Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

build(deps): bump loader-utils from 2.0.0 to 2.0.4 in /br/web #39177

Merged
merged 1 commit into from Mar 2, 2023
Merged

build(deps): bump loader-utils from 2.0.0 to 2.0.4 in /br/web #39177

merged 1 commit into from Mar 2, 2023

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Nov 16, 2022
edited

Bumps loader-utils from 2.0.0 to 2.0.4.

Release notes

Sourced from loader-utils's releases.

v2.0.4

2.0.4 (2022-11-11)

Bug Fixes

v2.0.3

2.0.3 (2022-10-20)

Bug Fixes

  • security: prototype pollution exploit (#217) (a93cf6f)

v2.0.2

2.0.2 (2021-11-04)

Bug Fixes

  • base64 generation and unicode characters (#197) (8c2d24e)

v2.0.1

2.0.1 (2021-10-29)

Bug Fixes

Changelog

Sourced from loader-utils's changelog.

2.0.4 (2022-11-11)

Bug Fixes

2.0.3 (2022-10-20)

Bug Fixes

  • security: prototype pollution exploit (#217) (a93cf6f)

2.0.2 (2021-11-04)

Bug Fixes

  • base64 generation and unicode characters (#197) (8c2d24e)

2.0.1 (2021-10-29)

Bug Fixes

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

@ti-chi-bot
Copy link
Member

ti-chi-bot commented Nov 16, 2022
edited

[REVIEW NOTIFICATION]

This pull request has been approved by:

  • Defined2014
  • lance6716

To complete the pull request process, please ask the reviewers in the list to review by filling /cc @reviewer in the comment.
After your PR has acquired the required number of LGTMs, you can assign this pull request to the committer in the list by filling /assign @committer in the comment to help you merge this pull request.

The full list of commands accepted by this bot can be found here.

Reviewer can indicate their review by submitting an approval review.
Reviewer can cancel approval by submitting a request changes review.

@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Nov 16, 2022
@ti-chi-bot ti-chi-bot added do-not-merge/release-note-label-needed Indicates that a PR should not merge because it's missing one of the release note labels. size/S Denotes a PR that changes 10-29 lines, ignoring generated files. labels Nov 16, 2022
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/br/web/loader-utils-2.0.4 branch from be278e9 to 9846f96 Compare November 16, 2022 06:45
@ti-chi-bot ti-chi-bot added the status/LGT1 Indicates that a PR has LGTM 1. label Nov 17, 2022
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/br/web/loader-utils-2.0.4 branch 2 times, most recently from e71068f to 7feff37 Compare November 22, 2022 08:44
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/br/web/loader-utils-2.0.4 branch 8 times, most recently from 58827fc to 77fa94b Compare November 30, 2022 08:40
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/br/web/loader-utils-2.0.4 branch 5 times, most recently from 90b0381 to 4ee89f1 Compare December 8, 2022 16:45
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/br/web/loader-utils-2.0.4 branch 3 times, most recently from c0a1a0f to 407d9d1 Compare December 21, 2022 03:59
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/br/web/loader-utils-2.0.4 branch from 407d9d1 to 9146745 Compare December 26, 2022 11:31
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/br/web/loader-utils-2.0.4 branch from 9146745 to 8e44692 Compare December 27, 2022 11:09
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/br/web/loader-utils-2.0.4 branch from 8e44692 to 13e8b6b Compare January 5, 2023 04:55
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/br/web/loader-utils-2.0.4 branch 6 times, most recently from 85971aa to 349f587 Compare February 5, 2023 04:54
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/br/web/loader-utils-2.0.4 branch 2 times, most recently from e61734b to 4bfb930 Compare February 7, 2023 08:40
@ti-chi-bot ti-chi-bot added size/XXL Denotes a PR that changes 1000+ lines, ignoring generated files. and removed size/S Denotes a PR that changes 10-29 lines, ignoring generated files. labels Feb 7, 2023
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/br/web/loader-utils-2.0.4 branch from dbd672d to 6056d48 Compare February 8, 2023 06:13
@ti-chi-bot ti-chi-bot added size/S Denotes a PR that changes 10-29 lines, ignoring generated files. and removed size/XXL Denotes a PR that changes 1000+ lines, ignoring generated files. labels Feb 8, 2023
@ti-chi-bot ti-chi-bot removed the do-not-merge/release-note-label-needed Indicates that a PR should not merge because it's missing one of the release note labels. label Mar 2, 2023
@ti-chi-bot ti-chi-bot added status/LGT2 Indicates that a PR has LGTM 2. and removed status/LGT1 Indicates that a PR has LGTM 1. labels Mar 2, 2023
@Defined2014
Copy link
Contributor

@dependabot rebase

@Defined2014
Copy link
Contributor

/merge

@ti-chi-bot
Copy link
Member

This pull request has been accepted and is ready to merge.

Commit hash: 6056d48

@ti-chi-bot ti-chi-bot added the status/can-merge Indicates a PR has been approved by a committer. label Mar 2, 2023
@dependabot
build(deps): bump loader-utils from 2.0.0 to 2.0.4 in /br/web
4ed52bb 
Bumps [loader-utils](https://github.com/webpack/loader-utils) from 2.0.0 to 2.0.4.
- [Release notes](https://github.com/webpack/loader-utils/releases)
- [Changelog](https://github.com/webpack/loader-utils/blob/v2.0.4/CHANGELOG.md)
- [Commits](webpack/loader-utils@v2.0.0...v2.0.4)

---
updated-dependencies:
- dependency-name: loader-utils
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/br/web/loader-utils-2.0.4 branch from 6056d48 to 4ed52bb Compare March 2, 2023 08:06
@ti-chi-bot ti-chi-bot merged commit 6e8eb6e into master Mar 2, 2023
@ti-chi-bot ti-chi-bot deleted the dependabot/npm_and_yarn/br/web/loader-utils-2.0.4 branch March 2, 2023 08:21
@hawkingrei
Copy link
Member

We have no CI to verify it.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@lance6716 lance6716 lance6716 approved these changes

@Defined2014 Defined2014 Defined2014 approved these changes

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code ok-to-test release-note-none size/S Denotes a PR that changes 10-29 lines, ignoring generated files. skip-issue-check status/can-merge Indicates a PR has been approved by a committer. status/LGT2 Indicates that a PR has LGTM 2.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
4 participants
@ti-chi-bot @Defined2014 @hawkingrei @lance6716