Update dependency babel-loader to v9

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
babel-loader	^8.3.0 -> ^9.0.0

---

Release Notes

babel/babel-loader

v9.1.0

Compare Source

New features

• Pass external dependencies from Babel to Webpack by @​nicolo-ribaudo in https://github.com/babel/babel-loader/pull/971

Full Changelog: babel/babel-loader@v9.0.1...v9.1.0

v9.0.1

Compare Source

Bug Fixes

• remove "node:" builtin prefix by @​JLHwung in https://github.com/babel/babel-loader/pull/970

Full Changelog: babel/babel-loader@v9.0.0...v9.0.1

v9.0.0

Compare Source

What's Changed

• update hash method mechanism so it doesn't fail on a fips enabled machine by @​darmbrust in https://github.com/babel/babel-loader/pull/939
• Require babel ^7.12.0 and Node.js >= 14.15.0 versions by @​JLHwung in https://github.com/babel/babel-loader/pull/956
• Remove dependency on loader-utils and drop webpack 4 support by @​nied in https://github.com/babel/babel-loader/pull/942

New Contributors

• @​darmbrust made their first contribution in https://github.com/babel/babel-loader/pull/939
• @​nied made their first contribution in https://github.com/babel/babel-loader/pull/942

Full Changelog: babel/babel-loader@v8.2.5...v9.0.0

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.

[socket-security]

Socket Security Pull Request Report

Dependency issues detected. If you merge this pull request, you will not be alerted to the instances of these issues again.

📜 Install scripts

Install scripts are run when the package is installed. The majority of malware in npm is hidden in install scripts.

Packages should not be running non-essential scripts during install and there are often solutions to problems people solve with install scripts that can be run at publish time instead.

Package	Script field	Location
@swc/core@1.3.14 (upgraded)	postinstall	package.json

😵‍💫 Bin script confusion

This package has multiple bin scripts with the same name. This can cause non-deterministic behavior when installing or could be a sign of a supply chain attack

Consider removing one of the conflicting packages. Packages should only export bin scripts with their name

Package	Bin script	Location
jest@29.3.0 (added)	jest	package.json
jest-cli@29.3.0 (added)	jest	package.json via jest@29.3.0

Pull request report summary

Issue	Status
Install scripts	⚠️ 1 issue
Native code	✅ 0 issues
Bin script confusion	⚠️ 2 issues
Bin script shell injection	✅ 0 issues
Unresolved require	✅ 0 issues
Invalid package.json	✅ 0 issues
HTTP dependency	✅ 0 issues
Git dependency	✅ 0 issues
Potential typo squat	✅ 0 issues
Known Malware	✅ 0 issues
Telemetry	✅ 0 issues
Protestware/Troll package	✅ 0 issues

Bot Commands

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of package-name@version specifiers. e.g. @SocketSecurity ignore foo@1.0.0 bar@2.4.2

• @SocketSecurity ignore @swc/core@1.3.14
• @SocketSecurity ignore jest@29.3.0
• @SocketSecurity ignore jest-cli@29.3.0

⚠️ Please accept the latest app permissions to ensure bot commands work properly. Accept the new permissions here.

Powered by socket.dev

[github-actions]

🎉 This PR is included in version 1.1.0 🎉

The release is available on:

• npm package (@latest dist-tag)
• GitHub release

Your semantic-release bot 📦🚀