Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Snyk] Upgrade rollup from 1.30.1 to 1.32.1 - autoclosed #3

Closed

Conversation

snyk-bot
Copy link

Snyk has created this PR to upgrade rollup from 1.30.1 to 1.32.1.

merge advice

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.


  • The recommended version is 4 versions ahead of your current version.
  • The recommended version was released 5 months ago, on 2020-03-06.
Release notes
Package name: rollup
  • 1.32.1 - 2020-03-06

    2020-03-06

    Bug Fixes

    • Handle default export detection for AMD and IIFE externals that do not have a prototype (#3420)
    • Handle missing whitespace when the else branch of an if-statement is simplified (#3421)
    • Mention the importing module when reporting errors for missing named exports (#3401)
    • Add code to warning for missing output.name of IIFE bundles (#3372)

    Pull Requests

    • #3372: Add warning code for missing output.name of IIFE bundle that has export (@rail44)
    • #3401: Missing exports errors now print the importing module (@timiyay)
    • #3418: Structure lifecycle hooks, add links to build time hooks (@lukastaegert)
    • #3420: Update generated code of getInteropBlock() to work with null prototype objects (@jdalton)
    • #3421: Avoid invalid code when "else" branch is simplified (@lukastaegert)
  • 1.32.0 - 2020-02-28

    2020-02-28

    Features

    • Allow adding plugins on the command line via --plugin <plugin> (#3379)

    Pull Requests

  • 1.31.1 - 2020-02-14

    2020-02-14

    Bug Fixes

    • Make sure errored files are always re-evaluated in watch mode to avoid an issue in the typescript plugin (#3388)

    Pull Requests

  • 1.31.0 - 2020-01-31

    2020-01-31

    Features

    • Always disable tree-shaking for asm.js functions to maintain semantics (#3362)

    Pull Requests

  • 1.30.1 - 2020-01-27

    2020-01-27

    Bug Fixes

    • Do not mistreat static entgry points as dynamic ones when chunking (#3357)
    • Resolve a crash when chunking circular dynamic imports (#3357)

    Pull Requests

from rollup GitHub release notes
Commit messages
Package name: rollup

Compare


Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

@mend-bolt-for-github mend-bolt-for-github bot changed the title [Snyk] Upgrade rollup from 1.30.1 to 1.32.1 [Snyk] Upgrade rollup from 1.30.1 to 1.32.1 - autoclosed Mar 31, 2021
@mend-bolt-for-github
Copy link

✔️ This issue was automatically closed by WhiteSource because the vulnerable library in the specific branch(es) was either marked as ignored or it is no longer part of the WhiteSource inventory.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
⤵️ pull bug Something isn't working build dependencies Pull requests that update a dependency file documentation Improvements or additions to documentation duplicate This issue or pull request already exists enhancement New feature or request good first issue Good for newcomers help wanted Extra attention is needed invalid This doesn't seem right Mend: dependency security vulnerability Security vulnerability detected by WhiteSource merge-conflict Resolve conflicts manually question Further information is requested security findings security fix Security fix generated by WhiteSource wontfix This will not be worked on
Projects
None yet
1 participant