Bump serialize-javascript and webpack#625
Merged
Merged
Conversation
dependabot
Bot
added
dependencies
Contributor
|
@copilot rebase |
Contributor
The branch is already rebased on top of the latest |
nico-ptrs
previously approved these changes
Apr 7, 2026
Contributor
|
@dependabot rebase |
Contributor
Author
|
Looks like this PR has been edited by someone other than Dependabot. That means Dependabot can't rebase it - sorry! If you're happy for Dependabot to recreate it from scratch, overwriting any edits, you can request |
Contributor
|
@dependabot recreate |
Removes [serialize-javascript](https://github.com/yahoo/serialize-javascript). It's no longer used after updating ancestor dependency [webpack](https://github.com/webpack/webpack). These dependencies need to be updated together. Removes `serialize-javascript` Updates `webpack` from 4.47.0 to 5.105.4 - [Release notes](https://github.com/webpack/webpack/releases) - [Changelog](https://github.com/webpack/webpack/blob/main/CHANGELOG.md) - [Commits](webpack/webpack@v4.47.0...v5.105.4) --- updated-dependencies: - dependency-name: serialize-javascript dependency-version: dependency-type: indirect - dependency-name: webpack dependency-version: 5.105.4 dependency-type: direct:development ... Signed-off-by: dependabot[bot] <support@github.com>
dependabot
Bot
force-pushed
the
dependabot/npm_and_yarn/multi-433ff03fb3
branch
from
431d9b8 to
1bad0c5
Compare
nico-ptrs
previously approved these changes
Apr 7, 2026
Contributor
|
@copilot the build ( |
- Update webpack-cli from ^3.3.12 to ^5.1.4 (webpack-cli 3.x only supports webpack 4.x) - Update brace-expansion override from ^2.0.1 to ^2.0.3 (fixes moderate CVE) - Add picomatch override ^2.3.2 (fixes high CVE in transitive deps) - Add @types/eslint override ^8.56.12 (webpack 5 pulls in @types/eslint@9.x which requires TypeScript 4+, pinning to 8.x keeps compatibility with TypeScript 3.9) - Update webpack.config.js: switch from unmaintained awesome-typescript-loader to ts-loader, replace deprecated webpack 4 `query` property with `options` Agent-Logs-Url: https://github.com/Venly/connect-sdk/sessions/5fc89baa-ceef-4e1d-a49a-3c0b14530e84 Co-authored-by: nico-ptrs <11631532+nico-ptrs@users.noreply.github.com>
Contributor
Fixed in commit
|
nico-ptrs
approved these changes
Apr 7, 2026
nico-ptrs
approved these changes
Apr 7, 2026
nico-ptrs
added a commit
that referenced
this pull request
May 20, 2026
* bump develop version v2.11.0-SNAPSHOT.0 * Update develop to release version to avoid merge conflicts * Update develop version back to pre-merge state * task() - Bump qs from 6.14.0 to 6.14.1 (#621) Bumps [qs](https://github.com/ljharb/qs) from 6.14.0 to 6.14.1. - [Changelog](https://github.com/ljharb/qs/blob/main/CHANGELOG.md) - [Commits](ljharb/qs@v6.14.0...v6.14.1) --- updated-dependencies: - dependency-name: qs dependency-version: 6.14.1 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Nico Peeters <11631532+nico-ptrs@users.noreply.github.com> * task() - Fix build * task() - Fix build * task() - Fix build * 2.11.0-develop.0 * Bump minimatch from 3.1.2 to 3.1.5 (#624) Bumps [minimatch](https://github.com/isaacs/minimatch) from 3.1.2 to 3.1.5. - [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md) - [Commits](isaacs/minimatch@v3.1.2...v3.1.5) --- updated-dependencies: - dependency-name: minimatch dependency-version: 3.1.5 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Nico Peeters <11631532+nico-ptrs@users.noreply.github.com> * Bump handlebars from 4.7.8 to 4.7.9 (#626) Bumps [handlebars](https://github.com/handlebars-lang/handlebars.js) from 4.7.8 to 4.7.9. - [Release notes](https://github.com/handlebars-lang/handlebars.js/releases) - [Changelog](https://github.com/handlebars-lang/handlebars.js/blob/v4.7.9/release-notes.md) - [Commits](handlebars-lang/handlebars.js@v4.7.8...v4.7.9) --- updated-dependencies: - dependency-name: handlebars dependency-version: 4.7.9 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Nico Peeters <11631532+nico-ptrs@users.noreply.github.com> * Bump lodash from 4.17.21 to 4.18.1 (#627) Bumps [lodash](https://github.com/lodash/lodash) from 4.17.21 to 4.18.1. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](lodash/lodash@4.17.21...4.18.1) --- updated-dependencies: - dependency-name: lodash dependency-version: 4.18.1 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Nico Peeters <11631532+nico-ptrs@users.noreply.github.com> * Bump qs from 6.14.1 to 6.14.2 (#623) Bumps [qs](https://github.com/ljharb/qs) from 6.14.1 to 6.14.2. - [Changelog](https://github.com/ljharb/qs/blob/main/CHANGELOG.md) - [Commits](ljharb/qs@v6.14.1...v6.14.2) --- updated-dependencies: - dependency-name: qs dependency-version: 6.14.2 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Nico Peeters <11631532+nico-ptrs@users.noreply.github.com> * task() - Fix build * Bump serialize-javascript and webpack (#625) * Bump serialize-javascript and webpack Removes [serialize-javascript](https://github.com/yahoo/serialize-javascript). It's no longer used after updating ancestor dependency [webpack](https://github.com/webpack/webpack). These dependencies need to be updated together. Removes `serialize-javascript` Updates `webpack` from 4.47.0 to 5.105.4 - [Release notes](https://github.com/webpack/webpack/releases) - [Changelog](https://github.com/webpack/webpack/blob/main/CHANGELOG.md) - [Commits](webpack/webpack@v4.47.0...v5.105.4) --- updated-dependencies: - dependency-name: serialize-javascript dependency-version: dependency-type: indirect - dependency-name: webpack dependency-version: 5.105.4 dependency-type: direct:development ... Signed-off-by: dependabot[bot] <support@github.com> * Fix npm install and build failures for webpack 5 upgrade - Update webpack-cli from ^3.3.12 to ^5.1.4 (webpack-cli 3.x only supports webpack 4.x) - Update brace-expansion override from ^2.0.1 to ^2.0.3 (fixes moderate CVE) - Add picomatch override ^2.3.2 (fixes high CVE in transitive deps) - Add @types/eslint override ^8.56.12 (webpack 5 pulls in @types/eslint@9.x which requires TypeScript 4+, pinning to 8.x keeps compatibility with TypeScript 3.9) - Update webpack.config.js: switch from unmaintained awesome-typescript-loader to ts-loader, replace deprecated webpack 4 `query` property with `options` Agent-Logs-Url: https://github.com/Venly/connect-sdk/sessions/5fc89baa-ceef-4e1d-a49a-3c0b14530e84 Co-authored-by: nico-ptrs <11631532+nico-ptrs@users.noreply.github.com> --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Nico Peeters <11631532+nico-ptrs@users.noreply.github.com> Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * 2.11.0-develop.1 * task() - Fix build * 2.11.0-develop.2 * task() - Fix build * 2.11.0-develop.3 * task() - Fix build * Bump fast-uri from 3.1.0 to 3.1.2 (#628) Bumps [fast-uri](https://github.com/fastify/fast-uri) from 3.1.0 to 3.1.2. - [Release notes](https://github.com/fastify/fast-uri/releases) - [Commits](fastify/fast-uri@v3.1.0...v3.1.2) --- updated-dependencies: - dependency-name: fast-uri dependency-version: 3.1.2 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * 2.11.0-develop.4 * 2.11.0 --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: BMVenly <BMVenly@venly.io> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: nico-ptrs <nico-ptrs@venly.io> Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Removes serialize-javascript. It's no longer used after updating ancestor dependency webpack. These dependencies need to be updated together.
Removes
serialize-javascriptUpdates
webpackfrom 4.47.0 to 5.105.4Release notes
Sourced from webpack's releases.
... (truncated)
Changelog
Sourced from webpack's changelog.
... (truncated)
Commits
27c13b4chore(release): new release (#20550)9b2f41echore: bump terser plugin (#20569)eafe060fix: narrow the export presence guard detection (#20561)75d605crefactor: add AppendOnlyStackedSet iteration support and tests (#20560)afa607drefactor: remove unused code (#20562)4098902test: add source files for web-webworker and web-webworker-auto-public-path (...f97be67refactor: fix duplicated word in Compilation JSDoc (#20547)9d76fffrefactor: add Module.getSourceBasicTypes for basic JS type detection (#20546)a3d7839fix: types for multi stats (#20556)b8e9b05fix: updateenhanced-resolveto support new features fortsconfig.json(#...Maintainer changes
This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for webpack since your current version.
Install script changes
This version adds
preparescript that runs during installation. Review the package contents before updating.