Bump postcss, autoprefixer, css-loader, optimize-css-assets-webpack-plugin, postcss-import, postcss-loader, postcss-url and vue-loader

[dependabot]

Bumps postcss to 8.4.38 and updates ancestor dependencies postcss, autoprefixer, css-loader, optimize-css-assets-webpack-plugin, postcss-import, postcss-loader, postcss-url and vue-loader. These dependencies need to be updated together.

Updates postcss from 5.2.18 to 8.4.38

Release notes

Sourced from postcss's releases.

8.4.38

• Fixed endIndex: 0 in errors and warnings (by @​romainmenke).

8.4.37

• Fixed original.column are not numbers error in another case.

8.4.36

• Fixed original.column are not numbers error on broken previous source map.

8.4.35

• Avoid ! in node.parent.nodes type.
• Allow to pass undefined to node adding method to simplify types.

8.4.34

• Fixed AtRule#nodes type (by @​tim-we).
• Cleaned up code (by @​DrKiraDmitry).

8.4.33

• Fixed NoWorkResult behavior difference with normal mode (by @​romainmenke).
• Fixed NoWorkResult usage conditions (by @​ahmdammarr).

8.4.32

• Fixed postcss().process() types (by @​ferreira-tb).

8.4.31

• Fixed \r parsing to fix CVE-2023-44270.

8.4.30

• Improved source map performance (by @​romainmenke).

8.4.29

• Fixed Node#source.offset (by @​idoros).
• Fixed docs (by @​coliff).

8.4.28

• Fixed Root.source.end for better source map (by @​romainmenke).
• Fixed Result.root types when process() has no parser.

8.4.27

• Fixed Container clone methods types.

8.4.26

• Fixed clone methods types.

8.4.25

• Improve stringify performance (by @​romainmenke).
• Fixed docs (by @​vikaskaliramna07).

8.4.24

• Fixed Plugin types.

... (truncated)

Changelog

Sourced from postcss's changelog.

8.4.38

• Fixed endIndex: 0 in errors and warnings (by @​romainmenke).

8.4.37

• Fixed original.column are not numbers error in another case.

8.4.36

• Fixed original.column are not numbers error on broken previous source map.

8.4.35

• Avoid ! in node.parent.nodes type.
• Allow to pass undefined to node adding method to simplify types.

8.4.34

• Fixed AtRule#nodes type (by Tim Weißenfels).
• Cleaned up code (by Dmitry Kirillov).

8.4.33

• Fixed NoWorkResult behavior difference with normal mode (by Romain Menke).
• Fixed NoWorkResult usage conditions (by @​ahmdammarr).

8.4.32

• Fixed postcss().process() types (by Andrew Ferreira).

8.4.31

• Fixed \r parsing to fix CVE-2023-44270.

8.4.30

• Improved source map performance (by Romain Menke).

8.4.29

• Fixed Node#source.offset (by Ido Rosenthal).
• Fixed docs (by Christian Oliff).

8.4.28

• Fixed Root.source.end for better source map (by Romain Menke).
• Fixed Result.root types when process() has no parser.

8.4.27

• Fixed Container clone methods types.

8.4.26

• Fixed clone methods types.

8.4.25

• Improve stringify performance (by Romain Menke).
• Fixed docs (by @​vikaskaliramna07).

8.4.24

• Fixed Plugin types.

... (truncated)

Commits

• See full diff in compare view

Updates autoprefixer from 7.2.6 to 10.4.19

Release notes

Sourced from autoprefixer's releases.

10.4.19

• Removed end value has mixed support, consider using flex-end warning since end/start now have good support.

10.4.18

• Fixed removing -webkit-box-orient on -webkit-line-clamp (@​Goodwine).

10.4.17

• Fixed user-select: contain prefixes.

10.4.16

• Improved performance (by @​romainmenke).
• Fixed docs (by @​coliff).

10.4.15

• Fixed ::backdrop prefixes (by @​yisibl).
• Fixed docs (by @​coliff).

10.4.14

• Improved startup time and reduced JS bundle size (by @​Knagis).

10.4.13

• Fixed missed prefixes on vendor prefixes in name of CSS Custom Property.

10.4.12

• Fixed support of unit-less zero angle in backgrounds (by @​yisibl).

10.4.11

• Fixed text-decoration prefixes by moving to MDN data (by @​romainmenke).

10.4.10

• Fixed unicode-bidi prefixes by moving to MDN data.

10.4.9

• Fixed css-unicode-bidi issue from latest Can I Use.

10.4.8

• Do not print color-adjust warning if print-color-adjust also is in rule.

10.4.7

• Fixed print-color-adjust support in Firefox.

10.4.6

• Fixed print-color-adjust support.

10.4.5

• Fixed NaN in grid (by @​SukkaW).

10.4.4

• Fixed package.funding to have same value between all PostCSS packages.

... (truncated)

Changelog

Sourced from autoprefixer's changelog.

10.4.19

• Removed end value has mixed support, consider using flex-end warning since end/start now have good support.

10.4.18

• Fixed removing -webkit-box-orient on -webkit-line-clamp (@​Goodwine).

10.4.17

• Fixed user-select: contain prefixes.

10.4.16

• Improved performance (by Romain Menke).
• Fixed docs (by Christian Oliff).

10.4.15

• Fixed ::backdrop prefixes (by 一丝).
• Fixed docs (by Christian Oliff).

10.4.14

• Improved startup time and reduced JS bundle size (by Kārlis Gaņģis).

10.4.13

• Fixed missed prefixes on vendor prefixes in name of CSS Custom Property.

10.4.12

• Fixed support of unit-less zero angle in backgrounds (by 一丝).

10.4.11

• Fixed text-decoration prefixes by moving to MDN data (by Romain Menke).

10.4.10

• Fixed unicode-bidi prefixes by moving to MDN data.

10.4.9

• Fixed css-unicode-bidi issue from latest Can I Use.

10.4.8

• Do not print color-adjust warning if print-color-adjust also is in rule.

10.4.7

• Fixed print-color-adjust support in Firefox.

10.4.6

• Fixed print-color-adjust support.

10.4.5

• Fixed NaN in grid (by @​SukkaW).

10.4.4

• Fixed package.funding to have same value between all PostCSS packages.

... (truncated)

Commits

• 8060e33 Release 10.4.19 version
• fe7bae4 Remove end→flex-end warning
• 5f6f362 Update dependencies
• 13a86df Move to flat ESLint config
• b3e0579 Update dependencies
• 90dc18d Release 10.4.18 version
• 0af1be8 Update dependencies
• 1efe165 Update c8 config
• 80ff109 Add Node.js 21 to CI
• 5e5d193 Automate release creation
• Additional commits viewable in compare view

Updates css-loader from 0.28.11 to 7.1.1

Release notes

Sourced from css-loader's releases.

v7.1.1

7.1.1 (2024-04-10)

Bug Fixes

• automatically rename class default to _default when named export is enabled (#1590) (d6c31a1)

v7.1.0

7.1.0 (2024-04-08)

Features

• added the getJSON option to output CSS modules mapping (#1577) (af834b4)

v7.0.0

7.0.0 (2024-04-04)

⚠ BREAKING CHANGES

• The modules.namedExport option is true by default if you enable the esModule option

Migration guide:

Before:

import style from "./style.css";
console.log(style.myClass);

After:

import * as style from "./style.css";
console.log(style.myClass);

• The modules.exportLocalsConvention has the value as-is when the modules.namedExport option is true and you don't specify a value
• Minimum supported webpack version is 5.27.0
• Minimum supported Node.js version is 18.12.0

Features

• The modules.namedExports option works fine with any modules.exportLocalsConvention values (f96a110)
• Added dashed variants for the modules.exportLocalsConvention options (40e1668)

... (truncated)

Changelog

Sourced from css-loader's changelog.

7.1.1 (2024-04-10)

Bug Fixes

• automatically rename class default to _default when named export is enabled (#1590) (d6c31a1)

7.1.0 (2024-04-08)

Features

• added the getJSON option to output CSS modules mapping (#1577) (af834b4)

7.0.0 (2024-04-04)

⚠ BREAKING CHANGES

• The modules.namedExport option is true by default if you enable the esModule option

Migration guide:

Before:

import style from "./style.css";
console.log(style.myClass);

After:

import * as style from "./style.css";
console.log(style.myClass);

To restore 6.x behavior, please use:

module.exports = {
  module: {
    rules: [
      {
        test: /\.css$/i,
        loader: "css-loader",
        options: {
          modules: {
</tr></table> 

... (truncated)

Commits

• 5c717c9 chore(release): 7.1.1
• d6c31a1 fix: automatically rename class default to _default when named export is ...
• b162e25 chore(release): 7.1.0
• 15f793d docs: update logic (#1587)
• 9c165a4 docs: update migration guide (#1586)
• af834b4 feat: added the getJSON option to output CSS modules mapping (#1577)
• fd18587 chore: husky migration (#1584)
• 96e6ff4 chore(release): 7.0.0
• a2231ae test: update
• f96a110 feat: namedExports works fine with any exportLocalsConvention value
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by evilebottnawi, a new releaser for css-loader since your current version.

Updates optimize-css-assets-webpack-plugin from 3.2.0 to 3.2.1

Commits

• 662dfb7 3.2.1
• 7ab5e15 Upgrade cssnano dependency
• See full diff in compare view

Updates postcss-import from 11.1.0 to 16.1.0

Release notes

Sourced from postcss-import's releases.

14.0.0 / 2020-12-14

This release should not have breaking changes for the vast majority of users; only those with @charset statements in their CSS may be affected.

• BREAKING: Error if multiple incompatible @charset statements (#447)
• BREAKING: Warn if @charset statements are not at the top of files (#447)
• Fix handing of @charset (#436, #447)

13.0.0 / 2020-10-20

• BREAKING: Require Node 10+ (#429)
• BREAKING: Upgrade to postcss v8 and require it as a peerDependency (#427, #432)
• Update dependencies

12.0.0

• Removed: Support for Node.js v4
• Changed: Uses PostCSS v7 (https://github.com/postcss/postcss/releases/tag/7.0.0)

Changelog

Sourced from postcss-import's changelog.

16.1.0 / 2024-03-20

• Allow bundling URLs with fragments (useful for Vite users) (#560, #561)

16.0.1 / 2024-02-14

• Fix crash when handling some @imports with media conditions (#557, #558)

16.0.0 / 2024-01-02

• BREAKING: Require Node.js v18+ (#550, #551)
• BREAKING: Signifigant rewrite, with small behavioral tweaks in a number of edge cases
• Support for @supports conditional imports added (#532, #548)
• When skipDuplicates is false, handles import cycles correctly (#462, #535)
• Add warnOnEmpty option to allow disabling warnings for empty files (#84, #541)
• Use proper node.errors (#518, #540)

Huge thanks to @romainmenke for all the hard work he put into this release.

15.1.0 / 2022-12-07

• Add data: URL support (this is not useful for most consumers) (#515)

15.0.1 / 2022-12-01

• Preserve layer in ignored @imports (#510, #511)
• Join media queries in the correct order (#512, #513)

15.0.0 / 2022-08-30

• BREAKING: Require Node.js v14+ (#497)
• BREAKING: Require nameLayer option for handling anonymous layers (#496)
• Fix handling of @media queries inside layered imports (#495, #496)

14.1.0 / 2022-03-22

• Add @layer support (#483)

14.0.2 / 2021-05-10

• Remove remaining direct import of postcss package (#455, #456)

14.0.1 / 2021-03-31

• Fix bug with @charset statements in media imports (#448, #453)

14.0.0 / 2020-12-14

This release should not have breaking changes for the vast majority of users; only those with @charset statements in their CSS may be affected.

... (truncated)

Commits

• 9217ec3 16.1.0
• eb9899b Allow urls that contain fragments, fixes #560 (#561)
• fa42e63 16.0.1
• ba92913 ensure that media params remain string values (#558)
• d8a9f21 Update dependency prettier to ~3.2.0 (#555)
• 9e53da3 Update dependency c8 to v9 (#554)
• 025f27a 16.0.0
• 7fb74a5 Add trailing commas; lint on CI (#553)
• 97690de Update dependency ava to v6 (#547)
• c3e795c Update dependency prettier to v3 (#526)
• Additional commits viewable in compare view

Updates postcss-loader from 2.1.5 to 8.1.1

Release notes

Sourced from postcss-loader's releases.

v8.1.1

8.1.1 (2024-02-28)

Bug Fixes

• respect default when loading postcss esm configs (52d8050)

v8.1.0

8.1.0 (2024-01-30)

Features

• add @rspack/core as an optional peer dependency (#679) (512e4c3)

v8.0.0

8.0.0 (2024-01-16)

⚠ BREAKING CHANGES

• minimum supported Node.js version is 18.12.0 (#677) (8dd0315)

v7.3.4

7.3.4 (2023-12-27)

Bug Fixes

• do not crash if pkg.(d|devD)ependencies unset (#667) (8ef0c7e)

v7.3.3

7.3.3 (2023-06-10)

Bug Fixes

• perf: avoid using klona for postcss options (#658) (e754c3f)
• bug with loading configurations after updating cosmiconfig to version 8.2 (684d265)

v7.3.2

7.3.2 (2023-05-28)

Bug Fixes

• use cause to keep original errors and warnings (#655) (e8873f4)

v7.3.1

... (truncated)

Changelog

Sourced from postcss-loader's changelog.

8.1.1 (2024-02-28)

Bug Fixes

• respect default when loading postcss esm configs (52d8050)

8.1.0 (2024-01-30)

Features

• add @rspack/core as an optional peer dependency (#679) (512e4c3)

8.0.0 (2024-01-16)

⚠ BREAKING CHANGES

• minimum supported Node.js version is 18.12.0 (#677) (8dd0315)

7.3.4 (2023-12-27)

Bug Fixes

• do not crash if pkg.(d|devD)ependencies unset (#667) (8ef0c7e)

7.3.3 (2023-06-10)

Bug Fixes

• perf: avoid using klona for postcss options (#658) (e754c3f)
• bug with loading configurations after updating cosmiconfig to version 8.2 (684d265)

7.3.2 (2023-05-28)

Bug Fixes

• use cause to keep original errors and warnings (#655) (e8873f4)

7.3.1 (2023-05-26)

Bug Fixes

• warning and error serialization (65748ec)

... (truncated)

Commits

• d2651fc chore(release): 8.1.1
• 52d8050 fix: respect default when loading postcss esm configs
• fdd5448 ci: fix commitlint check (#683)
• 107b519 chore: update dependencies to latest version (#682)
• 947f29b chore: update dependency-review-action to the latest version (#681)
• df307b5 chore(release): 8.1.0
• 512e4c3 feat: add @rspack/core as an optional peer dependency (#679)
• d53fe9d chore(release): 8.0.0
• 8dd0315 chore!: minimum supported Node.js version is 18.12.0 (#677)
• 754c4a5 chore(release): 7.3.4
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by evilebottnawi, a new releaser for postcss-loader since your current version.

Updates postcss-url from 7.3.2 to 10.1.3

Release notes

Sourced from postcss-url's releases.

10.1.3

Fixed: update mime version

10.1.2

Fixed: tilde operator for dependencies to allow for newer patch version

10.1.1

Fixed: updated mime and xxhashjs versions Fixed: postcss peerDependency version 8.1.2 -> 8.0.0

10.1.0

Fixed: Replaced mkdirp with make-dir (PR#152) Fixed: updated dev dependencies, resolved npm audit issues Fixed: unlock postcss in peerDependecies

10.0.0

Added: support for PostCSS 8 (PR#148) Fixed: path resolution when to/from paths match (PR#136)

9.0.0 - beta - 2019-04-17

Added: async api (PR#134)

8.0.0

Changed: updated postcss 6.0.1 > 7.0.2, postcss-import 10.0.0 > 12.0.0, and required nodejs version (PR#126) Changed: updated mime package

Changelog

Sourced from postcss-url's changelog.

10.1.3 - 2021-03-19

Fixed: update mime version

10.1.2 - 2021-03-19

Fixed: tilde operator for dependencies to allow for newer patch version

10.1.1 - 2020-11-26

Fixed: updated mime and xxhashjs versions Fixed: postcss peerDependency version 8.1.2 -> 8.0.0

10.1.0 - 2020-11-04

Fixed: Replaced mkdirp with make-dir (PR#152) Fixed: updated dev dependencies, resolved npm audit issues

10.0.0 - 2020-10-23

Added: support for PostCSS 8 (PR#148) Fixed: path resolution when to/from paths match (PR#136)

9.0.0 - 2019-04-17

Fixed: Async API Added: support for PostCSS 8

8.0.0 - 2018-08-09

Changed: updated postcss 6.0.1 > 7.0.2, postcss-import 10.0.0 > 12.0.0, and required nodejs version (PR#126) Changed: updated mime package

Commits

• c2523fb chore: update changelog
• fc52c88 10.1.3
• 6c061a2 fix: sync package-lock
• 87db4b7 Merge pull request #158 from realityking/mime
• fdff9b1 Upgrade mime to 2.5 again
• a843ca0 Correctly configure save-prefix
• 301e572 chore: update changelog
• 806bb25 10.1.2
• fd22c87 chore: update package-lock
• f74e3bd Merge pull request #156 from realityking/deps
• Additional commits viewable in compare view

Updates vue-loader from 13.7.2 to 17.4.2

Release notes

Sourced from vue-loader's releases.

v17.3.1

Bug Fixes

• do not skip style post loader for v-bind() in non-scoped CSS (d7071bb), closes #2061

v17.3.0

Bug Fixes

• re-use ident of vue rule for template compiler, fixes #2029 (#2030) (b50fa56)

Features

• skip normal css files without scoped flag in stylePostLoader (#2053) (98782e7)

v17.2.2

Bug Fixes

• fix: windows path for experiments.css by @​h-a-n-a in vuejs/vue-loader#2049

v17.2.1

Features

• A new experimentalInlineMatchResource option (webpack 5 only), which leverages webpack 5's inline matchResource feature in the underlying implementation, and works well with the experiments.css feature This also makes vue-loader compatible with Rspack (#2046) (3149f6d).

Note: v17.2.0 was released by accident; it has the same content as v17.1.2, therefore not included in the Releases page.

v17.1.2

Bug Fixes

• keep build stable when run in a different path (#2040) (a81dc0f)
• properly close the watcher after webpack 4 tests (40b93b9)

v17.1.1

Bug Fixes

• support experimental propsDestructure and defineModel options (6269698)

v17.1.0

Bug Fixes

• fix: reference project compiler, fixes #2031 by @​heywhy in vuejs/vue-loader#2038
• fix: do not throw when Rule.layer is used by @​nolimitdev in vuejs/vue-loader#2000

Features

• support 3.3 imported types hmr (bbd98fc)

Full Changelog: vuejs/vue-loader@v17.0.1...v17.1.0

... (truncated)

Changelog

Sourced from vue-loader's changelog.

17.4.2 (2023-12-30)

Bug Fixes

• pass compilerOptions to sfc parse & re-enable AST reuse (d2a2e05)

17.4.1 (2023-12-30)

Bug Fixes

• (temporarily) disable template ast reuse (31b03af)

17.4.0 (2023-12-25)

Features

• leverage ast reuse in 3.4 (479835f)

17.3.1 (2023-10-31)

Bug Fixes

• do not skip style post loader for v-bind() in CSS (d7071bb), closes #2061

17.3.0 (2023-10-07)

Bug Fixes

• re-use ident of vue rule for template compiler, fixes #2029 (#2030) (b50fa56)

Features

• skip normal css files without scoped flag in stylePostLoader (#2053) (98782e7)

17.2.2 (2023-06-02)

... (truncated)

Commits

• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.