Bump loader-utils, html-webpack-plugin, resolve-url-loader and webpack-cli #6
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Bumps loader-utils to 1.4.2 and updates ancestor dependencies loader-utils, html-webpack-plugin, resolve-url-loader and webpack-cli. These dependencies need to be updated together.
Updates
loader-utils
from 1.2.3 to 1.4.2Release notes
Sourced from loader-utils's releases.
Changelog
Sourced from loader-utils's changelog.
Commits
331ad50
chore(release): 1.4.217cbf8f
fix: ReDoS problem (#226)8f082b3
chore(release): 1.4.14504e34
fix: security problem (#220)d95b8b5
chore(release): 1.4.0cd0e428
feat: theresourceQuery
is passed to theinterpolateName
method (#163)06d36cf
chore(release): 1.3.0469eeba
feat: support the[query]
template for theinterpolatedName
method (#162)909c99d
chore: funding.yml config and CI fix (#159)b5b74f0
Set up CI with Azure PipelinesUpdates
html-webpack-plugin
from 3.2.0 to 5.5.1Changelog
Sourced from html-webpack-plugin's changelog.
... (truncated)
Commits
706a160
chore(release): 5.5.1988709d
fix(perf): defer loading of pretty-error to improve startup time (#1789)d5ce5a8
Update README.md2e3ffbf
Added strict-csp to the list of plugins9c9786a
chore: update workflow configuration873d75b
chore(release): 5.5.0ddeb774
chore: update examples1e42625
feat: Support type=module via scriptLoading option7d3645b
Bump pretty-error to 4.0.0 to fix transitive vuln for ansi-regex CVE-2021-380779be779
[chore] changes actions to run on pull_requestsMaintainer changes
This version was pushed to npm by evilebottnawi, a new releaser for html-webpack-plugin since your current version.
Updates
resolve-url-loader
from 3.1.0 to 3.1.5Release notes
Sourced from resolve-url-loader's releases.
Commits
e530766
3.1.5a4b6517
Loosen constraints on loader-utils dependencyb87086a
3.1.4757f653
Bump PostCSS5b9d127
3.1.3b9028b3
flag v3 as maintenance, add CTA for v453c68ae
publish 3.1.2a96f9ef
bump adjust-sourcemap-loader to address object-path issue17dbe18
bump patch version - update dependenciesfa58993
update dependenciesUpdates
webpack-cli
from 3.3.9 to 3.3.12Changelog
Sourced from webpack-cli's changelog.
Commits
33574ec
chore(release): 3.3.124f1a2f3
chore: bump dependencies for v3 (#1595)ab910df
docs(templates): Branding guide violation fix (#1226)c9927e3
fix: release stablea037dc8
fix: ci (#1193)f9f0860
chore: v3.3.1008a7650
chore: remove un-synced tests1208aa6
feat: add new flag and patch sec dep (#1102)6ad6099
chore: sec patchMaintainer changes
This version was pushed to npm by evilebottnawi, a new releaser for webpack-cli since your current version.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)You can disable automated security fix PRs for this repo from the Security Alerts page.