Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump serialize-javascript, webpack and @wordpress/scripts #3869

Open
wants to merge 1 commit into
base: develop
Choose a base branch
from
Open

Bump serialize-javascript, webpack and @wordpress/scripts #3869

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 11, 2025
edited
Loading

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

Bumps serialize-javascript to 6.0.2 and updates ancestor dependencies serialize-javascript, webpack and @wordpress/scripts. These dependencies need to be updated together.

Updates serialize-javascript from 4.0.0 to 6.0.2

Release notes

Sourced from serialize-javascript's releases.

v6.0.2

  • fix: serialize URL string contents to prevent XSS (#173) f27d65d
  • Bump @​babel/traverse from 7.10.1 to 7.23.7 (#171) 02499c0
  • docs: update readme with URL support (#146) 0d88527
  • chore: update node version and lock file e2a3a91
  • fix typo (#164) 5a1fa64

yahoo/serialize-javascript@v6.0.1...v6.0.2

v6.0.1

What's Changed

New Contributors

Full Changelog: yahoo/serialize-javascript@v6.0.0...v6.0.1

v6.0.0

Changelog

  • Add support for URL's (#123)
  • Bump mocha from 9.0.0 to 9.0.1 (#124)
  • Bump mocha from 8.4.0 to 9.0.0 (#121)
  • Update Node.js CI matrix (#122)
  • Bump mocha from 8.3.2 to 8.4.0 (#120)
  • Bump lodash from 4.17.19 to 4.17.21 (#119)
  • Bump y18n from 4.0.0 to 4.0.1 (#116)
  • Bump chai from 4.3.3 to 4.3.4 (#115)

... (truncated)

Commits

Updates webpack from 4.46.0 to 5.97.1

Release notes

Sourced from webpack's releases.

v5.97.1

Bug Fixes

  • Performance regression
  • Sub define key should't be renamed when it's a defined variable

v5.97.0

Bug Fixes

  • Don't crash with filesystem cache and unknown scheme
  • Generate a valid code when output.iife is true and output.library.type is umd
  • Fixed conflict variable name with concatenate modules and runtime code
  • Merge duplicate chunks before
  • Collisions in ESM library
  • Use recursive search for versions of shared dependencies
  • [WASM] Don't crash WebAssembly with Reference Types (sync and async)
  • [WASM] Fixed wasm loading for sync and async webassembly
  • [CSS] Don't add [uniqueName] to localIdentName when it is empty
  • [CSS] Parsing strings on Windows
  • [CSS] Fixed CSS local escaping

New Features

  • Added support for injecting debug IDs
  • Export the MergeDuplicateChunks plugin
  • Added universal loading for JS chunks and JS worker chunks (only ES modules)
  • [WASM] Added universal loading for WebAssembly chunks (only for async WebAssembly)
  • [CSS] Allow initial CSS chunks to be placed anywhere - the output.cssHeadDataCompression option was deleted
  • [CSS] Added universal loading for CSS chunks
  • [CSS] Parse ICSS @value at-rules in CSS modules
  • [CSS] Parse ICSS :import rules in CSS modules
  • [CSS] Added the url and import options for CSS
  • [CSS] Allow to import custom properties in CSS modules

Performance

  • Faster Queue implementation, also fixed queue iterator state in dequeue method to ensure correct behavior after item removal

v5.96.1

Bug Fixes

  • [Types] Add @types/eslint-scope to dependencieS
  • [Types] Fixed regression in validate

v5.96.0

Bug Fixes

  • Fixed Module Federation should track all referenced chunks
  • Handle Data URI without base64 word
  • HotUpdateChunk have correct runtime when modified with new runtime

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by evilebottnawi, a new releaser for webpack since your current version.


Updates @wordpress/scripts from 13.0.2 to 30.10.0

Release notes

Sourced from @​wordpress/scripts's releases.

20.2.0

Changelog

Enhancements

Block Library

  • Details block: Add name attribute for exclusive accordion. (56971)
  • Details block: Add placeholder attribute. (68917)
  • Home Link: Enable all non-interactive formats. (68737)
  • Latest Comments: Refactor settings panel to use ToolsPanel. (67951)
  • Latest Post Block: Refactor settings panel to use ToolsPanel. (67956)
  • Read More: Refactor settings panel to use ToolsPanel. (67925)
  • Search Block: Refactoring settings panel. (67907)
  • Search Results Title Block: Add dropdown menu props to Tools Panel component. (68763)
  • Spacer: Add dropdown menu props to Tools Panel component. (68761)
  • Term List Block: Refactor settings panel to use ToolsPanel. (67955)

Design Tools

  • Position: Refactor "Position" controls panel to use ToolsPanel instead of PanelBody. (67967)
  • Post-content block header color support. (67783)

Block Editor

  • Improve grid visualizer resize observation. (68842)

Style Book

  • Navigation Submenu Block: Add example preview. (68378)

Bug Fixes

  • Fix: Invalid _doing_it_wrong() for experimental-link-color. (68408)

Block Library

  • Archives Block: Fix reset button display state. (68757)
  • Fix: Add rel="tag" to individual anchor links in editor markup of the post terms block. (68722)
  • Fix: Linked featured image block cannot be selected correctly. (68775)
  • Page List Block: Fix empty settings panel. (68756)
  • Post Date Block: Fix reset button display state. (68758)
  • Query Page Numbers Block: Fix reset button display state. (68759)
  • Spacer block: Fix dimension control when no spacing presets are available. (68818)
  • Spacer: Fix flex layout unit reset. (68815)
  • Spacer: Fix changes being marked as persistent to undo. (68869)

Patterns

  • Editor: Improve conditions for displaying new page assembler. (68852)

Style Book

  • Disable the device preview button in the header. (68841)

Block Editor

... (truncated)

Changelog

Sourced from @​wordpress/scripts's changelog.

30.10.0 (2025-01-29)

30.9.0 (2025-01-15)

30.8.0 (2025-01-02)

Enhancements

  • Recommend listing JavaScript entry points as paths passed to the start and build commands (#68251).
  • Introduce a new option --source-path to customize the source directory used with the start and build commands (#68251).

Internal

  • The bundled rtlcss-webpack-plugin dependency has been replaced with a modified fork of the plugin to fix issues with the original package (#68201).
  • The bundled sass dependency has been updated from ^1.50.0 to ^1.54.0 (#68380).

30.7.0 (2024-12-11)

Internal

  • The bundled sass dependency has been updated from ^1.35.2 to ^1.50.1 (#67572).
  • The bundled sass-loader dependency has been updated from ^12.1.0 to ^16.0.3 (#67572).
  • The bundled mini-css-extract-plugin dependency has been updated from ^2.5.1 to ^2.9.2 (#67572).
  • The bundled webpack dependency has been updated from ^5.95.0 to ^5.97.0 (#67572).
  • The bundled cross-spawn dependency has been updated from ^5.1.0 to ^7.0.6 (#67708).
  • The bundled jest-dev-server dependency has been updated from ^9.0.1 to ^10.1.4 (#67708).
  • The bundled puppeteer-core dependency has been updated from ^23.1.0 to ^23.10.1 (#67708).

Bug Fix

  • Make React Fast Refresh in the start command work with multiple blocks (64924).

30.6.0 (2024-11-27)

30.5.1 (2024-11-18)

Bug Fix

  • Revert changes from #61121 that inlined CSS files imported from other CSS files before optimization in the build command.

30.5.0 (2024-11-16)

Bug Fix

  • Make start script more resilient for developer errors (#66752).

30.4.0 (2024-10-30)

Enhancements

... (truncated)

Commits
  • 68a831c chore(release): publish
  • af1b8d0 Update changelog files
  • 1aed6c2 Merge changes published in the Gutenberg plugin "release/20.2" branch
  • f48b9f5 chore(release): publish
  • f184ad9 Update changelog files
  • dd7e688 Merge changes published in the Gutenberg plugin "release/20.1" branch
  • 0d4503e chore(release): publish
  • 4a8b5f6 Scripts: Add "plugins" directory to list of published files to npm
  • adab052 Try restoring relative file: dependencies
  • 2ece8e6 chore(release): publish
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by gutenbergplugin, a new releaser for @​wordpress/scripts since your current version.


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
Bump serialize-javascript, webpack and @wordpress/scripts
568ce61 
Bumps [serialize-javascript](https://github.com/yahoo/serialize-javascript) to 6.0.2 and updates ancestor dependencies [serialize-javascript](https://github.com/yahoo/serialize-javascript), [webpack](https://github.com/webpack/webpack) and [@wordpress/scripts](https://github.com/WordPress/gutenberg/tree/HEAD/packages/scripts). These dependencies need to be updated together.


Updates `serialize-javascript` from 4.0.0 to 6.0.2
- [Release notes](https://github.com/yahoo/serialize-javascript/releases)
- [Commits](yahoo/serialize-javascript@v4.0.0...v6.0.2)

Updates `webpack` from 4.46.0 to 5.97.1
- [Release notes](https://github.com/webpack/webpack/releases)
- [Commits](webpack/webpack@v4.46.0...v5.97.1)

Updates `@wordpress/scripts` from 13.0.2 to 30.10.0
- [Release notes](https://github.com/WordPress/gutenberg/releases)
- [Changelog](https://github.com/WordPress/gutenberg/blob/trunk/packages/scripts/CHANGELOG.md)
- [Commits](https://github.com/WordPress/gutenberg/commits/@wordpress/[email protected]/packages/scripts)

---
updated-dependencies:
- dependency-name: serialize-javascript
  dependency-type: indirect
- dependency-name: webpack
  dependency-type: direct:development
- dependency-name: "@wordpress/scripts"
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Feb 11, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants