Bump glob-parent, nuxt and webpack #1428

dependabot · 2022-12-06T00:10:43Z

Bumps glob-parent to 6.0.2 and updates ancestor dependencies glob-parent, nuxt and webpack. These dependencies need to be updated together.

Updates glob-parent from 3.1.0 to 6.0.2

Release notes

Sourced from glob-parent's releases.

glob-parent v6.0.2

Bug Fixes

Improve performance (#53) (843f8de)

glob-parent v6.0.1

Bug Fixes

Resolve ReDoS vulnerability from CVE-2021-35065 (#49) (3e9f04a)

glob-parent v6.0.0

⚠ BREAKING CHANGES

Correct mishandled escaped path separators (#34)

upgrade scaffold, dropping node <10 support

Bug Fixes

Correct mishandled escaped path separators (#34) (32f6d52), closes #32

Miscellaneous Chores

upgrade scaffold, dropping node <10 support (e83d0c5)

v5.1.2

Bug Fixes

eliminate ReDoS (#36) (f923116)

v5.1.1

Bug Fixes

unescape exclamation mark (#26) (a98874f)

v5.1.0

Features

... (truncated)

Changelog

Sourced from glob-parent's changelog.

6.0.2 (2021-09-29)

Bug Fixes

Improve performance (#53) (843f8de)

6.0.1 (2021-07-20)

Bug Fixes

Resolve ReDoS vulnerability from CVE-2021-35065 (#49) (3e9f04a)

6.0.0 (2021-05-03)

⚠ BREAKING CHANGES

Correct mishandled escaped path separators (#34)

upgrade scaffold, dropping node <10 support

Bug Fixes

Correct mishandled escaped path separators (#34) (32f6d52), closes #32

Miscellaneous Chores

upgrade scaffold, dropping node <10 support (e83d0c5)

5.1.1 (2021-01-27)

Bug Fixes

unescape exclamation mark (#26) (a98874f)

5.1.0 (2021-01-27)

Features

add flipBackslashes option to disable auto conversion of slashes (closes #24) (#25) (eecf91d)

5.0.0 (2021-01-27)

⚠ BREAKING CHANGES

Drop support for node <6 & bump dependencies

Miscellaneous Chores

Drop support for node <6 & bump dependencies (896c0c0)

4.0.0 (2021-01-27)

... (truncated)

Commits

26ce5ec chore: release 6.0.2 (#54)
98c4781 chore: Run prettier
843f8de fix: Improve performance (#53)
3ad3690 chore: Run prettier
e1a15e1 chore: release 6.0.1 (#52)
8cdac1e chore: Run prettier
3e9f04a fix: Resolve ReDoS vulnerability from CVE-2021-35065 (#49)
3ad9597 chore: Run prettier
6fd137b chore: release 6.0.0 (#41)
32f6d52 fix!: Correct mishandled escaped path separators (#34)
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by phated, a new releaser for glob-parent since your current version.

Updates nuxt from 2.15.8 to 3.0.0

Release notes

Sourced from nuxt's releases.

Nuxt 3.0 stable

✨ Official Release Announcenment

💬 Release Discussion

📝 Changelog

Check out v3.0.0-rc.14 for other recent changes.

🩹 Fixes

nuxt: Removed auto imports (#9045)

schema: Initialise runtimeConfig.public with empty object (#9050)

cli: Upgrade with latest tag (#9060)

nuxt: Allow union type arguments for useAsyncData (#9061)

📖 Documentation

New website design (#9007)

Update website theme version (819deb89)

Minor style improvements (9ab069b2)

Update website-theme (780b17b1)

Add warning about definePageMeta issues with transitions and NuxtLoadingIndicator (#9055)

Add missing agencies (#9059)

🏡 Chore

Update readme design (#9048)

Ignore parse5 for renovate update (#9046)

❤️ Contributors

Toby Faux

Clément Ollivier (@clemcode)

Pooya Parsa (@pi0)

Conner (@Intevel)

Sébastien Chopin (@Atinux)

Daniel Roe [email protected]

v3.0.0-rc.14

Note This is the last release candidate for Nuxt v3! Are you ready? 👀

👉 Release Discussion

Changelog

compare changes

... (truncated)

Commits

See full diff in compare view

Updates webpack from 4.46.0 to 5.75.0

Release notes

Sourced from webpack's releases.

v5.75.0

Bugfixes

experiments.* normalize to false when opt-out

avoid NaN%

show the correct error when using a conflicting chunk name in code

HMR code tests existance of window before trying to access it

fix eval-nosources-* actually exclude sources

fix race condition where no module is returned from processing module

fix position of standalong semicolon in runtime code

Features

add support for @import to extenal CSS when using experimental CSS in node

add i64 support to the deprecated WASM implementation

Developer Experience

expose EnableWasmLoadingPlugin

add more typings

generate getters instead of readonly properties in typings to allow overriding them

v5.74.0

Features

add resolve.extensionAlias option which allows to alias extensions

This is useful when you are forced to add the .js extension to imports when the file really has a .ts extension (typescript + "type": "module")

add support for ES2022 features like static blocks

add Tree Shaking support for ProvidePlugin

Bugfixes

fix persistent cache when some build dependencies are on a different windows drive

make order of evaluation of side-effect-free modules deterministic between concatenated and non-concatenated modules

remove left-over from debugging in TLA/async modules runtime code

remove unneeded extra 1s timestamp offset during watching when files are actually untouched

This sometimes caused an additional second build which are not really needed

fix shareScope option for ModuleFederationPlugin

set "use-credentials" also for same origin scripts

Performance

Improve memory usage and performance of aggregating needed files/directories for watching

This affects rebuild performance

Extensibility

export HarmonyImportDependency for plugins

v5.73.0

... (truncated)

Commits

8241da7 5.75.0
a91d923 Merge pull request #16458 from webpack/bugfix/semi
4608b11 Merge pull request #16457 from webpack/tooling/update
dfdd0b0 Merge pull request #16122 from AnmolBansalDEV/bug/compilationCallback
23b9a1c Merge pull request #16167 from exposir/fixts
6f2c5e8 Merge pull request #16257 from alexzhang1030/calc_deterministic_verbose
f7f36ad Merge pull request #16339 from Liamolucko/wasm-i64
761a542 fix semicolon position
2403a36 Merge pull request #16345 from ahabhgk/fix-eval-nosources
c18203c update tooling
Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the Security Alerts page.

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

mergify · 2022-12-08T00:10:08Z