Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): bump braces, micromatch, terser-webpack-plugin and watchpack #1130

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

chore(deps): bump braces, micromatch, terser-webpack-plugin and watchpack #1130

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jun 11, 2024
edited
Loading

Bumps braces, micromatch, terser-webpack-plugin and watchpack. These dependencies needed to be updated together.
Updates braces from 3.0.2 to 3.0.3

Commits

Updates micromatch from 3.1.10 to 4.0.4

Release notes

Sourced from micromatch's releases.

4.0.4

  • fix: Update picomatch to fix regression #179 (8becb55)

4.0.3

  • Enforce newer version of picomatch with bugfixes
Commits
  • 5318752 4.0.4
  • 8becb55 fix: Update picomatch to fix regression #179
  • 00577f4 docs: Fix return type and better wording
  • a103503 chore: Regenerate README and rerun benchmarks
  • 648928e docs(readme): fix relative link
  • 062b574 chore: Update mocha to v7 to fix security issues in its dependencies
  • 7a63a2a 4.0.3
  • 88e69c0 chore: Ignore windows tests for now
  • e4551a7 chore: Add node 12 and 14 to tests
  • 211c6ad chore: Fix unix tests
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by danez, a new releaser for micromatch since your current version.


Updates terser-webpack-plugin from 1.4.5 to 5.3.10

Release notes

Sourced from terser-webpack-plugin's releases.

v5.3.10

5.3.10 (2023-12-28)

Bug Fixes

  • bump terser to the latest stable version (#587) (f650fa3)

v5.3.9

5.3.9 (2023-05-17)

Bug Fixes

v5.3.8

5.3.8 (2023-05-06)

Bug Fixes

v5.3.7

5.3.7 (2023-03-08)

Bug Fixes

v5.3.6

5.3.6 (2022-08-29)

Bug Fixes

  • allow disable compress options for terser and swc (#514) (52c1aef)

v5.3.5

5.3.5 (2022-08-16)

Bug Fixes

v5.3.4

5.3.4 (2022-08-12)

... (truncated)

Changelog

Sourced from terser-webpack-plugin's changelog.

5.3.10 (2023-12-28)

Bug Fixes

  • bump terser to the latest stable version (#587) (f650fa3)

5.3.9 (2023-05-17)

Bug Fixes

5.3.8 (2023-05-06)

Bug Fixes

5.3.7 (2023-03-08)

Bug Fixes

5.3.6 (2022-08-29)

Bug Fixes

  • allow disable compress options for terser and swc (#514) (52c1aef)

5.3.5 (2022-08-16)

Bug Fixes

5.3.4 (2022-08-12)

Bug Fixes

  • respect environment options for terser and swc compress options (#509) (29bbc3a)

5.3.3 (2022-06-02)

... (truncated)

Commits
  • c87ade2 chore(release): 5.3.10
  • f650fa3 fix: bump terser to the latest stable version (#587)
  • 0403c77 chore(deps-dev): bump @​babel/traverse from 7.22.17 to 7.23.6 (#586)
  • 174d197 chore: update dependencies to the latest version (#577)
  • 1831a49 chore: update github action/setup-node (#584)
  • 25d0147 chore: update github actions/checkout (#576)
  • fa86955 chore(deps-dev): bump word-wrap from 1.2.3 to 1.2.5 (#575)
  • 0867673 chore: update dependencies to the latest version (#574)
  • b8cfb07 chore: upgrade dependencies to the latest version (#572)
  • ce5a518 refactor: code (#569)
  • Additional commits viewable in compare view

Updates watchpack from 1.7.5 to 2.4.1

Release notes

Sourced from watchpack's releases.

v2.4.1

Bugfixes

  • do not report directory as initial missing on the second watch

v2.4.0

Bugfixes

  • respect filesystem accuracy more accurately

v2.3.1

Bugfixes

  • report time info for directories correctly

v2.3.0

Features

  • allow to grab separate file and directory time info objects
  • allow functions passed to the ignored option

Bugfixes

  • ignore EACCESS errors during initial scan

Performance

  • improve performance of watcher update

Contributing

  • CI tests node.js 17 too

v2.1.1

Bugfix

  • fix warnings with ENOENT when symlinks are resolved by watchpack

v2.1.0

Bugfix

  • use creation time instead of modified time for folder entries that are only watch for existence
    • fixes a problem where webpack rebuilds unnecessarily

v2.0.1

Bugfix

  • fix incorrectly reported changes when attaching to an already watched directory

... (truncated)

Commits
  • 585ebf9 chore(release): 2.4.1
  • 74439b1 fix: do not report directory as initial missing on the second watch
  • 3c5eefd test: more
  • 9563a95 fix: logic
  • 54427a1 refactor: remove debug code
  • c708c45 fix: do not report directory as initial missing on the second watch
  • f5baba7 chore(deps): regenerate lock file
  • 4f2f9d1 refactor: update scripts
  • 901f5a3 style: fix
  • 0c43b10 chore(deps): regenerate lock file
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by evilebottnawi, a new releaser for watchpack since your current version.


You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot
chore(deps): bump braces, micromatch, terser-webpack-plugin and watch…
a5439c3 
…pack

Bumps [braces](https://github.com/micromatch/braces), [micromatch](https://github.com/micromatch/micromatch), [terser-webpack-plugin](https://github.com/webpack-contrib/terser-webpack-plugin) and [watchpack](https://github.com/webpack/watchpack). These dependencies needed to be updated together.

Updates `braces` from 3.0.2 to 3.0.3
- [Changelog](https://github.com/micromatch/braces/blob/master/CHANGELOG.md)
- [Commits](micromatch/braces@3.0.2...3.0.3)

Updates `micromatch` from 3.1.10 to 4.0.4
- [Release notes](https://github.com/micromatch/micromatch/releases)
- [Changelog](https://github.com/micromatch/micromatch/blob/master/CHANGELOG.md)
- [Commits](micromatch/micromatch@3.1.10...4.0.4)

Updates `terser-webpack-plugin` from 1.4.5 to 5.3.10
- [Release notes](https://github.com/webpack-contrib/terser-webpack-plugin/releases)
- [Changelog](https://github.com/webpack-contrib/terser-webpack-plugin/blob/master/CHANGELOG.md)
- [Commits](webpack-contrib/terser-webpack-plugin@v1.4.5...v5.3.10)

Updates `watchpack` from 1.7.5 to 2.4.1
- [Release notes](https://github.com/webpack/watchpack/releases)
- [Commits](webpack/watchpack@v1.7.5...v2.4.1)

---
updated-dependencies:
- dependency-name: braces
  dependency-type: indirect
- dependency-name: micromatch
  dependency-type: indirect
- dependency-name: terser-webpack-plugin
  dependency-type: indirect
- dependency-name: watchpack
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Jun 11, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants