Bump json5, babel-loader, css-loader, exports-loader, mini-css-extract-plugin, postcss-loader, raw-loader, sass-loader, webpack and webpack-cli

[dependabot]

Bumps json5 to 2.2.2 and updates ancestor dependencies json5, babel-loader, css-loader, exports-loader, mini-css-extract-plugin, postcss-loader, raw-loader, sass-loader, webpack and webpack-cli. These dependencies need to be updated together.

Updates json5 from 2.1.1 to 2.2.2

Release notes

Sourced from json5's releases.

v2.2.2

• Fix: Properties with the name __proto__ are added to objects and arrays. (#199) This also fixes a prototype pollution vulnerability reported by Jonathan Gregson! (#295).

v2.2.1

• Fix: Removed dependence on minimist to patch CVE-2021-44906. (#266)

v2.2.0

• New: Accurate and documented TypeScript declarations are now included. There is no need to install @types/json5. (#236, #244)

v2.1.3 [code, diff]

• Fix: An out of memory bug when parsing numbers has been fixed. (#228, #229)

v2.1.2

• Fix: Bump minimist to v1.2.5. (#222)

Changelog

Sourced from json5's changelog.

v2.2.2 [code, diff]

• Fix: Properties with the name __proto__ are added to objects and arrays. (#199) This also fixes a prototype pollution vulnerability reported by Jonathan Gregson! (#295).

v2.2.1 [code, diff]

• Fix: Removed dependence on minimist to patch CVE-2021-44906. (#266)

v2.2.0 [code, diff]

• New: Accurate and documented TypeScript declarations are now included. There is no need to install @types/json5. (#236, #244)

v2.1.3 [code, diff]

• Fix: An out of memory bug when parsing numbers has been fixed. (#228, #229)

v2.1.2 [code, diff]

• Fix: Bump minimist to v1.2.5. (#222)

Commits

• 14f8cb1 2.2.2
• 10cc7ca docs: update CHANGELOG for v2.2.2
• 7774c10 fix: add proto to objects and arrays
• edde30a Readme: slight tweak to intro
• 97286f8 Improve example in readme
• d720b4f Improve readme (e.g. explain JSON5 better!) (#291)
• 910ce25 docs: fix spelling of Aseem
• 2aab4dd test: require tap as t in cli tests
• 6d42686 test: remove mocha syntax from tests
• 4798b9d docs: update installation and usage for modules
• Additional commits viewable in compare view

Updates babel-loader from 8.0.6 to 8.3.0

Release notes

Sourced from babel-loader's releases.

v8.3.0

New features

• Pass external dependencies from Babel to Webpack by @​nicolo-ribaudo in babel/babel-loader#971

Full Changelog: babel/babel-loader@v8.2.5...v8.3.0

v8.2.5

What's Changed

• fix: respect inputSourceMap loader option by @​alan-agius4 in babel/babel-loader#896

New Contributors

• @​alan-agius4 made their first contribution in babel/babel-loader#896

Full Changelog: babel/babel-loader@v8.2.4...v8.2.5

v8.2.4

What's Changed

• doc(README.md): fix a broken markdown link by @​loveDstyle in babel/babel-loader#919
• Bump loader-utils to 2.x by @​stianjensen in babel/babel-loader#931
• Use md5 hashing for OpenSSL 3 by @​pathmapper in babel/babel-loader#924

Thanks @​loveDstyle, @​stianjensen and @​pathmapper for your first PRs!

8.2.3

This release fixes compatibility with Node.js 17

• Use md5 hash for caching on node v17 (babel/babel-loader#918)

Thanks @​Reptarsrage!

8.2.1

• Move @ava/babel to devDependencies #881 (@​jvasseur)

8.2.0

• Replace mkdirp with make-dir 47958ca3857e489e450b27c6f3266375015cba82 (@​JLHwung)
• Use async config loading when available d8cff97ff387ded0fc9b5cbc489228c96c5ab14a (@​the-spyke)

8.1.0

• docs(readme): fix typo #818 (@​frederickfogerty)
• docs(contributing): fix typo #821 (@​PatNeedham)
• Add schema validation #822 (@​ogonkov)
• Add supportsTopLevelAwait to caller #814 (@​nicolo-ribaudo)
• feat: expose webpack target via babel caller #826 (@​DylanPiercey)
• Bump deps for audit #834 (@​existentialism)

Commits

• 9bf5652 8.3.0
• 80ab7d0 Update @babel/ dependencies
• 493ac6c Pass external dependencies from Babel to Webpack (#971)
• df28fe3 Fix broken main test (#950)
• 0b338e4 update hash method so it doesn't fail on a fips enabled machine (#939)
• 1f98d3c 8.2.5
• c622868 fix: respect inputSourceMap loader option (#896)
• f7982c1 8.2.4
• 4bb9e21 Use md5 hashing for OpenSSL 3 (#924)
• 247c94b Bump loader-utils to 2.x (#931)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by nicolo-ribaudo, a new releaser for babel-loader since your current version.

Updates css-loader from 3.4.1 to 6.7.3

Release notes

Sourced from css-loader's releases.

v6.7.3

6.7.3 (2022-12-14)

Bug Fixes

• remove sourceURL from emitted CSS (#1487) (962924c)

v6.7.2

6.7.2 (2022-11-13)

Bug Fixes

• css modules generation with inline syntax (#1480) (2f4c273)

v6.7.1

6.7.1 (2022-03-08)

Bug Fixes

• defaultGetLocalIdent export (#1427) (74dac1e)

v6.7.0

6.7.0 (2022-03-04)

Features

• re-export defaultGetLocalIdent (#1423) (207cf36)

v6.6.0

6.6.0 (2022-02-02)

Features

• added the hashStrategy option (ca4abce)

v6.5.1

6.5.1 (2021-11-03)

Bug Fixes

• regression with unicode characters in locals (b7a8441)
• runtime path generation (#1393) (feafea8)

v6.5.0

... (truncated)

Changelog

Sourced from css-loader's changelog.

6.7.3 (2022-12-14)

Bug Fixes

• remove sourceURL from emitted CSS (#1487) (962924c)

6.7.2 (2022-11-13)

Bug Fixes

• css modules generation with inline syntax (#1480) (2f4c273)

6.7.1 (2022-03-08)

Bug Fixes

• defaultGetLocalIdent export (#1427) (74dac1e)

6.7.0 (2022-03-04)

Features

• re-export defaultGetLocalIdent (#1423) (207cf36)

6.6.0 (2022-02-02)

Features

• added the hashStrategy option (ca4abce)

6.5.1 (2021-11-03)

Bug Fixes

• regression with unicode characters in locals (b7a8441)
• runtime path generation (#1393) (feafea8)

6.5.0 (2021-10-26)

Features

• support absolute URL in url() when experiments.buildHttp enabled (#1389) (8946be4)

... (truncated)

Commits

• ef749f2 chore(release): 6.7.3
• 36fb945 chore: fix cspell
• 962924c fix: remove sourceURL from emitted CSS (#1487)
• 3f3f302 chore(deps): bump decode-uri-component from 0.2.0 to 0.2.2 (#1486)
• 04ca713 chore: update dependencies to the latest version (#1485)
• 9449827 chore: update styfle/cancel-workflow-action (#1484)
• 6c67af8 chore: add cSpell to check spelling issues (#1482)
• 239b9ac chore(deps): bump loader-utils from 2.0.3 to 2.0.4 (#1481)
• 394d200 chore(release): 6.7.2
• 2f4c273 fix: css modules generation with inline syntax (#1480)
• Additional commits viewable in compare view

Updates exports-loader from 0.7.0 to 4.0.0

Release notes

Sourced from exports-loader's releases.

v4.0.0

4.0.0 (2022-05-17)

⚠ BREAKING CHANGES

• minimum supported Node.js version is 14.15.0

v3.1.0

3.1.0 (2021-10-21)

Features

• output helpful descriptions and links on errors (#66) (ba96dda)

v3.0.0

3.0.0 (2021-05-17)

⚠ BREAKING CHANGES

• minimum supported Node.js version is 12.13.0

v2.0.0

2.0.0 (2021-01-11)

⚠ BREAKING CHANGES

• minimum supported webpack version is 5 (#58) (9176392)
• inline syntax was changed: [] is no longer supported (i.e. exports-loader?exports[]=myVariable&exports[]=myFunction!./file.js), please use , (i.e. exports-loader?exports=myVariable,myFunction!./file.js)
• removed filename template support for export names and aliases (i.e. [name]) due unstable behaviour in some cases and very rarely used

v1.1.1

1.1.1 (2020-10-09)

Chore

• update schema-utils

v1.1.0

1.1.0 (2020-06-24)

Features

• "|" character can be used as delimiter for inline string syntax (#46) (e0bc930)

v1.0.1

... (truncated)

Changelog

Sourced from exports-loader's changelog.

4.0.0 (2022-05-17)

⚠ BREAKING CHANGES

• minimum supported Node.js version is 14.15.0

3.1.0 (2021-10-21)

Features

• output helpful descriptions and links on errors (#66) (ba96dda)

3.0.0 (2021-05-17)

⚠ BREAKING CHANGES

• minimum supported Node.js version is 12.13.0

2.0.0 (2021-01-11)

⚠ BREAKING CHANGES

• minimum supported webpack version is 5 (#58) (9176392)
• inline syntax was changed: [] is no longer supported (i.e. exports-loader?exports[]=myVariable&exports[]=myFunction!./file.js), please use , (i.e. exports-loader?exports=myVariable,myFunction!./file.js)
• removed filename template support for export names and aliases (i.e. [name]) due unstable behaviour in some cases and very rarely used

1.1.1 (2020-10-09)

Chore

• update schema-utils

1.1.0 (2020-06-24)

Features

• "|" character can be used as delimiter for inline string syntax (#46) (e0bc930)

1.0.1 (2020-06-17)

Bug Fixes

• better error reporting (#44) (0397393)

... (truncated)

Commits

• 3c874f8 chore(release): 4.0.0
• b29c4e7 chore(deps): update (#92)
• cbe0f2f refactor!: minimum supported Node.js version is 14.15.0 (#90)
• 11d071f chore: update gitub actions (#91)
• 04593af chore: upgrade dependencies to the latest version (#87)
• 48d6b59 ci: add node v18 to test workflow (#86)
• 862f3d4 ci: don't install webpack again (#85)
• 96056bd chore(deps): bump minimist from 1.2.5 to 1.2.6 (#84)
• f20eb4d chore: upgrade dependencies to the latest version (#83)
• 8cfd7e7 chore: replace deprecated String.prototype.substr() (#82)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by evilebottnawi, a new releaser for exports-loader since your current version.

Updates mini-css-extract-plugin from 0.9.0 to 2.7.2

Release notes

Sourced from mini-css-extract-plugin's releases.

v2.7.2

2.7.2 (2022-12-06)

Bug Fixes

• don't crash in web workers (#1004) (4d98d4b)

v2.7.1

2.7.1 (2022-11-29)

Bug Fixes

• preserve order of link tags on HMR (#982) (6ea0922)

v2.7.0

2.7.0 (2022-11-16)

Features

• add function support for locals (loader) (#985) (65519d0)

v2.6.1

2.6.1 (2022-06-15)

Bug Fixes

• do not attempt hot reloading when emit is false (#953) (b426f04)

v2.6.0

2.6.0 (2022-03-03)

Features

• added baseUri option support (from entry options) (#915) (6004d95)

v2.5.3

2.5.3 (2022-01-25)

Bug Fixes

• types (#903) (6650691)

v2.5.2

2.5.2 (2022-01-17)

... (truncated)

Changelog

Sourced from mini-css-extract-plugin's changelog.

2.7.2 (2022-12-06)

Bug Fixes

• don't crash in web workers (#1004) (4d98d4b)

2.7.1 (2022-11-29)

Bug Fixes

• preserve order of link tags on HMR (#982) (6ea0922)

2.7.0 (2022-11-16)

Features

• add function support for locals (loader) (#985) (65519d0)

2.6.1 (2022-06-15)

Bug Fixes

• do not attempt hot reloading when emit is false (#953) (b426f04)

2.6.0 (2022-03-03)

Features

• added baseUri option support (from entry options) (#915) (6004d95)

2.5.3 (2022-01-25)

Bug Fixes

• types (#903) (6650691)

2.5.2 (2022-01-17)

Bug Fixes

• types (dfb9afd)

2.5.1 (2022-01-17)

... (truncated)

Commits

• b616093 chore(release): 2.7.2
• 4d98d4b fix: don't crash in web workers (#1004)
• 5ef989b chore(deps): bump minimist from 1.2.5 to 1.2.6 (#928)
• cd7d933 chore(deps): bump loader-utils from 2.0.3 to 2.0.4 (#993)
• 9178a0c chore: update dependencies to the latest version (#1003)
• 7053ce2 chore(release): 2.7.1
• 82ed663 refactor: fix compatibility with old browsers (#1000)
• 7585663 chore(deps): update (#999)
• 6ea0922 fix: preserve order of link tags on HMR (#982)
• 2633446 chore: update styfle/cancel-workflow-action (#996)
• Additional commits viewable in compare view

Updates postcss-loader from 3.0.0 to 7.0.2

Release notes

Sourced from postcss-loader's releases.

v7.0.2

7.0.2 (2022-11-29)

Bug Fixes

• support ESM version of postcss.config.js and postcss.config.mjs (#614) (955085f)

v7.0.1

7.0.1 (2022-07-11)

Bug Fixes

• unexpected failing on CSS syntax error (#593) (888d72e)

v7.0.0

7.0.0 (2022-05-18)

⚠ BREAKING CHANGES

• minimum supported Node.js version is 14.15.0

v6.2.1

6.2.1 (2021-11-26)

Bug Fixes

• watching configuration (#553) (7f165b4)

v6.2.0

6.2.0 (2021-10-13)

Features

• add link field in schema (#540) (1ae8212)

v6.1.1

6.1.1 (2021-07-01)

Bug Fixes

• do not swallow exception from postcss (2eec42b)

v6.1.0

6.1.0 (2021-06-10)

... (truncated)

Changelog

Sourced from postcss-loader's changelog.

7.0.2 (2022-11-29)

Bug Fixes

• support ESM version of postcss.config.js and postcss.config.mjs (#614) (955085f)

7.0.1 (2022-07-11)

Bug Fixes

• unexpected failing on CSS syntax error (#593) (888d72e)

7.0.0 (2022-05-18)

⚠ BREAKING CHANGES

• minimum supported Node.js version is 14.15.0

6.2.1 (2021-11-26)

Bug Fixes

• watching configuration (#553) (7f165b4)

6.2.0 (2021-10-13)

Features

• add link field in schema (#540) (1ae8212)

6.1.1 (2021-07-01)

Bug Fixes

• do not swallow exception from postcss (2eec42b)

6.1.0 (2021-06-10)

Features

• allow String value for the "implementation" option (0d342b1)

6.0.0 (2021-06-10)

... (truncated)

Commits

• 2129116 chore(release): 7.0.2
• 955085f fix: support ESM version of postcss.config.js and postcss.config.mjs (#614)
• b0f4749 chore: update styfle/cancel-workflow-action (#612)
• ab3ff44 chore: add cSpell to check spelling issues (#610)
• 3177135 chore: update dependencies to the latest version (#609)
• 08b19c7 docs: update cla link (#608)
• 49a0943 ci: add node v19 (#607)
• d274f90 ci: add dependency review action (#606)
• 64af37b chore: update dependencies to the latest version (#605)
• 548e8aa chore: update commitlint action (#604)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by evilebottnawi, a new releaser for postcss-loader since your current version.

Updates raw-loader from 4.0.0 to 4.0.2

Release notes

Sourced from raw-loader's releases.

v4.0.2

4.0.2 (2020-10-09)

Chore

• update schema-utils

v4.0.1

4.0.1 (2020-04-15)

Chore

• update deps

Changelog

Sourced from raw-loader's changelog.

4.0.2 (2020-10-09)

Chore

• update schema-utils

4.0.1 (2020-04-15)

Chore

• update deps

Commits

• dbe458d chore(release): 4.0.2
• b89d8d9 chore(deps): update (#100)
• 30daf0d chore(deps): remove unnecessary deps
• 35a10f4 chore(release): 4.0.1
• 21f0ca5 chore(deps): update (#90)
• See full diff in compare view

Updates sass-loader from 8.0.0 to 13.2.0

Release notes

Sourced from sass-loader's releases.

v13.2.0

13.2.0 (2022-11-09)

Features

• add support for node-sass v8 (#1100) (e5581b7)

v13.1.0

13.1.0 (2022-10-06)

Features

• allow to extend conditionNames (#1092) (6e02c64)

v13.0.2

13.0.2 (2022-06-27)

Bug Fixes

• hide error stacktrace on Sass errors (#1069) (5e6a61b)

v13.0.1

13.0.1 (2022-06-24)

Bug Fixes

• optimize debug message formatting, #1065 (#1066) (49a578a)

v13.0.0

13.0.0 (2022-05-18)

⚠ BREAKING CHANGES

• minimum supported Node.js version is 14.15.0 (#1048)
• emit @warn at-rules as webpack warnings by default, if you want to revert behavior please use the warnRuleAsWarning option (#1054) (58ffb68)

Bug Fixes

• do not crash on importers for modern API (#1052) (095814e)
• do not store original sass error in webpack error(#1053) (06d7533)

v12.6.0

12.6.0 (2022-02-15)

... (truncated)

Changelog

Sourced from sass-loader's changelog.

13.2.0 (2022-11-09)

Features

• add support for node-sass v8 (#1100) (e5581b7)

13.1.0 (2022-10-06)

Features

• allow to extend conditionNames (#1092) (6e02c64)

13.0.2 (2022-06-27)

Bug Fixes

• hide error stacktrace on Sass errors (#1069) (5e6a61b)

13.0.1 (2022-06-24)

Bug Fixes

• optimize debug message formatting, #1065 (#1066) (49a578a)

13.0.0 (2022-05-18)

⚠ BREAKING CHANGES

• minimum supported Node.js version is 14.15.0 (#1048)
• emit @warn at-rules as webpack warnings by default, if you want to revert behavior please use the warnRuleAsWarning option (#1054) (58ffb68)

Bug Fixes

• do not crash on importers for modern API (#1052) (095814e)
• do not store original sass error in webpack error(#1053) (06d7533)

12.6.0 (2022-02-15)

Features

• added support for automatic loading of sass-embedded (#1025) (c8dae87)

12.5.0 (2022-02-14)

... (truncated)

Commits

• e8fbc79 chore(release): 13.2.0
• e5581b7 feat: add support for node-sass v8 (#1100)
• acb3ce0 chore(deps): bump loader-utils from 2.0.2 to 2.0.3 (#1099)
• 1cdea4e chore: update dependencies to the latest version (#1098)
• 094a303 docs: update cla link (#1096)
• c32f63a ci: add dependency review action (#1094)
• b31751d chore(release): 13.1.0
• 6e02c64 feat: allow to extend conditionNames (#1092)
• edab08f chore: update dependencies to the latest version (#1093)
• 3a34fef chore: update commitlint action (#1091)
• Additional commits viewable in compare view

Updates webpack from 4.41.5 to 5.75.0

Release notes

Sourced from webpack's releases.

v5.75.0

Bugfixes

• experiments.* normalize to false when opt-out
• avoid NaN%
• show the correct error when using a conflicting chunk name in code
• HMR code tests existance of window before trying to access it
• fix eval-nosources-* actually exclude sources
• fix race condition where no module is returned from processing module
• fix position of standalong semicolon in runtime code

Features

• add support for @import to extenal CSS when using experimental CSS in node
• add i64 support to the deprecated WASM implementation

Developer Experience

• expose EnableWasmLoadingPlugin
• add more typings
• generate getters instead of readonly properties in typings to allow overriding them

v5.74.0

Features

• add resolve.extensionAlias option which allows to alias extensions
  • This is useful when you are forced to add the .js extension to imports when the file really has a .ts extension (typescript + "type": "module")
• add support for ES2022 features like static blocks
• add Tree Shaking support for ProvidePlugin

Bugfixes

• fix persistent cache when some build dependencies are on a different windows drive
• make order of evaluation of side-effect-free modules deterministic between concatenated and non-concatenated modules
• remove left-over from debugging in TLA/async modules runtime code
• remove unneeded extra 1s timestamp offset during watching when files are actually untouched
  • This sometimes caused an additional second build which are not really needed
• fix shareScope option for ModuleFederationPlugin
• set "use-credentials" also for same origin scripts

Performance

• Improve memory usage and performance of aggregating needed files/directories for watching
  • This affects rebuild performance

Extensibility

• export HarmonyImportDependency for plugins

v5.73.0

... (truncated)

Commits