Bump loader-utils, babel-loader, imports-loader and webpack #371
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Bumps loader-utils to 1.4.2 and updates ancestor dependencies loader-utils, babel-loader, imports-loader and webpack. These dependencies need to be updated together.
Updates
loader-utils
from 1.4.0 to 1.4.2Release notes
Sourced from loader-utils's releases.
Changelog
Sourced from loader-utils's changelog.
Commits
331ad50
chore(release): 1.4.217cbf8f
fix: ReDoS problem (#226)8f082b3
chore(release): 1.4.14504e34
fix: security problem (#220)Updates
babel-loader
from 6.2.4 to 9.1.0Release notes
Sourced from babel-loader's releases.
... (truncated)
Changelog
Sourced from babel-loader's changelog.
... (truncated)
Commits
15fbacf
9.1.06348e1c
Pass external dependencies from Babel to Webpack (#971)457b9ad
Update webpackf42ac9b
9.0.14f9c0bf
remove "node:" builtin prefix (#970)9ff288f
9.0.0006a3dc
Update README.mddaed88a
Update README.md0ed5fd6
Bump ini from 1.3.5 to 1.3.8 (#968)b1749e3
Bump y18n from 4.0.0 to 4.0.3 (#967)Maintainer changes
This version was pushed to npm by nicolo-ribaudo, a new releaser for babel-loader since your current version.
Updates
imports-loader
from 0.6.5 to 4.0.1Release notes
Sourced from imports-loader's releases.
... (truncated)
Changelog
Sourced from imports-loader's changelog.
... (truncated)
Commits
1ff803f
chore(release): 4.0.15a1f866
fix: source map for other loaders (#146)b90be51
chore: update dependencies to the latest version (#145)249666e
ci: add GitHub token permissions for workflow (#144)44c5031
chore(deps): bump terser from 5.13.1 to 5.14.2 (#143)1d8f8c3
chore: update dependencies to the latest version (#140)adbbb1d
docs: update note in README.md (#138)8c4ad54
chore: disable commit message length check (#137)7c35d20
chore: update dependencies to the latest version (#136)8242b29
docs: remove old badge (#135)Maintainer changes
This version was pushed to npm by evilebottnawi, a new releaser for imports-loader since your current version.
Updates
webpack
from 1.13.1 to 5.75.0Release notes
Sourced from webpack's releases.
... (truncated)
Commits
8241da7
5.75.0a91d923
Merge pull request #16458 from webpack/bugfix/semi4608b11
Merge pull request #16457 from webpack/tooling/updatedfdd0b0
Merge pull request #16122 from AnmolBansalDEV/bug/compilationCallback23b9a1c
Merge pull request #16167 from exposir/fixts6f2c5e8
Merge pull request #16257 from alexzhang1030/calc_deterministic_verbosef7f36ad
Merge pull request #16339 from Liamolucko/wasm-i64761a542
fix semicolon position2403a36
Merge pull request #16345 from ahabhgk/fix-eval-nosourcesc18203c
update toolingDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)You can disable automated security fix PRs for this repo from the Security Alerts page.