Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump the npm_and_yarn group across 5 directories with 4 updates #3728

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Bump the npm_and_yarn group across 5 directories with 4 updates #3728

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Sep 5, 2024

Bumps the npm_and_yarn group with 1 update in the /v2/internal/frontend/runtime directory: svelte.
Bumps the npm_and_yarn group with 2 updates in the /v2/internal/frontend/runtime/dev directory: svelte and esbuild-svelte.
Bumps the npm_and_yarn group with 1 update in the /v2/pkg/templates/templates/svelte-ts/frontend directory: svelte.
Bumps the npm_and_yarn group with 1 update in the /v2/pkg/templates/templates/svelte/frontend directory: svelte.
Bumps the npm_and_yarn group with 2 updates in the /website directory: micromatch and webpack.

Updates svelte from 3.49.0 to 4.2.19

Release notes

Sourced from svelte's releases.

[email protected]

Patch Changes

  • fix: ensure typings for <svelte:options> are picked up (#12902)

  • fix: escape < in attribute strings (#12989)

[email protected]

Patch Changes

  • chore: speed up regex (#11922)
Changelog

Sourced from svelte's changelog.

4.2.19

Patch Changes

  • fix: ensure typings for <svelte:options> are picked up (#12902)

  • fix: escape < in attribute strings (#12989)

4.2.18

Patch Changes

  • chore: speed up regex (#11922)

4.2.17

Patch Changes

  • fix: correctly handle falsy values of style directives in SSR mode (#11584)

4.2.16

Patch Changes

  • fix: check if svelte component exists on custom element destroy (#11489)

4.2.15

Patch Changes

  • support attribute selector inside :global() (#11135)

4.2.14

Patch Changes

  • fix parsing camelcase container query name (#11131)

4.2.13

Patch Changes

  • fix: applying :global for +,~ sibling combinator when slots are present (#9282)

4.2.12

Patch Changes

  • fix: properly update svelte:component props when there are spread props (#10604)

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by svelte-admin, a new releaser for svelte since your current version.


Updates svelte from 3.52.0 to 4.2.19

Release notes

Sourced from svelte's releases.

[email protected]

Patch Changes

  • fix: ensure typings for <svelte:options> are picked up (#12902)

  • fix: escape < in attribute strings (#12989)

[email protected]

Patch Changes

  • chore: speed up regex (#11922)
Changelog

Sourced from svelte's changelog.

4.2.19

Patch Changes

  • fix: ensure typings for <svelte:options> are picked up (#12902)

  • fix: escape < in attribute strings (#12989)

4.2.18

Patch Changes

  • chore: speed up regex (#11922)

4.2.17

Patch Changes

  • fix: correctly handle falsy values of style directives in SSR mode (#11584)

4.2.16

Patch Changes

  • fix: check if svelte component exists on custom element destroy (#11489)

4.2.15

Patch Changes

  • support attribute selector inside :global() (#11135)

4.2.14

Patch Changes

  • fix parsing camelcase container query name (#11131)

4.2.13

Patch Changes

  • fix: applying :global for +,~ sibling combinator when slots are present (#9282)

4.2.12

Patch Changes

  • fix: properly update svelte:component props when there are spread props (#10604)

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by svelte-admin, a new releaser for svelte since your current version.


Updates esbuild-svelte from 0.5.6 to 0.8.1

Release notes

Sourced from esbuild-svelte's releases.

v0.8.1

  • Update Svelte peer dependency version lock to include Svelte 5

    This should have no impact on Svelte 3 or 4 users, but will allow folks to start trying out Svelte 5 if they so please. Any errors or issues should be reported as bugs in order to resolve them before Svelte 5 is offically released.

    Plugin versions v0.8.x will be the last to support Svelte 3 and Svelte 4 below v4.2.1

v0.8.0

  • Minorly Breaking Caching is automatically enabled after two sucessful builds when using the context esbuild API

    Previously caching was automatically enabled when using the watch or incremental esbuild options, but those were removed in esbuild v0.17.0. This change brings back the automatic cache enabling when using the context API which supports the same features as the previous watch and incremental options. esbuild does not provide a way for plugins to determine if the context API is being used, so this feature is enabled after two successful builds. This should be a reasonable compromise between not enabling the cache at all and enabling it for every build (which wastes time and space if caching isn't needed).

    If you are using the context API and want to disable the cache, you can set the cache option to false in the plugin options but this isn't recommended (if you do need to disable the cache for some reason, please open an issue to see if your usecase can be fixed).

  • Minorly Breaking Add dependency to @jridgewell/trace-mapping so error messages are more accurate when using preprocessors (#83)

    If you are using Svelte 4, this doesn't add additional dependencies because that package is already required by Svelte 4.

  • Update development esbuild version to 0.19.0

    This means that this plugin now supports additional inhancements when using the context esbuild v0.17.0 API as detailed below.

v0.7.4

  • Lock Svelte peerDependency to >=3.43.0 <5 to protect against breaking changes in future Svelte releases
  • Set compilerOptions.css to external by default if using Svelte v4 or higher (#185)
  • Add compatibility tests for different versions of Svelte and esbuild to prevent regressions
  • Switch development version of Svelte to v4

v0.7.3

  • Switch from .npmignore to files property of package.json to prevent accidental file inclusion

v0.7.2

  • Support string values for Svelte compiler option css added in Svelte v3.53.0 (#109, #150)
  • Update misc dependencies

v0.7.1

  • Fix watch mode if preprocessing failed (#132)

  • Remove support for Node 12

    This should probably be another breaking change however Node 12 has reached end of life and is no longer supported. If you are using Node 12, please upgrade to Node 14 in order to continue use of this plugin (or open an issue if you disagree).

v0.7.0

  • Breaking Svelte has been switched to a peer dependency which allows Svelte to be updated independently of this plugin

    Migration is as simple as npm i --save-dev svelte if you don't have svelte as a dependency already.

  • Breaking Remove compileOptions since it was deprecated in v0.6.0

v0.6.3

  • Add filterWarnings option to filter the Svelte warnings that esbuild-svelte passes to esbuild (Thanks @​Prinzhorn)

... (truncated)

Changelog

Sourced from esbuild-svelte's changelog.

0.8.1

  • Update Svelte peer dependency version lock to include Svelte 5

    This should have no impact on Svelte 3 or 4 users, but will allow folks to start trying out Svelte 5 if they so please. Any errors or issues should be reported as bugs in order to resolve them before Svelte 5 is offically released.

    Plugin versions v0.8.x will be the last to support Svelte 3 and Svelte 4 below v4.2.1

0.8.0 (Breaking)

  • Minorly Breaking Caching is automatically enabled after two sucessful builds when using the context esbuild API

    Previously caching was automatically enabled when using the watch or incremental esbuild options, but those were removed in esbuild v0.17.0. This change brings back the automatic cache enabling when using the context API which supports the same features as the previous watch and incremental options. esbuild does not provide a way for plugins to determine if the context API is being used, so this feature is enabled after two successful builds. This should be a reasonable compromise between not enabling the cache at all and enabling it for every build (which wastes time and space if caching isn't needed).

    If you are using the context API and want to disable the cache, you can set the cache option to false in the plugin options but this isn't recommended (if you do need to disable the cache for some reason, please open an issue to see if your usecase can be fixed).

  • Minorly Breaking Add dependency to @jridgewell/trace-mapping so error messages are more accurate when using preprocessors (#83)

    If you are using Svelte 4, this doesn't add additional dependencies because that package is already required by Svelte 4.

  • Update development esbuild version to 0.19.0

    This means that this plugin now supports additional inhancements when using the context esbuild v0.17.0 API as detailed below.

0.7.4

  • Lock Svelte peerDependency to >=3.43.0 <5 to protect against breaking changes in future Svelte releases
  • Set compilerOptions.css to external by default if using Svelte v4 or higher (#185)
  • Add compatibility tests for different versions of Svelte and esbuild to prevent regressions
  • Switch development version of Svelte to v4

0.7.3

  • Switch from .npmignore to files property of package.json to prevent accidental file inclusion

0.7.2

  • Support string values for Svelte compiler option css added in Svelte v3.53.0 (#109, #150)
  • Update misc dependencies

0.7.1

  • Fix watch mode if preprocessing failed (#132)

  • Remove support for Node 12

    This should probably be another breaking change however Node 12 has reached end of life and is no longer supported. If you are using Node 12, please upgrade to Node 14 in order to continue use of this plugin (or open an issue if you disagree).

0.7.0 (Breaking)

  • Breaking Svelte has been switched to a peer dependency which allows Svelte to be updated independently of this plugin

... (truncated)

Commits

Updates svelte from 3.59.2 to 4.2.19

Release notes

Sourced from svelte's releases.

[email protected]

Patch Changes

  • fix: ensure typings for <svelte:options> are picked up (#12902)

  • fix: escape < in attribute strings (#12989)

[email protected]

Patch Changes

  • chore: speed up regex (#11922)
Changelog

Sourced from svelte's changelog.

4.2.19

Patch Changes

  • fix: ensure typings for <svelte:options> are picked up (#12902)

  • fix: escape < in attribute strings (#12989)

4.2.18

Patch Changes

  • chore: speed up regex (#11922)

4.2.17

Patch Changes

  • fix: correctly handle falsy values of style directives in SSR mode (#11584)

4.2.16

Patch Changes

  • fix: check if svelte component exists on custom element destroy (#11489)

4.2.15

Patch Changes

  • support attribute selector inside :global() (#11135)

4.2.14

Patch Changes

  • fix parsing camelcase container query name (#11131)

4.2.13

Patch Changes

  • fix: applying :global for +,~ sibling combinator when slots are present (#9282)

4.2.12

Patch Changes

  • fix: properly update svelte:component props when there are spread props (#10604)

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by svelte-admin, a new releaser for svelte since your current version.


Updates svelte from 3.59.2 to 4.2.19

Release notes

Sourced from svelte's releases.

[email protected]

Patch Changes

  • fix: ensure typings for <svelte:options> are picked up (#12902)

  • fix: escape < in attribute strings (#12989)

[email protected]

Patch Changes

  • chore: speed up regex (#11922)
Changelog

Sourced from svelte's changelog.

4.2.19

Patch Changes

  • fix: ensure typings for <svelte:options> are picked up (#12902)

  • fix: escape < in attribute strings (#12989)

4.2.18

Patch Changes

  • chore: speed up regex (#11922)

4.2.17

Patch Changes

  • fix: correctly handle falsy values of style directives in SSR mode (#11584)

4.2.16

Patch Changes

  • fix: check if svelte component exists on custom element destroy (#11489)

4.2.15

Patch Changes

  • support attribute selector inside :global() (#11135)

4.2.14

Patch Changes

  • fix parsing camelcase container query name (#11131)

4.2.13

Patch Changes

  • fix: applying :global for +,~ sibling combinator when slots are present (#9282)

4.2.12

Patch Changes

  • fix: properly update svelte:component props when there are spread props (#10604)

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by svelte-admin, a new releaser for svelte since your current version.


Updates micromatch from 4.0.7 to 4.0.8

Release notes

Sourced from micromatch's releases.

4.0.8

Ultimate release that fixes both CVE-2024-4067 and CVE-2024-4068. We consider the issues low-priority, so even if you see automated scanners saying otherwise, don't be scared.

Changelog

Sourced from micromatch's changelog.

[4.0.8] - 2024-08-22

Commits

Updates webpack from 5.92.0 to 5.94.0

Release notes

Sourced from webpack's releases.

v5.94.0

Bug Fixes

  • Added runtime condition for harmony reexport checked
  • Handle properly data/http/https protocols in source maps
  • Make bigint optimistic when browserslist not found
  • Move @​types/eslint-scope to dev deps
  • Related in asset stats is now always an array when no related found
  • Handle ASI for export declarations
  • Mangle destruction incorrect with export named default properly
  • Fixed unexpected asi generation with sequence expression
  • Fixed a lot of types

New Features

  • Added new external type "module-import"
  • Support webpackIgnore for new URL() construction
  • [CSS] @import pathinfo support

Security

  • Fixed DOM clobbering in auto public path

v5.93.0

Bug Fixes

  • Generate correct relative path to runtime chunks
  • Makes DefinePlugin quieter under default log level
  • Fixed mangle destructuring default in namespace import
  • Fixed consumption of eager shared modules for module federation
  • Strip slash for pretty regexp
  • Calculate correct contenthash for CSS generator options

New Features

  • Added the binary generator option for asset modules to explicitly keep source maps produced by loaders
  • Added the modern-module library value for tree shakable output
  • Added the overrideStrict option to override strict or non-strict mode for javascript modules

v5.92.1

Bug Fixes

  • Doesn't crash with an error when the css experiment is enabled and contenthash is used
Commits
  • eabf85d chore(release): 5.94.0
  • 955e057 security: fix DOM clobbering in auto public path
  • 9822387 test: fix
  • cbb86ed test: fix
  • 5ac3d7f fix: unexpected asi generation with sequence expression
  • 2411661 security: fix DOM clobbering in auto public path
  • b8c03d4 fix: unexpected asi generation with sequence expression
  • f46a03c revert: do not use heuristic fallback for "module-import"
  • 60f1898 fix: do not use heuristic fallback for "module-import"
  • 66306aa Revert "fix: module-import get fallback from externalsPresets"
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
Bump the npm_and_yarn group across 5 directories with 4 updates
e6bba0f 
Bumps the npm_and_yarn group with 1 update in the /v2/internal/frontend/runtime directory: [svelte](https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte).
Bumps the npm_and_yarn group with 2 updates in the /v2/internal/frontend/runtime/dev directory: [svelte](https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte) and [esbuild-svelte](https://github.com/EMH333/esbuild-svelte).
Bumps the npm_and_yarn group with 1 update in the /v2/pkg/templates/templates/svelte-ts/frontend directory: [svelte](https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte).
Bumps the npm_and_yarn group with 1 update in the /v2/pkg/templates/templates/svelte/frontend directory: [svelte](https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte).
Bumps the npm_and_yarn group with 2 updates in the /website directory: [micromatch](https://github.com/micromatch/micromatch) and [webpack](https://github.com/webpack/webpack).


Updates `svelte` from 3.49.0 to 4.2.19
- [Release notes](https://github.com/sveltejs/svelte/releases)
- [Changelog](https://github.com/sveltejs/svelte/blob/[email protected]/packages/svelte/CHANGELOG.md)
- [Commits](https://github.com/sveltejs/svelte/commits/[email protected]/packages/svelte)

Updates `svelte` from 3.52.0 to 4.2.19
- [Release notes](https://github.com/sveltejs/svelte/releases)
- [Changelog](https://github.com/sveltejs/svelte/blob/[email protected]/packages/svelte/CHANGELOG.md)
- [Commits](https://github.com/sveltejs/svelte/commits/[email protected]/packages/svelte)

Updates `esbuild-svelte` from 0.5.6 to 0.8.1
- [Release notes](https://github.com/EMH333/esbuild-svelte/releases)
- [Changelog](https://github.com/EMH333/esbuild-svelte/blob/main/CHANGELOG.md)
- [Commits](EMH333/esbuild-svelte@v0.5.6...v0.8.1)

Updates `svelte` from 3.59.2 to 4.2.19
- [Release notes](https://github.com/sveltejs/svelte/releases)
- [Changelog](https://github.com/sveltejs/svelte/blob/[email protected]/packages/svelte/CHANGELOG.md)
- [Commits](https://github.com/sveltejs/svelte/commits/[email protected]/packages/svelte)

Updates `svelte` from 3.59.2 to 4.2.19
- [Release notes](https://github.com/sveltejs/svelte/releases)
- [Changelog](https://github.com/sveltejs/svelte/blob/[email protected]/packages/svelte/CHANGELOG.md)
- [Commits](https://github.com/sveltejs/svelte/commits/[email protected]/packages/svelte)

Updates `micromatch` from 4.0.7 to 4.0.8
- [Release notes](https://github.com/micromatch/micromatch/releases)
- [Changelog](https://github.com/micromatch/micromatch/blob/master/CHANGELOG.md)
- [Commits](micromatch/micromatch@4.0.7...4.0.8)

Updates `webpack` from 5.92.0 to 5.94.0
- [Release notes](https://github.com/webpack/webpack/releases)
- [Commits](webpack/webpack@v5.92.0...v5.94.0)

---
updated-dependencies:
- dependency-name: svelte
  dependency-type: direct:development
  dependency-group: npm_and_yarn
- dependency-name: svelte
  dependency-type: direct:development
  dependency-group: npm_and_yarn
- dependency-name: esbuild-svelte
  dependency-type: direct:development
  dependency-group: npm_and_yarn
- dependency-name: svelte
  dependency-type: direct:development
  dependency-group: npm_and_yarn
- dependency-name: svelte
  dependency-type: direct:development
  dependency-group: npm_and_yarn
- dependency-name: micromatch
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: webpack
  dependency-type: indirect
  dependency-group: npm_and_yarn
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file Javascript Pull requests that update Javascript code labels Sep 5, 2024
@cloudflare-workers-and-pages Cloudflare Workers and Pages
Copy link

cloudflare-workers-and-pages bot commented Sep 5, 2024
edited
Loading

Deploying wails with  Cloudflare Pages  Cloudflare Pages

Latest commit: e6bba0f
Status: ✅  Deploy successful!
Preview URL: https://324d3029.wails.pages.dev
Branch Preview URL: https://dependabot-npm-and-yarn-v2-i-u536.wails.pages.dev

View logs

@coderabbitai coderabbitai
Copy link
Contributor

coderabbitai bot commented Sep 5, 2024

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media?

Share
Tips

Chat

There are 3 ways to chat with CodeRabbit:

  • Review comments: Directly reply to a review comment made by CodeRabbit. Example:
    • I pushed a fix in commit <commit_id>.
    • Generate unit testing code for this file.
    • Open a follow-up GitHub issue for this discussion.
  • Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
    • @coderabbitai generate unit testing code for this file.
    • @coderabbitai modularize this function.
  • PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
    • @coderabbitai generate interesting stats about this repository and render them as a table.
    • @coderabbitai show all the console.log statements in this repository.
    • @coderabbitai read src/utils.ts and generate unit testing code.
    • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
    • @coderabbitai help me debug CodeRabbit configuration file.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

  • @coderabbitai pause to pause the reviews on a PR.
  • @coderabbitai resume to resume the paused reviews.
  • @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
  • @coderabbitai full review to do a full review from scratch and review all the files again.
  • @coderabbitai summary to regenerate the summary of the PR.
  • @coderabbitai resolve resolve all the CodeRabbit review comments.
  • @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
  • @coderabbitai help to get help.

Other keywords and placeholders

  • Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
  • Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
  • Add @coderabbitai anywhere in the PR title to generate the title automatically.

CodeRabbit Configuration File (.coderabbit.yaml)

  • You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
  • Please see the configuration documentation for more information.
  • If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

  • Visit our Documentation for detailed information on how to use CodeRabbit.
  • Join our Discord Community to get help, request features, and share feedback.
  • Follow us on X/Twitter for updates and announcements.

@sonarcloud SonarCloud
Copy link

sonarcloud bot commented Sep 5, 2024

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file Javascript Pull requests that update Javascript code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants