2.33.2 - 2020-11-14
• 2.33.1 - 2020-11-02
• 2.33.0 - 2020-11-01
• 2.32.1 - 2020-10-21

from rollup GitHub release notes

Commit messages

Package name: rollup

• 2a097a8 2.56.1
• 9ed54f2 Update changelog
• 039420b Fix incorrect rendering of export declarations in SystemJS (configure: fix arm vfpv2 nodejs/node#4202)
• ffd5cad 2.56.0
• d4375ee Update changelog
• f11aed1 Restrict parallel execution of load hook as well. (Investigate flaky test-net-connect-options-ipv6 nodejs/node#4200)
• b34a411 Refine SystemJS export rendering (UDP packet loss nodejs/node#4199)
• 66d2d82 Fix typo in docs (--use_strong produces SyntaxError at the node wrapper level nodejs/node#4197)
• 97759be 2.55.1
• 6581b87 Update changelog
• 586cb38 Align batch warning for UNUSED_EXTERNAL_IMPORT to individual warning (License builder tool nodejs/node#4194)
• e88c5c8 2.55.0
• 05b129e Update changelog
• 9a23190 Use mutable bindings for default exports (Node v5.x.x does not exit on Ctrl-C in Docker container nodejs/node#4182)
• 824c53f Fix incorrect watcher event documentation (v8 4.6.85.31 typed array bug nodejs/node#4191)
• f90e1a2 2.54.0
• 2bba6cd Update changelog
• b1c4a17 Stop recommending node-builtins (Why does module.js directly use the process bindings instead of fs? nodejs/node#4190)
• 08655bc Move long path recursion prevention to MemberExpression (Rename nextTick nodejs/node#4189)
• 2a29db9 Fix UMD import.meta.url inside web workers (doc: clarify assert.fail doc nodejs/node#4186)
• 959f040 Fix typo in docs
• db31b55 Fix typo in renderHelpers.ts (doc: copyedit child_process doc nodejs/node#4188)
• ae8f57f 2.53.3
• c950858 Update changelog

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs