[Snyk] Upgrade webpack from 5.74.0 to 5.82.1 #32
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Snyk has created this PR to upgrade webpack from 5.74.0 to 5.82.1. See this package in npm: https://www.npmjs.com/package/webpack See this project in Snyk: https://app.snyk.io/org/hinchk/project/9b8d127a-edd1-4831-be4b-205c30232f56?utm_source=github&utm_medium=referral&page=upgrade-pr
|
Kudos, SonarCloud Quality Gate passed!
|
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to upgrade webpack from 5.74.0 to 5.82.1.
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version fixes:
SNYK-JS-WEBPACK-3358798
Why? Proof of Concept exploit, Has a fix available, CVSS 8.3
SNYK-JS-TERSER-2806366
Why? Proof of Concept exploit, Has a fix available, CVSS 8.3
(*) Note that the real score may have changed since the PR was raised.
Release notes
Package name: webpack
-
5.82.1 - 2023-05-10
- [CSS] - Support nesting in CSS modules and bug fixes by @ alexander-akait in #17133
- [CSS] - Fix crash with
- Fix bug where
- Reduce the amount of generated code for chunk loading by @ lvivski in #17151
- Use module preload for ESM module output by @ alexander-akait in #17143
- Improve module type strictness for Module.prototype.type expand ModuleTypeConstants by @ TheLarkInn in #17136
- Update package.json description by @ JeraldVin in #17145
- Bump webpack-cli from 5.0.2 to 5.1.0 by @ dependabot in #17146
- Bump core-js from 3.30.1 to 3.30.2 by @ dependabot in #17149
- Bump enhanced-resolve to v5.14.0 by @ snitin315 in #17160
- @ JeraldVin made their first contribution in #17145
-
5.82.0 - 2023-05-03
-
5.81.0 - 2023-04-26
- [CSS] - Increased CSS import support and new hooks included for CSS module creation by @ alexander-akait in #17057
- Logging now added to DefinePlugin by @ alexander-akait in #17048
- New
- [CSS] - Fix issue where vendor prefixed keyframes and animation was not supported in CSS modules by @ alexander-akait in #16975
- Fix bug where AST was not properly handled by @ quanru in #17032
- Fix automatic publicPath detection logic by @ alexander-akait in #17047
- Rename
- Increase test reliability for DefinePlugin @ alexander-akait in #17062
- Add additional CI Pipeline to test main branches of first-party webpack dependencies by @ alexander-akait in #17020
- Refactor tests to no longer use deprecated or legacy dependencies and APIs by @ alexander-akait in #17033
- Increase type coverage/documentation for ModuleFilenameHelpers by @ TheLarkInn in #17045
- Increase type coverage/documentation for CommonJsExportsParserPlugin by @ TheLarkInn in #17046
- Increase type coverage/documentation for binarySearchBounds.js by @ TheLarkInn in #17058
- Export MemoryCacheOptions types by @ romulof in #17055
- Add NodeJS v20 to CI Matrix by @ alexander-akait in #17019
- Update Typescript to v5 by @ alexander-akait in #16957
- Bump @ types/estree from 1.0.0 to 1.0.1 by @ dependabot in #17026
- Bump @ types/node from 18.15.11 to 18.15.13 by @ dependabot in #17038
- Bump assemblyscript from 0.27.2 to 0.27.3 by @ dependabot in #17051
- Bump memfs from 3.5.0 to 3.5.1 by @ dependabot in #17039
- Bump prettier from 2.8.7 to 2.8.8 by @ dependabot in #17050
- Bump simple-git from 3.17.0 to 3.18.0 by @ dependabot in #17066
- @ quanru made their first contribution in #17032
- @ romulof made their first contribution in #17055
- @ indeediansbrett made their first contribution in #16388
-
5.80.0 - 2023-04-19
-
5.79.0 - 2023-04-12
-
5.78.0 - 2023-04-05
-
5.77.0 - 2023-03-29
-
5.76.3 - 2023-03-22
-
5.76.2 - 2023-03-15
-
5.76.1 - 2023-03-10
-
5.76.0 - 2023-03-08
-
5.75.0 - 2022-11-09
-
5.74.0 - 2022-07-25
from webpack GitHub release notesBug Fixes
importModulewhen CSS enabled by @ alexander-akait in #17140output.hashFunctionwas failing to generate debug hash by @ ahabhgk in #16950Developer Experience
Dependencies & Maintenance
New Contributors
Full Changelog: v5.82.0...v5.82.1
Read more
New Features
ignoreBrowserWarningsoption to ignore browser console warnings in ModuleFederation by @ indeediansbrett in #16388Bug Fixes
Tests & Contributor Experience
providetogetOrInsertin MapHelpers and document it better by @ TheLarkInn in #17060Developer Experience
Dependencies & Maintenance
New Contributors
Full Changelog: v5.80.0...v5.81.0
Read more
Read more
Read more
Read more
Read more
Read more
Read more
Commit messages
Package name: webpack
Compare
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information:
🧐 View latest project report
🛠 Adjust upgrade PR settings
🔕 Ignore this dependency or unsubscribe from future upgrade PRs