Bump the npm_and_yarn group in /tests with 2 updates #400

v5.0.4

5.0.4 (2024年03月19日)

Bug Fixes

security: bump webpack-dev-middleware (#5112) (aab576a)

v5.0.3

5.0.3 (2024年03月12日)

Bug Fixes

types: proxy (#5101) (6e1aed3)

v5.0.2

5.0.2 (2024年02月16日)

Bug Fixes

types (#5057) (da2c24d)

v5.0.1

5.0.1 (2024年02月13日)

Bug Fixes

avoid using eval in client (#5045) (7681477)

overlay and require-trusted-types-for (#5046) (e115436)

v5.0.0

5.0.0 (2024年02月12日)

Migration Guide and Changes.

v4.15.2

4.15.2 (2024年03月20日)

Bug Fixes

security: bump webpack-dev-middleware (4116209)

v4.15.1

4.15.1 (2023年06月09日)

... (truncated)

Changelog

Sourced from webpack-dev-server's changelog.

5.0.4 (2024年03月19日)

Bug Fixes

security: bump webpack-dev-middleware (#5112) (aab576a)

5.0.3 (2024年03月12日)

Bug Fixes

types: proxy (#5101) (6e1aed3)

5.0.2 (2024年02月16日)

Bug Fixes

types (#5057) (da2c24d)

5.0.1 (2024年02月13日)

Bug Fixes

avoid using eval in client (#5045) (7681477)

overlay and require-trusted-types-for (#5046) (e115436)

5.0.0 (2024年02月12日)

Migration Guide and Changes.

4.15.1 (2023年06月09日)

Bug Fixes

replace :: with localhost before openBrowser() (#4856) (874c44b)

types: compatibility with @types/ws (#4899) (34bcec2)

4.15.0 (2023年05月07日)

Features

overlay displays unhandled promise rejection (#4849) (d1dd430)

4.14.0 (2023年05月06日)

... (truncated)

Commits

64a1860 chore(release): 5.0.4
aab576a fix(security): bump webpack-dev-middleware (#5112)
fb6f22a chore(deps-dev): bump @commitlint/config-conventional (#5104)
ba9dfb6 chore(deps-dev): bump @commitlint/cli from 19.0.3 to 19.1.0 (#5103)
08cab58 chore(release): 5.0.3
37f4760 chore(deps-dev): bump @types/node from 20.11.25 to 20.11.26 (#5102)
6e1aed3 fix(types): proxy (#5101)
8ea7cb8 chore(deps): bump open from 10.0.4 to 10.1.0 (#5100)
c6a3586 chore(deps-dev): bump puppeteer from 22.4.0 to 22.4.1 (#5099)
2201442 chore(deps): update (#5096)
Additional commits viewable in compare view

Updates webpack-dev-middleware from 3.7.3 to 7.2.1

Release notes

Sourced from webpack-dev-middleware's releases.

v7.2.1

7.2.1 (2024年04月02日)

Bug Fixes

avoid extra log

v7.2.0

7.2.0 (2024年03月29日)

Features

hapi support (b3f9126)

koa support (#1792) (458c17c)

support ETag header generation (#1797) (b759181)

support Last-Modified header generation (#1798) (18e5683)

v7.1.1

7.1.1 (2024年03月21日)

Bug Fixes

ContentLength incorrectly set for empty files (#1785) (0f3e25e)

improve perf (#1777) (5b47c92)

types: make types better (#1786) (e4d183e)

v7.1.0

7.1.0 (2024年03月19日)

Features

prefer to use fs.createReadStream over fs.readFileSync to read files (ab533de)

Bug Fixes

cleaup stream and handle errors (#1769) (1258fdd)

security: do not allow to read files above (#1771) (e10008c)

v7.0.0

7.0.0 (2023年12月26日)

⚠ BREAKING CHANGES

minimum supported Node.js version is 18.12.0 (#1694)

... (truncated)

Changelog

Sourced from webpack-dev-middleware's changelog.

7.2.1 (2024年04月02日)

Bug Fixes

avoid extra log

7.2.0 (2024年03月29日)

Features

hapi support (b3f9126)

koa support (#1792) (458c17c)

support ETag header generation (#1797) (b759181)

support Last-Modified header generation (#1798) (18e5683)

7.1.1 (2024年03月21日)

Bug Fixes

ContentLength incorrectly set for empty files (#1785) (0f3e25e)

improve perf (#1777) (5b47c92)

types: make types better (#1786) (e4d183e)

7.1.0 (2024年03月19日)

Features

prefer to use fs.createReadStream over fs.readFileSync to read files (ab533de)

Bug Fixes

cleaup stream and handle errors (#1769) (1258fdd)

security: do not allow to read files above (#1771) (e10008c)

7.0.0 (2023年12月26日)

⚠ BREAKING CHANGES

minimum supported Node.js version is 18.12.0 (#1694)

updated memfs@4 (#1693)

Features

updated memfs@4 (#1693) (244d9f8)

... (truncated)

Commits

3d422a9 chore(release): 7.2.1
8c2df86 docs(readme): fix options table (#1808)
5ac51a0 chore(deps): bump memfs from 4.8.0 to 4.8.1 (#1806)
adfd4f1 chore(deps-dev): bump @types/node from 20.11.30 to 20.12.2 (#1807)
79e7247 fixed: removed cache key logging (#1805)
17ed7eb chore(release): 7.2.0
7e1fe44 refactor: tests were rewritten, we don't need it anymore (#1803)
95c2fb0 test: refactor (#1802)
7b666a1 refactor: better types (#1801)
1f54424 test: more (#1800)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot


 Bump the npm_and_yarn group in /tests with 2 updates

4c4c421

Bumps the npm_and_yarn group in /tests with 2 updates: [webpack-dev-server](https://github.com/webpack/webpack-dev-server) and [webpack-dev-middleware](https://github.com/webpack/webpack-dev-middleware).
Updates `webpack-dev-server` from 3.11.3 to 5.0.4
- [Release notes](https://github.com/webpack/webpack-dev-server/releases)
- [Changelog](https://github.com/webpack/webpack-dev-server/blob/master/CHANGELOG.md)
- [Commits](webpack/webpack-dev-server@v3.11.3...v5.0.4)
Updates `webpack-dev-middleware` from 3.7.3 to 7.2.1
- [Release notes](https://github.com/webpack/webpack-dev-middleware/releases)
- [Changelog](https://github.com/webpack/webpack-dev-middleware/blob/master/CHANGELOG.md)
- [Commits](webpack/webpack-dev-middleware@v3.7.3...v7.2.1)
---
updated-dependencies:
- dependency-name: webpack-dev-server
 dependency-type: direct:development
 dependency-group: npm_and_yarn-security-group
- dependency-name: webpack-dev-middleware
 dependency-type: indirect
 dependency-group: npm_and_yarn-security-group
...
Signed-off-by: dependabot[bot] <support@github.com>

@dependabot dependabot bot added dependencies javascript labels

Apr 4, 2024

@dependabot dependabot bot mentioned this pull request

Apr 4, 2024

Bump webpack-dev-middleware and webpack-dev-server in /tests #396

Closed

@fjsj fjsj closed this

Apr 4, 2024

@dependabot @github

Copy link

Contributor Author

dependabot bot commented on behalf of github Apr 4, 2024

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml

@dependabot dependabot bot deleted the dependabot/npm_and_yarn/tests/npm_and_yarn-security-group-ef371c3c1e branch

April 4, 2024 13:10

Labels

dependencies javascript

2 participants

@fjsj

Uh oh!

Bump the npm_and_yarn group in /tests with 2 updates #400

Bump the npm_and_yarn group in /tests with 2 updates #400

Uh oh!

Conversation

@dependabot dependabot bot commented on behalf of github Apr 4, 2024

v5.0.4

5.0.4 (2024年03月19日)

Bug Fixes

v5.0.3

5.0.3 (2024年03月12日)

Bug Fixes

v5.0.2

5.0.2 (2024年02月16日)

Bug Fixes

v5.0.1

5.0.1 (2024年02月13日)

Bug Fixes

v5.0.0

5.0.0 (2024年02月12日)

v4.15.2

4.15.2 (2024年03月20日)

Bug Fixes

v4.15.1

4.15.1 (2023年06月09日)

5.0.4 (2024年03月19日)

Bug Fixes

5.0.3 (2024年03月12日)

Bug Fixes

5.0.2 (2024年02月16日)

Bug Fixes

5.0.1 (2024年02月13日)

Bug Fixes

5.0.0 (2024年02月12日)

4.15.1 (2023年06月09日)

Bug Fixes

4.15.0 (2023年05月07日)

Features

4.14.0 (2023年05月06日)

v7.2.1

7.2.1 (2024年04月02日)

Bug Fixes

v7.2.0

7.2.0 (2024年03月29日)

Features

v7.1.1

7.1.1 (2024年03月21日)

Bug Fixes

v7.1.0

7.1.0 (2024年03月19日)

Features

Bug Fixes

v7.0.0

7.0.0 (2023年12月26日)

⚠ BREAKING CHANGES

7.2.1 (2024年04月02日)

Bug Fixes

7.2.0 (2024年03月29日)

Features

7.1.1 (2024年03月21日)

Bug Fixes

7.1.0 (2024年03月19日)

Features

Bug Fixes

7.0.0 (2023年12月26日)

⚠ BREAKING CHANGES

Features

Uh oh!

dependabot bot commented on behalf of github Apr 4, 2024

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants